Great article about Windows Server 2008’s access control. ACLs, AccessCheck and more security yumminess.
Explains the basis behind UAC (among other things). I’ve heard of ‘integrity levels’ but this is the first meat I’ve seen about them. Plus links to chml and regil, utilities to view and manage integrity levels. Handy.
A new Rails plugin for authentication. We’re currently using restful-authentication (with several surgical changes), but if I was starting today I’ve give authlogic a close look.