Welcome to TechNet Blogs Sign in | Join | Help

Browse by Tags

All Tags » Security   (RSS)
Saturday, October 04, 2008 12:54 AM

Nuclear Controls

On a nuclear submarine, it takes two keys to initiate the launch of a nuclear missile (if movies like Hunt for the Red October are to be believed).  At Microsoft, it looks like we use THREE cards to allow access to our Public Key Infrastructure.
Posted by smearp | 0 Comments
Filed under:
Friday, October 03, 2008 10:37 PM

CISSP® Baby!

In my Inbox today from (ISC)2 : Congratulations! It gives me great pleasure to be the first to address you with the Certified Information Systems Security Professional (CISSP®) designation! Based upon your examination results, a review of your application
Posted by smearp | 1 Comments
Filed under: ,
Friday, October 03, 2008 10:23 PM

Threats and Countermeasures Guide updated for Windows Vista

It looks like the Threats and Countermeasures guide has been updated for Windows Vista. This guide is a reference to security settings that provide countermeasures for specific threats against current versions of the Windows® operating systems. This guide
Posted by smearp | 1 Comments
Monday, September 15, 2008 6:40 PM

Should I go there?

Below are screenshots from IE8, Safari, and Firefox 3 when visiting a phishing website that hit my email this morning. (Firefox didn't yet have the bad URL in their blacklist, so I waited until they did to take a screenshot). Does your web browser pass
Posted by smearp | 0 Comments
Monday, May 19, 2008 5:41 AM

Security within Microsoft's own IT department

In case you are curious what it is like to be in charge of Security for IT at Microsoft, you get to deal with an environment where there are: Approximately 100,000 intrusion attempts each month. Approximately 1 million infected or malicious e-mail messages
Posted by smearp | 1 Comments
Thursday, May 15, 2008 6:07 PM

Microsoft Baseline Security Analyzer update released. Now with 64-bits!

I see over on Matt's blog that MBSA 2.1 has been released, with the following new features: Windows Vista and Windows Server 2008 compatibility New revised user interface 64-bit support Improved Windows Embedded support Compatibility with Microsoft Update,
Posted by smearp | 2 Comments
Thursday, May 15, 2008 8:43 AM

Why can I not compress AND encrypt a folder in Windows?

Just a random bit of knowledge to share here :) If you open the Advanced Attributes of a folder (right-click on it, choose properties, then click Advanced...), you have the option at the bottom of the window to either compress the contents to save disk
Posted by smearp | 1 Comments
Filed under: ,
Tuesday, May 13, 2008 6:13 AM

I did it! (also known as the June TechNet Magazine)

One of the best parts of working at Microsoft is the amazing discussions and debates that take place on our internal Discussion Lists. A few months ago, the greatest security minds at Microsoft were undergoing a hot and heavy debate on Security by Obscurity
Posted by smearp | 0 Comments
Filed under: , , ,
Sunday, April 20, 2008 7:31 AM

Active Directory Security Best Practices

Because why wouldn't you? Best Practice Guide for Securing Windows Server Active Directory Installations Best Practice Guide for Securing Active Directory Installations and Day-to-Day Operations: Part 1 Best Practice Guide for Securing Active Directory
Posted by smearp | 0 Comments
Wednesday, March 12, 2008 6:34 AM

Windows Server 2008 Security Guide Released

Not sure how I missed this, but the Windows Server 2008 Security Guide has been released! It is available online here , and for download here . As an IT professional focused on security, you know firsthand how essential your servers are to keeping your
Posted by smearp | 0 Comments
Sunday, February 24, 2008 8:09 PM

The First Step on the Road to More Secure Software is admitting you have a Problem

GREAT post by Michael Howard over on the SDL blog about the hyperbole that usually crops up on <cough>/.</cough> whenever Jeff Jones posts his vulnerability analysis report. "This is FUD" "Yeah, but it's not an apples to apples comparison"
Posted by smearp | 0 Comments
Filed under:
Wednesday, January 16, 2008 2:18 AM

Security Best Practices

By no means a comprehensive list, today's Best Practices are brought to you by the letter " security ". TechNet Security Home Assess Your Environment •The Security Risk Management Discipline module •The Assessing Network Security book •The SANS Security
Posted by smearp | 1 Comments
Thursday, January 10, 2008 2:21 PM

Books, books, and more books

With the upcoming Windows Server 2008 release, there are a TON of cool books coming out from MSPress. You can always check out the list here ( http://www.microsoft.com/mspress/hop/ ), but the books that will be lining my bookshelf upon release are: MCITP
Posted by smearp | 2 Comments
Saturday, October 06, 2007 7:29 AM

Windows Server 2008 - Fine Grained Password Policy Walkthrough

Back in March, I wrote about one of the important new features in Windows Server 2008, the Fine-grained password policy (also a great post for learning more about passwords in general). In any case, there has been an increase in available documentation
Posted by smearp | 5 Comments
Sunday, September 09, 2007 3:50 AM

Fingerprints as authentication

Authentication is an interesting component of network security. In order to be granted (or denied) access to a resource, a user must be uniquely identified. In other words, a user must be able to prove that they are who they say they are. This is critical
Posted by smearp | 0 Comments
Filed under: ,
More Posts Next page »
 
Page view tracker