It rather involved being on the other side of this airtight hatchway: Unquoted service paths

Or, Why most “Unquoted Service Paths” findings are unnecessarily alarmist In late 2012, the issue of improper quoting in the configuration of paths to service executables seemed to begin getting attention again, possibly due to this article. Or perhaps this one. Or maybe this one, which links to articles describing similar issues going back to…

12

The Case of the App Install Recorder

Adapted from the forthcoming book, Troubleshooting with the Windows® Sysinternals Tools, by Mark E. Russinovich and Aaron Margosis. A customer had nearly a dozen software packages that wouldn’t install on Windows 7 x64. Every installation program failed immediately with an error message like the one shown in the screenshot below. However, they all installed successfully…

14

Security baselines for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11 – FINAL

Microsoft has published its security guidance and baselines for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11.  If you have been reluctant to evaluate or deploy these technologies in the absence of specific USGCB guidance, NIST essentially says, “Use the vendor’s guidance.”  Here is the vendor’s guidance.  Please see these three new blog…

0

Sysinternals at TechEd US 2014: LIVE

Sorry for the late notice, but I just saw this: Sysinternals Primer: TechEd 2014 Edition will be airing live on Channel 9 starting at 5pm Central Daylight Time today.  (That’s in just over 4 hours from now as I write this.) Not sure about the link – try either https://channel9.msdn.com/Events or https://channel9.msdn.com/Events/TechEd/NorthAmerica/2014/DCIM-B340 [Update 5 September 2014: …

8

Sysinternals at TechEd US 2014

I’ll be presenting “TWC: Sysinternals Primer: TechEd 2014 Edition” in Houston, Tuesday, May 13, 2014, 5:00pm-6:15pm US Central Time.  Lots of cool stuff, including the “App Install Recorder” (I will post the scripts on this blog); great new features that Mark Russinovich has added to AccessChk, SigCheck, Process Explorer, and how you can use them proactively to…

2

Security baselines for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11

Although the US Government has not published a US Government Configuration Baseline (USGCB) standard for Windows 8 or Windows 8.1, Microsoft has just published a beta release of Microsoft security guidance for Windows 8.1, Windows Server 2012 R2 and Internet Explorer 11.  It includes documentation, GPOs, and scripts for installing the recommended settings to local group…

0

My Ian MacKaye / Dischord Records interview on WTJU.net

A long time ago, before the introduction of the IBM Personal Computer, I was a DJ at the University of Virginia‘s college radio station, WTJU-FM.  Also around that time, Dischord Records in Washington, DC, released their first record, an 8-song 7″ EP by the DC hardcore punk band, The Teen Idles.  Being an ardent fan of the DC…

0

I’ll be on Defrag Tools (Channel 9)

Earlier today I finally got the chance to go into the studio to appear on the “Defrag Tools” show on Channel 9.  We talked about the upcoming Sysinternals book I’m writing with Mark Russinovich, and demonstrated a very cool “App Install Recorder” built with Process Monitor and some PowerShell scripts. The episode will go live next Monday,…

6

Speaking at Washington DC IT Pro Camp, Sat. Feb. 22, 2014

Microsoft is pleased to announce the first Washington DC IT Pro Camp on Saturday, February 22 2014 from 8:00 am to 5:00 pm at Microsoft Training Center 5404 Wisconsin Ave, Suite 700 Chevy Chase, Maryland 20815 Parking and admittance to this event is free. Lunch will  provided. Please Register soon and let friends and colleagues know about this…

0