You reported "what", "when"? - the issue that was regressed and subsequently fixed in -034 this year? or - the issue that -034 (821724, really) brought about? The fact is, if you were using Basic auth for web proxy clients and installed AND enabled this fix when it was originally issued last year, you'd have seen this behavior then. If you've seen the new failure and haven't called PSS (free call), then you're not helping. -----Original Message----- From: Han Valk [mailto:Han.Valk@xxxxxxxxxxxxxxx] Sent: Saturday, June 18, 2005 10:51 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server http://www.ISAserver.org Aargh I reported the vulnerability back in January. Even than I only re-discovered it since it should have been fixed long time before that. Who's in charge of quality control of ISA patches :((( ???? Han. > -----Original Message----- > From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] > Sent: Thursday, June 16, 2005 02:24 > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server > > http://www.ISAserver.org > > I'm (nearly) happy to report that I was not involved in this test > pass... > I was tasked elsewhere, like KBs, 'n stuff... > > ------------------------------------------------------- > Jim Harrison > MCP(NT4, W2K), A+, Network+, PCG > http://isaserver.org/Jim_Harrison/ > http://isatools.org > Read the help / books / articles! > ------------------------------------------------------- > > > -----Original Message----- > From: Steve Moffat [mailto:steve@xxxxxxxxxx] > Sent: Wednesday, June 15, 2005 16:32 > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server > > http://www.ISAserver.org > > Didn't you test it??? > > :) > > -----Original Message----- > From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] > Sent: Wednesday, June 15, 2005 6:13 PM > To: ISA Mailing List > Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server > > http://www.ISAserver.org > > Yeh, we heard (#@!%). > > Add this registry setting and restart the web proxy service > to roll back > that "fix": > HKLM\System\CurrentControlSet\Services\W3Proxy\Parameters\Allo wAskBasicA > uthOverNonSecureConnection, REG_DWORD: 0x1 > > ------------------------------------------------------- > Jim Harrison > MCP(NT4, W2K), A+, Network+, PCG > http://isaserver.org/Jim_Harrison/ > http://isatools.org > Read the help / books / articles! > ------------------------------------------------------- > > > -----Original Message----- > From: Stefaan Pouseele [mailto:Stefaan.Pouseele@xxxxxxx] > Sent: Wednesday, June 15, 2005 13:50 > To: [ISAserver.org Discussion List] > Subject: [isalist] MS05-034 Update for ISA 2000 broke my server > > http://www.ISAserver.org > > Hey guys, > > Check out > http://forums.isaserver.org/ultimatebb.cgi?ubb=get_topic;f=3;t =004784 ! > > The latest ISA 2000 update seems to create some authenticiaction > troubles on the outgoing Web Proxy listener. > > Thanks, > Stefaan > MVP ISA Server > http://www.isaserver.org/Stefaan_Pouseele/ > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com Leading > Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org Windows > Security Resource Site: http://www.windowsecurity.com/ > Network Security > Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: > http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > jim@xxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > All mail to and from this domain is GFI-scanned. > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com Leading > Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org Windows > Security Resource Site: http://www.windowsecurity.com/ > Network Security > Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: > http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > isalist@xxxxxxxxxx To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > The correct technical term for haggis stalking is "havering". > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion List as: > jim@xxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > > All mail to and from this domain is GFI-scanned. > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 Exchange Server Resource Site: http://www.msexchange.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion > List as: han.valk@xxxxxxxxxxxxxxx > To unsubscribe visit > http://www.webelists.com/cgi/lyris.pl?enter=isalist > Report abuse to listadmin@xxxxxxxxxxxxx > ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned.