OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
Subject: Re: MS Proxy vulnerable to Port Scans?
From: Alan Greig (AlanACADEMY-IT.COM)
Date: Wed May 17 2000 - 15:48:01 CDT

David,

I have carried out a number of port scans on NT Boxes running Proxy with no
such effect. Must admit I was using Proxy 2.0. Personally I have my doubts
that you are being told the whole story. If proxy fell over in this way then
someone somewhere would be screaming blue murder at redmond for a fix by
now. Did the gentlemen carrying out the test let you know at what port the
system fell over? Were the memory dumps & result codes analysed at the time
to try and ascertain the cause? Could have been a coincidence!

Hopefully there is something in here that help :)

Alan

-----Original Message-----
From: David McKenzie [mailto:DMcKenzienfa.futures.org]
Sent: 17 May 2000 15:56
To: FOCUS-MSsecurityfocus.com
Subject: MS Proxy vulnerable to Port Scans?

A year or two ago our proxy bluescreened during a penetration test. The
vendor swore up and down all he was doing was portscans.
This would have been NT 4.0 SP 4 and M$ Proxy 1.0 at that time (I think -
this was not my area at the time).
What is the level of confidence in this vendor's statement? Anyone else
ever bluescreen their proxy server with a port scan?

Thanks in advance

David

"IMPORTANT. This email is intended for the above-named only. It may contain
privileged and/or confidential information. If it has come to you in error,
please notify the sender immediately. You should not copy this Email,
disclose its contents to anyone else, or take action based on it."