Browse by Tags
All Tags »
Security (RSS)
While searching for memory leaking troubleshooting techniques that could be applied to 64-bit Windows (for the DHCP Server memory leak I found I had the other day ), I stumbled across the answer to my problem in an internal tool (weird that I missed it
Read More...
So, we all know that ISA 2006 doesn't work on Windows Server 2008 . Massive architectural changes to the IP stack, blah blah, etc, etc. People (uh, yeah, just "people") have been asking about what's to become of ISA Server for a while: "There's
Read More...
New modules, supported by Microsoft, are now officially RTMd (RTWd?) and available for use with IIS 7.0. WebDAV Yay new WebDAV! Yay being able to enable it on specific parts of a site! Yay better! Robert: http://blogs.msdn.com/robert_mcmurray/archive/2008/03/12/webdav-extension-for-windows-server-2008-rtm-is-released.aspx
Read More...
This question came up today (well, actually, it was about four weeks ago I started typing this, but bear with me), and it's been a little while since I've rambled about authentication protocols, so let's enjoy a nice, calm discussion on a Monday Tuesday
Read More...
All this stuff is based on a prerelease (RC1) version of Windows Server 2008 and may change before final release. Cheques may not be honoured. I had a happy moment one night in India when the trainer for our IIS 7.0 TTT course discussed some of the Kerberos-related
Read More...
You're running an IIS 6.0 website, and you have a virtual directory configured for anonymous authentication only (that is, you've un ticked Integrated Windows Authentication). Using a web browser, you try to access a file in that virtual directory. http://example.com/vdir/something.txt
Read More...
This week, a pointer to a solution to a problem I occasionally hit. Windows Vista (and by extension Windows Server 2008, I assume) utilizes a new EVTX log format for event log exports. It's XML-based, natch. Problem: Everyone's Favourite Log Digestion
Read More...
I recently encountered TCP Chimney for the first time in the wild. Short version: Chimney is an offload technology that allows the NIC to deal with up to X TCP connections, with any overflow being handled by Windows. All good: get the NIC dealing with
Read More...
Hit this earlier while working with someone else on a Kerberos delegation problem. All the SPNs looked right and were registered against the right accounts; all the App Pools were Network Service; from what I'd been told, everything should have been working...
Read More...
Back from another holiday (I call it the Arnold Rimmer technique) I've been trying to collect, rework and refurbish my thoughts on web-based Kerberos stuff in a personal Wiki. You're welcome to peruse it with the usual disclaimers that I'm frequently
Read More...
Raymond beats me to the punch (mine was going to be rant-i-er, but five times * as funny), on how the HKEY_USERS\.Default , despite having the word "Default" in the key name, isn't "The Default User" from which all others are initially spawned. It's possibly
Read More...
Ya don't. You can't win. But there are alternatives to fighting. Why Not? Windows Kerberos doesn't work in an Internet scenario, it's intranet-only. the client machine must be a member of the same Active Directory forest as the target site. You just can't
Read More...
Over here . Works with all ISA Server versions to date, and with Windows Vista client, importantly! x64 and x86 versions included. Safe when taken as directed. via Josh and KB article 929556 .
Read More...
Though it might technically be possible, it's probably quite difficult ("quite" in the "very" sense) to blog from Netmon. Doesn't stop us rolling out the most significant new version in, oh, years, and the Netmon team have started a blog with tips and
Read More...
The VML issue is still a hot topic in internal discussion. If you're an ISA Server admin, please take a look at the following information to help mitigate the risk: http://www.microsoft.com/technet/security/advisory/925568.mspx discusses a vulnerability
Read More...
