Leveraging Exploit Guard in Windows Insider Build to Easily Audit Your Code

If you are a software developer and are looking to improve upon the security compliance of your software, there is a feature in the current Windows 10 Enterprise Insider Preview (as of 10.0.16253 – I can’t guarantee this will make it or make it unchanged into future builds) that could be very useful to you. …


Why can’t I restore files even when I have backup/restore privileges enabled?

Backup and restore privileges allow some, but not all, types of access checks to be bypassed.  Typically those are sufficient to allow a backup utility to restore data to even sensitive folders.  However, there are some exceptions to that.  For example, at the time of this writing, much of the contents under %programfiles%\WindowsApps out of the…


Visual Studio Team Services and Personal Microsoft Accounts

Visual Studio Team Services and Personal Microsoft Accounts 10/5/2016 Update – Due to the unexpectedly high impact to many corporate VSTS accounts backed by Personal Microsoft accounts, VSTS accounts are temporarily exempted from the scenario described below. Personal Microsoft accounts created from VSTS invite links or on VisualStudio.com can now be created even if they have the same sign-in name…

0

Why does SqlDataReader behave differently with Set-PSDebug enabled?

We recently had someone ask why their PowerShell script stopped working correctly when they enabled tracing with the command Set-PSDebug -Trace 2.  The part of the code in question that didn’t work basically boiled down to something like this: function Execute-Query($connectionString) { $connection = New-Object System.Data.SqlClient.SQLConnection; $connection.ConnectionString = $connectionString; $connection.Open(); $cmd = $connection.CreateCommand(); $cmd.CommandText =…


Hotfix List for February 2016

Hi guys, Jeff here from the Windows SDK team. Here are the Windows hotfixes for February 2016. KB3007507   “HTTP Error 500.19” error when you browse an IIS 8.5 website in Windows KB3090343   Cluster service stops during the VSS backup in a Windows Server 2012 R2 or Windows Server 2012-based Hyper-V cluster KB3123593   A multi-site failover…

0

Hotfix for January 2016

    Jeff here from the SDK team. This month there is only 1 public hotfix because of the holidays.   3047331 “0x00000050″ Stop error on a failover cluster that is running Windows Server 2012 R2 or Windows Server 2012   Happy patching. /Jeff Follow us on Twitter, www.twitter.com/WindowsSDK.

1

Why CryptCATAdminCalcHashFromFileHandle fails with a seemingly unexpected error code

CryptCATAdminCalcHashFromFileHandle can fail when evaluating a file path to an executable while setting the last error code to 0x800700c1.  It’s an HRESULT instead of just an error code, but the relevant portion of the error code is 0xc1 (193L).  That is the error code for ERROR_BAD_EXE_FORMAT.  In some cases, this will happen even though the…


Hotfixes for December 2015

Jeff here, from the SDK team with the Holiday Hotfixes. Happy patching. KB2920591   High CPU usage and performance issues occur when access-based enumeration is enabled in Windows 7 Service Pack 1 or Windows Server 2008 R2 Service Pack 1 KB3084463   WSUSutil.exe csaimport fails upon import in Windows Server 2012 R2 or Windows Server 2012 KB3095319 …

2

SHA-1 Code Signing Deprecation in Windows beginning January 1, 2016

This post is to help the product team spread the word on Windows (version 7 and higher) and Windows Server will no longer trust any code that is signed with a SHA-1 code signing certificate and that contains a timestamp value greater than January 1,2016, effective January 1, 2016. For more information or to get…

0