Michael Howard's Web Log
A Simple Software Security Guy at Microsoft!
January 2007 - Posts
Security Features vs. Convenience
24 January 07 10:17 AM
Jim Allchin has a great blog post about some of the design issues we went through and tradeoffs we made in Windows Vista around DEP, UAC, IE and so on. It's a long, but worthwhile read .
Read More...
A couple of interesting security blog posts
19 January 07 02:09 PM
Jeff has an uncanny ability to dig into details that most folks gloss over: Exposed? : Examining Secunia Unpatched Warnings - Part 3 I have to concur with Kai: People like this just frost me: Security considered a burden for users
Read More...
How not to write secure Web apps - and get to see Steve Jobs for Free!
13 January 07 11:20 AM
This blog post outlines a bug in the macworld.com web site that allowed the blogger to get a Platinum Pass into MacWorld to see the Jobs' keynote. I'm assuming the story is true! If it's not, it is still a fascinating read about insecure code.
Read More...
Why Windows Vista is unaffected by the VML Bug
10 January 07 07:43 PM
MS07-004 does not affect Windows Vista, even though the coding bug is there. Why? The bug is an integer overflow calling C++ operator::new, but the affected component vgx.dll is compiled with the C++ compiler available in Visual Studio 2005 that automatically
Read More...
Windows Live OneCare v1.5 is released to manufacturing
05 January 07 11:51 AM
This is great news. OneCare is one of my all-time-fave products. I love it because it was built knowing that the target user is no security expert. It wasn't built by geeks for geeks. Everyone in my immediate family uses OneCare because (to quote my 70
Read More...
My Take on Visual Studio 2005 SP1 and Windows Vista
04 January 07 02:51 PM
Over the last couple of days, many people have asked for my take on the fact that Visual Studio 2005 SP1 requires admin privileges to run on Windows Vista, and pops up a dialog saying so when it starts up. So, here’s my take, and I don't work for the
Read More...
Visual Studio 2005 Service Pack 1 Update for Windows Vista Beta Available
01 January 07 08:51 PM
From the blurb: During the development of Windows Vista, several key investments were made to vastly improve overall quality, security, and reliability from previous versions of Windows. While we have made tremendous investments in Windows Vista to ensure
Read More...
eXPired Poster Available!
01 January 07 05:54 PM
First, a very Happy New Year to you all...! Second, due to incredibly popular demand, I managed to find the eXPired poster. I have added it as an attachment at the end of this blog post. Enjoy.
Read More...
Go
This Blog
Home
Links
Email
Tags
General
Personal
Privacy
Rant
Security
Vista
Archives
April 2008 (5)
March 2008 (5)
February 2008 (4)
January 2008 (9)
December 2007 (4)
November 2007 (4)
October 2007 (6)
September 2007 (1)
August 2007 (2)
July 2007 (4)
June 2007 (13)
May 2007 (6)
April 2007 (8)
March 2007 (11)
February 2007 (4)
January 2007 (8)
December 2006 (4)
November 2006 (14)
October 2006 (5)
September 2006 (6)
August 2006 (6)
July 2006 (2)
June 2006 (7)
May 2006 (8)
April 2006 (2)
March 2006 (5)
February 2006 (6)
January 2006 (10)
December 2005 (2)
November 2005 (2)
October 2005 (1)
September 2005 (4)
August 2005 (5)
July 2005 (5)
June 2005 (3)
May 2005 (9)
April 2005 (8)
March 2005 (5)
February 2005 (9)
January 2005 (7)
December 2004 (7)
November 2004 (9)
October 2004 (11)
August 2004 (13)
July 2004 (4)
June 2004 (12)
May 2004 (17)
April 2004 (2)
March 2004 (2)
February 2004 (3)
January 2004 (2)
Syndication
RSS 2.0
Atom 1.0