??? MS02-001: SID ???? ???? ??????????? ?? ???? ??????? Windows 2000

?????? ????????? ?????? ?????????
???? ???????: 289243 - ??? ???????? ???? ????? ????? ??? ???????.
????? ???? | ?? ????

?? ??? ??????

???????

????? Microsoft Windows NT ? Windows 2000 ????? ?????? ?? ????? ?????? ??????? (ACLs). ACLs ?? ????? ?????? ?????? (SID) ?????? ???? ?????? ?? ???????? ???? ??? ????? ??? ???? ?????? ???. ??? SIDs ???? ??? ????. SID ??????? ???????? ?? ???????? ?? ???? ????? ????? ??? SID ?????? ??? ????? ???? ???? ?????? ?? ??????. ??? ??? ACLs ??? ???? ??????? ??? ?????????? ?????????? ??????? ??? ?????? ??? ?????? ???? ?? ?? ????? ?????? ?????????? ????? ??? ???????. ????? ????? ?????? ?????? ??? ???????, Windows ????? ????? SIDs ?? ACL ??? ????? SIDs ????? ???????? ????? ???????? ?????? ??, ???? ?? ???? ?????? ?????? ???????.

??? ???? ??? ?????????? ?????? ?????? ??? ????, ??? ????? ???? SID ????? ????????? ? ????? ???????? SIDs ?????? ???? ???? ??????? ?? ???? ???? ????????. ??? ???? ?????? ????? SID ?????? ??????? ?? ?????? ????? (RID) ?????? ???????? RID ???????? ???????? ???????? ?? SIDs ?????? ?????? ???? ???? ????? ??? ????????? ??????. ??? ???? ???? ?????? ??????? ?????? Windows 2000? ???? ????? ????? ?? ??? ??? ???????? ??? ?? SIDs ?? ??? SIDHistory ?????? ?? ?????? ??? SIDs ?? ?????? ???????.

??? ??? ????????? ???? ???? ???????? ???????? ?? ???? ????? ?? ???? ???????? "? ??? ???????? ???????? ???. ??? ????? ????? ????? ??? ???????? ???????? ??? Windows NT ?? ????? ??? ???? ??????? Windows 2000 ?????? ???? ?????? ????????--???? ??? ?? ???? ????? Single Sign-On. ????? ?? ??? ?????? ???? ??? ? ???? ???? ?? ?????? ?????? ????? ???? ?????? ??????? ?? ??????? ?????????? (?? ????? ?????????) ???????? ???? ????????. ????? ????????, ???? ????????? ?? ?????? ?????? ????? ?????? ??????? ???? ??? ??????? ?? ??? ???? ???? ?????? ??????? ??. ???? ????? ????????? ???? ???? ???????? ??? ????? ??? ??????? ??????? ??? ?????? ???????? ?? ????? ???????? ??? ???? ????? ?????.

???? ???? ????? ??? ?????? ?????? ????? ?? ?? ?????? ??????? ?? ?????? ????? ?? ??? ???? SIDs ?????? ???????. ??? ???? ??? "?????? ??????" ?? ??????? ?????? ???????? ?? ?????? ???? ??? ????? ?? ???? ????? ???? ????????? ?????? ?????? ????? ????? ?????? ???????? ?????? ?????? ???????. ??? ?????? ????? ?????? SIDs ?? ?????? ??????? ?? ???? ?????, ?? ???? ???? ?????????? ?????? ?? ??? ??? ???? ????? ?? ?????? ?? ?????? ??? ?? ??? ?? ?????? "?????? ??????" ?????? ?????? ?????. ??? ????? ??????? ?????? ??? ?? ?????? ?????? "????? ??????" ??? ????? ????????? ?? ?????? ?????? ?????.

???? ??????? ????? ??? ??????? ??? ??????. ??? ????? ?????? ????? ???????? ?????? ?? ?????? ??????? ?? ? wherewithal ?????? ?????? ????? ???? ??????? ??? ??????? ??????? ?? ???? ????????. ???? Windows 2000 ???? ?????? SIDs ?????? ?? ?????? ??????? ???? SIDHistory. ??? ???? ???? ?? ????? ????? ?? ???? ???? ?????????--??? ?? ???? ??????--?????? SID ??? ??????? SIDHistory; ????? ?? ???? ?????? ????? ?????? ????? ?????? ?? ????? ???????? ???????? ??????? SIDHistory. ??? ?????? ??? ??????? ???????? ? ??? Microsoft ?????? ???? ???? SID ??????? ??? Windows NT 4.0 ? Windows 2000. ?? SID ??????? ? ????? ????? ????? ?????? ??????? ?? ???? ???? "quarantine" ???? ?????. ?? ????? ??? ?? ????? ?????? ??????? ?? ?????? ?????? ????? ??? ????? ???? SIDs ??? ???? ??? ?????? ??????? ?? ??? ?????? ??????? ???? ??? ?????? ?? ??? ??????. quarantining ????? ?? ?????? ?????? ????? ?? ??? ??? ???? ??? ????.

SID ????? ??? ?????? ??? Windows 2000. ???? ???? ???? ???????? ?? ?????? ????? ??? ???????? ????? ?? ???? ?????????? ?? ???????? ??? ?????? ????? ?? ?????? ???????? ?????? ??? ??????? ?? ???? quarantining. ???? ?????? ??? ?? ???? ???????? ???????? ???????? ????? ?? ??? ?? ???? ???????? ??????? ?????? ??? ??? ?????? ??????? ???? ????? ??? ?? ?????? ???????? ?? ??? ?? ???? ?????? ???????? ?? ?????? ?????? ??????.

????? ???? ??????? Windows 2000 ??? ??? ??????? ???? ??????? SID ?????? ???? "????? ??????" ??? ?????? ??????. ??????? ????? ?????? ??? ?? quarantine ???????? ?? ?????? ?????? ?????? ???. ??? ?? ??? ????? ????? ??? ?? ?????? ???? ???? ???? ????? ??? ?????? ???? ???? ?? ???????? ? ????? ??? ????? ?????? ?????? ????? ?????? SIDs ?? ?????? ??????? ??.

???? Microsoft ?? ?????? SID ??? ??????? ??? ???????? ?? ??? ?????? ???? ???? ???? ????? ????????? ?????? ????????? ?????? ?????? ??? ?? ??? ????? ???????? ?????? intra ??? ??? ?? ??????? ?? ???? ??? ????? ?? ??????? ???? ?? ???? ?? ????? ??? ??????? ????? ????????. ????? ??? ??????? ??? ????? ??????? ???????? ???? ????? ???? ?? ?????? ?? ????? ????? SID. ?? ?????? ?????? ???? ?????? ?? ???? ?????? ??????? ????? ??? ??? ?? ???? ??? ??? ??????? ?? ?????. ????? ??? Microsoft ????? ??? ???????? ??? ????????.

????

??? ??? ???????? ??? ?????? ??? Windows 2000 ???? ?????? ????????? 1 (SRP1). ?????? ??? ??????? ?????? ??? SRP1? ???? ??? ??? ??????? ????? ?????? ?? "????? ??????? ?? Microsoft:
311401Windows 2000 ???? ?????? ????????? 1 (SRP1) ? ????? 2002
??? ?? ???? ?????? ?????????? ?? ??? ??????? ???? ??????? ??????? ?? ????:
   Date         Time   Version        Size     File name
   -----------------------------------------------------------------
   08-Oct-2001  19:13  5.0.2195.4472  123,664  Adsldp.dll
   08-Oct-2001  19:13  5.0.2195.4308  130,832  Adsldpc.dll
   08-Oct-2001  19:13  5.0.2195.4016   62,736  Adsmsext.dll
   08-Oct-2001  19:13  5.0.2195.4384  364,816  Advapi32.dll
   08-Oct-2001  19:13  5.0.2195.4141  133,904  Dnsapi.dll
   08-Oct-2001  19:13  5.0.2195.4379   91,408  Dnsrslvr.dll
   08-Oct-2001  19:19  5.0.2195.4411  529,168  Instlsa5.dll
   08-Oct-2001  19:13  5.0.2195.4437  145,680  Kdcsvc.dll
   04-Oct-2001  21:00  5.0.2195.4471  199,440  Kerberos.dll
   04-Sep-2001  09:32  5.0.2195.4276   71,024  Ksecdd.sys
   27-Sep-2001  15:58  5.0.2195.4411  511,248  Lsasrv.dll    128-bit
   06-Sep-2001  18:31  5.0.2195.4301  507,152  Lsasrv.dll     56-bit
   06-Sep-2001  18:31  5.0.2195.4301   33,552  Lsass.exe
   27-Sep-2001  15:59  5.0.2195.4285  114,448  Msv1_0.dll
   08-Oct-2001  19:14  5.0.2195.4153  312,080  Netapi32.dll
   08-Oct-2001  19:13  5.0.2195.4357  370,448  Netlogon.dll
   08-Oct-2001  19:13  5.0.2195.4464  912,656  Ntdsa.dll
   08-Oct-2001  19:13  5.0.2195.4433  387,856  Samsrv.dll
   08-Oct-2001  19:13  5.0.2195.4117  111,376  Scecli.dll
   08-Oct-2001  19:13  5.0.2195.4476  299,792  Scesrv.dll
   29-May-2001  07:41  5.0.2195.3649    5,632  Sp2res.dll
   08-Oct-2001  19:13  5.0.2195.4025   50,960  W32time.dll
   01-Aug-2001  21:44  5.0.2195.4025   56,592  W32tm.exe
   08-Oct-2001  19:13  5.0.2195.4433  125,712  Wldap32.dll
				
??????: ???? ?????? ????? ?? ??? ??????? ?????? ????? Microsoft Windows 2000 Service Pack 2.

?????

???? Microsoft ?? ??? ??????? ?? ????? ???? ???? ????? ?? Microsoft Windows 2000.

??????? ????

?????? ??? ???? ?? ????????? ??? ????? ??? ??????? ??? ???? ???? Microsoft ?????? ??? ?????:
http://www.microsoft.com/technet/security/bulletin/MS02-001.mspx

????? SID ?????

????? ????? SID ????? ?? ??????? Windows 2000 ?????? ????? ?????? Service Pack 2 (SP2) ??????? ?? ?????? ???????? Netdom.exe ??? ?????? ????? ??? ???? ??????? Windows 2000. SID ????? ????? ???? ????, ??? ????? SP2 ??? ?? ???? ???? ?????? ?? ?????? ?????? ????? (?????? ?? quarantining ???? ???). ??? ????? ??????? ??????? ?? Netdom.exe ?? ???? "????? ?????" ??? ????? ??????? SP2 ?? ????? ????? ?? ???? Microsoft ??? ???. A / filtersids ??? ????? ??? ??????? ??? ??? ??????? ?? Netdom.exe ?????? SID ???????.

???????? ????? ??? ???? ??????? Windows 2000 quarantine ????, ?????? ????? ?????? ??? ????? ??? ???? ???? ???? ?? ?????? (?? ??? ??????? ?????? RESDOM ??? ????? ???? ACCDOM):
netdom ??? /UD:ACCDOM\Administrator /D:ACCDOM RESDOM /UO:RESDOM\Administrator /PD:adminpwd /PO: adminpwd /filtersids:yes
???? ????? ??? ????? ?????? SID ???????:
????? netdom /UD:ACCDOM\Administrator /D:ACCDOM RESDOM /UO:RESDOM\Administrator /PD:adminpwd /filtersids:no /PO:adminpwd
?????? ?? ??????? ??????? SID ??? ???? ?????? ??? ?????:
netdom ??? /UD:ACCDOM\Administrator /D:ACCDOM RESDOM /PD: /UO:RESDOM\Administrator adminpwd /filtersids /PO:adminpwd
???? ????? ???????? ?? "Active Directory" ????????? ??????? ??? ??? ???? ????? ???? ?????? ?? ??????.

????? ??????? ?????????

???? ????????? ??????? ?? Windows 2000 ?????? ??? ??????? ??? ????? ????? ????? ?? ???? ??????? Windows 2000.

????? ??? ????? ??? ?????? ?????? ????? ???? ???????? ???? ?????? ???? ???? "?????? ??????? ??" (TDO) ???? ????? ??? ???? ???? ?????? ??????? ?? ???????? ???? ??? ?????. ??? ????? SID ????? ???? ????? ??? ???? ???????? ??? ??? ?????? ??? ??? ???? ?????? ??????? ???? SID ??? ?????? ?? SID ??????? ?? ?????? ?????? ????? TDO ?????? ????????. ???? ?? ???? ??? ???? ??? ??? ?? ????? ?????? ???????. ?? ??? ????? ????? ????? ?????? ?? ??? ???????? ?? ??? ??????? ?????? ?????? ???? ????? ??? ?? ??? ??????? ??? ???? ???? ?????? ???? ???? ??????? ??? ???????? ?? ?????? ?????? ?????.

SP2 ????? ??? ????? ???? ???? ?? ??? 548 ???? ???????? NTLM ????? ??? ???? ????????? ???????? (0xC000019B) ??? ????? 677 ???? ????? ?????? Kerberos. ??? ?? ????? ??? ????? ?????? ?? ????? ?????? ??? ????? ??? ?????? SID ?? "????????." ???? ????????? ????????? ??????? ??? ???????.

????? NTLM ????????:
   Event Type:     Failure Audit
   Event Source:   Security
   Event Category: Logon/Logoff
   Event ID:       548
   Date:           Event date
   Time:           Event time
   User:           NT AUTHORITY\SYSTEM
   Computer:       Name of the computer where the event is logged
   Description:
     Logon Failure.
     Reason:                 Domain sid inconsistent
     User Name:              Name of the user being authenticated
     Domain:                 Name of the Quarantined Domain
     Logon Type:             3
     Logon Process:          NtLmSsp
     Authentication Package: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0
     Workstation Name:       Name of the client computer
				
?????? Kerberos ?????:
   Event Type:     Failure Audit
   Event Source:   Security
   Event Category: Account Logon
   Event ID:       677
   Date:           Event date
   Time:           Event time
   User:           NT AUTHORITY\SYSTEM
   Computer:       Name of the computer where the event is logged
   Description:
     Service Ticket Request Failed:
     User Name:              Name of the user being authenticated
     User Domain:            Name of the user's Domain
     Service Name:           Full qualified name of the Quarantined Domain
     Ticket Options:         0x0
     Failure Code:           0xC000019B
     Client Address:         127.0.0.1

   Event Type:     Failure Audit
   Event Source:   Security
   Event Category: Logon/Logoff 
   Event ID:       537
   Date:           Event date
   Time:           Event time
   User:           NT AUTHORITY\SYSTEM
   Computer:       Name of the client computer
   Description:
     Logon Failure:
     Reason:                 An unexpected error occurred during logon
     User Name:              Name of the user being authenticated
     Domain:                 Name of the user's Domain
     Logon Type:             2
     Logon Process:          User32  
     Authentication Package: Negotiate
     Workstation Name:       Name of the client computer 
				

???? SID ?????

???? ????? ???? ???????? ???????? SID ??????? ???? ?? ???? ?? ???? ??? ?????????? ?? ?????? ??? ??????? ???? ?????? ??????:
  • SID ????? SIDHistory ????? ?????????. ??? ??? SID ??????? ???? ??????? ??? ????, ???? ?????? ??? ??????? SIDHistory ?? ?????? ??????? ??????? ?? ?????? ????????.
  • ???? ??? SID ????? ???? ?????? ????? ??? ?????? ?? ???? ??????? Windows 2000. ??? ???? ??????? ????? ??? ?????? ??? ??????? B ? ?????? B ??? ??????? "? ?????" ?? Windows 2000? ?????? ?? ?????? C ?? ?????? ??? ??????? ???????? ?? ?????? ??? ?????? A ??? ??????? ? transitively ??? ???? ??? ??? ?????? SID ??????? ????? ??????? ?????? B ? ???? ?? ??? ???? ??????? B vouch ???????? ?? ?????? C, ??? ?????? B ??? ????? ?? ??? SIDs ?? ???? C.
  • SID ????? ?????? SIDs ???????? ?? ???????? ??????? ?? ????????? ???????? ??? ?? ??? ???????? ????????? ?? ???? ???? ????????.

??????? ???????? ??? ??????

??????? ??????? ?????? Windows 2000 ?? ??????? ???? ???? ??? ??????? ?? SID ???????:
  • ????? ???????? ???????? ????? ????????? ???????? ??? ???????? ?? ???? ???? ????????
  • ????? Microsoft Exchange 2000 ???? ????? ??? ????????? ????????
  • SIDHistory ???????? ???? ?? ???????
  • ??? ?????? ?? ???? ???? ????
  • ???? ???? reason ???????? ?????? ?????--??? ??? ??? ??? ??????? SID ??????? ??? ???????? ?? ??? ?????? ????. ??? ?? ??? ??????? ????? SID ??? ??????? ??? ?????? ????? ???????? ???.
?????? ??? ??????? ?????? ??? ????? ?????? ??? ??????? ???? ????? ??????? Windows 2000 Datacenter ???? ??? ??? ??????? ?????? ?????? ?? "????? ??????? ?? Microsoft:
265173?????? Datacenter ??????? ? Windows 2000 Datacenter Server
?????? ??? ??????? ?????? ??? ????? ????? ??????? ????? ?????? ?? ???? ????? ??????? ??? ????? ???? ???? ??? ??? ??????? ?????? ?????? ?? "????? ??????? ?? Microsoft:
296861????? ????? ??????? Windows ?? ??????? ????? ?????? ?? ???? ????? ??????? ??? ????? ???

???????

???? ???????: 289243 - ????? ??? ??????: 05/????/1427 - ??????: 4.1
????? ???
  • Microsoft Windows 2000 Server SP1
  • Microsoft Windows 2000 Server SP2
  • Microsoft Windows 2000 Advanced Server SP1
  • Microsoft Windows 2000 Advanced Server SP2
????? ??????: 
kbmt kbbug kbfix kbsecbulletin kbsechack kbsecurity kbsecvulnerability kbwin2000presp3fix kbwin2000sp3fix KB289243 KbMtar
????? ????
???: ??? ????? ??? ?????? ???????? ?????? ????? ???? ????? ?????????? ????? ?? ????????? ?????? ????. ???? ???? ?????????? ???? ?? ???????? ???????? ?????? ????????? ????? ????????? ???????? ????? ???????? ?????? ?? ?????? ??? ?? ???????? ???????? ?? ????? ??????? ?????? ??? ??????? ?????? ??. ?????? ?? ???? ??? ??????? ???????? ????? ?? ???? ????? ?????? ??? ????? ??? ????? ??????? ?? ????? ?? ?????? ??? ??? ??????? ??????? ?? ????? ????? ????? ????? ?????. ?? ????? ???? ?????????? ??????? ??? ????? ?? ??????? ?? ????? ?????? ?? ??? ????? ?? ????? ??????? ?? ???????? ?? ??? ???????. ???? ???? ?????????? ???????? ??? ????? ?????? ??????? ??????
???? ??? ????? ??????? ?????? ??????????289243

????? ???????

 

Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from smallbusiness.support.microsoft.com