WindowSecurity.com Articles & Tutorials Archive

Articles & Tutorials by date (Click here to sort Articles & Tutorials by topic)

2012
[	5	]	January, 2012	[	2	]	February, 2012
2011
[	5	]	January, 2011	[	5	]	February, 2011	[	6	]	March, 2011
[	6	]	April, 2011	[	5	]	May, 2011	[	6	]	June, 2011
[	5	]	July, 2011	[	6	]	August, 2011	[	5	]	September, 2011
[	5	]	October, 2011	[	7	]	November, 2011	[	4	]	December, 2011
2010
[	5	]	January, 2010	[	5	]	February, 2010	[	6	]	March, 2010
[	5	]	April, 2010	[	5	]	May, 2010	[	5	]	June, 2010
[	5	]	July, 2010	[	6	]	August, 2010	[	5	]	September, 2010
[	5	]	October, 2010	[	5	]	November, 2010	[	5	]	December, 2010
2009
[	5	]	January, 2009	[	5	]	February, 2009	[	5	]	March, 2009
[	6	]	April, 2009	[	5	]	May, 2009	[	5	]	June, 2009
[	5	]	July, 2009	[	5	]	August, 2009	[	5	]	September, 2009
[	5	]	October, 2009	[	5	]	November, 2009	[	4	]	December, 2009
2008
[	8	]	January, 2008	[	6	]	February, 2008	[	6	]	March, 2008
[	11	]	April, 2008	[	6	]	May, 2008	[	7	]	June, 2008
[	8	]	July, 2008	[	6	]	August, 2008	[	6	]	September, 2008
[	7	]	October, 2008	[	6	]	November, 2008	[	5	]	December, 2008
2007
[	10	]	January, 2007	[	9	]	February, 2007	[	8	]	March, 2007
[	6	]	April, 2007	[	8	]	May, 2007	[	6	]	June, 2007
[	7	]	July, 2007	[	11	]	August, 2007	[	7	]	September, 2007
[	12	]	October, 2007	[	11	]	November, 2007	[	7	]	December, 2007
2006
[	13	]	January, 2006	[	9	]	February, 2006	[	11	]	March, 2006
[	9	]	April, 2006	[	12	]	May, 2006	[	10	]	June, 2006
[	9	]	July, 2006	[	11	]	August, 2006	[	9	]	September, 2006
[	10	]	October, 2006	[	11	]	November, 2006	[	9	]	December, 2006
2005
[	9	]	January, 2005	[	11	]	February, 2005	[	12	]	March, 2005
[	12	]	April, 2005	[	11	]	May, 2005	[	14	]	June, 2005
[	12	]	July, 2005	[	14	]	August, 2005	[	10	]	September, 2005
[	10	]	October, 2005	[	8	]	November, 2005	[	9	]	December, 2005
2004
[	4	]	January, 2004	[	3	]	February, 2004	[	5	]	March, 2004
[	3	]	April, 2004	[	6	]	May, 2004	[	9	]	June, 2004
[	9	]	July, 2004	[	8	]	August, 2004	[	8	]	September, 2004
[	7	]	October, 2004	[	9	]	November, 2004	[	9	]	December, 2004
2003
[	6	]	January, 2003	[	5	]	February, 2003	[	10	]	March, 2003
[	8	]	April, 2003	[	15	]	May, 2003	[	8	]	June, 2003
[	11	]	July, 2003	[	5	]	August, 2003	[	6	]	September, 2003
[	13	]	October, 2003	[	5	]	November, 2003	[	4	]	December, 2003
2002
[	1	]	March, 2002	[	9	]	April, 2002	[	7	]	June, 2002
[	29	]	July, 2002	[	7	]	August, 2002	[	4	]	September, 2002
[	537	]	October, 2002	[	10	]	November, 2002	[	8	]	December, 2002
2001
[	6	]	February, 2001	[	1	]	May, 2001	[	1	]	October, 2001
2000
[	129	]	February, 2000	[	188	]	April, 2000	[	5	]	September, 2000
[	2	]	December, 2000

Articles & Tutorials for September, 2005

Managed E-Mail Security Services: Is it the right solution for your network?: Date - Sep 29, 2005; Author - Deb Shinder; Section - Articles / Content Security (Email & FTP); Email communications are essential to getting the job done in today’s business world, but many companies are overwhelmed by spam, the security risks of e-mail borne viruses and worms and liability implications of e-mail containing pornography or other undesirable content. It’s getting harder and harder for network administrators to keep it all under control.
Packet analysis tools and methodology (Part 4): Date - Sep 27, 2005; Author - Don Parker; Section - Articles / Intrusion Detection; In the last part of this article series we will take a look at the alarms generated by myself. This binary log will include several attacks, and some general surfing. We now need to take a look, and separate the chaff from the wheat.
Windows Vista and Principle of Least Privilege: Date - Sep 22, 2005; Author - Derek Melber; Section - Articles / Authentication, Access Control & Encryption; It is not surprising that Microsoft is getting on the bandwagon for implementing the Principle of Least Privilege for their next operating system named Windows Vista. This article will investigate some of the current issues with least privilege and investigate the reality of what Microsoft is proposing with Windows Vista.
Packet analysis tools and methodology (Part 3): Date - Sep 20, 2005; Author - Don Parker; Section - Articles / Intrusion Detection; It has arguably gotten easier to exploit computers now due to the abundance of attack tools out there today. One of the most powerful ones is the Metasploit Framework. We will take a look at it in this article.
Being Big Brother: Monitoring employees’ network activity: Date - Sep 15, 2005; Author - Deb Shinder; Section - Articles / Misc Network Security; Big brother is watching. In today’s security-conscious world, it has become a fact of life. George Orwell coined the term to refer to government intrusion into the private lives of citizens, but the meaning has expanded to include any authority figure. The law recognizes that there are circumstances in which monitoring of others’ activities is permissible or even desirable. In general, employers have a lot of leeway in monitoring what their employees do while on company premises and using company equipment.
Packet analysis tools and methodology (Part 2): Date - Sep 13, 2005; Author - Don Parker; Section - Articles / Intrusion Detection; In part two of this article series we will learn how to build a powerful analysis suite. Tools covered will be Snort, Snortsnarf, widump, and winpcap. You will also need to install a PERL interpreter, which shall be shown.
Controlling Windows Services and Service Accounts: Date - Sep 08, 2005; Author - Derek Melber; Section - Articles / Windows OS Security; When you install any Windows computer it will immediately be running multiple services. These services provide core operating system and tool functionality to the computer. In addition to these core services, you might also be running more services due to installed applications. There are a slew of Microsoft products, as well as other third party products, that install services on your computer. Examples includes Exchange, SQL, SMS, backup programs, and enterprise management applications. Since many attackers can exploit services that are running, you will want to protect the services that must run and disable all services that are not required. We will talk about the management of services to protect your computers.
Social Engineering - The Weakest Link in Information Security: Date - Sep 07, 2005; Author - Jeff McDermott; Section - Network Security Library / Network Security; Many of us in the computer industry understand the term 'Social Engineering' fairly well. But does your company, its managers and employees understand and practice good techniques in avoiding being the victim of Social Engineering? After all social engineering is the weakest point in your network's security! Don't believe it? Read on...
How to Use Microsoft’s Shared Computer Toolkit: Date - Sep 06, 2005; Author - Deb Shinder; Section - Articles / Authentication, Access Control & Encryption; The Shared Computer Toolkit for Windows was designed to help administrators better manage and secure public computers, such as those in kiosks, libraries, Internet cafes, schools, etc. But the toolkit is useful for any situation in which multiple persons use the same computer, including family computing and small business offices where several employees must use the same machine. This article shows you how to get and use the toolkit, which is in beta testing at the time of this writing.
Pushing Out Security Settings that are Configured in the Registry: Date - Sep 01, 2005; Author - Derek Melber; Section - Articles / Misc Network Security; Each passing day proves that security of the corporate infrastructure and the computers that live in them is extremely important. There are spyware applications, virus checkers, Group Policy extensions, network scanners and more that are installed to check, verify and protect our computers. In the long run, even the most sophisticated protection mechanism can’t protect a computer that is not configured properly to protect itself. For these computers you typically need to manually configure Registry settings that will increase the baseline security of that computer. This article will discuss how to most efficiently configure Registry settings to help improve security on all computers on the network.