Category: 1047

If You are interested in an answer to question "How to dual boot Linux and Vista on BitLocker protected drive?" You will find it on Cyril Voisin blog. Cyril is Security Advisor working in Microsoft France, and in his latest post he described how to configure dual booting for Vista and Linux on BitLocker drive with … Continue reading "Dual booting Vista and Linux on BitLocker and TPM protected drive"

I just found at joe's  site link to Washington Post's article which is informing about decission which was made at Microsoft to open access to system "guts" for security software providers. If it is true, and I don't have any reasons not to belive WP it will mean that security software providers like Symantec and … Continue reading "Vista will open more access for security providers …"

  Recently one of my friends who is running small (but very good – <ad word>If You need serious security guys, just call them</ad word>) security company sent me a link to some document. This document described simple experiment with security features made on Windows Vista (Beta2). What its author did was creating simple program … Continue reading "Windows Defender and Your Run key – what do You need to know?"

Today I had a little chat on e-mail with Alex Tcherniakhovski which was about following topic: how to create export only attribute with Extensible MA to set initial password for newly provisioned account? (OK, this wasn't exactly such topic but this is what it was about 🙂 ). So problem is: we are provisioning new account to … Continue reading "MIIS newbie tales – Export password attribute with Extensible MA"

As we can read on MSRC blog, Microsoft has published out of band patch for VML vulnerability existing in IE. This flaw was described in Microsoft Security Advisory (925568) published lately. Bug patched by this update allows remote code execution so it should be applied as soon as it will be possible (some people do some tests and other … Continue reading "VML patch (MS06-055) released out of band"

Some question were raised by few peoples about directory object auditing – mostly in a context of question "Who deleted the object?" – so I've decided to give this topic a little space. Windows 20002003 provides us with auditing mechanism which can be used also to track changes for Active Directory objects. Probably this isn't … Continue reading "Auditing directory changes aka "Who deleted this object""

This topic is probably familiar for most of peoples who are playing with Windows systems for a while, but maybe some newbie will get here so here’s the post. Today I responded in some thread on Polish web portal regarding how to audit changes in GPOs and why audit policy changes setting is not doing … Continue reading "Auditing policy changes misunderstanding"

Maybe CMS 2002 is not most popular content management software in the world but some people are using it in the real world. This is a case with our customer here who will deploy web application based on CMS 2002 in his network. This company maintains two separated AD forests, one is internal forest for … Continue reading "Using ADFS with Content Management Server 2002"

Today I finally arrived into office after long time being on-site at customer’s office and I had some time to read blog feeds I’m subscribed to. One of my ‘must read’ blogs is Joe’s blog and I’ve noticed some new entries there. Among them on which I found very interested, and everyone who is still … Continue reading "Dynamic objects aka why You should upgrade to Windows 2003 SP1 if You haven’t done it yet"

After my previous post about confidential bit I received great feedback through blog comment system (Thanks Jorge and Lee) and in off-line conversation on newsgroup. I’ve decided to gather this additional information in next post as an update to my original one. First of all when You want to use confidential bit for some attribute … Continue reading "Confidential bit follow-up"