B# .NET Technical Community Homepage

Bart De Smet's online technical community
Welcome to B# .NET Technical Community Homepage Sign in | Join | Help
in Search

Browse by Tags

All Tags » Security (RSS)
  • Why SPAM filters need spell checkers

    On my corporate mail address I get almost no single piece of SPAM. However, on my private address - running on some Belgian hoster - I get a bunch of it, and to some extent I really enjoy doing the manual SPAM filtering (I got really good at it already). However, this one caught my attention today: Bacheelor...
    Posted to Weblog by bart on 17 May 2008
  • Never reveal too much - A tale on physical security

    "Never reveal too much" - it's a motto that's applicable in many areas, including security. Why does a failed attempt to log in into Windows result in "Invalid user name or password". Couldn't the system tell you just which field you screwed up? Yes, it could . But no...
    Posted to Weblog by bart on 03 Apr 2008
  • Simple managed code UAC elevation tool

    Everyone knows UAC by now. One core element of Vista's UAC vision is the elevation of processes, used to run something as an administrator. Typically, you open up a command line instance (cmd.exe) which has been elevated already prior to invoking commands that require elevation. But what if you're...
    Posted to Weblog by bart on 14 Sep 2007
  • Windows Vista - WinSta0 isolation explained

    Time for another security feature in Windows Vista: WinSta0 isolation. The first question that might pop up in your head is "So, what exactly is WinSta0?". Keith Brown has the answer . The problem with WinSta0 is the possibility for Windows Services to display a UI prompt in the window station. Pre-Vista...
    Posted to Weblog by bart on 05 Mar 2007
  • Windows Defender RTM

    Spyware protection for free. For use on Windows XP SP2 and Windows Server 2003 SP1. Requires genuine Windows. Download it here
    Posted to Weblog by bart on 24 Oct 2006
  • Reset the password of a SQL Server account programmatically - SecureString real world demo

    Simple question today: "How to change the password of a SQL Server account programmatically using .NET?". The answer: Microsoft.SqlServer.Management.Common . Create a simple Console Application project and add a reference to the Microsoft.SqlServer.ConnectionInfo.dll assembly (should be listed...
    Posted to Weblog by bart on 20 Oct 2006
  • Coding Webcast - AzMan for dummies

    In this personal webcast episode called " AzMan for dummies ", I'm showing you how to use AzMan (Authorization Manager) to implement role-based security in your managed code application (18 minutes in length).
    Posted to Weblog by bart on 29 Jun 2006
  • Microsoft Anti-Cross Site Scripting Library V1.0

    During the preparation of the MSDN Security Evenings (first one is tonight in Ostend) I ran into this nice piece of security-related software called "Microsoft Anti-Cross Site Scripting Library V1.0" which is a free download at Microsoft Download ( download the library here ). Basically the library comes...
    Posted to Weblog by bart on 26 Apr 2006
  • When patching hurts ... more on MS06-015, KB918165, verclsid.exe and a non-responding Office suite

    This evening a friend of mine pinged me on MSN about a problem, with the scary nickname "XYZ starting to hate the microsoft office suite". Apparently, Word (and other Office applications) stopped to respond when he tried to open or save a document through the File/Open or File/Save dialog, navigating...
    Posted to Weblog by bart on 21 Apr 2006
  • Creating cute buffer overruns and fighting them by /GS - MSDN Security Evenings

    I'm in the middle of preparing the MSDN Security Evening sessions over here in Belgium, which will be just fantastic (hope to see you there). Currently I'm messing around with buffer overruns, one of my favorite topics on the field of security. Instead of just doing the silly "call another function using...
    Posted to Weblog by bart on 12 Apr 2006
Page 1 of 5 (41 items) 1 2 3 4 5 Next >
Powered by Community Server (Non-Commercial Edition), by Telligent Systems