Online Security Sessions from TechEd IT Forum Available

Knowing the Enemy – A lightning demonstration on how hackers attack networkshttp://www.microsoft.com/emea/itsshowtime/sessionh.aspx?videoid=351Marcus Murray, Senior Security Architect, Truesec Advanced Malware Cleaninghttp://www.microsoft.com/emea/itsshowtime/sessionh.aspx?videoid=359Mark Russinovich, Technical Fellow, Platform and Services Division, Microsoft Windows Vista User Account Control Internalshttp://www.microsoft.com/emea/itsshowtime/sessionh.aspx?videoid=360Mark Russinovich, Technical Fellow, Platform and Services Division, Microsoft Defending Layer 8: How to recognize and combat social engineeringhttp://www.microsoft.com/emea/itsshowtime/sessionh.aspx?videoid=339Steve Riley, Senior Program…

5

ASLR and the new linker

Well, the VS team shipped VS2005 SP1. You’ll need the updated linker to support ASLR on Windows Vista. All it does is add a new setting to your PE header. So grab the update, and link your EXE with the new /dynamicbase option. Voila!  

16

Update on Internet Explorer 7, DEP and Adobe Software

Because browsers can host plug-in extensibility, security settings within the browser can make plug-ins fail. This is why in Internet Explorer 7 Data Execution Prevention (DEP) is off by default. When it is enabled many plug-in components fail to run, often crashing the browser.   You can enable DEP by navigating to the following dialog…

34

Windows Vista, ASLR, DEP and OEMs

As I mentioned in a previous series of posts, we recently had all the major OEMs on campus to discuss SDL and how we can work together. My big ask of the OEMs (actually, I grovelled, it was pathetic) was to enable DEP/NX in the BIOS by default on all their shipping PCs in time for…

19