Microsoft has released a security advisory (954462) warning users that automated SQL injection attacks against ASP and ASP.NET based sites are escalating. Unlike about 5 years ago, most web developers I talk to today understand what SQL injection is and how to defend against it.
The new automated attacks are mostly focused on Content Management System [...]
Early this year, I pulled the Windows Server 2008 Feature Components and Active Directory posters out of TechNet Magazine and hung them up over my desk. I then excitedly installed Windows Server 2008 on my test server using my TechNet subscription. I was eager to try out the many enhanced features of Microsoft’s new server [...]
Last week, quite a few major vulnerabilities were discovered in some of our customer’s favorite products, namely:
VMWare (all products, from ESX Server all the way down to VMware Player)
Cisco PIX and ASA (versions 7.1, 7.2, 8.0 and 8.1)
Mac OS X (Both Server and Client editions, 10.4 and 10.5 are affected)
Quite a few of these [...]