| Author |
Message |
Sherra Duran
Guest
|
 Posted:
Mon Dec 13, 2004 2:10 am Post subject:
Block HTTP remote access |
|
|
I am a tech director at a local school district. We are using software for
our lunches etc. The software company has an option of offering online
assistance through their software, using HTTP. I didn't realize this option
was available until one of my Staff let me know that this software company
was assisting her with troubleshooting the software. She would select the
utilities-->technical assistance option and it would direct her to an https
webpage and she would input a security code and give the software tech full
control of her PC.
I am addressing the lack of communication between this staff person and the
tech department.
I have told the company to NEVER use this option with our school. I have
instructed the users to NEVER use this option.
How can I block the https service that offer remote assistance?
I have tried to block the individual IP address with no luck. They use
redirects that run off of their main IP address. For now, I have block the
main IP address, but we do need to access the main website for
downloads/patches to their software.
Is there a general way to block this service all together? |
|
| Back to top |
|
 |
Steven L Umbach
Guest
|
| Posted:
Mon Dec 13, 2004 3:06 am Post subject:
Re: Block HTTP remote access |
|
|
You might try to track down the process that they use to do such on a
computer and track it back to the executable used and set deny permissions
to that executable or disable the service if it is installed as a service.
Task manager or free tools from SysInternals such as Process Explorer,
TCPView, and Autoruns may be able to help you track this down. Other options
may be to block the URL at your firewall [if it is capable of that] or call
then and tell them to give YOU a new security code for that option that
would deny the other users access since they do not know the security
ode. --- Steve
"Sherra Duran" <sistergirl0816@msn.com> wrote in message
news:O4NGmcI4EHA.2012@TK2MSFTNGP15.phx.gbl...
| Quote: | I am a tech director at a local school district. We are using software for
our lunches etc. The software company has an option of offering online
assistance through their software, using HTTP. I didn't realize this
option
was available until one of my Staff let me know that this software company
was assisting her with troubleshooting the software. She would select the
utilities-->technical assistance option and it would direct her to an
https
webpage and she would input a security code and give the software tech
full
control of her PC.
I am addressing the lack of communication between this staff person and
the
tech department.
I have told the company to NEVER use this option with our school. I have
instructed the users to NEVER use this option.
How can I block the https service that offer remote assistance?
I have tried to block the individual IP address with no luck. They use
redirects that run off of their main IP address. For now, I have block
the
main IP address, but we do need to access the main website for
downloads/patches to their software.
Is there a general way to block this service all together?
|
|
|
| Back to top |
|
|
warren bailey
Guest
|
| Posted:
Fri Dec 17, 2004 6:56 am Post subject:
Re: Block HTTP remote access |
|
|
I'm not sure if this is what you're talking about. But one thing that I've
been able to do is restrict ports from certain machines.. Set on your
firewall a deny from certain ip address's on 443 (SSL) and it should be
fine.. Another thing would be to just deny ALL https traffic FROM the
software maker
word
//warren
"Steven L Umbach" <n9rou@nospam-comcast.net> wrote in message
news:##99A3I4EHA.3820@TK2MSFTNGP11.phx.gbl...
| Quote: | You might try to track down the process that they use to do such on a
computer and track it back to the executable used and set deny permissions
to that executable or disable the service if it is installed as a service.
Task manager or free tools from SysInternals such as Process Explorer,
TCPView, and Autoruns may be able to help you track this down. Other
options
may be to block the URL at your firewall [if it is capable of that] or
call
then and tell them to give YOU a new security code for that option that
would deny the other users access since they do not know the security
ode. --- Steve
"Sherra Duran" <sistergirl0816@msn.com> wrote in message
news:O4NGmcI4EHA.2012@TK2MSFTNGP15.phx.gbl...
I am a tech director at a local school district. We are using software
for
our lunches etc. The software company has an option of offering online
assistance through their software, using HTTP. I didn't realize this
option
was available until one of my Staff let me know that this software
company
was assisting her with troubleshooting the software. She would select
the
utilities-->technical assistance option and it would direct her to an
https
webpage and she would input a security code and give the software tech
full
control of her PC.
I am addressing the lack of communication between this staff person and
the
tech department.
I have told the company to NEVER use this option with our school. I
have
instructed the users to NEVER use this option.
How can I block the https service that offer remote assistance?
I have tried to block the individual IP address with no luck. They use
redirects that run off of their main IP address. For now, I have block
the
main IP address, but we do need to access the main website for
downloads/patches to their software.
Is there a general way to block this service all together?
|
|
|
| Back to top |
|
|
Steven L Umbach
Guest
|
| Posted:
Fri Dec 17, 2004 12:49 pm Post subject:
Re: Block HTTP remote access |
|
|
Blocking access via fiewall or port filtering is a good strategy as long as
you never need https access to them. I was suggesting trying track down if
a certain process/executeable/service was being used for that remote access
and then assign "deny" ntfs permissions to that executeable. --- Steve
"warren bailey" <wbaileyIHATESPAM@NOSPAMgony.net> wrote in message
news:10s4boooco5kla6@corp.supernews.com...
| Quote: | I'm not sure if this is what you're talking about. But one thing that I've
been able to do is restrict ports from certain machines.. Set on your
firewall a deny from certain ip address's on 443 (SSL) and it should be
fine.. Another thing would be to just deny ALL https traffic FROM the
software maker
word
//warren
"Steven L Umbach" <n9rou@nospam-comcast.net> wrote in message
news:##99A3I4EHA.3820@TK2MSFTNGP11.phx.gbl...
You might try to track down the process that they use to do such on a
computer and track it back to the executable used and set deny
permissions
to that executable or disable the service if it is installed as a
service.
Task manager or free tools from SysInternals such as Process Explorer,
TCPView, and Autoruns may be able to help you track this down. Other
options
may be to block the URL at your firewall [if it is capable of that] or
call
then and tell them to give YOU a new security code for that option that
would deny the other users access since they do not know the security
ode. --- Steve
"Sherra Duran" <sistergirl0816@msn.com> wrote in message
news:O4NGmcI4EHA.2012@TK2MSFTNGP15.phx.gbl...
I am a tech director at a local school district. We are using software
for
our lunches etc. The software company has an option of offering online
assistance through their software, using HTTP. I didn't realize this
option
was available until one of my Staff let me know that this software
company
was assisting her with troubleshooting the software. She would select
the
utilities-->technical assistance option and it would direct her to an
https
webpage and she would input a security code and give the software tech
full
control of her PC.
I am addressing the lack of communication between this staff person and
the
tech department.
I have told the company to NEVER use this option with our school. I
have
instructed the users to NEVER use this option.
How can I block the https service that offer remote assistance?
I have tried to block the individual IP address with no luck. They use
redirects that run off of their main IP address. For now, I have block
the
main IP address, but we do need to access the main website for
downloads/patches to their software.
Is there a general way to block this service all together?
|
|
|
| Back to top |
|
|
|
|
|
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in