Welcome to TechNet Blogs Sign in | Join | Help

January 2006 - Posts

More security theater, in the air

posted Friday, January 20, 2006 3:34 PM by jesper
Recently I was on yet another flight, trying to get some e-mail done. This time, however, I was answering e-mail offline on my SmartPhone. Of course, the phone was in flight mode so the radio was off. I wouldn't want to "interfere with the aircrafts navigation Read More
11 Comments

More on Using ISA to Block WMF Attacks

posted Tuesday, January 10, 2006 2:20 PM by jesper
Jim Harrison has created a very cool script to do much better blocking of the WMF exploit in ISA server. The script is nice because it sets up a policy that actually parses the request body and blocks WMF files that are renamed to something else Read More
2 Comments

Ready! Set! Go...patch your stuff!!!

posted Thursday, January 05, 2006 12:43 PM by jesper
OK, you have probably seen it, but the official update for the WMF vulnerability was just posted! The bulletin is titled MS06-001. The updates are on Windows Update, as well as on the download center. Links to the Download Center updates are in the Read More
5 Comments

Conscientious Risk Management and WMF

posted Monday, January 02, 2006 9:35 AM by jesper
This past week there have been a lot of questions about the WMF vulnerability, what Microsoft is doing, and what the community should do to protect against it. For many reasons, Microsoft's response to the problem is best left to those who do this for Read More
18 Comments