Geeks With Blogs
ex-blog Information security world April 2004 Entries
Image File Execution Options
Junfeng Zhang posted interesting summary of 'image file execution options' in Windows.

Posted On Thursday, April 29, 2004 7:49 AM

IPSec for Windows Server 2003
Microsoft posted a paper discussing implementation of the IETF's Internet Protocol security (IPSec) in Windows 2003 to the download center [via Brian Johnson]: The Microsoft Windows Server 2003 operating system includes an implementation of the Internet Engineering Task Force’s Internet Protocol security (IPSec). IPSec, which is also included in Windows 2000 and Windows XP, provides network managers with a key line of defense in protecting their networks. IPSec exists below the Transport layer, ......

Posted On Thursday, April 29, 2004 7:09 AM

Bruce Sterling - The Zenith Angle
Bruce Sterling [rss] (my other favourite writer) posted his new book “The Zenith Angle” promotion tour map. It is a pity that Russia in not in list ;-) ......

Posted On Tuesday, April 27, 2004 9:23 AM

Exploiting Software: How to Break Code - review
Dana Epp posted his interesting review of Exploiting Software: How to Break Code by Greg Hoglund and Gary McGraw: Gary and Greg did a great job in this book. It is well thought out and meticulous in the detail on showing just how to break code. If you design secure systems YOU MUST READ THIS BOOK. Hell, even if you don't you should read this book ... [more] I'm still waiting for this book (sometimes it takes a whole month to receive book in Russia :-( ) ......

Posted On Tuesday, April 27, 2004 8:58 AM

Security Coding Issues

During Route 64 site review I found abridged version of Michael Howard's presentation: Security Coding Issues (very suitable for introduction in topic).

Posted On Monday, April 26, 2004 6:06 PM

Infosecurity Moscow Exhibition
>" src="http://www.infosecurit... width=88 border=0>INFOSECURITY MOSCOW exhibition will be held in the Gostiniy Dvor (near Red Square) 21-23 September 2004. Exhibition program is not available right now, but list of participants is broad (may be we'll be there at AZI stend) [Update] Russian bugtraq also posted link to exhibition site ......

Posted On Monday, April 26, 2004 4:53 PM

Security in Longhorn: Focus on Least Privilege
Keith Brown write interesting article for Longhorn Developer Center at MSDN: Security in Longhorn: Focus on Least Privilege A least privileged environment is going to significantly increase the security of the "Longhorn" Windows platform. Get started today by writing managed code, first of all, and when building desktop applications, make them LUA (Logical Unit Application programming interface) compliant [via Dana Epp's blog] Power Users Group (or 'Admin Lite') finally would be deprecated and deployment ......

Posted On Friday, April 23, 2004 6:55 AM

TCP RST(Reset) flaw found
Basically the attack pattern is resetting an established TCP connection by sending suitable TCP packets with the RST (Reset) or SYN (Synchronise) flags set. The packets need to have source and destination IP addresses that match the established connection as well as the same source and destination TCP ports [from Dana Epp blog] Explanation in Russian also available at [Updated 23.04] Eric Rescorla [rss] posted his thoughts about this issue. Paul Watson's research paper, slides and code ......

Posted On Thursday, April 22, 2004 11:59 AM

TechNet Security Bulletin RSS Feed
TechNet now has a Security Bulletin RSS feed [from Brian Johnson blog]

Posted On Thursday, April 22, 2004 11:27 AM

Moving to 64-bit
64-bit porting issues for server and application code will be covered in Route 64 tour that I'm going to attend. Local event in Moscow will be May 18 and will cover following topics: Microsoft Product Roadmap and Market Opportunities Including 64-bit versions of Windows XP, Windows Server, .NET Framework, and Microsoft SQL Server Architecture Review Including AMD Athlon64, AMD Opteron, Intel Itanium Processor Family, and Intel Xeon With Intel® Extended Memory 64 Technology Application Compatibility ......

Posted On Tuesday, April 13, 2004 12:22 PM

Spammer hunting for fun and profit

Vivek Sharma (of Exchange Team) posted “Spammer hunting for fun and profit” article.

I'm currently using SpamBayes free antispam plug-in for Outlook 2003, but sometimes we really need to give a lesson to spammers.

Posted On Tuesday, April 13, 2004 11:48 AM

Random generation seed quality

Raymon Chen posted note about choosing of seed for random number generation.

Random number generation is hard. That's why you should leave it to the experts.

Posted On Tuesday, April 13, 2004 11:35 AM

Source code security analysis software and development process
A new company, Fortify Software, has recently launched its products into the marketplace. Fortify's solutions help developers secure their program code both during development and during runtime. The company's source code analysis software uses 540+ program coding rules to seek out security-related coding errors in code written in C, C++, and Java. Fortify's runtime analysis looks for security problems in active application. The products support Windows, Linux, and Solaris platforms, and will become ......

Posted On Friday, April 9, 2004 8:07 AM

Gibson map
I like Gibson's books. Here's a map of his works.

Posted On Thursday, April 8, 2004 1:48 PM

Creating Certificate Requests Using the IEnroll and CryptoAPI
Complex certificate requests (with SubjAltName and UPN attributes) generation article is posted at MSDN: Use the Certificate Enrollment control and CryptoAPI to create certificate requests, and then use them to enroll with a Microsoft Certificate Server in Windows 2000, Windows Server 2003, or even a third-party certificate authority [more...] ......

Posted On Wednesday, April 7, 2004 8:05 AM

Windows Installer XML toolset finally released
Windows Installer XML (WiX) toolset has released as Open Source on [from Rob Mensching blog] I'll play with it tomorrow morning and try to incorporate in our automatic build system ;-) Update: Rob invented invited a number of the people who helped the toolset for small Windows Installer XML Ship Party . Thank you all for releasing this great toolset =)! Update (21/04): Mike Gunderloy posted Introducing WiX article for ONDotnet. Update (31/05): Jeff Callahan posted that soon wix tasks ......

Posted On Monday, April 5, 2004 3:52 PM

Support for Russian algorithms in certificates
CryptoPro posted updated drafts at IETF: Using the GOST R 34.10-94, GOST R 34.10-2001 and GOST R 34.11-94 algorithms with the Internet X.509 Public Key Infrastructure Certificate and CRL Profile and Additional cryptographic algorithms for use with GOST 28147-89, GOST R 34.10-94, GOST R 34.10-2001, and GOST R 34.11-94 algorithms. Both of our PKI systems: VCERT PKI (with SKZI Verba-OW) and CCERT PKI (with Crypto-Pro CSP) are already support it ;-) GOST for TLS is also updated: Addition of GOST Ciphersuites ......

Posted On Monday, April 5, 2004 12:42 PM

Security changes in VS2005 CRT
MSDN recently posted article with preliminary information about security changes in C and C++ run-time libraries in Whidbey (VS2005). From Michael Howard blog. Update: Shawn Fakcas also posted article about changes in CRT: As we get closer to an official Whidbey release, the C++ team will be producing more documentation on these changes, and I'll post links in this blog [Update 07/06/2004] Preliminary version of formal documentation is posted at MSDN Labs site (full list of changes in CRT is here) ......

Posted On Monday, April 5, 2004 12:20 PM

Copyright © John Doe | Powered by: