Solved

Windows 2003 Server a Proxy without me knowing how

Posted on 2008-06-18
4
215 Views
Last Modified: 2013-12-23
I ran nessus and it found the following vulnerability:
Synopsis: The proxy allows the users to perform CONNECT requests like CONNECT http://cvs.nessus.org:23/

This request give to the person who make it the ability
to have an interactive session.
This problem may allow attackers to go through your
firewall, by connecting to sensitive ports like 23 (telnet)
using your proxy, or it can allow internal users to bypass the firewall
rules and connect to ports they should not be allowed to.

Solution reconfigure your proxy so that it refuses CONNECT requests.

Risk Factor : High

How can I make the configuration shange suggestted in the solution or all together turn off this proxy?
0
Comment
Question by:LanceJohnson
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 37

Expert Comment

by:bbao
ID: 21827311
humm.... do you have Telnet service enabled on your W2K3 box?

just run NET START to see if TELNET is there.
0
 

Author Comment

by:LanceJohnson
ID: 21842689
I will check on Monday
0
 

Author Comment

by:LanceJohnson
ID: 21965689
Telnet service is enabled
0
 
LVL 37

Accepted Solution

by:
bbao earned 500 total points
ID: 21971193
that's why you could get this kind of warnings?

if you don't need TELNET, just remove this service from Control Panel | Installed Programs.

hope it helps,
bbao
0

Featured Post

Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Users of Windows 10 Professional can disable automatic reboots using the policy editor. This tool is not included in the Windows home edition. But don't worry! Follow the instructions below to install (a Win7) policy editor on your Windows 10 Home e…
OfficeMate Freezes on login or does not load after login credentials are input.
Although Jacob Bernoulli (1654-1705) has been credited as the creator of "Binomial Distribution Table", Gottfried Leibniz (1646-1716) did his dissertation on the subject in 1666; Leibniz you may recall is the co-inventor of "Calculus" and beat Isaac…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question