Browse by Tags

All Tags » Networking » Security   (RSS)
ISA Server 2006 TCP Retransmits
14 October 09 03:24 PM | tristank | 0 Comments   
Health Checks I perform ISA Server Health Checks for Premier Support (via Premier Field Engineering) as part of my role. I’ve seen something a few times recently that I thought it might be helpful to call out, while poking around in the Performance Monitor Read More...
ISA Server 2006 on Windows Server 2008: Nup
05 June 09 02:52 AM | tristank | 1 Comments   
Yuri’s blog explains some of the detail. But there’s slightly more subtlety to it, which I’ll try to snake-oil in front of you here: Can I install ISA 2006 on 32-bit Windows Server 2008 ? No , it only runs on Windows Server 2003. Okay, so technically, Read More...
IIS WebDAV Security Advisory
19 May 09 05:49 PM | tristank | 0 Comments   
Today, an IIS 5.0 to 6.0 security advisory was released: Vulnerability in Internet Information Services Could Allow Elevation of Privilege http://www.microsoft.com/technet/security/advisory/971492.mspx If you’re using WebDAV on any version prior to 7.0 Read More...
On the ISA Server Security Update
15 April 09 11:57 AM | tristank | 0 Comments   
Rambling my way to a point One of my most favourite “Favorites” (read: “he snarled”) in recent weeks has been the ISA Server Product Team’s Build Numbers post . They helpfully list the version numbers of each ISA Server, um, version, along with a link Read More...
Antivirus software on ISA Server
09 April 09 10:44 AM | tristank | 2 Comments   
There are two major classes of Anti Virus software (yes, I know I used one word above, it’s called SEO, okay?) that can be used on an ISA Server computer: ISA-integrated antivirus scanning products Regular desktop/server antivirus products The first category Read More...
IAG – now available for Hyper-V
29 January 09 07:47 PM | tristank | 0 Comments   
Of all the things I could be doing right now, blogging is the one that won. Feel special? Procrastination, but with a helpful bent. IAG SP2 is now a VHD for Hyper-V Your mission, Jim, is to make that into a song. The most interesting “wow” moment I had Read More...
That Memory Leak Revisited
25 June 08 04:59 PM | tristank | 2 Comments   
While searching for memory leaking troubleshooting techniques that could be applied to 64-bit Windows (for the DHCP Server memory leak I found I had the other day ), I stumbled across the answer to my problem in an internal tool (weird that I missed it Read More...
The Cat's Out Of The Bag: ISA Server will become ForeFront TMG
09 April 08 05:21 PM | tristank | 1 Comments   
So, we all know that ISA 2006 doesn't work on Windows Server 2008 . Massive architectural changes to the IP stack, blah blah, etc, etc. People (uh, yeah, just "people") have been asking about what's to become of ISA Server for a while: "There's Read More...
"Stacking" NTLM Authentication
11 March 08 05:30 PM | tristank | 0 Comments   
This question came up today (well, actually, it was about four weeks ago I started typing this, but bear with me), and it's been a little while since I've rambled about authentication protocols, so let's enjoy a nice, calm discussion on a Monday Tuesday Read More...
SetSPN improvements in Windows Server 2008! W00t!
21 December 07 05:21 PM | tristank | 0 Comments   
All this stuff is based on a prerelease (RC1) version of Windows Server 2008 and may change before final release. Cheques may not be honoured. I had a happy moment one night in India when the trainer for our IIS 7.0 TTT course discussed some of the Kerberos-related Read More...
401.3, you say? Not 403?
22 October 07 08:35 PM | tristank | 1 Comments   
You're running an IIS 6.0 website, and you have a virtual directory configured for anonymous authentication only (that is, you've un ticked Integrated Windows Authentication). Using a web browser, you try to access a file in that virtual directory. http://example.com/vdir/something.txt Read More...
Netmon vs Chimney
23 July 07 02:22 PM | tristank | 1 Comments   
I recently encountered TCP Chimney for the first time in the wild. Short version: Chimney is an offload technology that allows the NIC to deal with up to X TCP connections, with any overflow being handled by Windows. All good: get the NIC dealing with Read More...
KDC_ERR_BADOPTION when attempting constrained delegation
18 June 07 06:50 PM | tristank | 1 Comments   
Hit this earlier while working with someone else on a Kerberos delegation problem. All the SPNs looked right and were registered against the right accounts; all the App Pools were Network Service; from what I'd been told, everything should have been working... Read More...
Kerbi Wiki
12 April 07 05:35 PM | tristank | 1 Comments   
Back from another holiday (I call it the Arnold Rimmer technique) I've been trying to collect, rework and refurbish my thoughts on web-based Kerberos stuff in a personal Wiki. You're welcome to peruse it with the usual disclaimers that I'm frequently Read More...
Every Windows Admin Should Know: Template User vs Mr Nobody
09 March 07 02:28 AM | tristank | 0 Comments   
Raymond beats me to the punch (mine was going to be rant-i-er, but five times * as funny), on how the HKEY_USERS\.Default , despite having the word "Default" in the key name, isn't "The Default User" from which all others are initially spawned. It's possibly Read More...
More Posts Next page »

Search

This Blog

Syndication

Page view tracker