Proxy 2 and ICQ
Matt Doyle
I have a Win2K server with Proxy 2.0 SP1 installed. I had
ICQ 2003a installed and running happily on this machine.
Then I installed the security patch from August (16th, I
think?). Since then I have not been able to connect using
ICQ.
Any ideas?
TIA,
Matt
Phillip Windell
Proxy2, however I also never install Proxy2 on Win2k. The patches
screw up other machines not running Proxy2 for that matter, and
removing them doesn't put things back the way they were anymore. I
have one Win2k machine I am looking at rebuilding from scratch after
applying those patches.
You are in a catch-22, if you install the patches it screws up Proxy2,
if you don't install them your II5.0 is vurlnerable to Welchia via the
WebDav vulnerablility. Proxy2 will protect from the RPC vulnerability
since it doesn't expose port 135, but the WebDav vulnerability uses
port 80 which you would still have. IIS4.0 (NT4.0) doesn't employ
WebDav so NT4.0 is safe.
There are two options I can think of, none of them involve using the
patches.
Option #1. Install the IIS Lockdown Tool. Apply it very carefully,
since "over-doing-it" will also screw up Proxy2. The IIS "Scripts"
virtual folder must be left alone. The main thing is to use it to
disable WebDav.
Option #2. Change the Default Website to something else. Then adjust
the "proxy settings" in the web browsers on the user's machine to
match the new port number.
--
Phillip Windell [CCNA, MVP, MCP]
pwin...@wandtv.com
WAND-TV (ABC Affiliate)
www.wandtv.com
"Matt Doyle" <nos...@nospam.com> wrote in message
news:049b01c386b1$1b6bf860$a401...@phx.gbl...
Phillip Windell
"Phillip Windell" <pwindell{at}wandtv*d0t*com> wrote in message
news:eRw86z1h...@TK2MSFTNGP11.phx.gbl...
> Option #2. Change the Default Website to something else. Then
adjust
> Option #2. Change the Default Website *port#*
I left out "port#".