[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

https no longer working - post windows update.

Posted on 2004-04-28
10
Medium Priority
?
160 Views
Last Modified: 2010-04-13
L&G,

This past weekend, I applied the following MS security fixes:

Successful 25 April 2004 Security Update for Windows 2000 (KB835732) Automatic update
Successful 25 April 2004 Security Update for Windows 2000 (KB828741) Automatic update
Successful 25 April 2004 Security Update for Windows 2000 (KB837001) Automatic update
Successful 24 April 2004 Critical Update for Internet Explorer 6 Service Pack 1 (KB831167) Automatic update
Successful 24 April 2004 Cumulative Security Update for Outlook Express 6 Service Pack 1 (KB837009) Automatic update

It would appear that having done this, our ability to use owa on port 443 (https://) has vanished.

now, when we type the usual url, we get the usual "This page cannot be displayed" in IE

I've tried it locally, with the same results.

The only thing I can see is this in the event viewer:

Event Type:      Error
Event Source:      Schannel
Event Category:      None
Event ID:      36871
Date:            28/04/2004
Time:            08:02:24
User:            N/A
Computer:      MAIN-SERVER
Description:
A fatal error occurred while creating an SSL server credential.

I cant find any information on this error, and it's causing me alot of trouble, as we have alot of managers away at the moment, unable to view their mail because the mean IT manager wont open port 80 for them.

Please help !

Note: We signed our own certificate; It's in date, no problems there.

Thanks in advance

Steve
0
Comment
Question by:shandscomb
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
  • 2
  • +2
10 Comments
 
LVL 86

Expert Comment

by:jkr
ID: 10939704
This is caused by the installation of http://www.microsoft.com/germany/ms/technetservicedesk/bulletin/bulletinMS04-011.htm - see http://support.microsoft.com/default.aspx?scid=kb;en-us;261328 ("Cipher Strength Appears as 0-Bit in Internet Explorer") that describes how to fix that problem.
0
 
LVL 1

Author Comment

by:shandscomb
ID: 10939936
That first url is in german, which I dont speak / read - I will try to find the english version.

From looking at the second url, it seems to imply that it's a client error.;

To clarify, it's a windows 2000 Server that im using for Outlook Web Access via https.

Any client in the outside world is having this problem, therefore (IMO) meaning that its something server side ?

I'm sorry if I've misinterpreted your reply.

0
 
LVL 86

Expert Comment

by:jkr
ID: 10940016
>>That first url is in german, which I dont speak

Ooops, sorry, the english version is at http://www.microsoft.com/technet/security/bulletin/MS04-011.mspx
0
Tech or Treat! - Giveaway

Submit an article about your scariest tech experience—and the solution—and you’ll be automatically entered to win one of 4 fantastic tech gadgets.

 
LVL 7

Expert Comment

by:msice
ID: 10940252
Have you confirmed that the OWA is still configured to use SSL in IIS snap in.
0
 
LVL 7

Expert Comment

by:shahrial
ID: 10940306
See the cause and resolution...
http://support.microsoft.com/default.aspx?kbid=831167

Hope this helps... ;-)
0
 
LVL 1

Author Comment

by:shandscomb
ID: 11035292
It was a virus / trojan !

I used TCPView to find the program listening (ntoskrnl.exe of 704KB) and a google search gave me:

http://rgautier.tripod.com/2004_04_25_blogchive.html

And this is the excerpt:

"Found a virus (or a trojan) this morning on two web servers that had been put on servers over the weekend. This virus/trojan disabled the port 443 (SSL) web sites on these two boxes. It was listening on port 443 and another 1489 or somesuch port. I found it using fport.exe to be a file called ntoskrnl.exe. It had installed itself as a service called MS Windows Update, running as SYSTEM. So, I killed the process and moved off the file. Instead of 1660 KB, the file was 704KB, and it was in a different directory c:\winnt\system32\config. Once the service was disabled, IIS had no problem taking the port back.
These two servers had not had the patches that came from Microsoft last week (week before?), and I'm supposing that that was the entry point for this particular bug. I'm still looking through the bug to see what I can see, but it's an executable, so full analysis will be tough, and I probably don't have the time for it."

Problem solved.

Steve
0
 
LVL 1

Accepted Solution

by:
Computer101 earned 0 total points
ID: 12452652
PAQed, with points refunded (500)

Computer101
E-E Admin
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

NTFS file system has been developed by Microsoft that is widely used by Windows NT operating system and its advanced versions. It is the mostly used over FAT file system as it provides superior features like reliability, security, storage, efficienc…
Here in this article, you will get a step by step guidance on how to restore an Exchange database to a recovery database. Get a brief on Recovery Database and how it can be used to restore Exchange database in this section!
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question