12.10. Securing DCOM

The Distributed Component Object Model (DCOM) is an object-oriented approach to making Remote Procedure Calls (RPCs). Thus, DCOM is sometimes referred to as Object RPC. DCOM is designed to replace Microsoft's original specification Object Linking and Embedding (OLE) remote automation. The benefit of DCOM over OLE is that DCOM is designed to support multiple flavors of operating systems.

A DCOM client initially connects to the DCOM server using a fixed port number of UDP 135 (NT RPC). The DCOM server then dynamically assigns the ports it will use. This makes DCOM applications such as NetMeeting and Exchange extremely difficult to support if client traffic must pass through a firewall. Unlike most applications, which require ...

Get Mastering™ Network Security, Second Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.