Security Thoughts: Update for Windows Authentication Methods (KB3178465, MS16-101, CVE-2016-3237, CVE-2016-3300, Important)

Yesterday, during its August Patch Tuesday, Microsoft released security update KB3178465 for Windows Authentication Methods, among other security-related updates. This update addresses two vulnerabilities in Microsofts implementation of its authentication methods in Active Directory scenarios: CVE-2016-3237 and CVE-2016-3300.   About the vulnerabilities Microsoft Kerberos Elevation of Privilege Vulnerability (CVE-2016-3237) A security feature bypass vulnerability exists … Continue reading "Security Thoughts: Update for Windows Authentication Methods (KB3178465, MS16-101, CVE-2016-3237, CVE-2016-3300, Important)"

Security Thoughts: Vulnerability in Group Policy could allow elevation of privilege(MS61-072, KB3163622, CVE-2016-3223)

Yesterday, Microsoft released update 3163622 as part of its June 2016 Patch Tuesday to address an important vulnerability that affects Group Policy on Windows 10.   About the vulnerability The vulnerability could allow elevation of privilege if an attacker launches a man-in-the-middle (MiTM) attack against the traffic passing between a domain controller and the target … Continue reading "Security Thoughts: Vulnerability in Group Policy could allow elevation of privilege(MS61-072, KB3163622, CVE-2016-3223)"

Using the new Active Directory PowerShell Cmdlets on down-level and module-less systems

Last week, we discussed the new Active Directory Domain Services-related PowerShell Cmdlets in Windows Server 2012 R2. In the requirements I mentioned that you needed at least one system with the Windows Server 2012 R2 or Windows 8.1 version of the Active Directory Module for Windows PowerShell feature installed. However, as Aleksandar Nikolic (PowerShell MVP) … Continue reading "Using the new Active Directory PowerShell Cmdlets on down-level and module-less systems"

Windows 7 and SSDs, Part 3 (Security Best Practices)

Solid State Disks (SSDs) offer great performance enhancements, especially when you follow the guidelines in Part 1 and Part 2 of this series. From an information security point of view, however, these devices are nightmare in terms of data confidentiality. Recent studies from the University of California in San Diego (UCSD) show securely wiping SSDs … Continue reading "Windows 7 and SSDs, Part 3 (Security Best Practices)"

Getting Your Active Directory ready for Windows 7, Part 3

Deploying Windows XP is as easy as sysprep’ing a sample installation, throw in an answer file in the mix with a Volume License Key (VLK) and rolling out the newly created image with your preferred distribution method. A volume Windows XP product key is easily attained by buying a 5 PC equivalent Volume License and … Continue reading "Getting Your Active Directory ready for Windows 7, Part 3"

Windows 7 and SSDs, Part 2 (Tweaking the box)

As described in Part 1 of this series, Windows 7 has built-in optimizations for Solid State Disks (SSDs). To this purpose, Windows 7 will check random reads speeds of your disks, to determine whether the system is equipped with such a disk. These optimizations include disabling defragmentation on the SSD, and, when the disk is … Continue reading "Windows 7 and SSDs, Part 2 (Tweaking the box)"

Windows 7 and SSDs, Part 1 (To clone Windows or reinstall?)

I’ve seen a couple of people stuffing their Windows 7 laptops with Solid State Disks (SSDs). I upgraded my Windows 7 demo laptop with an Intel X25-M G2 SSD (80GB) and this much improved performance, especially for virtualization purposes. A traditional Hard Disk Drive’s internals are platters. A read/write head on a boom looms over … Continue reading "Windows 7 and SSDs, Part 1 (To clone Windows or reinstall?)"

Changing Windows 7 back to the ‘old’ Windows

Windows 7 has a mass appeal to Windows XP users and their system administrators. While major advances were made in Windows Vista and Windows 7, you will always find people opposing change. And, boy! A lot has changed in the user interface since Windows XP! In the past opposition has been dealt with with deception … Continue reading "Changing Windows 7 back to the ‘old’ Windows"

5 things you should know about Windows 7

All you need to know is… … What you already know. In our society information is the greatest good. Microsoft has decided not to release a lot of information on Windows 7 for a reason. It was one of the mistakes admitted with Windows Vista. Some features (like WinFS) got dropped totally, while other features … Continue reading "5 things you should know about Windows 7"