Enterprise Mobility Overview

Yesterday I had the opportunity to deliver a presentation at Microsoft Las Colinas here in Texas about Enterprise Mobility. This presentation was part of the TechNet On Tour initiative that was lead by my friend Yung Chao. The presentation was basically an overview of the key EM components, how they work together and the important of…


Azure Security Center Public Preview

Yesterday was a great day, the latest addition to the Azure family was released: Azure Security Center. I was working on this project for a long time, helping the team to build the documentation and I'm very proud to be part of this great team. Azure Security Center was introduced to me when it didn't…


Securing your DNS using TMG 2010

1. Introduction Nowadays information is much easier to find than it was in the past, you can find information about pretty much everything by just searching on the web (try http://www.letmebingthatforyou.com/?q=dns%20atacck for example). For this reason it is even more important to be diligent while protecting your company’s data by avoiding data leakage and data…


March’s Update

I’ve being so busy lately that I couldn’t really stop to write some posts that I have on hold, waiting for me to complete it. Me and Tom Shinder are also very busy working on a tight schedule for a new MSPress book (details will be revealed soon) and writing here is getting very challenging,…


Microsoft Security Compliance Manager

Microsoft released the Security Compliance Manager version 1.0 beta, this tool provides centralized security baseline management features, baseline portfolio, customization capabilities, and the ability to automate the creation of GPOs and System Center Configuration Manager DCM packs. Here are some features and benefits of this tool: Centralized management and baseline portfolio. Security baseline customization. Security…


Traffic incorrectly going to ISA Server 2006 instead of going directly to the server

Introduction   This post is about an interesting issue where a third party application that was configured as service was failing to establish a connection with the destination server because ISA Server was denying the traffic. For this brief description it really sounds like a trivial issue where you just need to create an access…


December 2009 Security Bulletin has an IAS Update

Yesterday Microsoft released six security updates and there is one in particular that is very important for VPN scenarios that uses IAS for RADIUS authentication. MS09-071 describes that Servers using IAS are only affected when configured to use PEAP with MS-CHAP v2 authentication (described in CVE-2009-3677). The vulnerability happens due an incorrect way to copy…


The Microsoft Security Update Guide

Microsoft just release a guide with 113 pages that covers many aspects of Microsoft Security strategy, terminologies, tools and a guideline to approach in different stages. This guide is not target only for Security Professionals, as matter of fact all IT Professionals should read this to better understand Security methodology. This guide is divided in…


Enhanced Mitigation Evaluation Toolkit

Developers, developers, developers, developers (I bet you that you know this song). As you build your new application you should start thinking about security from the source (inside out approach). However even when you try to mitigate all scenarios that you can imagine there is always a concern before ship the application about any potential…


MBSA 2.1.1 for Windows 7 released

If you are using Windows 7 or Windows Server 2008 R2, make sure to test the new version of the Microsoft Baseline Security Analyzer 2.1.1. Read more about it here http://technet.microsoft.com/en-us/security/cc184923.aspx and download it from MS Download Center.