1. WSUS isn't delivering any ISA patches (yet). 2. All hotfix patches get very focused testing (regression testing is necessarily limited) - the major testing is reserved for service packs, where regression testing can be performed. 3. The original patch behavior was changed to be "secure by default" in that the new behavior is now the default behavior. 4. Comparatively few ISA folks actually use Basic auth for outbound traffic, so this wasn't part of the patch testing. You can't do it all in a finite amount of time. What's really interesting is that the folks that reported the original issue (and original regression) are not using Basic auth for outbound connections. They approved the private build of the patch before it was shipped as part of -034. -----Original Message----- From: Darryl Janetzki [mailto:darrylj@xxxxxxxxxxxxxxxx] Sent: Sunday, June 26, 2005 12:21 AM To: [ISAserver.org Discussion List] Subject: [isalist] RE: is the latest ISA2000 security update a dud? http://www.ISAserver.org Thanks. Microsoft have to improve on the quality of its patches. With WSUS doing all global patching it is imperative that they test and deliver confidence that the patches work properly... The first time. My 2 bobs worth Darryl Janetzki ________________________________ From: Stefaan Pouseele [mailto:stefaan.pouseele@xxxxxxx] Sent: Saturday, 25 June 2005 6:23 PM Subject: RE: is the latest ISA2000 security update a dud? Hi Darryl, check out http://www.isaserver.org/IsaNews/ISA2000_MS05-034.html. It's a know problem but no solution yet. HTH, Stefaan ________________________________ From: Darryl Janetzki [mailto:darrylj@xxxxxxxxxxxxxxxx] Sent: zaterdag 25 juni 2005 7:04 To: [ISAserver.org Discussion List] Subject: [isalist] is the latest ISA2000 security update a dud? http://www.ISAserver.org The web proxy service failed ... I have since removed it Darryl Janetzki ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: stefaan.pouseele@xxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: jim@xxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx All mail to and from this domain is GFI-scanned.