2 attachments
13_0.png
Update to enable TLS 1.1 and TLS 1.2 as default secure protocols in WinHTTP in Windows - Microsoft Support
Overview When SEP first starts, it attempts to connect to SEPM without using a proxy. Regardless of the proxy setting the client always attempt to connect without a proxy first. If the client is unable to connect to any servers in its management server list, it will rotate its proxy settings...
3 Comments - I would have preferred it to use the winhttp local machine Proxy settings The SYSTEM account is an "user account" and should not be preferred over HKLM.* All our other systems are using WinHTTP local machine Proxy settings are not giving us problems Also see https://www-secure.symantec.com/connect/ideas/sepm-policy-configure-client-proxy-details "... as this does not allow for firewall/proxy exceptions ..."
MS09-013 Vulnerabilities in Windows HTTP services could allow Remote Code Execution (960803) CVE-2009-0086 ( BID 34435 ) Microsoft WinHTTP Integer Underflow Memory Corruption Remote Code Execution Vulnerability (MS Rating: Critical / Symantec Urgency Rating 8.3/10) A remote code execution vulnerability affects Windows HTTP services (WinHTTP API) due to how it handles certain parameters returned from a remote Web server
Vulnerabilities out of the box and how to fix them. (NSCap Share, INVCAD.nse, Client Policies\Altiris.Domain.XML) Gripes and Complaints of unfixable potential(unconfirmed) low level/ high level vulnerabilities with NS. (EvtQueue Shares) Altiris reply and Suggested Fixes ...
See matching library entry files - Print Spooler Disable Remote Access Auto Connect...
4 Comments - no search term matches found in comments.
This paper discusses IIS 6.0 and Windows 2003 SP2 settings that can be applied to assist with the hardening of the environment.
SMPandWorkflow_OSandIISHardening_Whitepaper_05182010.pdf
7 attachments
See matching library entry files - Received cancellation request at 2012/06/15 18:2...
Many of you have asked for the best practices for securing the platform. Attached is a technical white paper that discusses this in details. AS.
20932026_GA_TB_HowToSecurelyConfigureSMP_1209.pdf
2 Comments - no search term matches found in comments.