Browse by Tags
All Tags »
Hardening (
RSS)
Explains an old trick on how to guess someone else's password without anything getting logged in the domain controller's event logs Read More...
Today Symantec released two new whitepapers about security protections in Vista: Analysis of GS Protection in Windows Vista and Analysis of Address Space Layout Randomization on Windows Vista. Although my last blog post criticized Symantec for its hyped...
Recently a friend was complaining to me about the “screen flickering” that occurs whenever a User Account Control (UAC) prompt comes up in Vista and he wanted to know how to turn it off—not UAC, just the dimming and flickering effects. He...
When I was a teenager in California there was private oil pier near Rincon that we liked to jump off. It was great—you’d throw your surf board off first so there was no backing out, because it was scary looking down at the dark green ocean so far below...
I thought I would add a bit more to my original post to clarify the problem. Half of the problem is the way Windows searches paths, and the other half is software developers who don’t quote their paths in the Registry or when calling CreateProcess...
A couple years ago I mentioned in a SecurityFocus column that Windows has a problem when you put a file named “program.exe” in the system root directory. The problem is basically in how it deals with spaces in paths that don’t have quotes...
I have always been annoyed with the huge number of files under the Windows directory, but I was very surprised when I looked at my Windows directory under Vista: 39,609 files and 7,411 folders! Read More...
If you have ever locked down a Windows 2003 or Vista machine you have probably run across the Application Experience Lookup Service, also known as Application Experience or AeLookupSvc. The documentation on this service is pretty vague and sometimes contradictory...
I recently got a chance to play around with file screens feature in Windows Server 2003 R2 and found it to be very interesting. Although it appears to be designed to provide general content control on a file server, it has some features that allow you...
Many people tell me they are surprised with how much effort I put into hardening Windows Server 2003–the last hardening document I wrote for a client was 112 pages long. That’s not 112 pages of writing, policy, and how-to’s, that’s...
Microsoft has released v1.2 of the Windows Vista Security Guide: http://go.microsoft.com/?linkid=5639874 Read More...
One thing I have always liked about NTFS security is the fine-grained control you have over file permissions. But this power comes at a price—you must understand a whole new world of acronyms, confusing metaphors, and expanded definition of words such...
With Microsoft’s ongoing improvements to the patch management process, you may find yourself letting automation take over on patch Tuesday. I sat down at my PC this morning and saw that it had rebooted because it automatically installed new updates...
Have you ever needed to audit which icons users click on the Start Menu? It makes quite an impressive forensics report when you can say exactly who clicked what and when. Well you can do it in Windows pretty easily. First, enable auditing on all files...
Using Log Parser, virtualization, and a little psychology. The article is available here to subscribers of Windows IT Security. . Click abuse: http://click-abu.zers.net/ Read More...
I was recently going through my windows lockdown procedure, cleaning up unnecessary files and noticed that every Windows 2003 Server I own has a wmpub directory in the root of my C drive. The only thing in the directory is an empty subdirectory named...