Bug in server 2003 DNS policy setting

• Previous message: Arley Barros Leal: "Re: MS05-019 Breaks VPN"
• Next in thread: Mark J. Lucas: "Error installing Exchange Server 2003 on Windows Server 2003 SP 1"
• Reply: Mark J. Lucas: "Error installing Exchange Server 2003 on Windows Server 2003 SP 1"
• Reply: James D. Stallard: "Re: Bug in server 2003 DNS policy setting"
• Reply: David Adner: "Re: Bug in server 2003 DNS policy setting"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Mon, 2 May 2005 18:25:53 +0200
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

Enviroment:

Server: Windows server 2003 Domain.SP1
Clients: XP Pro SP2

Symptoms:

In group policy you can set up a setting under computer configuration >
Administrative templates > Network > DNS client > DNS servers so that
the computers the policy is applied to will be configured with the
specified dns servers. When the policy is applied, you run ipconfig /all
on the client and you will be displayed the original ( before the policy
was applied ) DNS configuration however when you run nslookup the DNS
server used is the one defined in the policy. Therefore the DNS
displayed in the configuration is different from the one used for name
resolution.

------------------------------------------------------------------------

--
                      Tommaso Calosi
                      System Engineer
                          SysMic SRL
------------------------------------------------------------------------
--
--
NTBugtraq Editor's Note:
Most viruses these days use spoofed email addresses. As such, using an Anti-Virus product which automatically notifies the perceived sender of a message it believes is infected may well cause more harm than good. Someone who did not actually send you a virus may receive the notification and scramble their support staff to find an infection which never existed in the first place. Suggest such notifications be disabled by whomever is responsible for your AV, or at least that the idea is considered.
--

• Previous message: Arley Barros Leal: "Re: MS05-019 Breaks VPN"
• Next in thread: Mark J. Lucas: "Error installing Exchange Server 2003 on Windows Server 2003 SP 1"
• Reply: Mark J. Lucas: "Error installing Exchange Server 2003 on Windows Server 2003 SP 1"
• Reply: James D. Stallard: "Re: Bug in server 2003 DNS policy setting"
• Reply: David Adner: "Re: Bug in server 2003 DNS policy setting"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages DNS vulnerabilities in shared host environments ... A potential vulnerability in the use of DNS exists in some shared ... Note that cPanel's default configuration does limit this ... however many shared hosting providers alter the ... for that domain is created on the shared hosts DNS server. ... (Bugtraq) Re: 70-294 next week ... to another DNS ... server for at least ... client, which then ... configuration on the client. ... (microsoft.public.cert.exam.mcse) Re: Not able to create user/ group accounts in Exchange server ... configuration in offline. ... Installed win2k on new hardware server along with ... DNS and executed dcpromo and then moved roles from ... The File Replication Service is having trouble enabling ... (microsoft.public.exchange2000.active.directory.integration) Re: W2K3 Server Logon Script Question... ... Also i think because of the ISA you should post also about the configuration from internal domain to internet over ISA in: ... in the DNS server list of the NIC from server 2. ... (microsoft.public.win2000.networking) Re: DNS Server on SBS 2003 Stops working ... Can you confirm your SBS configuration and version to ... DNS and two set the DNS service "recovery" to restart the service on ... Server info ... (microsoft.public.windows.server.sbs)