Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

All Tags » Security   (RSS)

Treat all input as Evil until proved otherwise - how to prevent code injection

Adrian J. Beasley has provided us with another excellent article titled A General Defence Against Injection Attacks on Websites written in his inimitable fashion tackling the challenging subject of how to validate user input. Read More...
Posted Monday, April 07, 2008 3:56 PM by Steve Lamb | 0 Comments
Filed under:

A General Defence Against Injection Attacks on Websites

By Adrian J. Beasley The usual range of IT Security techniques is of little use against injection attacks. They can mitigate some of the effects of such attacks by, for example, setting proper permissions on resources, and ensuring that access from websites Read More...
Posted Monday, April 07, 2008 3:48 PM by Steve Lamb | 1 Comments
Filed under: ,

Windows 2008 protection from Accidental deletion

Many thanks to Richard Siddaway for his article on protecting AD objects from Accidental Deletion. Well worth a read if you've ever deleted the wrong thing from AD. Read More...
Posted Wednesday, October 31, 2007 5:18 PM by jamesone | 0 Comments

Windows Server 2008 Protection from Accidental Deletion

By Richard Siddaway, Microsoft Practice Leader, Centiq Ltd With each new version of the Windows Server Operating System there are new possibilities for automation to help make the administrator’s job easier. Automation brings increased efficiencies but Read More...
Posted Wednesday, October 31, 2007 5:11 PM by jamesone | 2 Comments

Be proactive: Information Security as a Business Enabler

Thanks to Paul Vincent for contributing his article Information Security; The Business Enabler . Paul goes on to explain how information security is much more than setting every security control you can lay your hands on. Read More...
Posted Wednesday, August 29, 2007 9:14 PM by Steve Lamb | 0 Comments
Filed under:

Information Security; The Business Enabler

By Paul Vincent Don’t get me wrong, I’m a tecchie. There was a time (and it wasn’t that long ago!) when I could name and identify the function of pretty much every Group Policy Object setting in Windows XP. However, Information Security is more than setting Read More...
Posted Wednesday, August 29, 2007 9:00 PM by Steve Lamb | 2 Comments
Filed under: ,

ID: Who do you think you are?

Thanks to Craig Murphy for contributing his article titled Who Do You Think You Are? - it's well worth a read. He talks about identity from the perspective of a variety of vendors and applications. Read More...
Posted Wednesday, August 22, 2007 9:08 AM by Steve Lamb | 0 Comments
Filed under:

Who do you think you are?

By Craig Murphy Actually, that's the wrong question, I really need to know who you are, who you really are, please confirm your identity. How are you going to tell me who you are? I've got an e-mail address, send me an e-mail and I'll reply, then you'll Read More...
Posted Wednesday, August 22, 2007 9:00 AM by Steve Lamb | 1 Comments
Filed under: ,

How to make sense of anti-virus reviews

Thanks to David Harley for sharing some of his vast experience of the anti-virus industry in his article titled An Insider's Guide to Comparative Anti-virus Reviews . David explains in detail how independant labs evaluate software and includes links and Read More...
Posted Monday, August 20, 2007 9:10 AM by Steve Lamb | 0 Comments
Filed under:

Insider's Guide to Comparative Anti-Virus Reviews

By David Harley There has been a certain amount of excitement and irritation in anti-virus research circles about a not-very-good comparative test of antivirus scanners that was conducted at LinuxWorld on 8th August, 2007. I was so exercised personally Read More...
Posted Monday, August 20, 2007 9:00 AM by Steve Lamb | 1 Comments
Filed under: ,

The wonders of Software Restriction Policies and PowerShell Code Signing

Thanks to Adrian J. Beasley for providing yet another excellent article, this one's titled Software Restriction Policies and PowerShell Code Signing - Adrian provides a wealth of practical advice how to make the most of one of the most powerful yet under Read More...
Posted Friday, August 17, 2007 3:55 PM by Steve Lamb | 1 Comments
Filed under: ,

Software Restriction Policies and PowerShell Code Signing

By Adrian J. Beasley Health Warning Software Restriction Policies (SRPs) are extremely powerful . They also make it possible for you to foul up big-time - there is no safety barrier. For all that, they are very useful. “With great power comes great responsibility.” Read More...
Posted Friday, August 17, 2007 3:54 PM by Steve Lamb | 1 Comments

To secure your documents, or not, that's the question

Adam Vero is our newest contributor. I encourage you to read his pragmatic advice for securing information is his post titled Don't Secure Your Documents . His proactive "security as an enabler" perspective makes a refreshing read. Read More...
Posted Wednesday, August 15, 2007 6:43 PM by Steve Lamb | 0 Comments
Filed under:

Don’t secure your documents!!

By Adam Vero ...or rather, don’t use poor methods to secure documents (or anything else – this is bordering on Security Theatre). Also, don’t spend valuable IT resources securing things for users on a case-by-case basis by creating a tangled web of folders Read More...
Posted Wednesday, August 15, 2007 5:38 PM by Steve Lamb | 2 Comments
Filed under: ,

How to extend your Cryptographic Service Provider infrastructure

Adrian has written another enlightening article tackling the often confusing subject of Installing New Cryptographic Service Providers with aplomb. His article explains in some detail how CSPs work to integrate devices such as smart cards with the underlying Read More...
Posted Tuesday, April 03, 2007 3:20 PM by Steve Lamb | 0 Comments
Filed under:
More Posts Next page »
 
Page view tracker