TechEd Bloggers Security

Workaround for Communicator 2007 Certificate Error

Desmond Lee — Thu, 08 May 2008 21:22:02 GMT

Desmond Lee writes, "If the issuing CA is trustworthy, such as from an internal PKI source, you can manually import the missing certificate as follows:..." more

Thu, 08 May 2008 21:22:02 GMT

Need Suggestions on File Security Compares

Aaron Tiensivu — Fri, 02 May 2008 20:22:08 GMT

Aaron Tiensivu writes, "Anyone know of a utility out there that can handle about 2 terabytes of file security compares? I don't care about the file contents in this case, only the security that is 'stamped' on both sides....Any help is most appreciated...leave a comment on this entry or shoot me an e-mail." more

Fri, 02 May 2008 20:22:08 GMT

Privacy is in the Eye of the Beholder

Vittorio Bertocci — Fri, 02 May 2008 17:01:59 GMT

Vittorio Bertocci writes, "I think that the law of user control and consent is always a great CRC check; I suggest that we should all work for making its application super easy from the technical standpoint, so that it can be applied consistently whenever necessary..." more

Fri, 02 May 2008 17:01:59 GMT

BitLocker Drive Preparation Tool Free

Aaron Tiensivu — Wed, 30 Apr 2008 15:39:30 GMT

Aaron Tiensivu writes, "....a very handy tool to have to install Bitlocker on your system after you have already installed an OS to an unencrypted volume...." more

Wed, 30 Apr 2008 15:39:30 GMT

Web Server Attacks not related to IIS

Microsoft Security Response Center — Mon, 28 Apr 2008 17:40:32 GMT

Microsoft Security Response Center writes, "...these attacks are in no way related to Microsoft Security Advisory ...The attacks are facilitated by SQL injection exploits and are not issues related to IIS 6.0, ASP, ASP.Net or Microsoft SQL technologies. SQL injection attacks enable malicious users to execute commands..." more

Mon, 28 Apr 2008 17:40:32 GMT

Security Compliance Beta for SCCM

Matthijs Vreeken — Sun, 27 Apr 2008 15:14:42 GMT

Matthijs Vreeken writes, "It’s not unusual for administrators to use rules in Opsmgr to monitor for significant configuration changes of concern in regulatory compliance, but this is generally not the most effective way to address the problem....That is where the sister product if Operations Manager, System Center Configuration Manager 2007, plays a role in augmenting ACS in the auditing process....Security Compliance Management toolkit provides customers with.... " more

Sun, 27 Apr 2008 15:14:42 GMT

Prevent IIS Attacks

Brian Kelley — Sat, 26 Apr 2008 16:32:25 GMT

Brian Kelley writes, "The recent slate of attacks on IIS servers don't seem to be an attack directly against IIS or against SQL Server itself....reason we're seeing infections on such a large scale is....If you're using software that either a large community uses or that you purchased, don't assume it's safe.... " more

Sat, 26 Apr 2008 16:32:25 GMT

Enforcing Out-of-the-box NAP Security Updates

Jeff Sigman — Fri, 25 Apr 2008 21:10:06 GMT

Jeff Sigman writes, "We’ve been getting a lot of questions about how update enforcement using the WSHA/WSHV actually works. The first thing to keep in mind is that the WSHA/WSHV only enforces security updates. The easiest way to discuss update enforcement is to step through each part" more

Fri, 25 Apr 2008 21:10:06 GMT

Infected Webpage Every 5 Seconds

Don Patterson — Wed, 23 Apr 2008 19:34:10 GMT

Don Patterson writes, "IT security and control firm Sophos has published its latest Security Threat Report, which looks at worldwide cybercrime during the first quarter of 2008. The findings..." more

Wed, 23 Apr 2008 19:34:10 GMT

Storm Worm - Blog and Codec Based Attacks

Harry Waldron — Tue, 22 Apr 2008 20:10:02 GMT

Harry Waldron writes, "Storm has once again turned its eye to the blogging community, specifically the Blogspot.com community. Several blogger sites with random or very quirky names have been sporting a love theme, Storm style. These sites appear to..." more

Tue, 22 Apr 2008 20:10:02 GMT

Adobe Products BMP Vulnerability

Don Patterson — Tue, 22 Apr 2008 20:03:02 GMT

Don Patterson writes, "...reported in multiple Adobe products....The vulnerability is caused due to a boundary error when handling BMP files. This can be exploited to cause a buffer overflow via a BMP file having..." more

Tue, 22 Apr 2008 20:03:02 GMT

Cross-Site Scripting Flaw - XSS

Don Patterson — Tue, 22 Apr 2008 19:13:27 GMT

Don Patterson writes, "...The content in this case targeted cross-site scripting flaw (XSS), an exceedingly common type of vulnerability that can be used to automatically redirect Web browsers viewing the affected page to another site...." more

Tue, 22 Apr 2008 19:13:27 GMT

The TechEd 2008 Security Show

Kai Axford — Thu, 17 Apr 2008 18:18:40 GMT

Kai Axford writes, "You have spoken and we have listened...I'm going to be delivering not one, not two, but FOUR sessions on the TechEd Online stage...My goal for these episodes is..." more

Thu, 17 Apr 2008 18:18:40 GMT

Fix for XML Core Services 4.0 SP 2 Failed Security Update

Jeff Guillet — Tue, 15 Apr 2008 21:42:34 GMT

Jeff Guillet writes, "I recently built up a new Hyper-V virtual domain environment based on a single server image. Unfortunately, my base image had a problem downloading and installing the Security Update for Microsoft XML Core Services 4.0 Service Pack 2....Here's what the event logs looked like:..To fix this issue, download the update from Microsoft and manually install it." more

Tue, 15 Apr 2008 21:42:34 GMT

Surprise! Stolen Hardware Basis for Most Breaches

Don Patterson — Wed, 09 Apr 2008 19:01:49 GMT

Don Patterson writes, "While the number of unique variants of malicious software more than quadrupled in 2007, lost laptops and storage devices -- not malicious software -- were the most common cause of a data breaches, security firm Symantec said in its latest Internet Security Threat Report released on Tuesday. The report, based on data from more than 40,000 network devices..." more

Wed, 09 Apr 2008 19:01:49 GMT

Checking for Pointer Math

David LeBlanc — Wed, 09 Apr 2008 17:46:46 GMT

David LeBlanc writes, "...Someone pointed out that it isn't sufficient to check for whether the pointer math wrapped, but that we also need to check that the resulting pointer is in our buffer. They then came to the possibly erroneous conclusion that really all you had to do was to check whether the resulting index was in range. The real problem with this is that there's so many different scenarios that I don't see a one size fits all technique.... Where the comment is absolutely correct is that if we're just doing a simple de-reference (get the nth element), then all we have to do is determine if n is somewhere in the array...." more

Wed, 09 Apr 2008 17:46:46 GMT

5 Security Elements I plus 4A

Kai Axford — Wed, 09 Apr 2008 17:00:46 GMT

Kai Axford writes, "The discussion was really around the concept of this concept we refer to "I + 4A" which stands for "Identity + Access, Authentication, Authorization, Access Control and Audit" which are the 5 major security elements that help establish trust. The whitepaper is designed to get people to engage us...You're not going to get any "Microsoft marketing" in this whitepaper....let us know...is this on the right track or where does this concept need to be revised" more

Wed, 09 Apr 2008 17:00:46 GMT

Security Bulletins for April 8, 2008

Don Patterson — Tue, 08 Apr 2008 22:49:23 GMT

Don Patterson writes, "These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details. Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided." more

Tue, 08 Apr 2008 22:49:23 GMT

Phishing Attacks disguised as Microsoft Security Bulletin releases

Harry Waldron — Tue, 08 Apr 2008 22:21:09 GMT

Harry Waldron writes, "Emails with the subject line of "Critical Patch Released: Microsoft Security Bulletin MS08-64738" should be deleted as malware could be automatically downloaded and silently installed on vulnerable PCs...." more

Tue, 08 Apr 2008 22:21:09 GMT

Turning Security Principles Useful

JD Meier — Mon, 07 Apr 2008 22:11:47 GMT

JD Meier writes, "....This is simply a baseline set of principles so that you don't have to start from scratch. You can build on this set and tailor for your specific context. I find that while having a set of principles helps, that you can't stop there. To share the knowledge and help others use the information, it's important to encapsulate the principles in patterns as well as show concrete examples" more

Mon, 07 Apr 2008 22:11:47 GMT