Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Querying AD from the internet

Status
Not open for further replies.
GVN

GVN

MIS
Dec 2, 2005
238
US
Is it possible to query someone's internal Active Directory on their network from the internet? If so, how can you block it or lock it down from being "open"?

The reason that I ask is because we have been receiving spam on very new and obsure e-mail addresses that were just created. This got me wondering if a query or lookup were possible from an outside source. Are there any tools the exist to check ones config to see if you are exposed? Thanks.

GVN
 
Sort by date Sort by votes
I think it's more likely that you have always been receiving these e-mails, there was just never a mailbox with that e-mail address to receive them. We get thousands of junk messages every day, most of which are addressed to people that simply don't exist... yet.


Carlsberg don't run I.T departments, but if they did they'd probably be more fun.
 
Upvote 0 Downvote
But is it possible to query someone's internal Active Directory on their network from the internet? If so, I want to block it from being accessible, because their other other risks if it is besides just getting spam... Does AD just use LDAP to do it, or other ports as well?
 
Upvote 0 Downvote
You'd have to be domain-authenticated in order to query the directory. If that was the case, you'd have a lot more to worry about than spam e-mail. Really nothing to worry about; however, if you do still have concerns then how is your network gateway configured?

I assume (<-- a mistake I'm sure) that you've probably got a router/modem gateway configured to use NAT, with port forwarding to the severs hosting services? I assume you've not got the domain controllers on a DMZ or something. /wink


Carlsberg don't run I.T departments, but if they did they'd probably be more fun.
 
Upvote 0 Downvote
Yes, I just looked at the firewall and everything looks locked down. Everything is behind the firewall and port-forwarded, it's just me being paranoid I guess... Thanks!
 
Upvote 0 Downvote
It's always better to be safe, than sorry. Especially when it comes to security!


Carlsberg don't run I.T departments, but if they did they'd probably be more fun.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

H
  • Question
Call Pilot 100 - # of times the phone rings before answering machine picks up
Replies
0
Views
611
Huron Oaks
H
K
  • Locked
  • Question
PABX SL1000 to add Ext Operator
Replies
0
Views
434
kennychin
K
T
  • Locked
  • Solved
Not able to log into my previous account, and there's no "Forget Password"
Replies
15
Views
1K
Chris Miller
Chris Miller
puzzledinin
  • Locked
  • Question
Aloha Potential employee theft scheme
Replies
4
Views
610
SamBones
SamBones
nakbrooks
  • Locked
  • Question
Configuring NAT on SonicWall TZ210 to access ADSL router from LAN
Replies
0
Views
122
nakbrooks
nakbrooks

Part and Inventory Search

Sponsor

Back
Top