Security Resources

Online resources for whole disk and full volume encryption

Microsoft System Integrity Team blog: Protecting BitLocker from cold boot and direct memory access attacks Ed Felten’s research team uncovered the cold boot attack, which can be used to recover encrypted information from RAM in the clear. This is Microsoft’s explanation of how to protect BitLocker users from the threat as an administrator, by enforcing PINs or USB tokens.http://blogs.msdn.com/si_team/archive/2008/02/25/protecting-bitLocker-from-cold-attacks-and-other-threats.aspxConfiguring AD to backup BitLocker recovery keyshttp://go.microsoft.com/fwlink/?LinkId=67438BitLocker keys should be backed up so that they can be recovered in the event of a lost key or damaged storage media. This article explains how it’s done. read more
Security Resources

PDF Security Resources

Adobe Security Update: www.adobe.com/support/security/advisories/apsa08-01.html Adobe Reader Remote Heap Memory Corruption: www.piotrbania.com/all/adv/adobe-acrobat-adv.txt read more

Download


Subscribe and get the magazine in the post before it's online

Subscribe and get access to all of the back issues

To read a sample eMagazine - March 2010

 
FREE SUBSCRIPTION!
Banner

IT EXPERT TOP TIP

leave When you add a new user and their email address doesn't show up in the Global Address List, work through the tips and suggestions in the ever-useful Exchangepedia Blog: http://exchangepedia.com/blog/2005/11/new-user-does-not-show-up-in-gal.html
Bulk-add new users with the script here (http://www.exchangepedia.com/blog/2006/11/exchange-server-2007-bulk-creation-of.html) or give existing users mail access (http://exchangepedia.com/blog/2006/12/bulk-mailbox-enabling-users-exchange-shell.html - this also has details for adding multiple meeting rooms as resources). And when an employee gets replaced, the steps at http://exchangepedia.com/blog/2006/03/how-to-reconnect-mailbox-to-another.html make it easy to connect the previous user's mailbox to the new user account so that mail for that job role keeps going to the right place. Reject spam with a custom message Just in case the message you're rejecting comes from a real person, you can have Exchange send a less cryptic message that the default error; it will make your customers look more professional. This blog post http://mostlyexchange.blogspot.com/2006/12/exchange-2003-sp2-imf-tuning.html
explains how - but make sure to keep the 550 error code at the beginning.
read more

TAKE THE POLL

Unified communications

Banner

The #1 Bestseller for Only 77p

RECENT COMMENTS