Neil Carpenter's Blog

Forefront products, WSUS, Security Incident Response, and whatever else comes up.

October, 2008

  • SQL Injection Hijinks

    or Why I Keep Harping On Blacklisting Summary: An incident reveals attempts to get around blacklisting by manipulating behavior in ASP, illustrating the weakness of blacklist approaches. A new version of UrlScan is shipping today with a change...

    Occasionally, I see a security incident where one of the things that went wrong was that all of the customer's machines have the same password for the built-in administrator's account.  Whenever this happens, I suggest the PASSGEN tool that was included...