> -----Original Message-----
> From: Tracy [mailto:[EMAIL PROTECTED]
> Sent: venerdi 8 agosto 2003 21.47
> To: [EMAIL PROTECTED]
> Subject: RE: [WinPcap-users] Preventing the install of rpcapd.exe?
>
>
> I do not feel that there is much of a security risk,
> but our clients may be concerned by software, which
> provides remote captures. Does the WinPcap 3.0
> installer also install the rpcapd service on Windows
> 9x/ME?
No.
Although rpcapd will run on these systems, it is not installed.
By the way, rpcapd can run only in console mode in 9x/ME; it does not run as
a service.
Cheers,
fulvio
> If so, is the method of removal similar to
> that described in my original email (i.e. remove the
> service and then the corresponding executable file)?
>
> --- Fulvio Risso <[EMAIL PROTECTED]> wrote:
> > Hi.
> >
> > > -----Original Message-----
> > > From: Tracy [mailto:[EMAIL PROTECTED]
> > > Sent: venerdi 8 agosto 2003 0.05
> > > To: [EMAIL PROTECTED]
> > > Subject: [WinPcap-users] Preventing the install of
> > rpcapd.exe?
> > >
> > >
> > > The WinPcap 3.0 installer installs a service,
> > "Remote
> > > Packet Capture Protocol v.0 (experimental)", which
> > > executes the file rpcapd.exe. The purpose of this
> > > service is to provide remote capture. However,
> > our
> > > clients are concerned with potential security
> > issues
> > > involved with having such a service present on
> > their
> > > systems (even if inactive by default). Is there a
> > way
> > > to customize the WinPcap installer (e.g. using a
> > > script) to prevent the install of this service and
> > > corresponding executable?
> >
> > We should do that.
> > The problem is the time (which is always a scarse
> > resource).
> >
> >
> > > If not, may our installer
> > > simply remove the service entry from the Windows
> > > services panel and then delete the file
> > rpcapd.exe?
> >
> > Yes, of course.
> >
> >
> > > If our installer does remove the remote capture
> > > capability from WinPcap as described, will WinPcap
> > > still function correctly?
> >
> > Absolutely yes.
> >
> > However... why an inactive service is seen as a
> > potential security risk?
> >
> > Cheers,
> >
> > fulvio
> >
> >
> >
> ==================================================================
> > This is the WinPcap users list. It is archived at
> >
> >
> http://www.mail-archive.com/[EMAIL PROTECTED]/
> >
> > To unsubscribe use
> > mailto:
> >
> [EMAIL PROTECTED]
> >
> ==================================================================
>
>
> __________________________________
> Do you Yahoo!?
> The New Yahoo! Search - Faster. Easier. Bingo.
> http://search.yahoo.com
>
>
> ==================================================================
> This is the WinPcap users list. It is archived at
> http://www.mail-archive.com/[EMAIL PROTECTED]/
>
> To unsubscribe use
> mailto: [EMAIL PROTECTED]
> ==================================================================
==================================================================
This is the WinPcap users list. It is archived at
http://www.mail-archive.com/[EMAIL PROTECTED]/
To unsubscribe use
mailto: [EMAIL PROTECTED]
==================================================================
