Hi guys,
I would create a Windows Firewall inbound rule to allow connection on port 80 only when renewal process take place, so when Http Challenge Server will start; I can see that port 80 owner process is System with command:
Get-Process -Id (Get-NetTCPConnection -LocalPort 80).OwningProcess
Which executable do I need to configure in Windows Firewall Rule?
Thanks
Hi, if you don’t have anything listening on port 80 you don’t really have to block it at the firewall but yes, the temporary listener process will be running as C:\Program Files\CertifyTheWeb\Certify.exe and is currently spawned as the same user the background service runs as.
Hi @webprofusion,
thanks for your reply.
Using http.sys driver the listener process is not C:\Program Files\CertifyTheWeb\Certify.exe for the Windows Firewall point of view.
I solved adding this rule:
netsh advfirewall firewall add rule name="certify" dir=in action=allow protocol="TCP" localport="80" program="System" enable=yes remoteip=any profile=any
Interesting! Thanks, I haven’t tried that before.