March 2006 - Posts

Non-admin best practices in Windows XP
24 March 06 12:01 AM
I was just going over some old email, and I found this from some of the games folks at Microsoft. They wrote some articles about creating games that install and run well as a non-admin. Here are the links: Gaming with Least-Privileged User Accounts Least Read More...
Postedby michael_HOWARD | 3 Comments    
Filed under:
Regulatory Compliance Demystified
23 March 06 10:05 AM
A worthy read Regulatory Compliance Demystified: An Introduction to Compliance for Developers Read More...
Postedby michael_HOWARD | 1 Comments    
Filed under:
An Interesting Observation from Bluehat #3
15 March 06 11:15 PM
Last week I attended Bluehat ; we hold these events twice a year and get some of the more interesting security researchers and pertinent topics in front of Microsoft engineers and senior execs. It’s valuable stuff. On Thursday, I attended a number of Read More...
Postedby michael_HOWARD | 1 Comments    
Filed under:
A useful primer to Integer overflows/underflows
10 March 06 11:33 AM
From a presentation by a security contractor on campus: 1 bottle of beer on the wall, 1 bottle of beer, you take 1 down, pass it around, 0 bottles of beer on the wall. 0 bottles of beer on the wall, 0 bottles of beer, you take 1 down, pass it around, Read More...
Postedby michael_HOWARD | 4 Comments    
Filed under:
Security Analogies are usually Wrong
09 March 06 12:50 PM
I have long believed that if someone makes an argument and uses an analogy, then the argument is often weak. But that’s just me! This is why I usually roll my eyes when I hear statements like, “If [bridges|cars|airplanes] were built like software then…” Read More...
Postedby michael_HOWARD | 25 Comments    
Filed under:
Page view tracker