Date: 02/04/06 (Security)    Keywords: security

Some fear that the predicted doomsday scenarios followed by a nonevent may lead to complacency about security alerts.

Source: http://news.zdnet.com/2100-1009_22-6035068.html

Date: 02/06/06 (Security)    Keywords: security

Details emerge on arrival and price of OneCare security service, a rival to consumer products from Symantec and McAfee.

Source: http://news.zdnet.com/2100-1009_22-6035712.html

Date: 02/07/06 (Security)    Keywords: security

Commentary--Security watcher Jon Oltsik says there are plenty of reasons to worry about ID theft, but lost backup tapes does not number among them.

Source: http://news.zdnet.com/2100-1009_22-6036161.html

Date: 02/10/06 (Security)    Keywords: security

Security breach involving undisclosed company prompts Bank of America to cancel debit cards of numerous customers.

Source: http://news.zdnet.com/2100-1009_22-6037619.html

Date: 02/11/06 (C Sharp)    Keywords: asp, security, web

It's probably not the best group to ask but in case someone has faced this problem, I will :)

I am trying to build a asp.net 2.0 web service that will request and
get certificates from three different MS CA services. The whole thing
is done with CERTCLIENTLib.CCertRequestClass and works fine as long as
the web service is located on the same machine with the CA.

My need is to make it call other CA's when I do my
CCertRequestClass.Submit().

As many of you probably guessed, I am getting this while error:

CCertRequest::Submit Access is denied. 0x80070005 (WIN32: 5)

Oh well, I tried to play with target CA security settings and DCOM
settings and turned audit for anything I could and did read everything
I could find on this error message. Nothing really helped.

It seems like the CA machine is just not letting the call to reach the
machine's DCOM. I could get this message in security event log:

Event Type:     Failure Audit
Event Source:   Security
Event Category: Logon/Logoff
Event ID:       529
Date:           10.02.2006
Time:           19:38:02
User:           NT AUTHORITY\SYSTEM
Computer:       **********
Description:
Logon Failure:
        Reason:         Unknown user name or bad password
        User Name:      ************
        Domain:         *********
        Logon Type:     3
        Logon Process:  NtLmSsp
        Authentication Package: NTLM
        Workstation Name:       **************
        Caller User Name:       -
        Caller Domain:  -
        Caller Logon ID:        -
        Caller Process ID:      -
        Transited Services:     -
        Source Network Address: ***.**.***.**
        Source Port:    3766

-------------------------------------

The machines are not on the same domain - it's one of the requirements
to the whole thing.

Can someone suggest an approach or something to get it all to work or
shall I just forget about the idea?

Source: http://community.livejournal.com/csharp/49813.html

Date: 02/14/06 (Security)    Keywords: software, security, spyware, microsoft

Microsoft's Windows AntiSpyware tool called out some Symantec security products as malicious software that steals passwords.

Source: http://news.zdnet.com/2100-1009_22-6038852.html

Date: 02/14/06 (Security)    Keywords: security

Several large banks and credit unions are canceling cards because of a security breach--here's what you need to know.

Source: http://news.zdnet.com/2100-1009_22-6038843.html

Date: 02/13/06 (Security)    Keywords: security

No longer just for cryptogeeks, RSA Conference attracts big-name speakers, product launches, underscoring security's growing importance.

Source: http://news.zdnet.com/2100-1009_22-6038135.html

Date: 02/15/06 (Security)    Keywords: software, security

The "critical" fix is part of seven security bulletins in the software maker's monthly update.

Source: http://news.zdnet.com/2100-1009_22-6039578.html

Date: 02/16/06 (Security)    Keywords: security

Representative says a company responsible for security systems that are breached should be the one to notify customers.

Source: http://news.zdnet.com/2100-1009_22-6040290.html

Date: 02/15/06 (Security)    Keywords: technology, security

Cisco Systems CEO says the network is evolving from "pinpoint" security technology to integrating a broad range of tools.

Source: http://news.zdnet.com/2100-1009_22-6039940.html

Date: 02/17/06 (Security)    Keywords: security

With mishaps like the Sony BMG fiasco, outlawing rootkits might be the way to go, a Homeland Security official suggests.

Source: http://news.zdnet.com/2100-1009_22-6040726.html

Date: 02/17/06 (Security)    Keywords: software, security

The file, which spreads via Apple's IM software, isn't a major threat, but security experts say it hints at vulnerabilities.

Source: http://news.zdnet.com/2100-1009_22-6040681.html

Date: 02/16/06 (Security)    Keywords: security

Q&A Andy Purdy, acting director of DHS' National Cyber Security unit, says that though progress has been made in protecting the Net, the work isn't done.

Source: http://news.zdnet.com/2100-1009_22-6040506.html

Date: 02/20/06 (Security)    Keywords: security, google

Google Desktop 3 Beta contains a security risk for businesses, says Gartner, and Google agrees.

Source: http://news.zdnet.com/2100-1009_22-6041338.html

Date: 02/21/06 (WebDesign)    Keywords: software, browser, html, security, web, microsoft

Ok. This is a odd one...

In addition to running a web design firm, I also own a Classic Rock station. I've got a neat feature called "The 8 Track Player" which shows whats playing as well as the last 7 songs. This is a stand alone browser window that the visitor to the site opens.

This will also open inside Windows media player if a visitor chooses to listen to the station with that software (the station runs shoutcast natively).

until a week or so ago, the refresh code that I have was working fine in both stand-alone and Windows Media Player (WMP) but now the WMP does not refresh yet the stand-alone does.

Both stand alone and WMP use the same code, and there's not been any changes to the code.

The refresh method I am using is:




My theory is that MS has with a security update with Windows XP or WMP 10 changed something that does not allow the VB or Meta to work.

a) does anyone know something about this problem?

b) is there a good place to ask this in-depth question? Have posted on microsoft.public.windowsmedia.player.web already.

c) do you think my meta tag or vbscript have an error in it that was working before in WMP with HTMLView until a tightening of code control was implemented?

Thanks,
Chris

Source: http://community.livejournal.com/webdesign/1066771.html

Date: 02/22/06 (Security)    Keywords: software, security, microsoft

After spending billions to secure its software, Microsoft sees security products as a selling point.

Source: http://news.zdnet.com/2100-1009_22-6041818.html

Date: 02/22/06 (Security)    Keywords: security

Company recommends beta version of its desktop search application for corporations worried about security.

Source: http://news.zdnet.com/2100-1009_22-6041848.html

Date: 02/23/06 (Security)    Keywords: security

A possible security breach involving at least one major retailer may be tied to other crimes and affect other companies.

Source: http://news.zdnet.com/2100-1009_22-6042217.html

Date: 02/23/06 (Security)    Keywords: security

Credit card-processing company admits to security failure, promises to improve protection and undergo ongoing audits.

Source: http://news.zdnet.com/2100-1009_22-6042665.html