Geeks With Blogs

Lance's TextBox security There are 12 entries for the tag security
PowerShell Server v2 vs PowerShell v2 Remoting via WinRM
A lot of people have asked me to explain the differences in the PowerShell Server v2 product with the obvious alternative: PowerShell v2 Remoting via WinRM. PowerShell Server The nutshell is that with the PowerShell Server, you are not limited to Windows machines and you don’t need WinRM or any other software other than the PowerShell Server itself and any old SSH client. This means that the “client” machine, where the commands are being sent from, can be anything – a Linux machine, a handheld device ......

Posted On Friday, January 9, 2009 3:16 PM

A Letter to Audible about DRM
I still haven't found a very convenient way to listen to Audible books. I don't want to go out and buy a new phone or a new mp3 player just so that it will work with Audible's unnecessary restrictions. Burning to CD's is a bad option because at a minimum of 14+ cd's per book, its just wasteful. CDRW's are out because the cd player in my car can't read them. Audible's software players are decent, but they are only supported on the desktop (I don't want to listen to books on my desktop) and specific ......

Posted On Thursday, June 5, 2008 11:33 AM

ASP.Net Medium Trust and IPWorks/IBiz ASP.Net Editions
This great MSDN article: "How To: Use Medium Trust in ASP.NET 2.0" will probably answer nearly all of your questions about how to work in medium trust and how to customize medium trust permissions. Here are a few extracts from this document that serve as a sort of "quick start" to medium trust. By default, ASP.NET 2.0 Web applications and Web services run with full trust and applications can perform privileged operations and access resources subject only to operating system security and Windows access ......

Posted On Thursday, February 21, 2008 1:58 PM

Worst IT Excuses
From Bill Ryan, from unknown: It works on my machine It doesn't matter because no one will ever do that Users like it the way it is I don't write any bugs It'll be fixed in the next release It'll be ready on Monday, we just need to build the setup package The spam filter ate it A little more RAM will fix your performance problem You can't do that because it's a security risk The database is slow because it's too normalized I've heard a few of these before. Also there's: - It'll be ready on Monday, ......

Posted On Thursday, August 9, 2007 4:55 PM

Secure, Personal RSS Feeds
I was reading an old post on Scott Hanselman's blog about accessing private feeds via RSS. The discussion turned toward comparing RSS reader requests to OFX requests that applications like Microsoft Money make to banks. A comment from "Jordan": No CTO wants to have his face on the cover of the Wall Street Journal because his site provided an RSS feed to Bloglines and Bloglines has a security breach that exposes all that information. I have several private RSS feeds that I would not trust a third ......

Posted On Thursday, June 14, 2007 12:32 PM

How to prevent Outlook 2007 from blocking unsafe attachments
A lot of times I need to be able to look at .reg, .vbs, .vb, etc - attachments that people send me via email. I don't go haphazardly running them, but I need to at least be able to save them to disk and drag them into my text editor. Here's how to make the changes in Vista to prevent Outlook 2007 from blocking these files. Note that with these changes, you still won't be able to just double-click on the attachment and run it (this is good), you'll have to save it to disk first. Make sure you really ......

Posted On Wednesday, February 21, 2007 1:28 PM

RSSBus Beta 3 Available
The new beta 3 of RSSBus was announced last week: "We have spent the past couple of months hardening the RSSBus Engine and preparing it for production. You will notice significant performance improvements, better error handling, better integration with ASP.NET, and a better security infrastructure." Read the full announcement. Technorati : feeds, rss, rssbus ......

Posted On Thursday, November 2, 2006 12:09 PM

RSS and Atom vulnerabilities
Last week Nial Kennedy posted about SPI Dynamics' report about RSS and Atom vulnerabilities. There's been a little bit of chatter about this ever since. Nick Bradbury says that FeedDemon is immune to all of the major vulnerabilities, and he points to Mark Pilgrim's Platypus prank as one example. Mark offers a little checklist for aggregator authors to be smart. Technorati tags: rss atom security ......

Posted On Monday, August 7, 2006 1:48 PM

Secure email adapter for Biztalk
Jay Kinker outlines the simple steps to configure the SMTP adapter in Biztalk.  If you need security (SSL), consider the /n software Secure Email adapter which support secure SMTPS (as well as POPS and IMAPS for securely retrieving mails).

Posted On Thursday, May 25, 2006 7:22 AM

Three new "/n software Tips and Tutorials" items: SFTP Biztalk Adapter walkthrough, Commerce Starter Kit payment provider, Certificates
AnyGatewayPaymentProvider for the ASP.NET 2.0 Commerce Starter Kit - A Multi-Gateway payment provider for the ASP.NET 2.0 Starter Kit using IBiz E-Payment Integrator [more..] SFTP Adapters for Microsoft BizTalk - Introduction to the /n software SFTP Adapters for Microsoft BizTalk [more..] An Application Security Overview. Part I: A Certificate Introduction - An Overview of Digital Certificate Concepts using the CertMgr Component [more..] ......

Posted On Monday, February 6, 2006 9:40 AM

FTP SSL through a NAT Firewall
FTPS over a NAT Firewall is a problem, but there are solutions. First, an explanation of the problem: The reason why FTPS (and even FTP without SSL) is a problem with firewalls is that unlike most internet protocols, FTP requires two socket connections, not just one. The first connection, called the control connection, is the one where all of the commands and responses are exchanged between client and server. The second connection, called the data connection, is where all of the data is transferred ......

Posted On Tuesday, August 23, 2005 9:45 AM

Consuming Secure RSS Feeds
As RSS becomes more mainstream, and companies begin to offer fee-based subscription feeds and feeds that contain private information, authentication and security will have to be used. Most feedreaders and podcatchers do not support these things. For developers interested in creating software applications that can handle this security, IPWorksSSL contains an RSSS component which handles all of the SSL and authentication, taking this complexity out of the way for the developer. I can get a secure feed ......

Posted On Friday, June 24, 2005 9:40 AM

Copyright © Lance Robinson | Powered by: