Browse by Tags

All Tags » Windows Server 2008 (RSS)
Mon, Feb 2 2009 17:47

When “All” isn’t everything you need – Terminal Services Gateway certificates.

Setting up Terminal Services Gateway on Windows Server 2008 the other day. It’s an excellent technology, and one I’ve been waiting for for some time – after all, it’s fairly logical to want to have one “bounce point” into which you connect, and have your...
Posted by Alun Jones | 1 comment(s)
Filed under: , ,
Wed, Jan 28 2009 6:57

Debugging SSTP error -2147023660

Setting up an SSTP (Secure Socket Tunneling Protocol) connection earlier, I encountered a vaguely reminiscent problem. [SSTP allows virtual private network – VPN – connections between clients running Vista Service Pack 1 and later and servers running...
Posted by Alun Jones | with no comments
Filed under: , , ,
Sun, Oct 12 2008 21:36

HTML Help in MFC

I recently got around to converting an old MFC project from WinHelp format to HTML Help. Mostly this was to satisfy customers who are using Windows Vista or Windows Server 2008, but who don’t want to install WinHlp32 from Microsoft. (If you do want to...
Posted by Alun Jones | 1 comment(s)
Filed under: , , , ,
Fri, Jul 25 2008 2:03

Kaminsky Black-Hat Webcast: "By Any Other Name: DNS has doomed us all."

Okay, so the talk’s official title was “ Dan Kaminsky’s DNS Discovery: The Massive, Multi-Vendor Issue and the Massive, Multi-Vendor Fix ”. Arcane details of TCP are something of a hobby of mine, so I attended the webcast to see...
Posted by Alun Jones | 3 comment(s)
Filed under: , , ,
Mon, Jul 21 2008 22:09

Whoops - Information Wanted to be Free Again.

Picture the scene at Security Blogs R Us: "We're so freakin' clever, we've figured out Dan Kaminsky's DNS vulnerability" "Yeah, but what if someone else figures it out - won't we look stupid if we post second to them...
Posted by Alun Jones | 2 comment(s)
Filed under: , , ,
Sat, Jul 19 2008 0:02

DNS Server Reserves 2500 Ports.

After applying the patch for MS08-037 - KB 953230 (the multi-OS DNS flaw found by Dan Kaminski ), you may notice your Windows Server 2003 machine gets a little greedy. At least, mine sucks up 2500 - yes, that's two thousand five hundred - UDP sockets...
Posted by Alun Jones | 14 comment(s)
Filed under: , , ,
Thu, Jul 10 2008 22:07

Vistafy Me.

I have a little time over the next couple of weeks to devote to developing WFTPD a little further. This is a good thing, as it's way past time that I brought it into Vista's world. I've been very proud that over the last several years, I have...
Posted by Alun Jones | 6 comment(s)
Filed under: , , , ,
Thu, Apr 24 2008 16:47

UAC - The Emperor's New Clothes

I heard a complaint the other day about UAC - User Account Control - that was new to me. Let's face it, as a Security MVP, I hear a lot of complaints about UAC - not least from my wife, who isn't happy with the idea that she can be logged on as...
Posted by Alun Jones | 6 comment(s)
Filed under: , , , ,
Fri, Jan 11 2008 21:03

Why you don't run as root

[... or administrator, or whatever] I like Roger Grimes, he's a nice guy, and he generally makes me think about what he has to say. That's a good thing, because otherwise he'd either be part of the same choir as me, or he'd be the sort...
Posted by Alun Jones | 4 comment(s)
Filed under: , , , , ,
Sat, Dec 29 2007 11:23

Is a NAT a security device?

I've been working lately on a couple of IPv6-related projects. First, there's a chapter for an upcoming book, and second, there's the effort to make WFTPD and WFTPD Pro work on IPv6, since it's enabled by default in Windows Vista and Windows...
Posted by Alun Jones | 7 comment(s)
Filed under: , , ,