http://www.sqlmag.com/authors/author/author/5078163/rsscomment/5078163en-USFri, 25 May 2012 10:43:55 GMTFri, 25 May 2012 10:43:55 GMThttp://www.sqlmag.com/article/security/securing-networks-with-wpa-psk-and-wpa2-psk#commentsAnchorThu, 29 Jan 2009 16:14:19 GMT
UPDATE******** This will work from a network drive- the SetupSNK.exe must be located at the root of the mapped drive.]]>MichaelThu, 29 Jan 2009 16:14:19 GMThttp://www.sqlmag.com/article/security/securing-networks-with-wpa-psk-and-wpa2-psk#commentsAnchorhttp://www.sqlmag.com/article/security/securing-networks-with-wpa-psk-and-wpa2-psk#commentsAnchorThu, 29 Jan 2009 13:52:37 GMT
FYI- SetupSNK.exe (from XP sp3) will not work from a UNC or mapped drive.]]>MichaelThu, 29 Jan 2009 13:52:37 GMThttp://www.sqlmag.com/article/security/securing-networks-with-wpa-psk-and-wpa2-psk#commentsAnchorhttp://www.sqlmag.com/article/email/behind-the-scenes-with-rms#commentsAnchorMon, 20 Oct 2008 09:38:09 GMT
GOOD ARTICLE]]>VíctorMon, 20 Oct 2008 09:38:09 GMThttp://www.sqlmag.com/article/email/behind-the-scenes-with-rms#commentsAnchorhttp://www.sqlmag.com/article/log-files/simplify-security-reporting-using-audit-collection-services#commentsAnchorMon, 13 Oct 2008 08:38:44 GMT
ert]]>sde@ezos.comMon, 13 Oct 2008 08:38:44 GMThttp://www.sqlmag.com/article/log-files/simplify-security-reporting-using-audit-collection-services#commentsAnchorhttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorWed, 20 Aug 2008 10:35:53 GMT
no article???]]>LenWed, 20 Aug 2008 10:35:53 GMThttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorhttp://www.sqlmag.com/article/encryption2/microsoft-office-sharepoint-server-2007-and-rms#commentsAnchorMon, 04 Aug 2008 15:05:22 GMT
Hi Slyshine, I’m glad you found the article interesting and helpful. As more and more companies are deploying SharePoint, we’re adding more and more related content, so be sure to check often. We also have a sister site that has even more SharePoint content as well as a weekly email newsletter. It’s at http://www.officesharepointpro.com/ if you’d like to check it out. Gayle Rodcay editor, Windows IT Pro gayle@Windowsitpro.com]]>GayleMon, 04 Aug 2008 15:05:22 GMThttp://www.sqlmag.com/article/encryption2/microsoft-office-sharepoint-server-2007-and-rms#commentsAnchorhttp://www.sqlmag.com/article/encryption2/microsoft-office-sharepoint-server-2007-and-rms#commentsAnchorMon, 04 Aug 2008 02:32:43 GMT
good to see this cause we are on the business using MOSS as a platform service.]]>slyshine Mon, 04 Aug 2008 02:32:43 GMThttp://www.sqlmag.com/article/encryption2/microsoft-office-sharepoint-server-2007-and-rms#commentsAnchorhttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorFri, 13 Jun 2008 09:27:13 GMT
fotw, I’m sorry you’re unable to view the article. I’ve asked our customer service team to contact you and see if they can fix the problem. Thanks for your patience, and for reading!]]>AnneFri, 13 Jun 2008 09:27:13 GMThttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorhttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorFri, 13 Jun 2008 03:05:23 GMT
Can’t read this article (98142) despite logging on - confirmed that I can read other ’subscriber only’ articles. This article appears as blank apart from the Executive summar. Could you please fix this? Thanks]]>URSFri, 13 Jun 2008 03:05:23 GMThttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorhttp://www.sqlmag.com/article/auditing/security-log-collection#commentsAnchorWed, 14 May 2008 18:36:45 GMT
Very Useful site]]>RonnieWed, 14 May 2008 18:36:45 GMThttp://www.sqlmag.com/article/auditing/security-log-collection#commentsAnchorhttp://www.sqlmag.com/article/dns/the-inevitability-of-ipv6-part-2#commentsAnchorWed, 07 May 2008 17:34:33 GMT
Can’t see the article]]>JAMESWed, 07 May 2008 17:34:33 GMThttp://www.sqlmag.com/article/dns/the-inevitability-of-ipv6-part-2#commentsAnchorhttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorWed, 30 Apr 2008 12:11:40 GMT
a]]>ycchiba Wed, 30 Apr 2008 12:11:40 GMThttp://www.sqlmag.com/article/auditing/moss-2007-s-security-features#commentsAnchorhttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorThu, 17 Jan 2008 21:37:56 GMT
where is web listing? //// Reader from Thailand]]>suwaschaiThu, 17 Jan 2008 21:37:56 GMThttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorhttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorThu, 17 Jan 2008 05:58:54 GMT
Dear John Howie, I am very interested in your article and trying to follow the instructions, but with regret I notice the link to your article "http://techxworld.com/community/blogs/features/archive/2007/05/02/integrating-windows-withunix-linux.aspx" is not working any more. Is there another spot I could read this? With regards, Camiel]]>CamielThu, 17 Jan 2008 05:58:54 GMThttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorhttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorThu, 10 Jan 2008 12:53:18 GMT
Yes, the commands will work. MacOS X is based on FreeBSD, so you will want to follow those instructions. However, there are other options for MacOS X, such as the Directory Access utility.]]>JOHNThu, 10 Jan 2008 12:53:18 GMThttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorhttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorWed, 02 Jan 2008 12:20:43 GMT
Mac OS 10.+ is based on unix. Will these comand work as well? Thank you.]]>DANIELWed, 02 Jan 2008 12:20:43 GMThttp://www.sqlmag.com/article/interoperability/ldap-authentication#commentsAnchorhttp://www.sqlmag.com/article/virtualization/toughening-up-virtual-server-#commentsAnchorMon, 23 Apr 2007 19:45:13 GMT
I need it !!]]>machMon, 23 Apr 2007 19:45:13 GMThttp://www.sqlmag.com/article/virtualization/toughening-up-virtual-server-#commentsAnchorhttp://www.sqlmag.com/article/certificates/reaping-the-benefits-of-wpa-and-peap#commentsAnchorTue, 06 Mar 2007 14:39:28 GMT
I’ve tried implementing this at the company I work for (they loved the idea), and have run into nothing but problems. I have our domain controller set up as the radius server, installed an enterprise CA on it, and did all the rest of the steps exactly as mentioned; and cannot get this to work correctly at all. None of the wireless computers will receive a certificate from the server and therefor will not connect to the network. According to the server logs, my WAP is trying to log on to the domain under a guest account and creating the error "Authentication failed because the user account is not enabled. Before the account can be authenticated, a person with administrative rights for either the computer or the domain must enable the user account." And when I try to access the network it says that the access request for my use rname was discarded with the error "The authentication request was not processed because it contained a Remote Authentication Dial-In User Service (RADIUS) message that was not appropriate for the secure authentication transaction."]]>ChrisTue, 06 Mar 2007 14:39:28 GMThttp://www.sqlmag.com/article/certificates/reaping-the-benefits-of-wpa-and-peap#commentsAnchorhttp://www.sqlmag.com/article/certificates/reaping-the-benefits-of-wpa-and-peap#commentsAnchorWed, 08 Nov 2006 11:58:55 GMT
Probably not a contradiction. Instead of your own PKI, you can purchase certificate from third-party CA such as VeriSign. However, domain based PKI is more convenience for certificate autoenrollment and management.]]>JohnWed, 08 Nov 2006 11:58:55 GMThttp://www.sqlmag.com/article/certificates/reaping-the-benefits-of-wpa-and-peap#commentsAnchorhttp://www.sqlmag.com/article/certificates/authentication-options#commentsAnchorMon, 31 Jul 2006 12:37:30 GMT
Great feature, but I have a question. What authentication method would you suggest in the following scenario? There are a number of medical practitioners in my neighbourhood (UK, hence the spelling!!) such as Phlebotomists, Diabetic Nurses etc that are employed by the State (National Health Service, roughly comparable with your Blue Cross organisation I believe) that spend time working in local practices. For example, my phlebotomist is employed by the State, but actually works in 5 different medical practices, each with its own privately owned Windows network. She has a username and password at each location, each of which has a password renewal policy at different intervals, making remembering passwords difficult. What’s a solution that would work across each location?]]>StephenMon, 31 Jul 2006 12:37:30 GMThttp://www.sqlmag.com/article/certificates/authentication-options#commentsAnchorhttp://www.sqlmag.com/article/ldap/getting-to-know-adam#commentsAnchorWed, 14 Jun 2006 07:29:27 GMT
I’ve been trying to come here for a long time and can never read more than the preview - even after I take the time to register and log on. So, how am I supposed to tell how useful the article really is? I think I’ll just refuse to click any links from WinITPro - they’re usually disappointing teasers... :(]]>sirbountyWed, 14 Jun 2006 07:29:27 GMThttp://www.sqlmag.com/article/ldap/getting-to-know-adam#commentsAnchorhttp://www.sqlmag.com/article/certificates/reaping-the-benefits-of-wpa-and-peap#commentsAnchorFri, 19 May 2006 10:13:42 GMT
"Using certificates is considered more secure than using PEAP, but it requires a Public Key Infrastructure (PKI), whereas PEAP doesn’t." yet one of the steps is "Obtain certificates for RADIUS servers". Isn’t this a contradiction?]]>MARCOSFri, 19 May 2006 10:13:42 GMThttp://www.sqlmag.com/article/certificates/reaping-the-benefits-of-wpa-and-peap#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/windows-firewall-configuration-strategies#commentsAnchorThu, 23 Mar 2006 00:19:35 GMT
What is this ? I thought paper-subscribers could read old content on the web. But NO.... This used to be a good magazine but it feels like greed is ruling now and not happy subscibers/readers. I’m leaving, Börje Mattsson]]>pbmattssonThu, 23 Mar 2006 00:19:35 GMThttp://www.sqlmag.com/article/firewalls3/windows-firewall-configuration-strategies#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorFri, 02 Dec 2005 18:44:27 GMT
In Group Policy Editor (GPE) or the Local Security Policy editor, navigate to Computer Configuration, Administrative Templates, Windows Components, then click Windows Update It does not appear Windows update, whats the problem here ? Thanks]]>gvargas Fri, 02 Dec 2005 18:44:27 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorWed, 19 Oct 2005 20:34:36 GMT
Permission USER on Local computer Can update on WSUS?]]>Cact_man Wed, 19 Oct 2005 20:34:36 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorSat, 16 Jul 2005 10:40:34 GMT
All this information on the web about WSUS and this one site thus far has made it simpler than anything I have read on setting up clients. thanks to John]]>Anonymous User Sat, 16 Jul 2005 10:40:34 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorFri, 08 Jul 2005 13:21:09 GMT
I wrote the author about the "megawatt" misprint, it is indeed supposed to be milliwatt, so all of us with nearby BT radios should still be able to have babies. The mistake was apparently on the part of the magazine editors... no telling what it takes to get it corrected.]]>Anonymous User Fri, 08 Jul 2005 13:21:09 GMThttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorMon, 27 Jun 2005 10:33:07 GMT
Very good article on WSUS. Is there any plan to release a WSUS client that can install updates automatically without the user having administrator rights? ]]>Anonymous User Mon, 27 Jun 2005 10:33:07 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorWed, 15 Jun 2005 07:29:01 GMT
Is there a way to enable client-targeting on Windows 2000 Professional? I tried to modify the Windows 2000 Professional wuau.adm file. I did this by moving the client-targeting bits out of the Windows XP Professional SP2 wuau.adm file into the Windows 2000 Professional wuau.adm file. The policy excepts this and the registry on the client is modified. But the concering Windows 2000 Professional SP4 desktop is not automaticly placed into the right WSUS Computer Group.]]>Anonymous User Wed, 15 Jun 2005 07:29:01 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorThu, 02 Jun 2005 04:22:25 GMT
Nice Introduction into Windows Server Update Services.]]>Anonymous User Thu, 02 Jun 2005 04:22:25 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorFri, 20 May 2005 08:41:51 GMT
Pictures won’t show???]]>Anonymous User Fri, 20 May 2005 08:41:51 GMThttp://www.sqlmag.com/article/installation2/setting-up-windows-server-update-services#commentsAnchorhttp://www.sqlmag.com/article/microsoft-management-console-mmc/using-mmc-snap-ins-to-secure-win2k-systems#commentsAnchorFri, 25 Feb 2005 08:20:34 GMT
I’m adding a security template on 2K but keep getting an error message stating: "An attempt was made to load a program with an incorrect format input failed" I’ve been using both the default .inf files on the box and one that has been made especially. Any idea where to go from here?]]>Anonymous User Fri, 25 Feb 2005 08:20:34 GMThttp://www.sqlmag.com/article/microsoft-management-console-mmc/using-mmc-snap-ins-to-secure-win2k-systems#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorSat, 19 Feb 2005 09:19:37 GMT
In addition to the glaring power output problem, there are other security related flaws in the paper such as the statement that devices must be paired to communicate - this is not the case, otherwise bluejacking would not be possible. Also, with the hardware addresses, a major issue was not mentioned regarding the division of addresses into manufacturer and device ranges allowing code such as redfang to brute force an address. The paper is a reasonable draft, but it does need to be withdrawn and reviewed Regards ChrisC]]>Anonymous User Sat, 19 Feb 2005 09:19:37 GMThttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorSat, 19 Feb 2005 06:15:37 GMT
But more important: Why should we trust them to have gotten the security related info right when they are obviously clue-less about magnitudes. This is probably an effect of high-school kids learning to "mechanically produce the correct answer" not to "think about the answer" On the flip-side: the guys who run this country’s goverment are probably equally clue-less. The bad thing is that they can launch air-strikes. The writer of this article probably can’t.]]>Anonymous User Sat, 19 Feb 2005 06:15:37 GMThttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorFri, 18 Feb 2005 12:34:24 GMT
100 Megawatt Bluetooth? Enough power to light a small town! ]]>Anonymous User Fri, 18 Feb 2005 12:34:24 GMThttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorFri, 18 Feb 2005 12:34:17 GMT
I believe that is milliwatts (mW) instead of MegaWatt (MW). I would not want to be anywhere near a 1 MW transmitter, nor would I want to pay the electric bill to power such a device.]]>Anonymous User Fri, 18 Feb 2005 12:34:17 GMThttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorhttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorFri, 18 Feb 2005 12:28:34 GMT
There is an error in the article that should be corrected. The output power for Bluetooth is 1 milliwatt, not 1 MEGAWATT.]]>Anonymous User Fri, 18 Feb 2005 12:28:34 GMThttp://www.sqlmag.com/article/firewalls3/bluetooth-security-essentials#commentsAnchorhttp://www.sqlmag.com/article/microsoft-management-console-mmc/using-mmc-snap-ins-to-secure-win2k-systems#commentsAnchorSun, 30 Jan 2005 11:56:24 GMT
We are in the process of deploying new machines with XP SP-2 and for the time being have put the domain users group in the local power user group so that Office 97 will work. This article is very timely for me because I wanted a way to go back and lock down computers without having to fiscally touch each one.]]>Anonymous User Sun, 30 Jan 2005 11:56:24 GMThttp://www.sqlmag.com/article/microsoft-management-console-mmc/using-mmc-snap-ins-to-secure-win2k-systems#commentsAnchorhttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorFri, 26 Nov 2004 20:18:22 GMT
nada ]]>Anonymous User Fri, 26 Nov 2004 20:18:22 GMThttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorhttp://www.sqlmag.com/article/certificates/secure-iis-with-certificates#commentsAnchorTue, 13 Jul 2004 08:29:28 GMT
Need to go one step further, ’Renewing client certificates.’]]>jeasterTue, 13 Jul 2004 08:29:28 GMThttp://www.sqlmag.com/article/certificates/secure-iis-with-certificates#commentsAnchorhttp://www.sqlmag.com/article/smart-cards/enhancing-win2k-logon-security-with-smart-cards#commentsAnchorWed, 07 Jul 2004 18:36:38 GMT
Great artical has all the information i need to get started implementing a smart card system]]>Michael Lowe Wed, 07 Jul 2004 18:36:38 GMThttp://www.sqlmag.com/article/smart-cards/enhancing-win2k-logon-security-with-smart-cards#commentsAnchorhttp://www.sqlmag.com/article/smart-cards/enhancing-win2k-logon-security-with-smart-cards#commentsAnchorMon, 03 May 2004 16:08:49 GMT
Nice article that pulls together the information needed to configure a CA to issue smartcard certificates better than the on-line Microsoft help. Too bad it doesn’t print neatly in Portrait mode.]]>Doug Brown Mon, 03 May 2004 16:08:49 GMThttp://www.sqlmag.com/article/smart-cards/enhancing-win2k-logon-security-with-smart-cards#commentsAnchorhttp://www.sqlmag.com/article/windows-server-2003/windows-rights-management-services#commentsAnchorMon, 15 Mar 2004 02:52:42 GMT
This is a pretty good document. We are planining to migrate from NT 4.0 to W 2003 enviroment and seems like i’m gonna use this document pretty often. Thanx a lot.]]>Ays Mon, 15 Mar 2004 02:52:42 GMThttp://www.sqlmag.com/article/windows-server-2003/windows-rights-management-services#commentsAnchorhttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorSun, 28 Dec 2003 06:10:12 GMT
I want to download this software]]>Aamir Jamal Sun, 28 Dec 2003 06:10:12 GMThttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorhttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorTue, 01 Jul 2003 08:36:38 GMT
The buyers guide compiled by Sue Cooper did not include at least two other fairly common remote control software programs. The free VNC (lite) program by the orginal AT&T programmers located at http://www.realvnc.com/ and the Timbuktu client by Netopia located at http://www.netopia.com/en-us/software/products/tb2/ The free VNC program is great for shoe-string IT budgets, while Netopia’s Timbuktu is an excellent product for remote control. Hope these additional products give users more choices in the remote control software arena. Thanks, ]]>Jim Karom Tue, 01 Jul 2003 08:36:38 GMThttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorhttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorFri, 27 Jun 2003 11:57:18 GMT
How can you do an "overview" like this, and not include the open-source options like VNC? There’s so many versions: RealVNC, TightVNC, Ultr@VNC...do a search at sourceforge! They’re great, free, and while they don’t have the greatest encryption, they work well over a VPN (and then you get compression too). ]]>hired_goon Fri, 27 Jun 2003 11:57:18 GMThttp://www.sqlmag.com/article/remote-computing/remote-control-software39185#commentsAnchorhttp://www.sqlmag.com/article/encryption2/leveraging-efs-with-your-pki#commentsAnchorSat, 23 Mar 2002 21:57:32 GMT


Great article on the Recovery Agent – I’d like to point out one additional requirement of a recovery agent account. To successfully recover a file the recovery agent must not only be able to decrypt the file, but also read/write its extended attributes. For that reason I always ensure that the same GPO that drives the recovery agent policy also specifies that the recovery agent account has the right to “take ownership of files and other objects.”
I applaud your article because it doesn’t fall into the trap of 99% of W2K books and other articles. They always imply that a recovery agent account must be a member of the local administrators group. This fallacy is driven by the fact that the right to “take ownership of files and other objects”, by default, is vested in the local administrators group.
Keep up the great work.
]]>Byron W. Putman Sat, 23 Mar 2002 21:57:32 GMThttp://www.sqlmag.com/article/encryption2/leveraging-efs-with-your-pki#commentsAnchorhttp://www.sqlmag.com/article/encryption2/leveraging-efs-with-your-pki#commentsAnchorSat, 23 Mar 2002 21:38:24 GMT


It isn’t often one catches his security hero in a little typo.
The article states:
"When you copy or save a file to a new location, the new file inherits the compression and encryption attributes of the folder to which it’s written."
When the encryption attribute is set, it is always maintained when a file is copied within an NTFS v5 volume or between NTFS v5 volumes (local machine or server) – regardless of the encryption attribute of the destination folder.
Also, because an NTFS v5 file can’t be both compressed and encrypted, when an encrypted file is copied or moved into a compressed folder, the file remains encrypted.
It appears that Microsoft guarantees that the only time an encrypted file will be saved in a non-encrypted state is when the destination volume is not NTFS v5.
However, within an application, when a file is saved to a new location, the new file takes on the encryption state of the target folder regardless of the encryption state of the originally opened file.
Keep up the great work John – when I read you I hear me.
]]>Byron W. Putman Sat, 23 Mar 2002 21:38:24 GMThttp://www.sqlmag.com/article/encryption2/leveraging-efs-with-your-pki#commentsAnchor