Browse by Tags
All Tags »
Security (
RSS)
…use passphrases instead: So this is my first ever blog entry and seeing as how I'm a senior member of the PSS Security Incident Response team, you may think I've stopped taking my medication by opening with a title like the one above! Medication...
It took me a while, but I’ve finally upgraded my home network to use WiFi-Protected Access (WPA) instead of WEP for securing my wireless connectivity. The upgrade was complicated by a laptop with a built-in WLAN adapter that didn’t support...
One of my fellow Microsofties has come up with a neat solution to some of the hassles of running your workstation using a non-admin account. My advice for getting around things you can’t do as a non-admin has long been to simply run programs from...
Dear Wireless Networking Manufacturer, It has come to my attention that some of you (one rhymes with ink-sys) are still shipping new wireless networking equipment that does not support WPA out of the box. This is inexcusable. Please stop manufacturing...
If you’ve got friends or family who are the non-geek types, and need help with security, this might save you a few of those “how do I…?” phone calls… Last week, Microsoft put up an updated Security at Home web site for...
Another example of why it’s a bad idea to run as an administrator on a day-to-day basis: This update resolves a newly-discovered, publicly reported vulnerability. A remote code execution vulnerability exists in the way that the Windows Shell launches...
As evidenced by a Linux kernel flaw that resulted in a DoS attack against Akamai , effectively denying access to large sites like Google, Yahoo, and Microsoft. Not gloating here, just observing that this demonstrates that all operating systems can be...
The MSDN Security Briefings tour I was on is complete, as of this week. My sincere thanks to everyone who came out to listen and learn. I especially appreciate all the kind comments I received. If you’re interested in getting the slides from the...
One of the many Microsoft bloggers provides a workaround for those of us looking to debug ASP.NET applications without resorting to Admin privileges…a workaround that uses the predecessor of the Whidbey web server from ASP.NET Web Matrix to do...
…apparently apply to l33t h4x0r5, too: http://www.theinquirer.net/?article=16050 J [via Michael Howard ]
More Posts
Next page »