it depends on what tools a hacker/scanner is using. I would contest that most scanners outside of nmap scan common ports. If a scanner was to pickup on a non standard port, it is not going to report it as a web server. A seperate recon method would have to be used in conjunction to determine the purpose of the open port.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Behalf Of Gerod Serafin Posted At: Thursday, September 16, 2004 2:49 PM Posted To: Exchange Conversation: Changing the default SSL port OWA/IIS 2003 are listening (Fro nt End Server) Subject: RE: Changing the default SSL port OWA/IIS 2003 are listening (Fro nt End Server) Yes it is possible to change the port, but port scanners can detect more than just port 80 and 443. If you can get your users to use the new port is could work for you. To change the port change it in the IIS Manager. It is on the Properties page on the Default Web site. It says "SSL port". If I did a port scan on 8090 against your server I would know that you are an IIS server however... -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Mailing List Sent: Thursday, September 16, 2004 3:24 PM To: Exchange Discussions Subject: Changing the default SSL port OWA/IIS 2003 are listening (Front End Server) Hi Is it possible to change the default SSL port that OWA/IIS is listening ? Exemple : 1.if the OWA/IIS Front End is listeing on port 8090 2. Hacker scan the internet and do not find nything on port 80 and 443. And the firewall do sendback icmp packet (reply) 3. corporate users to reach OWA type owa.somefqdn.com and another web server receive that request "owa.somfwdn.com" and redirect to https://owa.company.com:8090 ( 8090 would be the ssl port) on the real owa server My goal is to hide the OWA/IIS existence from any hacker scanning everything... If I don't do that, my customer owa 2003 is ending in a DMZ(perimeter network ;-) ) , without rpc access to the private network (we can't allow that) and I must allow anonymous or malformed request from the Front End to reach the Back End server (on the real network ! ) JF _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&lang =english To unsubscribe send a blank email to %%email.unsub%% Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&lang=english To unsubscribe send a blank email to %%email.unsub%% Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with. CONFIDENTIALITY NOTICE: This e-mail and any attachments are confidential. If you are not the intended recipient, any further dissemination or use of this e-mail is prohibited. If you have received this e-mail in error, please notify us immediately by returning it to the sender. You should then delete all copies from your system and destroy any hard copies you may have made. Thank you for your cooperation. _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Web Interface: http://intm-dl.sparklist.com/cgi-bin/lyris.pl?enter=exchange&text_mode=&lang=english To unsubscribe send a blank email to [EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] To unsubscribe via postal mail, please contact us at: Jupitermedia Corp. Attn: Discussion List Management 475 Park Avenue South New York, NY 10016 Please include the email address which you have been contacted with.
