Welcome to TechNet Blogs Sign in | Join | Help

October 2006 - Posts

Oracle Announces Unbreakable Linux (aka Red Hat)

And by "unbreakable", of course, they mean that if you drop the shrinkwrap box on the floor, the CDs won't break because it's really well padded. At least, that's what I think it means, because I don't see how anybody could think it means unbreakable Read More...
Posted Thursday, October 26, 2006 10:07 PM by jrjones | 2 Comments

The Final Word - Jim Allchin Letter Clarifies Patchguard on Vista

Jim Allchin posted up a public letter that clears up any possible confusion on what API changes will or will not be in the initial version of Windows Vista. It isn't that long, so read it yourself here: http://www.microsoft.com/security/windowsvista/allchin.mspx Read More...
Posted Wednesday, October 25, 2006 12:40 AM by jrjones | 3 Comments

No 64-bit Windows Vista Security from <YourVendor> ?, Give Sophos a Try

UPDATE: It turns out that the Global Director of SophosLabs is Mark Harris , an old colleague from our days at McAfee. I've asked Mark if I could interview him on the blog here to get some details about their HIPS solution, so stay tuned! Sophos issued Read More...
Posted Tuesday, October 24, 2006 6:15 AM by jrjones | 2 Comments

Windows Vista and 3rd Party Security Protection

Over the past month or so, I have been amazed by the amount of speculation, strong assertions and outright misinformation that has been printed with respect to Kernel Patch Protection and the offical Application Programming Interfaces (APIs) into the Read More...
Posted Tuesday, October 24, 2006 3:27 AM by jrjones | 3 Comments

Technorati Claim Post

Technorati Profile Read More...
Posted Monday, October 23, 2006 5:53 PM by jrjones | 0 Comments

Windows vs Linux - Workstation - Q3 2006 addendum (High+Remote)

This post is dedicated to n00dles , for daring to ask for even more detail ;-) and should be considered as an addendum to Windows vs Linux - Workstation Comparison - Q3 2006 . Same caveats apply: NOTE: I am not asserting that my vulnerability analysis Read More...
Posted Friday, October 20, 2006 7:23 PM by jrjones | 2 Comments

Windows vs Linux - Workstation Comparison - Q3 2006

NOTE: I am not asserting that my vulnerability analysis demonstrates that Windows is more secure. Rather, I frequently hear and read Linux advocates making unsupported assertions to the opposite that Linux is inherently more secure than Windows. The "unsupported" Read More...
Posted Thursday, October 19, 2006 7:19 PM by jrjones | 13 Comments

2006 January through September Vulnerability Trends

This post is part of a multi-part Q3 2006 Vulnerability Report. Here are links to all of the sections, in case you want to read the others: 2006 January through September Vulnerability Trends (you are here) Windows vs Linux Workstation Comparison Windows Read More...
Posted Tuesday, October 17, 2006 7:11 PM by jrjones | 6 Comments

The Goodness of IE Enhanced Security Configuration

Way back before IE7 with "low rights IE" and its other improvements, Microsoft shipped IE6 for Windows Server 2003 in Enhanced Security Configuration . We're now getting ready for Windows Vista and Longhorn Server is on the horizon as well and I decided Read More...
Posted Wednesday, October 11, 2006 12:37 AM by jrjones | 0 Comments
Filed under: , , ,

Red Hat and Windows - Defining an Apples-to-Apples Workstation Build

Why Red Hat? As folks know who read my blog know, I normally utilize Red Hat as a proxy for Linux Distributions when analyzing Windows vs Linux for security and vulnerabilities. Some object to this ( Red Hat is Not Linux ), but it would be hard to select Read More...
Posted Friday, October 06, 2006 5:07 PM by jrjones | 5 Comments

How New is Your OS Platform ?

I was giving a talk last week covering some of the x86 vulnerability analysis that I do and I got a surprising (to me) comment: You are showing Red Hat 3 numbers - why are you intentionally comparing Windows to such an old version ? This sort of surprised Read More...
Posted Friday, October 06, 2006 8:15 AM by jrjones | 0 Comments
 
Page view tracker