Re: solution: MS02-015 (Q319182) breaks intranet cookies

From: Pat Hennessy (path@HOPI.DTCC.EDU)
Date: 04/10/02

Previous message: Russ: "Re: FrontPage Extensions and Win2k Security Rollup Package 1/02"
In reply to: Strele Franz: "solution: MS02-015 (Q319182) breaks intranet cookies"
Next in thread: Russ: "Re: solution: MS02-015 (Q319182) breaks intranet cookies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Wed, 10 Apr 2002 14:08:30 -0400
From: Pat Hennessy <path@HOPI.DTCC.EDU>
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

The underscore character should not be used in dns names in the first
place.

From page one of RFC 952...

http://www.ietf.org/rfc/rfc0952.txt?number=952

<quote>
A "name" (Net, Host, Gateway, or Domain name) is a text string up
to 24 characters drawn from the alphabet (A-Z), digits (0-9), minus
sign (-), and period (.).
</quote>

For additional information about host names and numbers, see page twelve
of RFC 1123.

http://www.ietf.org/rfc/rfc1123.txt?number=1123

On Wed, 10 Apr 2002, Strele Franz wrote:

> Date: Wed, 10 Apr 2002 14:22:26 +0200
> From: Strele Franz <Franz.Strele@SYNERGIS.AT>
> To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
> Subject: solution: MS02-015 (Q319182) breaks intranet cookies
>
> hi russ,
>
> we got a lot of mails with the solution to our problem with cookies. thanks
> a lot to everyone!
>
> it seems that a server name with an underscore (like "my_server") is causing
> this kind of trouble...
>
> quoting Q312461 (ms01-55, which is included in q319182):
> "This patch requires that domains that use cookies MUST only have
> alpha-numeric characters (or '-' or '.') in the domain name. If they do not,
> cookies may not work properly."
>
> see Q312461 for details...
>
>
> we still get a lot of mails asking for a solution. so i thought it would be
> best to post this to ntbugtraq, maybe it helps someone...
>
>
> thanks,
> franz
>
>

--
><><><><><><><><><><><><><><><><><><><><><><><><><><><><
Pat Hennessy                    (path@hopi.dtcc.edu)
Computer Services - Systems Support
Delaware Technical and Community College
><><><><><><><><><><><><><><><><><><><><><><><><><><><><

Previous message: Russ: "Re: FrontPage Extensions and Win2k Security Rollup Package 1/02"
In reply to: Strele Franz: "solution: MS02-015 (Q319182) breaks intranet cookies"
Next in thread: Russ: "Re: solution: MS02-015 (Q319182) breaks intranet cookies"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: sygate and shields up
... Please first read RFC 792 and try to understand it. ... that a packet to this host cannot be routed (ICMP Destination ... you wanted to communicate with, you get a message: ... > your IP, and anything else your security settings allow, if it wants ...
(comp.security.firewalls)
Re: cross posts
... Obsoletes RFC: 802 ... is a successor to the existing 1822 Host Access Protocol. ... physical port locations to address each other. ... o Section 2.6 describes the new "1822L name server" in the IMP, ...
(sci.military.naval)
Re: ICMP redirects are baad mkay?
... The requirements list was gathered from RFC 1122, ... If a host has to behave robustly under ... >Who says that an ICMP Redirect cannot replace an ICMP Redirect? ...
(comp.security.firewalls)
Re: Underscore in IIS 6 Host Header definition
... supposed to follow RFC and not work with each other, ... Thanks for the ideas Seth. ... We won't use underscore going forward however, ... > An underscore is not valid in host names. ...
(microsoft.public.inetserver.iis)
Re: Agent 3.0 Released
... > RFC 1036 does ring a bell... ... >|where full_domain_name is the full name of the host at which the ...
(news.software.readers)