By Mary Chipman, Contributing Editor, Access-VB-SQL A

Microsoft Access workgroup security appears to be robust because it uses a strong encryption algorithm. However, encryption remains secure only while the decryption key remains secure, and this is where Access/Jet is vulnerable.

There is a lot of servers that are using IIS (Web server software from Micro$oft). This Web server, (like all software) have hole, that can be used to gain access to the system. Gain access mean you can errase, modify, create, files on it. The most famous and used exploit on IIS is the 'UNICODE HOLE'.

By Donald Pipkin's

DEC 20, 2002 By Donald Pipkin . Article is provided courtesy of Prentice Hall PTR .

Take a tip from Don Pipkin, writer of "Halting the Hacker," as he shares a daily nugget of his knowledge of informationsecurity. Invest a minute of your day to learn something new about protecting your information assets.

Other articles by Donald Pipkin .

Security Just Has to be Good Enough

Security is a "good enough" proposition, based on the financial value of the assets being protected and the risk that a financial loss will occur. Keeping this in mind can help keep you from overbuilding your security solution. An appropriate security solution requires that you have a thorough understanding of the value the information and the processing has on the business, and the impact its loss can cause. Understanding the business is equally as important as understanding the technology in the creation of a security architecture.

Matthew Ghio Last Updated: May 1 1994

The newest version of this document can be obtained by sending mail to: mg5n+ This e-mail address is being protected from spambots. You need JavaScript enabled to view it  Automated software will email you a copy. I try to keep this info as up to date as possible, but I may have missed something.  If there are any errors, or if you have anything to suggest or contribute, please let me know.

29-June-2000 
Michael Howard 
This e-mail address is being protected from spambots. You need JavaScript enabled to view it

This document lists some recommendations and best practices to secure a server on the Web running Microsoft Windows 2000 and Internet Information Services (IIS) 5. The settings err on the side of security over functionality, and hence it's important that you carefully review the suggestions below and use them to derive your own corporate settings.

By Rohitab Batra

;Compiling (Turbo Assembler)

; c:\>tasm32 /ml /m3 /t /w2 /s /p /dDEBUG=1 BlackBat

;

;Setting DEBUG=0 will compile the virus in Release mode. In this mode, an error; message will be displayed, so that you don't accidently compile in release mode. ;In Release mode, the size of the Virus will be smaller, and .EXE files will be; infected, instead of .XYZ files. In Debug mode, the file NOTEPAD.EXE, if found; in the current directory, will be infected.

By Mike Fahland and Eric Schultze Earlier this month, Microsoft released version 1.1 of the Microsoft Baseline Security Analyzer (MBSA). MBSA is the first product deliverable from the recently formed Microsoft Security Business Unit (SBU), a key division within Microsoft's Trustworthy Computing Initiative.

By zen

------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------

By anonraider

In light of the recent focus the United States has placed on security, consider these scenarios * At an international airport, a terrorist uses a modem in his notebook to hack in the wireless LAN of an airlines curbside check-in Service, providing clearance for himself and 10 other conspirators to board flight to the united states under assumed names *

Every day, all over the world, computer networks and hosts are being broken into.   The level of sophistication of these attacks varies widely; while it is generally believed that most break-ins succeed due to weak passwords, there are still a large number of intrusions that use more advanced techniques to break in.   Less is known about the latter types of break-ins, because by their very nature they are much harder to detect.