The UltraTech Zone

Browse by Tags

• Mitigations
• Running Windows
• Security
• Security Pontification
• Windows Security
• Windows Server 2008

• You need to manually undo your MS08-078 mitigations

  Normal 0 false false false EN-US X-NONE X-NONE MicrosoftInternetExplorer4 <!-- /* Font Definitions */ @font-face {font-family:"Cambria Math"; panose-1:2 4 5 3 5 4 6 3 2 4; mso-font-alt:"Calisto MT"; mso-font-charset:0; mso-generic-font-family:roman; mso-font-pitch:variable; mso-font-signature:-1610611985 Read More... Posted Thursday, December 18, 2008 12:57 PM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Windows Vista, Mitigations

• What I Learned from Attending the Windows Launch Event Today

  Today I attended the Microsoft 2008 server wave launch event in Seattle. In the process I learned a number of things: The launch event apparently does not need to coincide with actually launching anything. Server 2008 launched a couple of months ago. Visual Studio 2008 launched in November 2007, and Read More... Posted Tuesday, April 01, 2008 10:55 PM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Windows Vista, Windows Server 2008

• Resource Kit Done!

  Last Friday the last of the Windows Server 2008 Security Resource Kit finally went to press! This was a project I had not really planned and so, to complete it in time, I brought in an amazing crew of co-authors. Together, we managed to put together 17 chapters on how to manage security in one of the Read More... Posted Friday, February 15, 2008 12:40 AM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Windows Vista, Windows Server 2008

• IE's hidden buttons

  Even having used Internet Explorer 7 for about 18 months, I just discovered something new. IE has a hidden status bar, with four security-related buttons on it: Right next to where the zone is shown are a series of six boxes. I always figured it was some UI anomaly caused by the fact that the would occasionally Read More... Posted Sunday, January 27, 2008 12:50 PM from Jesper's Blog | (Comments Off) Filed under: Windows Vista

• Do Vista Users Need Fewer Security Patches Than XP Users?

  On January 23, Jeff Jones, Director of Security at Microsoft, published his "One Year Vulnerability Report" for Windows Vista. In the report, he analyzed whether Windows Vista had fewer vulnerabilities in its first year than it's predecessor, Windows XP had in its first year. Jeff also Read More... Posted Thursday, January 24, 2008 7:13 PM from Jesper's Blog | (Comments Off) Filed under: Windows Vista, Running Windows

• Using Autoplay on Vista To Stop Attacks

  The January issue of TechNet Magazine has an article I wrote about how to hack a system using autoplaying USB flash drives. While it is not possible to stop all attacks from USB tokens, Vista does include some interesting protective measures. However, the autoplay decision flow in Vista is quite convoluted, Read More... Posted Sunday, December 23, 2007 1:41 PM from Jesper's Blog | (Comments Off) Filed under: Windows Vista, Running Windows, Security

• Need a laptop with a TPM?

  For the third time in a week someone asked the question "If I want to use BitLocker with a Trusted Platforms Module (TPM), which computer should I get?" Wonderful question. For some reason, the hardvare vendors seem to treat the TPM chip as the ugly stepchild that they do their best to ensure Read More... Posted Thursday, November 01, 2007 12:50 AM from Jesper's Blog | (Comments Off) Filed under: Windows Vista

• Hey, Mozilla: Quotes Are Not Legal in a URL

  When I was a child, I learned a saying that I still find important to keep in mind: Those who are sitting in a glass house shall not throw stones The good folks at Mozilla may want to look up what that really means. Two days ago, Mozilla published Firefox version 2.0.0.5 to fix a security vulnerability Read More... Posted Saturday, July 21, 2007 1:25 AM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Security Pontification, Windows Vista, Security

• At Least This Snake Oil Is Free

  Snake oil , for those that are not familiar with the U.S. English vernacular, is a derogatory term for some product that makes unverifiable or exaggerated claims. True to the tradition, we now find " Vista Firewall Control ," complete with a PC World article that includes not only incorrect Read More... Posted Friday, July 20, 2007 12:33 AM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Security Pontification, Windows Vista

• Downloads from the Vista Security Book

  As with Protect Your Windows Network I wrote some tools for the Windows Vista Security book that just came out. However, the Vista book does not come with a CD. Rather, Wiley has made the tools available for download . If you solemnly promise that you will buy the book, you may get the tools from there. Read More... Posted Wednesday, July 11, 2007 2:39 PM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Windows Vista

• WSUS is Like A Box of Chocolates

  Windows Software Update Services (WSUS) is one of the more entertaining products Microsoft has created, if by entertaining you mean trying to put logic behind the installation of some relevant subset of 4,381 updates (today's total). WSUS 3.0 has been out for a while now, and was supposed to work Read More... Posted Friday, July 06, 2007 10:04 AM from Jesper's Blog | (Comments Off) Filed under: Windows Vista

• Unified Hardening Guidance for the U.S. Government

  All U.S. Government computers are finally required to conform to one of two configurations. White House Memo M-07-11 , further clarified in M-07-18 directs all government agencies to use a single hardening guide. M-07-18 clarifies that it is to be the NIST guide . Overall, this is welcome news. The agencies Read More... Posted Tuesday, July 03, 2007 8:51 PM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Windows Vista

• Show the Owner of a File

  In my most recent article in TechNet Magazine I wrote: Unfortunately, icacls.exe can’t show you the owner of an object. There is no way to actually see, from the command line, who the owner of an object is. Furthermore, if you save the ACL for an object, it does not save the owner of the object. As an Read More... Posted Monday, July 02, 2007 7:36 PM from Jesper's Blog | (Comments Off) Filed under: Windows Security, Windows Vista