Solved

Windows 2003 Server a Proxy without me knowing how

Posted on 2008-06-18
4
216 Views
Last Modified: 2013-12-23
I ran nessus and it found the following vulnerability:
Synopsis: The proxy allows the users to perform CONNECT requests like CONNECT http://cvs.nessus.org:23/

This request give to the person who make it the ability
to have an interactive session.
This problem may allow attackers to go through your
firewall, by connecting to sensitive ports like 23 (telnet)
using your proxy, or it can allow internal users to bypass the firewall
rules and connect to ports they should not be allowed to.

Solution reconfigure your proxy so that it refuses CONNECT requests.

Risk Factor : High

How can I make the configuration shange suggestted in the solution or all together turn off this proxy?
0
Comment
Question by:LanceJohnson
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Expert Comment

by:bbao
ID: 21827311
humm.... do you have Telnet service enabled on your W2K3 box?

just run NET START to see if TELNET is there.
0
 

Author Comment

by:LanceJohnson
ID: 21842689
I will check on Monday
0
 

Author Comment

by:LanceJohnson
ID: 21965689
Telnet service is enabled
0
 
LVL 37

Accepted Solution

by:
bbao earned 500 total points
ID: 21971193
that's why you could get this kind of warnings?

if you don't need TELNET, just remove this service from Control Panel | Installed Programs.

hope it helps,
bbao
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
In a recent article here at Experts Exchange (http://www.experts-exchange.com/articles/18880/PaperPort-14-in-Windows-10-A-First-Look.html), I discussed my nine-month sandbox testing of the Windows 10 Technical Preview, specifically with respect to r…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
Add bar graphs to Access queries using Unicode block characters. Graphs appear on every record in the color you want. Give life to numbers. Hopes this gives you ideas on visualizing your data in new ways ~ Create a calculated field in a query: …

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question