Re: Q313450 and Q319733 breaks Microsoft Site Server 3.0 membership authentication (additional information)
From: Tod Beardsley (todb@PLANB-SECURITY.NET)Date: 04/12/02
- Previous message: Ken Stigler: "ISA Server Authentication issues in a mixed Windows/Macintosh environment"
- In reply to: 3APA3A: "Q313450 and Q319733 breaks Microsoft Site Server 3.0 membership authentication (additional information)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 12 Apr 2002 10:01:55 -0500 From: Tod Beardsley <todb@PLANB-SECURITY.NET> To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
3APA3A (Thursday, April 11, 2002, 5:09 AM) wrote:
> After Q313450 installed Membership authentication via LDAP supported by
> Microsoft Site Server 3.0 doesn't work.
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q317815
Q317815 appears to fix the Site Server 3.0 Personalization and
Membership authentication after installing Q319733. Short story: get a
new DLL for your Site Server.
Contrary to the article's recommendation, I have not seen a need to
boot in Safe Mode to apply the fix.
I cannot say if this work around reintroduces exposures. However,
since you're not replacing IIS-related files, you /should/ retain all
the protections that the fixes for MS02-018 give you.
YMMV.
-- Tod Beardsley, Security Analyst "It's ok to yell fire in a crowded theater if the theater is actually on fire."
- Previous message: Ken Stigler: "ISA Server Authentication issues in a mixed Windows/Macintosh environment"
- In reply to: 3APA3A: "Q313450 and Q319733 breaks Microsoft Site Server 3.0 membership authentication (additional information)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
