Re: Publishing ftp server
- From: "Phillip Windell" <philwindell@xxxxxxxxxxx>
- Date: Mon, 30 Jul 2007 16:14:47 -0500
Yes, if the attack "fits" one of the attack profiles ISA is built to look
for.
I rarely pay attention to the alerts personally. If there is an alert then
the attack failed and there is nothing to do other that look at it, nod my
head, and say "yep, there is was". On the other hand if there was an attack
and it was successful,..then there won't be an alert because the attack
was,..well,..successful so there is nothing to see and I have bigger
problems to worry about.
It's like a Security Guard on the property,..If he sees an intruder he stops
them and "nothing happend",...if they broke in it means he didn't see
them,...then what?,...he can not "report" something he never saw.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or Microsoft,
or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html
Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc
Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp
Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------
"Daniel" <danieltbt04@xxxxxxxxx> wrote in message
news:%23I$zp1M0HHA.5644@xxxxxxxxxxxxxxxxxxxxxxx
you are right nothing is free from attack. But if isa were attacked, will
it alert ?
Daniel
"Phillip Windell" <philwindell@xxxxxxxxxxx> wrote in message
news:O2SUVW6zHHA.3916@xxxxxxxxxxxxxxxxxxxxxxx
?? If ISA can not reach the Net itself, and the Net can't reach
it,...and the ISA can not reach the Internal LAN apart from System Policy
allowances, and the Internal LAN can not reach the ISA apart from System
Policy allowances,...how in the world is anyone going to get to it to
hack it in the first place?
Nothing is free from attack,...you can attack anything. A successful
attack is something else.
ISA has never been "hacked",...ever,...all the way back to
ISA2000,...ain't never happended. Admins that didn't know what they were
doing may have "let" someone in via their own configurations,...but ISA
itself has never been hacked.
Before you suggest it,...a DoS attack is not a hack. A DoS does not
break into anything, it just keeps things from being used. A pair of
wire cutters on a cable is a "DoS Attack". Nothing,..*nothing*,...is
immune to a creative DoS attack.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or
Microsoft, or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html
Troubleshooting Client Authentication on Access Rules in ISA Server 2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc
Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp
Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------
"Daniel" <danieltbt04@xxxxxxxxx> wrote in message
news:ODrhe$5zHHA.3916@xxxxxxxxxxxxxxxxxxxxxxx
If that the case, how can i know if ISA is secure and free from being
attacked ?
Daniel
"Phillip Windell" <philwindell@xxxxxxxxxxx> wrote in message
news:OnA6yw4zHHA.3848@xxxxxxxxxxxxxxxxxxxxxxx
"Daniel" <danieltbt05@xxxxxxxxx> wrote in message
news:u09NiQyzHHA.484@xxxxxxxxxxxxxxxxxxxxxxx
yup its working without that ftp access rules. So what you mean is
that only system policy applied to ISA itself ?
Yes.
Access Rules and Publishing Rules *can* apply to ISA if you create them
to do so,...but the idea is that you should not do that, or do that as
little as possible.
The ISA does not *need* to ever connect to the Internet itself and it
does not need to connect to the Internal LAN in any way beyond the
System Policies in order for ISA to function normally. Poeple usually
do open things up more than that,..but the point is that it is not
required for ISA to function.
--
Phillip Windell
www.wandtv.com
The views expressed, are my own and not those of my employer, or
Microsoft, or anyone else associated with me, including my cats.
-----------------------------------------------------
Understanding the ISA 2004 Access Rule Processing
http://www.isaserver.org/articles/ISA2004_AccessRules.html
Troubleshooting Client Authentication on Access Rules in ISA Server
2004
http://download.microsoft.com/download/9/1/8/918ed2d3-71d0-40ed-8e6d-fd6eeb6cfa07/ts_rules.doc
Microsoft Internet Security & Acceleration Server: Partners
http://www.microsoft.com/isaserver/partners/default.asp
Microsoft ISA Server Partners: Partner Hardware Solutions
http://www.microsoft.com/forefront/edgesecurity/partners/hardwarepartners.mspx
-----------------------------------------------------
.
- References:
- Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Re: Publishing ftp server
- From: Phillip Windell
- Re: Publishing ftp server
- From: Daniel
- Publishing ftp server
- Prev by Date: Re: Publishing ftp server
- Next by Date: Re: From Cisco Pix to ISA.
- Previous by thread: Re: Publishing ftp server
- Next by thread: Re: Mail Publishing rule on ISA 2004 doesnt work
- Index(es):
Relevant Pages
|
Loading
