It’s not often, that Active Directory Domain Controllers get security updates. The Active Directory Domain Services Server Role is one of the most robustly written code, as I pointed out in an earlier blogpost on Statistics on Active Directory-related Security Bulletins. Since 2001, Microsoft has issued 18 Security Bulletins with patches to ...

The Microsoft marketing department has decided to label a few of the incredible Windows features in Windows 7 and Windows 8 as ‘To Go’. Prime examples, of course, are ‘BitLocker-To-Go’ (encryption of removable drives) and ‘Windows-To-Go’ (running Windows from a removable drive). This week, I’m labeling the Windows Sidebar (Windows Vista) and ...

Most people spend the short days and long nights of December with loved ones. At Microsoft, December is a vacation month for a lot of employees as the end of December marks the first half of the fiscal year and targets have mostly been met. For the Active Directory team, however, December marked the fourth Active Directory-related Security ...

It’s not very uncommon for Microsoft to issue a patch for a problem in Active Directory technologies (including Active Directory Domain Services, Lightweight Directory Services, Certificate Services, Rights Management Services, Federation Services and Group Policy). In this blog post, let’s look at some statistics:    Domain ...

On Tuesday November 13, 2011 Microsoft, in its monthly Patch Tuesday, released a Security Bulleting addressing an issue with Active Directory. To exploit this vulnerability, an attacker would first need to acquire credentials to log on to an Active Directory domain. An attacker could then run a specially crafted application that could exploit the ...

While days are getting shorter in my part of the world, Microsoft relentlessly continues to address issues in Active Directory. Between November 1, 2011 and November 30, 2011 Microsoft introduced one Active Directory-related KnowledgeBase article with information, seven Active Directory-related KnowledgeBase articles with hotfixes, one ...

On Tuesday November 8, 2011 Microsoft released a Security Bulletin addressing an issue with Active Directory. The problem is the LDAP over SSL (aka LDAPS) implementation in Active Directory, Active Directory Application Mode (ADAM), and Active Directory Lightweight Directory Service (AD LDS) does not examine Certificate Revocation Lists (CRLs). ...

Whenever a worm utilizes the normal access and daily tools systems admins use, there is a significant problem. After all, shutting down the attack vector suddenly isn’t that easy. So, without making dramatic changes to your environment, how can you rest assured?     About Win32/Morto.A One of the latest threats to use ...

On Patch Tuesday for June 2009 (yesterday, June 9, 2009) Microsoft released security bulletin MS09-18 yesterday to address a vulnerability in Active Directory and Active Directory Application Mode (ADAM) that could allow remote code execution. It’s should not come as a shock Microsofts Active Directory and Active Directory Application Mode ...

Microsoft released a security update for Active Directory and Active Directory Application Mode (ADAM) today. The accompanying security bulletin marks this update as important. Rating a Security update as Important means the update fixes a vulnerability whose exploitation could result in compromise of the confidentiality, integrity, or ...