XFOR: MBS: Banned Chat Users Regain Access w/ Authentication (166722)


The information in this article applies to:

  • Microsoft Commercial Internet System 1.0
This article was previously published under Q166722

SYMPTOMS

Membership Broker System (MBS) users who have been banned from an Internet Chat Server (ICS) Service Pack 1 (SP1) chat can end their session, start a new session and, regain entry to the chat from which they have been banned. The banned users regain entry by adding a space after their user name when authenticating.

CAUSE

When the authentication request comes in, the user name is stored in the SSPI filter as received from the client. Although the Broker service will strip off any spaces prior to submitting the name to the back end, allowing normal authentication, external calls for this piece of data take it from the filter area (as received).

STATUS

Microsoft has confirmed this to be a problem in Microsoft Commercial Internet System version 1.0. This problem has been corrected in the latest U.S. Service Pack for Microsoft Commercial Internet System version 1.0. For information on obtaining the Service Pack, query on the following article in the Microsoft Knowledge Base:

183062 MCIS 1.0 Service Packs 1 and 2 Information

MORE INFORMATION

All variants of Broker code (MCIS 1.0 and MCIS SP1) and authentication (DPA and MSN) with an MCIS 1.0 ICS do not have this problem. All variants of Broker code (MCIS 1.0 and MCIS SP1) and authentication (DPA and MSN) with an MCIS SP1 version of ICS do have this problem.
Modification Type:MajorLast Reviewed:11/7/2003
Keywords:kbbug kbfix KB166722
©2003 Microsoft Corporation. All rights reserved.