We have just released a white paper which explains in detail the plans for Network Access Protection(NAP) to enforce the security of IPSEC clients. NAP will be a very powerful part of Windows Vista and the corresponding server operating system (currently...

John Howard has posted the link to a document which goes into the intricate detail of how Microsoft Windows XP and Server 2003 implement TCP/IP. If you really want to understand exactly how this works and hence how to secure it then click here for the...

<This post has been edited to attribute the image accordingly> The Marketing Soiree was a very interesting community event. The audio of Seth Godin's talk together with the Q&A is available here . He had fun with each person that wished to...

I've heard Jesper talk about this many times and have used passphrases for a long time myself. The term "password" is in itself misleading as is suggests that a single word will suffice. Many of our companys force us to use absurdly complex passwords...

I've worked for Microsoft for two and a half years and yet this is the first time I've been to TechEd. I flew in yesterday and was fortunate to meet several speakers from the security track. I discovered the delights of Tequila WITH Tobasco - thanks...

Don't get carried away by the title to this post - no conference venue is going to have good physical security by it's very nature of allowing admission to members of the public and the shear scale - most important the impact of a security violation at...

Travelling from my hotel to TechEd I've been walking through Vondelpark - a place festooned with more high speed hazards(otherwise known as Bicycles!) than I've ever seen before! In the trees there were many Green Parrots which were sqwarking everywhere...

Network Access Protection(NAP) is an exciting technology feature of Windows Vista client and the corresponding server which is still known by it's codename of "longhorn". NAP provides the automated mechanism to assess the policy compliance (health status...

There's a good white paper which describes the security features of Windows Vista - just click here to access it. The white paper examines how Windows Vista will make it easier to avoid malware spyware and phishing attempts. It also looks at the new...

Just click here if you'd like to see my photographs from TechEd EMEA

My colleague John Howard is implementing VPN Quarantine at home this weekend! I read his blog entry and figured that he'd find the following link useful as it provides a wide range of scripts which can be used to assess the policy compliance of the client...

My colleague John Howard recently added a post talking about upgrading the firmware on his wireless router to add support for WPA2 (Wireless Protected Access 2) - click here to read John's post . As John points out KB893357 provides the required update...

In case you're new to MBSA it's a security scanner which you can download(for free), install it on a machine in your environment and gather information regarding missing patches and updates. You require Administrator rights on the target machines to obtain...

Mat has posted a great article explaining about the dangers of walking around in Amsterdam. We're just not used to Trams Bikes and Cars coming seemly from every possible direction. Read his post here to find out more - it's funny.

Click here to view the recording of Mark Russinovich's TechEd breakout session, Understanding and Fighting Malware: Viruses, Spyware and Rootkits , it was one of the top 10-rated sessions at TechEd, viewed live by over 1000 TechEd attendees and webcast...

I'm going to be at TechEd EMEA all next week and would love to meet as many of you as possible to debate the best ways to defeat the nasties that threaten the integrity of our business transactions. I'll be on email pretty frequently and can be found...

Check out Eileen's post by clicking here to read about Steve Balmer's views on Blogging... Steve was interviewed by the Channel9 team who are well known for wandering around Microsoft Campus in Redmond with a video camera and few boundaries. The full...

During the course of my conversations with people at TechEd last week on item came up time and again - many of you work with people who panic when there's a high profile security story in the news - the result is that you are tasked with interrupting...

Rob Caron works for Microsoft Corp. and he's looking for your feedback regarding how important you view separation between IIS, SQL and Team Foundation Server. For those who haven't heard of Team Foundation Server(TFS) it's a part of the upcoming Visual...

Thanks to Rob for setting me straight with regard to my last post about Team Foundation Server. Rob's pointed out that TFS is not actually limited to teams of people greater than five - I added this comment as the strengths of TFS centre around it...

I'm staggered that there's a Trojan which is transmitted by email which purports to be information of the recent terrorist activity in London. Thanks to Matt Dickins' comment which made me aware of this. The details are here . Apologies to those who...

Duane put's it quite nicely in his post - there's definately far more to security that just a single technical solution. Let's face it, many firewalls merely route traffic from one interface to another having decided whether to allow the traffic based...

Bill Reid has provided an article for the TechNet Industry Insiders which looks at how to increase the throughput of IIS6 by configuring the web server to only authenticate the inital traffic in the session. Clearly there's a security risk in reducing...

Sorry Michael - by mistake I missed your name off the description in my earlier post about the Malware Chalk and Talk. Michael is co-presenting the Anti-spyware & Malware security Chalk and Talks at TechEd. I recommend you check out his blog to...