Great Circle Associates Firewalls
(November 1996) 		 
Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]
Subject: RE: Question on Windows NT web behind firewall
From: FaNgYoU2 <fangyou2 @ panix . com>
Date: Sat, 30 Nov 1996 08:42:45 -0500 (EST)
To: Russ <Russ . Cooper @ RC . on . ca>
Cc: "firewalls @ GreatCircle . com" <firewalls @ GreatCircle . COM>
In-reply-to: <F19A117D9446D011A0830000E8D5C667000000002FAC @ mail . rc . on . ca> 
On Sat, 30 Nov 1996, Russ wrote:

> Is there a reason why you've only run some of the NET commands? What

Yes.  I am still figuring out what else I can do.

> HTTPd is running, without that information how can anyone assess your

Will find out what HTTPd is running and post it.

> risks? Sorry, but what does this have to do with Firewalls? 

A lot of NT web server like this one are being installed by vendors,
sitting behind a firewall with a hole poked in it.  When the NT system
is hacked the people running it are probably going to try and blame
their firewall administrator.

> Are you questioning TIS' ability to prohibit anything other than HTTP

I didn't get through the TIS machine.  I social engineered their director
to let me into the computer center to check the air-conditioning while all
the computer operations staff were out to lunch.

TIS boxes are strong and reliable.  I don't know anybody who cracked one
yet.

> There are lots of potential risks with the partial configuration you've
> shown

The purpose of my posting is to find out what those risks are.
References:
Indexed By Date Previous: RE: Question on Windows NT web behind firewall
From: Russ <Russ . Cooper @ RC . on . ca>
Next: RE: Question on Windows NT web behind firewall
From: FaNgYoU2 <fangyou2 @ panix . com>
Indexed By Thread Previous: RE: Question on Windows NT web behind firewall
From: Russ <Russ . Cooper @ RC . on . ca>
Next: RE: Question on Windows NT web behind firewall
From: FaNgYoU2 <fangyou2 @ panix . com>
Google
 
Search Internet Search www.greatcircle.com