[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
From: Nicolas RUFF <nicolas.ruff@xxxxxxxxx>
Date: Mon, 23 Jun 2008 17:12:39 +0200

>> IV. WORKAROUNDS:
>>
>>   Block TCP ports 389 and 3268 to your Active Directory 
>> server from untrusted sources.
> 
> AD may also be listening on 636 for LDAP-over-SSL.

... and 3269 for Global Catalog over SSL.

Regards,
- Nicolas RUFF

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
  - From: Michael Wojcik

Prev by Date: [Full-disclosure] Join me on Last.fm!
Next by Date: Re: [Full-disclosure] Fwd: Fwd: Joel Esler comment on Sans ISC podcast
Previous by thread: Re: [Full-disclosure] Securify bulletin: Microsoft Active Directory Denial-of-service
Next by thread: [Full-disclosure] Security/Hacking Paper Contest Win $100
Index(es):
- Date
- Thread