Re: ncacn_http/1.0

[cw <security () fidei co uk>]

On Thu, 7 Mar 2002 12:37:18 +0200, theGooo () hotmail com wrote:
> ncacn_http/1.0

http://www.google.com/search?q=%22ncacn_http/1.0%22&hl=en&start=0&sa=N

I did a google search on this string and got the following:
http://rr.sans.org/audit/scan_corp.php

"The ncacn_http protocol allows client and server applications to communicate across the Internet by using the 
Microsoft Internet Information Server (IIS) as a proxy. Because calls are tunneled through an established HTTP
port, they can cross most firewalls."

As its IIs I gave the MS site a search:

http://search.microsoft.com/default.asp?so=RECCNT&siteid=us&p=1&nq=NEW&qu=ncacn&IntlSearch=&boolean=ALL&ig=1&ig=3&ig=5&ig=7&ig=9&ig=2&ig=4&ig=6&ig=8&ig=10&i=00&i=02&i=04&i=06&i=08&i=01&i=03&i=05&i=07&i=09&btnsearch=Submit+query

This basically shows that ncacn is an RPC protocol, google searching for just ncacn gets us the full acronym:

Network Computing Architecture Connection-Oriented RPC Protocol
--
O- cw, security () fidei co uk on 07/03/2002


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management
and tracking system please see: http://aris.securityfocus.com