Hi,
I have IIS5.0 running on w2k (SP3) for SQL reporting service(SP1). IIS has all the patches that I can find. While IIS running, this computer has been hijacked or turn to proxy server to deliver spam mails. How can I provent it (no smpt service running.)I am not sure I understand the issue you're facing, can you explain some
more?
--
Tudor Trufinescu
Dev Lead
Sql Server Reporting Services
This posting is provided "AS IS" with no warranties, and confers no rights.
"csoon" <csoon@.discussions.microsoft.com> wrote in message
news:C14F67AF-AA2D-4529-BF58-E170171B0410@.microsoft.com...
> Hi,
> I have IIS5.0 running on w2k (SP3) for SQL reporting service(SP1). IIS
has all the patches that I can find. While IIS running, this computer has
been hijacked or turn to proxy server to deliver spam mails. How can I
provent it (no smpt service running.)|||Note that you do not need to have either an email client nor an email server
running. There would be no way for your server to be hijacked if you do not
have these installed. Yes, you can use either but you do not need to. I am
configured where RS sends the email to an SMTP server which resides
elsewhere.
Bruce L-C
"csoon" <csoon@.discussions.microsoft.com> wrote in message
news:CFC072A9-A3E9-46A2-BDAF-ECD7BE320BB9@.microsoft.com...
> I keep getting email indicate that my computer was hijack and used as
proxy server to deliver hugh emails while IIS5.0 running. It is very
difficult to get budget to try sql reporting service specially it is not
secure. First I did implement sending email in sql reporting service by
changing in configuration file (drop off email files in a folder to smtp to
pick them up). Once I had this problem then I turned off smtp but I still
got emails indicated that my computer was hijacked. I installed lock down
IIS and all the patch for IIS5.0. I would like to try RS but if I still
cause problem to others, I might not be able to test or implement this
software. If you need more info. please let me know.
> "Tudor Trufinescu (MSFT)" wrote:
> > I am not sure I understand the issue you're facing, can you explain some
> > more?
> >
> > --
> > Tudor Trufinescu
> > Dev Lead
> > Sql Server Reporting Services
> > This posting is provided "AS IS" with no warranties, and confers no
rights.
> >
> >
> > "csoon" <csoon@.discussions.microsoft.com> wrote in message
> > news:C14F67AF-AA2D-4529-BF58-E170171B0410@.microsoft.com...
> > > Hi,
> > > I have IIS5.0 running on w2k (SP3) for SQL reporting service(SP1).
IIS
> > has all the patches that I can find. While IIS running, this computer
has
> > been hijacked or turn to proxy server to deliver spam mails. How can I
> > provent it (no smpt service running.)
> >
> >
> >|||Thanks. Unfortunately, this is a test on my computer, I have to have mail client on this computer.
"Bruce Loehle-Conger" wrote:
> Note that you do not need to have either an email client nor an email server
> running. There would be no way for your server to be hijacked if you do not
> have these installed. Yes, you can use either but you do not need to. I am
> configured where RS sends the email to an SMTP server which resides
> elsewhere.
> Bruce L-C
> "csoon" <csoon@.discussions.microsoft.com> wrote in message
> news:CFC072A9-A3E9-46A2-BDAF-ECD7BE320BB9@.microsoft.com...
> > I keep getting email indicate that my computer was hijack and used as
> proxy server to deliver hugh emails while IIS5.0 running. It is very
> difficult to get budget to try sql reporting service specially it is not
> secure. First I did implement sending email in sql reporting service by
> changing in configuration file (drop off email files in a folder to smtp to
> pick them up). Once I had this problem then I turned off smtp but I still
> got emails indicated that my computer was hijacked. I installed lock down
> IIS and all the patch for IIS5.0. I would like to try RS but if I still
> cause problem to others, I might not be able to test or implement this
> software. If you need more info. please let me know.
> >
> > "Tudor Trufinescu (MSFT)" wrote:
> >
> > > I am not sure I understand the issue you're facing, can you explain some
> > > more?
> > >
> > > --
> > > Tudor Trufinescu
> > > Dev Lead
> > > Sql Server Reporting Services
> > > This posting is provided "AS IS" with no warranties, and confers no
> rights.
> > >
> > >
> > > "csoon" <csoon@.discussions.microsoft.com> wrote in message
> > > news:C14F67AF-AA2D-4529-BF58-E170171B0410@.microsoft.com...
> > > > Hi,
> > > > I have IIS5.0 running on w2k (SP3) for SQL reporting service(SP1).
> IIS
> > > has all the patches that I can find. While IIS running, this computer
> has
> > > been hijacked or turn to proxy server to deliver spam mails. How can I
> > > provent it (no smpt service running.)
> > >
> > >
> > >
>
>
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment