Steve Riley on Security

Formerly of Microsoft's Trustworthy Computing Group.

September, 2008

  • Passgen tool from my book

    Way back in 2005, Jesper Johannson and I wrote Protect Your Windows Network . It’s still available , and although its product set is now somewhat dated (Windows XP and Server 2003), much of the practical advice about security policies, social engineering...
  • Sao Paulo, here I come

    I have a new TechEd destination this year: Brazil. It’ll be my first time to speak at our event there; indeed, even my first time to travel to South America. I’m looking forward to it. The event runs during 14-16 October 2008 . I’m delivering the same...
  • Internet Explorer security levels compared

    A pretty good question came across the newsgroups the other day. Someone was asking what are the differences between IE's "medium" and "medium-high" security settings. I did some digging, and found only this on MSDN: About URL security...
  • The opt-out from hell

    One problem with making your email address available (which I will continue to do, don't worry) is that folks with something to sell assume you're interested in their stuff. To wit, let's consider an email I received today (copied, headers and all, after...
  • Blamestorming

    So, let's recap the sequence of events: The Sun-Sentinel newspaper in Fort Lauderdale accidentally republishes a six-year-old news story about the bankruptcy of UAL. It wasn't on the home page, but instead buried somewhere inside the web site. Google...
  • Who is "dodacrazy" and what is a "montize buddy"?

    Check this out: http://blogs.technet.com/steriley/archive/2008/06/25/directly-connect-to-your-corpnet-with-ipsec-and-ipv6.aspx#3122377 Hey Steve you and your montize buddy Scott will soon have your hands full after the federal officers come down on your...