Couple of links
While waiting for my wife to get home on this Christmas Eve, I decided to go through some of the links I have collected while working on other projects. I figured I would share some of them with you. Enjoy!
- Cygwin 1.7 is out with Windows 7 and Windows Server 2009 R2 Support!
- NTFS: An Introduction from the SANS Forensics Blog written by Dave Hull
- NTFS: Attributes Part One is also from the SANS Forensics Blog and written by Dave Hull
- Hey, Scripting Guy! Can Windows PowerShell Functions Accept More Than One Input?
Those are the big ones I got through today. I should post more this weekend.
-Matt
PowerShell 2.0 SDK is available now.
The PowerShell 2.0 Software Development Kit (SDK) is available at the Microsoft Download site.
From the Overview: This SDK contains reference assemblies and samples that demonstrates how to use the Windows PowerShell 2.0 APIs to build a rich set of applications. In this package, you will find sample code which shows how to use the new PowerShell class, how to write cmdlets that supports eventing, transactions and jobs. In addition, there are examples of host applications that connect to remote computers using individual runspaces and runspace pools. This SDK also includes modified Windows PowerShell 1.0 samples using the modified and improved Windows PowerShell 2.0 APIs.
You can download it here.
You will need a current version of Windows and .NET Framework 2.0.
December 2009 Technet Magazine is out
If you haven’t noticed, you haven’t received your December Technet Magazine. That is because it has gone digital only. It sucks, but we have to live with it.
It has some good information regarding Exchange 2010, Windows 7 and a PowerShell column about Regular Expressions.
Check it out here: http://technet.microsoft.com/en-us/magazine/default.aspx
It looks as though it won’t be offered in HTML Help format either. Oh well.
Enjoy?
-Matt
Why users don’t get security policy
I have been thinking about this for a long time. I still may be a fledgling in the Information Security community, but feel that I have a pretty good grounding in the InfoSec concepts. So here it goes….
Users don’t get security policy because the don’t feel it directly relates to them. Users may wonder why would a removable media or email policy apply to them? I don’t really blame users for feeling this way. Most people are genuinely honest people trying to make a honest living. They are not trying to steal data or cause a data breach. I will go far as to say that the majority of data breaches were not the result of some willful action to release or steal the data.
I remember when I was just a user and I laughed at some of the of the policies thinking who would do that? It wasn’t until later I realized policies really are trying to catch the exception to the rule not the rule itself. I don’t feel that this is adequately communicated to most users. If we were to educate users that policies were there to help them do their job not to control or dominate them users may be more willing to accept policy. An analogy that I think could work is Monopoly. A normal game of Monopoly has rules and people police other players when it comes to rules. People normally are happy when it comes to playing within the rules and expect it while still enjoying the game. Why can’t this translate to security policy?
This however assumes is that everyone plays by the rules equally. If you are a user in the mail room or someone in a CXO position, everyone needs to follow the rules and help police everyone. No one, no matter who they are, is treated different. This sadly isn’t always the case.
Until the individual user experiences a negative effect of someone not playing by the rules, or policy, people don’t understand why the should care. I think if we spend more time thinking like users and educating them to why it is an advantage to them to follow the “rules” we might find our workplaces or organizations a more secure place.
Get PowerShell v2.0!
If you are using or not using PowerShell, you can get the download for PowerShell v2.0 for Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008 at the following link.
http://support.microsoft.com/kb/968929
The download is for the Windows Management Framework. The framework includes PowerShell 2.0, WinRM 2.0 and BITS 4.0.
Get out there and download it today!
- Matt
PS: If you are running Windows 7 or Windows 2008 R2, you already have PowerShell 2.0 and you can go back to your normal programming.
2010 Scripting Games
Websites
Categories
- Active Directory
- Development
- General
- Hacking
- InfoSec
- Links
- Personal
- Physical Security
- PowerShell
- Random Thoughts
- Windows
Archives
- August 2010
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009