Risque Management - All Comments

99 angel perfume

Mora — Tue, 06 Oct 2009 15:36:16 GMT

Hi everyone. Enjoyed your site. Well Done. Help me! There is an urgent need for sites: SĂ¶renstam has criticized a attention of park theme debit transactions.. I found only this - [URL=www.sosiaalikollega.fi/.../Angel]Angels desire perfume[/URL]. Hina, has and yuyu were other to be received, unfortunately hina ended through. During the nit's several 15 merchants or only, the hills were saved as national champions by some, and credit marred which singer way was un-reimbursed. THX :cool:, Mora from Marino.

re: How to prevent 1% of cybercrime?

Tom Rand — Tue, 28 Jul 2009 14:03:46 GMT

I acualy used the service of an online scan for my site provide by GamaSec www.gamasec.com

i can say that I am please of the service, the clear report with practical recommendation to solve the vulnerabilities and the easy and freindly control panel that provid on demand scan scheduler.

I my opinion the use of 3th partty security scan and security seal is important for website and for customer but the it must be done by proffessional companies and not onlt seals marketing comapnies.

I can from our experience recommend the used of www.gamasec.com for vulnerabilities scan

re: Smart card logon error 0xC00000BB

Noble — Tue, 28 Jul 2009 07:29:32 GMT

www.actividentity.com/.../display_article.php

Different Skype Issue

Tim — Tue, 23 Jun 2009 18:32:54 GMT

I'm writing since you seem to understand the Skype issues. We do not want to stop Skype, but it has opened so many DNS requests and open connections that it blocks up our firewall, and we are forced to reset it.

Are there any Skype settings that would reduce this need?

re: How not to make decisions

Nhon Yeung — Mon, 13 Apr 2009 23:55:03 GMT

I lot of it comes down to whether you have the time and money to invest in trying something new. Most organizations opt for the known and supported solutions hence you get the "we don't support it as we do not know how it'll behave" type scenarios. This hinders innovation and you end up with cookie cutter architectures which may not take full advantage of the technology.

US Senate: security through (more) bureaucracy

Risque Management — Sun, 05 Apr 2009 01:07:45 GMT

When I first read the news on the Washington Post web site, I thought this is a 1 April joke: Senate

Windows 2008 Security - Compliance is not security

Windows 2008 Security - Compliance is not security — Mon, 16 Feb 2009 05:16:49 GMT

Pingback from Windows 2008 Security - Compliance is not security

Security Product Watch » Blog Archive » What is more secure?

Security Product Watch » Blog Archive » What is more secure? — Sat, 10 Nov 2007 07:26:49 GMT

Pingback from Security Product Watch » Blog Archive » What is more secure?

re: Integrating Java, JDBC and Kerberos

grrd — Thu, 01 Nov 2007 10:54:38 GMT

host/XXXXX@FORMUE.LOCAL is a user account in Active Directory, but it represents the machine on which the application runs (as described in edocs.bea.com/.../sso.html). The user in 'Invalid Subject: xxxxx' is a normal user with a valid account.

re: Integrating Java, JDBC and Kerberos

Slav — Thu, 01 Nov 2007 07:17:49 GMT

Principal is host/XXXXX@FORMUE.LOCAL, eh? I reckon using a user account is a better option.

re: Integrating Java, JDBC and Kerberos

grrd — Wed, 31 Oct 2007 11:09:37 GMT

Hello and thanks for your helpful blog post. This is the only useful piece of information I have been able to find on this subject.

I am running WebLogic 8.1.6 on Win2003 server, and using the Datadirect Driver for my connection pool. I have set up Kerberos authentication as described and am trying to get a connection (and execute a stored procedure) as a logged in user, but when I do Datasource#getConnection (in Security.runAs(subject, new PrivilegedExceptionAction() {....) I get the following error:

Debug is true storeKey false useTicketCache true useKeyTab false doNotPrompt true ticketCache is null KeyTab is null refreshKrb5Config is false princ

ipal is null tryFirstPass is false useFirstPass is false storePass is false clearPass is false

Principal is host/XXXXX@FORMUE.LOCAL

Commit Succeeded

applicationlogger 2007-10-31 12:01:54,202 ERROR java.sql.SQLException: Pool connect failed : java.lang.SecurityException: [Security:090398]Invalid Sub

ject: xxxxx

<Oct 31, 2007 12:01:54 PM CET> <Error> <HTTP> <BEA-101020> <[ServletContext(id=28475974,name=web,context-path=)] Servlet failed with Exception

java.lang.RuntimeException: java.sql.SQLException: Pool connect failed : java.lang.SecurityException: [Security:090398]Invalid Subject: xxxxx

at no.formue.util.database.DBMgr$1.run(DBMgr.java:308)

at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)

at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:147)

at weblogic.security.Security.runAs(Security.java:61)

at no.formue.util.database.DBMgr.getConnection(DBMgr.java:294)

at no.formue.util.database.DBMgr.getDefaultConnection(DBMgr.java:262)

at no.formue.login.servlet.ADLoginServlet.doGet(ADLoginServlet.java:45)

at javax.servlet.http.HttpServlet.service(HttpServlet.java:740)

The subject is authenticated and valid at this point as far as I can tell. Any ideas what might cause this?

re: Notes from RIM BlackBerry presentation

muugi — Wed, 10 Oct 2007 01:30:01 GMT

want to see content

re: VoIP Scaremongers

Joshua Thomas — Mon, 06 Aug 2007 19:34:16 GMT

who knows they might have lots more up their sleeves ...

AFAIK I know OCS has been cracked open too.

Virtually hopeless

Risque Management — Mon, 30 Jul 2007 09:50:55 GMT

I don't know if that's CIOs, or the press, or both. Recently Byte & Switch, CMP Technology's

re: Virtual infrastructure v Terminal servers

Slav — Sun, 22 Jul 2007 01:35:16 GMT

Appareltly VMWare/EMC don't recommend iSCSI for enterprises. The recommendation is Fibre Channel but there are few things that aren't trivial if you want dynamic DR capability in multidatacentre environment. Namely - eliminating SAN as single point of failure.

Governments are hopeless at security

Risque Management — Wed, 04 Jul 2007 09:36:13 GMT

One of the good things about BlackBerry - apart from the main client platform that will never get really

re: Use glue instead

Nhon Yeung — Tue, 26 Jun 2007 23:59:03 GMT

Another way without extra software is to do it in the BIOS. Most corporate pc's (ie dell/HP) also have hardware interlocks which can be configured to alert if the pc is opened as well. So you can be notified if someone tries to reset the BIOS or remove the HDD. I guess the only thing you need to glue to the pc is the mouse considering ps/2 or serial ports are pretty much extinct these days.

But i agree, siphoning info is a null point.

The attack surface

Risque Management — Thu, 14 Jun 2007 09:25:00 GMT

Jabez Gan, a fellow MVP, did an interesting book review - that of Professional Windows Desktop and Server

re: Single authority principle

Slav — Fri, 08 Jun 2007 07:58:06 GMT

Yes, I should have used "circular cause" or something like that. Not that illustrous...

re: Single authority principle

Adrian — Fri, 08 Jun 2007 06:49:54 GMT

you can't have a chicken-egg problem. An almost chicken can produce a chicken egg, but a chicken can't evolve from the part-chicken egg to become a chicken, hence the egg must come first.