LocalSystem account in the AD forest is risky business

23 בנובמבר 2007

The LocalSystem account has been around since Windows NT, yet few administrators really understand it. Although it is a powerful account, it is often used as a crutch for application developers who don't want to deal with figuring out what security they require. The LocalSystem account has some interesting characteristics that create security risks, especially in multiple domain forests. First, let's look at a few basic concepts of the LocalSystem account. The account exists on every Windows computer -- whether it is a client workstation, domain controller or server. This account has total control over the computer and...
אין תגובות

Test Your Network Security IQ

16 בנובמבר 2007

InfoWorld created a ten question security quiz, so you could see how much you really know. Test your Network Security IQ at http://www.infoworld.com/tools/quiz/network-security/iq-test.php via http://networkinstruments.wordpress.com/2007/10/01/test-your-network-security-iq/
תגיות:
תגובה אחת

10 ways to secure borderless networks

another great article from the 10 steps blog, this time by Debra Littlejohn Shinder. Debra is a technology consultant, trainer and writer who has authored a number of books on computer operating systems, networking, and security Company networks are undergoing so-called “de-perimeterization,” as online collaboration with partners, customers, telecommuters, and others outside the physical LAN becomes more and more important to doing business. At the same time, these users are able to connect to company resources with a wider variety of devices, including smartphones, Blackberries, and other handheld devices.This is great in terms of access, but not so great in terms...
תגיות:
אין תגובות

How MSIT used a Power(ful) NAP to Improve Security Policy Compliance

Hot off the presses, Microsoft IT (aka MSIT) has published a case study around their use of Network Access Protection (aka NAP) --enabled with Windows Server 2008 -- to improve security and host policy compliance on our huge network. Microsoft Improves Security Policy Compliance with Network Access Protection Here's a brief synopsis of the paper: With 71,000 highly mobile users worldwide, Microsoft wanted a new way to measure and improve its 300,000+ client computers’ compliance with corporate security policies. The company deployed Network Access Protection (NAP), a feature of the Windows Server® 2008 operating system, to improve the security policy compliance...
2 תגובות

Unpatched Windows XP with SP1 Hacked in 6 Minutes

A Windows XP system with Service Pack 1 installed, but with no subsequent patches applied, was hacked in six minutes by a security expert in London, according to C|Net on Tuesday. A Microsoft executive who watched the demonstration found himself both enlightened and fightened. The Windows computer was not running a firewall or other anti-virus or anti-spyware software. The challenge was to connect, on a local network, and retrieve a text file of passwords. The attack was successful in six minutes and the password file downloaded in 11 minutes. "If you were in (a cafe with Wi-Fi...
תגיות:
2 תגובות

Security Market Trends for 2007

9 בנובמבר 2007

anyone who is looking the next best thing for your start-up, or just want to learn what are the new highlights of the security market, WindowsSecurity.com's Ricky M. Magalhaes has published an article the details his Security Trends for the year of 2007. the list includes: Physical security Pre-Boot Authentication Encryption End point security Strong authentication VOIP Security Privacy Replication Deepscan application control Personal firewalls Application control to read the full article: http://www.windowsecurity.com/articles/Security-Market-Trends-2007.html
אין תגובות

a new way of social engineering

I recommend that you read the following article on the Panda Labs site, published last Friday.  It is a great example of how the low-lifes are thinking outside the box and coming up with very clever ways to get around our various online protections. "Sometimes, when we speak about social engineering, we think about people at the other side of the phone trying to get our passwords to gain unauthorized access to our accounts. When this data is in their hands, panic spreads: intrusion on companies, espionage, identity theft…all the classic goals of this kind of attacks. But let’s...
2 תגובות

Configure Windows 2008 Advanced Firewall with the NETSH CLI

I've recently posted about David Davis's article about How to configure the new Windows Server 2008 advanced firewall MMC snap-in. this week, windowsnetworking.com's David Davis has published a new article that guides you step by step thorugh the configuration of a windows 2008 Advanced Firewall (very similar to the one in Vista) using NETSH CLI. Netsh advfirewall is the command line tool used for configuring the new Windows 2008 Server Advanced Firewall. Why use the CLI interface to configure a Windows firewall? While some people will prefer to use the graphical MMC snap-in to configure the new advanced firewall,...
אין תגובות

Terminal Services Platform in Server 2008 Live Web Casts

allthough this is a security blog, Terminal Services is already a well known subject related to security. Because of this, I tend to scope the TS related blogs and news sites searching for new information on the new TS platform of server 2008. The TS Team blog has published yesterday a schedule of web casts for november that will provide in-depth knowledge of the new platofrm for TS in 2008. you are more then welcome to register and learn about the new amazing advantegs like Web Gateway, RemoteApp, Session Broker, easy print and much more. http://www.microsoft.com/events/series/windowsserver2008.aspx?tab=webcasts&id=42565 Presentation Virtualization with...
תגובה אחת

Windows XP NAP Implementation

NAP Team's Jeff Sigman (Senior Program Manager) has posted on the NAP Blog some Q&A regarding the XP SP3 Impemntation with network access protection. Questions Jeff’s (brilliant) Answers Q: How do I get a copy of the BETA? While it is on MSConnect, it is easier just to email me to get a copy. I have US-English and Language Neutral versions from the April 2007 Beta release. Remember, this is a BETA and is not officially supported (i.e. no QFEs); see XP SP3 info below. Q: How will this actually release officially? ONLY via Windows XP Service Pack 3. Q: When...
אין תגובות