Thanks all, yes that covers it; the question was why, now we know.
Great job, thanks.
> On 14 Sep 2016, at 20:42, Aaron Czechowski <aaron.czechow...@microsoft.com>
> -----Original Message-----
> From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com]
> On Behalf Of Jason Wallace
> Sent: Wednesday, 14 September, 2016 11:47
> To: firstname.lastname@example.org
> Subject: Re: [mssms] RE: ccmexec calling http://crl.microsoft.com/pki blah
> I had read his question more as to why an internal service would need to go
> to The Internet.
> Sent from my iPhone
>> On 14 Sep 2016, at 19:34, Nash Pherson <na...@nowmicro.com> wrote:
>> That's a Certificate Revocation List. Your security folks should know what
>> that is any why it is important.
>> -----Original Message-----
>> From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com]
>> On Behalf Of Stuart Watret
>> Sent: Wednesday, September 14, 2016 10:30 AM
>> To: <email@example.com> <firstname.lastname@example.org>
>> Subject: [mssms] ccmexec calling
>> blah blah
>> In a sensitive area, I’m being asked why this is happening.
>> Thoughts? Some kind of code/script signing check?