Browse by Tags

All Tags » Windows Vista » Things I Learned At Microsoft (RSS)

TLS Renegotiation attack – Microsoft workaround/patch

Hidden by the smoke and noise of thirteen ( 13! count them! ) security bulletins, with updates for 26 vulnerabilities and a further 4 third-party ActiveX Killbits (software that other companies have asked Microsoft to kill because of security flaws),...

UAC - The Emperor's New Clothes

I heard a complaint the other day about UAC - User Account Control - that was new to me. Let's face it, as a Security MVP, I hear a lot of complaints about UAC - not least from my wife, who isn't happy with the idea that she can be logged on as...

Waiting for Vista SP1?

In a previous article, I wrote about how to sound stupid by saying " let's wait for Service Pack 1 before we deploy Windows Vista ". Now here are a few ways to sound clever, by pointing to specific issues that will be fixed by Windows Vista...

Why you don't run as root

[... or administrator, or whatever] I like Roger Grimes, he's a nice guy, and he generally makes me think about what he has to say. That's a good thing, because otherwise he'd either be part of the same choir as me, or he'd be the sort...

Let's just wait for Service Pack 1

Every so often, I'll hear it said, and frequently not in jest, "let's wait until Service Pack 1 before we deploy Vista", or sometimes "Server 2008". While it's true that Microsoft has indeed announced plans to test, and...

Microsoft's man in Europe thinks Bitlocker is something it isn't

I've discussed this before - Bitlocker in Vista, by default, only offers to encrypt your laptop using a key it gets from the onboard TPM chip. This means that you can boot the laptop to a logon screen, and try to attack the system not only through the...

McAfee wants to modify your kernel

Much press has been made lately about the complaints by McAfee and Symantec that they have been locked out of modifying the Windows Vista x64 kernel through the closure of undocumented back-doors that they used to use. (Sadly, none of what either company...

Is BitLocker Misdirected?

As blogged recently by the Bitlocker crew , the behaviour of BitLocker in Windows Vista RC1 has been changed - there were originally three methods of providing the regular unlock key to Bitlocker, and this has been reduced to one without some irritating...