Welcome to TechNet Blogs Sign in | Join | Help

October 2008 - Posts

Friday, October 31, 2008 4:07 PM

SQL Injection Hijinks

or Why I Keep Harping On Blacklisting Summary: An incident reveals attempts to get around blacklisting by manipulating behavior in ASP, illustrating the weakness of blacklist approaches. A new version of UrlScan is shipping today with a change specifically
Posted by neilcar | 1 Comments
Wednesday, October 22, 2008 2:52 PM

PASSGEN

Occasionally, I see a security incident where one of the things that went wrong was that all of the customer's machines have the same password for the built-in administrator's account.  Whenever this happens, I suggest the PASSGEN tool that was included
Posted by neilcar | 2 Comments
Filed under: ,
 
Page view tracker