The upcoming (Feb 12/08) Microsoft security bulletin includes "important" vulnerability notifications about Active Directory and Active Directory Application Mode (ADAM) aka Active Directory/Lightweight Directory Services. Apparently, the vulnerabilities are related to denial of service attacks.
If you are running ADAM on XP (testing, perhaps?) you need to get patched. Aside from ADAM on XP the other systems affected are Windows 2000 Server SP4, Windows Server 2003 SP1 and SP2 (including 64-bit) and Itanium server versions. Check out the bulletin and get patched!
OK, so that's the public service announcement side of this. My question: I know of numerous customers running ADAM in production to support e-commerce (B2C) applications for millions of end-users. How are you guys keeping up-to-date with these security patches? Are you regularly scanning your machines with Microsoft's Baseline Security Analyzer?
I have to figure that a DoS attack is not something an e-commerce site wants to undergo!
Microsoft, Active Directory, ADAM