Welcome to TechNet Blogs Sign in | Join | Help

May 2006 - Posts

New Enterprise Linux - Ubuntu

For business use, the largest driver of Linux adoption has been the Enterprise Linux releases. Product names aside, I am referring to those Linux-based distributions that offer longer, multi-year support commitments for a version of the product. To date, Read More...
Posted Wednesday, May 31, 2006 3:30 PM by jrjones | 0 Comments
Filed under: ,

Address Space Layout Randomization (ASLR) in Windows Vista Beta2 ?

UPDATE: Mike Howard has posted to his blog , confirming David and providing details on the Vista ASLR features. So, a couple of weeks ago, Jesper Johannsen wrote how the Windows Firewall was one of his favorite security features in Windows Vista. My favorite Read More...
Posted Friday, May 26, 2006 11:30 AM by jrjones | 6 Comments
Filed under: , ,

Windows Vista Beta2 Security Paper

Was reading Dana Epp's blog and found reference to a new Microsoft paper called Microsoft ® Windows Vista™ Security Advancements . Good overview of most security enhancements in Beta2. The funny part of this story is that Dana noticed the paper while Read More...
Posted Thursday, May 25, 2006 10:30 PM by jrjones | 1 Comments
Filed under: , ,

Novell Removes /truth and Security from Linux Site

Provocative, but technically true. You may or may not recall that Novell published www.novell.com/linux/truth in response to Microsoft's www.microsoft.com/getthefacts site. I browsed out there yesterday to see the current truth for myself and was redirected Read More...
Posted Thursday, May 25, 2006 12:45 PM by jrjones | 2 Comments

JeffOS EAL4+ Secure System

(read my background article first) JeffOS gets EAL4+ certification... not really. Primarily because I haven't created JeffOS. But hey, I'm thinking about it, so stay with me while I think about what configuration of JeffOS I should submit for evaluation. Read More...
Posted Wednesday, May 24, 2006 8:00 PM by jrjones | 4 Comments

Coverity Confused Claims Cause Consternation and Confusion

Okay, maybe it only causes me consternation, but this is exactly the sort of thing that raises my temperature. With the academic background of Coverity founders, one should expect a certain amount of rigor and care when it comes to analysis and conclusions, Read More...
Posted Friday, May 12, 2006 9:08 PM by jrjones | 0 Comments
Filed under: , ,

Workload Vulnerability Index

In the recent Risk Report: A Year of Red Hat Enterprise Linux 4 in Red Hat Magazine, Mark Cox defined an interesting new security metric, the Workload Vulnerability Index, that provides a weighted measure of the impact that ongoing security vulnerabilities Read More...
Posted Tuesday, May 09, 2006 11:15 PM by jrjones | 10 Comments

Washington Post - A Time to Patch III: Apple

You've probably already read Brian Krebs article A Time to Patch III: Apple , but if you haven't, I encourage you to read it and read the various responses he received - the responses run the gamut of Linux advocates ("You do understand that Mac OS X Read More...
Posted Friday, May 05, 2006 6:45 PM by jrjones | 0 Comments
Filed under:

On Disingenuous Analysis and Transparency

So, I am perusing security blogs this weekend and I read this interesting entry by Mark Cox of Red Hat about transparency where he says "...the Microsoft PR engine has been churning out disingenuous articles and doing demonstrations based on vulnerability Read More...
Posted Thursday, May 04, 2006 6:47 PM by jrjones | 2 Comments
 
Page view tracker