On Wed, 10 Feb 1999, Pfeiffer, Rainer wrote:
> does anyone know a way to get in running without RPCportmapper?
> i.e.: if there is no connect to RPCportmapper there is no fear for
> portmapper-DOS-attacs.
No fear for port mapper based attacks, but there may be other ways in. I
assume you mean if access to port 135 is blocked? If so then yes, you need
to tickle port 135 to activate the dynamic ports.
> This way of using the portmapper is strange: portmapper does not map a
> free port - you know the answer for IS/DS because the port is fixed!
> The MS-way?
Normally with DCOM this would be some dynamic port number above 1023. The
reason for specifically hacking the registry to fix the port numbers is so
you can deal with the traffic passing through a firewall. Without the
hack, you must open all ports above 1023. Not exactly the best security
posture. ;)
Cheers,
Chris
--
**************************************
[EMAIL PROTECTED]
* Multiprotocol Network Design & Troubleshooting
http://www.amazon.com/exec/obidos/ASIN/0782120822/geekspeaknet
* Mastering Network Security
http://www.amazon.com/exec/obidos/ASIN/0782123430/geekspeaknet
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
