RE: MS05-034 Update for ISA 2000 broke my server

• From: "Jim Harrison" <Jim@xxxxxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Sat, 18 Jun 2005 16:47:56 -0700

You reported "what", "when"?
- the issue that was regressed and subsequently fixed in -034 this year?
or
- the issue that -034 (821724, really) brought about?

The fact is, if you were using Basic auth for web proxy clients and
installed AND enabled this fix when it was originally issued last year,
you'd have seen this behavior then.

If you've seen the new failure and haven't called PSS (free call), then
you're not helping.

-----Original Message-----
From: Han Valk [mailto:Han.Valk@xxxxxxxxxxxxxxx] 
Sent: Saturday, June 18, 2005 10:51 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server

http://www.ISAserver.org

Aargh I reported the vulnerability back in January. Even than I only
re-discovered it since it should have been fixed long time before that.
Who's
in charge of quality control of ISA patches :((( ????

Han.

> -----Original Message-----
> From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] 
> Sent: Thursday, June 16, 2005 02:24
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server
> 
> http://www.ISAserver.org
> 
> I'm (nearly) happy to report that I was not involved in this test
> pass...
> I was tasked elsewhere, like KBs, 'n stuff...
> 
> -------------------------------------------------------
>    Jim Harrison
>    MCP(NT4, W2K), A+, Network+, PCG
>    http://isaserver.org/Jim_Harrison/
>    http://isatools.org
>    Read the help / books / articles!
> -------------------------------------------------------
>  
> 
> -----Original Message-----
> From: Steve Moffat [mailto:steve@xxxxxxxxxx] 
> Sent: Wednesday, June 15, 2005 16:32
> To: [ISAserver.org Discussion List]
> Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server
> 
> http://www.ISAserver.org
> 
> Didn't you test it???
> 
> :) 
> 
> -----Original Message-----
> From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] 
> Sent: Wednesday, June 15, 2005 6:13 PM
> To: ISA Mailing List
> Subject: [isalist] RE: MS05-034 Update for ISA 2000 broke my server
> 
> http://www.ISAserver.org
> 
> Yeh, we heard (#@!%).
> 
> Add this registry setting and restart the web proxy service 
> to roll back
> that "fix":
> HKLM\System\CurrentControlSet\Services\W3Proxy\Parameters\Allo
wAskBasicA
> uthOverNonSecureConnection, REG_DWORD: 0x1
> 
> -------------------------------------------------------
>    Jim Harrison
>    MCP(NT4, W2K), A+, Network+, PCG
>    http://isaserver.org/Jim_Harrison/
>    http://isatools.org
>    Read the help / books / articles!
> -------------------------------------------------------
>  
> 
> -----Original Message-----
> From: Stefaan Pouseele [mailto:Stefaan.Pouseele@xxxxxxx]
> Sent: Wednesday, June 15, 2005 13:50
> To: [ISAserver.org Discussion List]
> Subject: [isalist] MS05-034 Update for ISA 2000 broke my server
> 
> http://www.ISAserver.org
> 
> Hey guys, 
> 
> Check out
> http://forums.isaserver.org/ultimatebb.cgi?ubb=get_topic;f=3;t
=004784 !
> 
> The latest ISA 2000 update seems to create some authenticiaction
> troubles on the outgoing Web Proxy listener. 
> 
> Thanks,
> Stefaan
> MVP ISA Server
> http://www.isaserver.org/Stefaan_Pouseele/
>  
> 
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com Leading
> Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
> Security Resource Site: http://www.windowsecurity.com/ 
> Network Security
> Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
> http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> jim@xxxxxxxxxxxx
> To unsubscribe visit 
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
> 
> All mail to and from this domain is GFI-scanned.
> 
> 
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com Leading
> Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org Windows
> Security Resource Site: http://www.windowsecurity.com/ 
> Network Security
> Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
> http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> isalist@xxxxxxxxxx To unsubscribe visit
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
> 
> The correct technical term for haggis stalking is "havering". 
> 
> 
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com
> Leading Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org
> Windows Security Resource Site: http://www.windowsecurity.com/
> Network Security Library: http://www.secinf.net/
> Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion List as:
> jim@xxxxxxxxxxxx
> To unsubscribe visit 
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
> 
> All mail to and from this domain is GFI-scanned.
> 
> 
> ------------------------------------------------------
> List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
> ------------------------------------------------------
> Other Internet Software Marketing Sites:
> World of Windows Networking: http://www.windowsnetworking.com
> Leading Network Software Directory: http://www.serverfiles.com
> No.1 Exchange Server Resource Site: http://www.msexchange.org
> Windows Security Resource Site: http://www.windowsecurity.com/
> Network Security Library: http://www.secinf.net/
> Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
> ------------------------------------------------------
> You are currently subscribed to this ISAserver.org Discussion 
> List as: han.valk@xxxxxxxxxxxxxxx
> To unsubscribe visit 
> http://www.webelists.com/cgi/lyris.pl?enter=isalist
> Report abuse to listadmin@xxxxxxxxxxxxx
> 

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
World of Windows Networking: http://www.windowsnetworking.com
Leading Network Software Directory: http://www.serverfiles.com
No.1 Exchange Server Resource Site: http://www.msexchange.org
Windows Security Resource Site: http://www.windowsecurity.com/
Network Security Library: http://www.secinf.net/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

All mail to and from this domain is GFI-scanned.

Other related posts:

• » MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server
• » RE: MS05-034 Update for ISA 2000 broke my server

1. Home
2. isalist
3. Archive
4. 06-2005

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---