[2010-08-30] Proactive Pen-testing on a Shoe-string
Networking a machine, regardless of whether or not it is public-facing, means that the computer is allowing remote access to certain ports for certain services. Many personal computers, running either a Unix-like operating system or a Windows-based operating system, have networking and firewall defaults that need to be tightened down.
[2010-08-16] Follow the Leader: NSA Security Guidance
Most all new workstations and consumer hardware is designed and configured for regular public use. The default configuration is meant for fairly non-technical people. People who forget their administration passwords, people who desire a plug and play experience, and people who want things to work out of the box and problems to be fixed automatically. Unfortunately, this usually requires lackadaisical security policies.
[2010-08-04] Critical MS Security Update Leaves XP SP2 and Windows 2000 Systems Out of Luck
Earlier this week, on a Monday and a week before this month's Patch Tuesday, Microsoft uncharacteristically felt compelled to push a security update to remedy a severe system threat that allows remote code execution on all versions of Windows. Security advisories began appearing in mid-July, and Microsoft could not wait a week longer for the second Tuesday of the month, when system administrators expect and plan for system updates and patches, to release the fix.
|
