Do We Need DCOM Enabled?
- From: "Will" <westes-usc@xxxxxxxxxxxxxx>
- Date: Sat, 10 Feb 2007 19:18:01 -0800
In order to further minimize attack surfaces, I'm thinking of
1) uninstalling "Enabled Network COM+ Access" in Add Remove Programs |
Windows Components | Application Servers
2) Starting DCOMCNFG and unselected the Enable DCOM checkbox
Which applications use either of these? When is it important to leave
DCOM enabled on a Windows 2000 and Windows 2003 server?
If you do 1) and 2), why does the DCOM Application Starter service remain in
Automatic state, and what functions is it performing?
I read that certificate autoenrollment uses DCOM. If you have DCOM
disabled, how would you register your certificates on new servers?
If we want to develop .NET applications, does the .NET 2.0 and 3.0
architecture require DCOM?
--
Will
.
- Follow-Ups:
- Re: Do We Need DCOM Enabled?
- From: Roger Abell [MVP]
- Re: Do We Need DCOM Enabled?
- Prev by Date: Re: PEM file with certificate authority?
- Next by Date: Linking PKI directory accounts with Active Directory?
- Previous by thread: RDP - IP Address ACL
- Next by thread: Re: Do We Need DCOM Enabled?
- Index(es):
Relevant Pages
|
