Now Available:

line

Realtime Communities

line

Newsletter

Email Address:

line

RSS

  • XML
  • iTUNES
line

Ask the Expert

Have a question for our resident expert? .

« Hacking WSUS #1 of 5 -- Created Installed Patches Report | Main | Hacking WSUS #2 of 5 -- Create Missing Patches Report »

Another Off-Cycle Microsoft Patch Coming -- This Time its DNS...

According to the Dark Reading web site:

Microsoft's Windows 2000 Server Service Pack 4, Windows Server 2003 Service Pack 1, and Microsoft 2003 Service Pack 2 are all at risk of the attack. And according to published reports today, the bug also is found in Longhorn Server.

Microsoft says it may issue another off-cycle patch for this one, but in the meantime users should disable remote management over RPC for the DNS server using a registry-key setting; block inbound (and unsolicited) traffic on ports 1024-5000 with IPSec or a firewall; and turn on the advanced TCP/IP filtering options on the server.

The catch: Each of these options could "break" some tools.

The full article is available at: http://www.darkreading.com/document.asp?doc_id=121776&f_src=darkreading_section_296

Tags:  

Posted by Greg Shields on April 16, 2007 3:48 PM |

TrackBack

TrackBack URL for this entry:
https://realtime-windowsserver.com/type/mt-tb.cgi/94

Search

line

Most Active Posts

line

Library Resources

line
line

Recent Posts

  • Memorial Day! Take it Easy Today...
  • Microsoft SoftGrid Sequencing Best Practices
  • Holy timing, batman! Microsoft Press Releases Windows Server 2008 Book
  • CBT Nuggets "Introduction to VBScript" Series to be Released Soon
  • Free CBT Nuggets Citrix and SMS Videos
  • WSUS 3.0 Auto-Update Excludes SBS Servers
  • Sarbanes-Oxley Revision under Review -- This may be a Good Thing
  • WSUS 3.0 update posted to WSUS today
  • Citrix Access Suite 4.5 Video Demos Available
  • Arguably the Least Specific or the Most Necessary Terminal Server Hotfix Ever
line

Categories

line

Greg Shields' Bio:

Greg Shields is a Principal Consultant with 3t Systems in Denver, Colorado. With more than 10 years of experience in information technology, Greg has developed extensive experience in systems administration, engineering, and architecture specializing in Microsoft, Citrix, and VMware technologies. Greg is a Contributing Editor for both Redmond Magazine and Microsoft Certified Professional Magazine, authoring two regular columns along with numerous feature articles, webcasts, and white papers. He is known for his abilities to relate highly technical concepts with a drive towards fulfilling business needs. Greg is also a highly sought-after instructor and speaker, teaching system and network troubleshooting curriculum for TechMentor Events, a twice-annual IT conference, and producing computer-based training curriculum for CBT Nuggets on numerous topics. Greg is a triple Microsoft Certified Systems Engineer (MCSE) with security specialization and a Certified Citrix Enterprise Administrator (CCEA).