Security


Microsoft's Rushed Full Disclosure Patches Found Just as Effective

Publicity gets Redmond's attention better than private disclosure of its vulnerabilities.

  • By Russ Cooper
  • 01/30/2006

Repetitive Log-In Syndrome

Windows' Stored User Names and Passwords feature can help this admin from developing a common, on-the-job stress.

  • By Zubair Alexander
  • 01/23/2006

Patches Still MIA for BlackBerry Flaw

PDA users still at risk for exploit code or denial of service, despite official acknowledgement of the vulnerabilities.

  • By Russ Cooper
  • 01/23/2006

Add/Remove Programs Problem

Admin tries to remove programs, but doesn't see that option

  • By Chris Wolf
  • 01/17/2006

Third-Party Microsoft Patch a Bad Idea

Tenuous support, trust, quality and assurance are just some of the reasons not to install a third-party patch.

  • By Russ Cooper
  • 01/16/2006

Dead Security Policy Icons

Following an upgrade to Windows Server 2003, this admin's default security policy icons have gone kaput.

  • By Zubair Alexander
  • 01/09/2006

DirectX Confusion Is Good News -- For Hackers

Thanks to Microsoft, outdated versions of DirectX can leave users vulnerable.

  • By Russ Cooper
  • 01/09/2006

Permissions Panic - Delegation of Control

The Effective Permissions tab can sometimes yield misleading results.

  • By Chris Wolf
  • 01/03/2006

Kerberos 4, No More

MIT drops support for Kerberos 4; DNSSEC; port scans; AIM worms and fradulent Whois records.

  • By Russ Cooper
  • 01/03/2006

December Vista Tech Preview Bows

As promised, after skipping November, Microsoft began shipping the December Windows Vista community technology preview (CTP) to customers and partners this week. Among other features, the latest build debuts a slew of new security capabilities.

  • By Stuart J. Johnston
  • 12/20/2005

One Site Exploits IE Flaw

A visit to the malicious site in question can invite a trojan into your midst.

  • By Russ Cooper
  • 12/19/2005

Sworn to Protect

As the real-time intrusion prevention market grows, so do the number of players ready with solutions. One player hoping to make strides is NFR Security, with their flagship product, Sentivist.

  • By Michael Domingo
  • 12/14/2005

Test Suite Discovers Numerous ISAKMP/IKE Flaws

Several vendors release patches after vulnerabilities are found by Protos.

  • By Russ Cooper
  • 12/12/2005

More MS Buffer Image Vulnerabilities, but Are They Really a Threat?

The ability to embed malware in Office documents might provide a new avenue for hackers to exploit.

  • By Russ Cooper
  • 12/05/2005

Spies in Every Corner

These tools help eliminate spyware, keep your systems clean and running efficiently and—most importantly—protect vital information.

  • By Danielle Ruest and Nelson Ruest
  • 12/01/2005

Spyware Meets Its Match -- Almost

Microsoft's anti-spyware tool works well enough, but some readers question its categorization and detection capabilities.

  • By Joanne Cummings
  • 12/01/2005

SQL 2005: The Integrated Stack Is Back

Is all this integration among Microsoft components good for customers?

  • By Scott Bekker
  • 12/01/2005

Think Microsoft’s Slow? Check Out These Patches

Microsoft is diligent compared to these vendors who release their fixes a year after the fact.

  • By Russ Cooper
  • 11/28/2005

MS05-048 Proof of Concept Code Released

Overflow in the "content-type" field of the message header seems to be the culprit of the CDO vulnerability.

  • By Russ Cooper
  • 11/21/2005

Where in the World are the IPSec Policies?

Admin wants to know how IPsec policies can be configured.

  • By Zubair Alexander
  • 11/14/2005
Most   Popular