Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Vuln-Dev
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

MS05-042 Security Update Problems

from [Andrew McCullough] Network Security [Permanent Link]
Subject: MS05-042 Security Update Problems
Date: Tue, 30 Aug 2005 18:00:22 +0100 
Hello All,

Has anyone else experienced problems after applying the Kerberos
Security Update? We're running 2k3 server (Enterprise) as a DC with
standard application set. Following the application of this patch we
started seeing Kerberos and KDC issues. Once the patch had been applied
we started seeing KDC (event ID 7) errors - "The Security Account
Manager failed a KDC request in an unexpected way" and this error
repeated for each DC on our domain.

Following this, we started seeing Kerberos errors - Kerberos (event ID
4) - The Kerberos client received a KRB_AP_ERR_MODIFIED error from the
server computername. The target name was cifs/anothercomputer. This
indicates that the password used to encrypt the Kerberos service ticket
is different than that on the target server.

This error had not appeared previously and no changes had been made to
the mentioned computer or the target.

We also experienced issues with a fileserver local to this DC being
unable to print - presumably due to being unable to authenticate printer
users. 

Having removed the Kerberos patch from the problem DC all appears to
have returned to normal, however we'd like to know if anyone else has
had this problem or if there are any ways to resolve the issues we had?

Thanks in advance,

Andy McCullough
Information Technology & Telecommunications
WorkDirections UK
Email: amccullough@workdirections.co.uk


Andrew McCullough
Information Technology & Telecommunications
WorkDirections UK
Email: amccullough@workdirections.co.uk
 


**********************************************************************
The information, including attachments, contained in this e-mail is 
confidential and may be subject to legal professional privilege. It is intended 
solely for the addressee. If you receive this e-mail by mistake please promptly 
inform us by reply e-mail and then delete the e-mail and destroy any printed 
copy. You must not disclose or use in any way the information in the e-mail. 



There is no warranty that this email is error or virus free. It may be a 
private communication, and if so, does not represent the views of the Ingeus 
Group of Companies or its management. If it is a private communication, care 
should be taken in opening it to ensure that undue offence is not given.

**********************************************************************
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • MS05-042 Security Update Problems, Andrew McCullough <=
Previous by Date:  Re: Vulnerability in Helpdesk software Hesk 0.92, not
Next by Date:  Re: Vulnerability in Helpdesk software Hesk 0.92, Thomas Krüger
Previous by Thread:  Fetchmail 6.2.5 exploit for Bugtraq ID: 14349, bannedit
Next by Thread:  [Full-disclosure] [USN-173-4] PCRE vulnerabilities, Martin Pitt
Indexes:  [Date] [Thread] [Top] [All Lists]