How to make ISA stop ALL useful traffic – for some users

So I was actually in the United States for a couple of days last week and decided to get the long overdue ISA server running at home. After all, how hard could this be? In ISA 2004, with the new “firewall configuration by cartoon” interface, you just pick the cartoon that looks most like your…

7

Raising the security bar, or…

After one of my recent articles I ended up in a discussion with someone over blocking easy attacks by unsophisticated attackers. For example, I said you should not worry about Rainbow Crack. What is important is protecting the password hash database because the hashes are plain-text equivalent. If passwords get too difficult to crack, the…

6

Should you worry about password cracking?

I have received more and more queries about whether to worry about password cracking, and what to do to avoid it. It seems it may be time to document this a bit better. It is all, of course, already in Protect Your Windows Network, but in the October TechNet Security Newsletter I have a column…

9

Are usernames superfluous?

A friend just pointed me to an interesting blog post. The premise is that logon dialogs should not be asking for a username. Mostly the blog post points to why the username provides no value, not really expanding the argument that it is superfluous. Nevertheless, you have to love an article that recommends the use…

3