PUBLISHED ARTICLES

by Debra Littlejohn Shinder

 

2007

http://blogs.techrepublic.com.com/wireless/?p=158

 

VistaNews (www.vistanews.com). In addition to the following feature articles, I include numerous Vista tips and tricks, a security news section, and a reader Q&A section in each edition of this weekly newsletter. I also receive approximately 50-100 messages per day and respond to at least 25 per week. VistaNew is published every Thursday except the weeks of Christmas and New Year’s (50 times per year, beginning in November 2008)

 

WXPNews (www.wxpnews.com). In addition to the following feature articles, I include numerous Windows tips and tricks, a security news section, and a reader Q&A section in each edition of this weekly newsletter. I also receive approximately 100-300 messages per day from readers, and respond to at least 25 per week. WXPnews is published every Monday except the weeks of Christmas and New Year’s.

 

01/22/2008 - Is Your ISP Planning to Make You Pay Extra For the Spam You Get?
01/15/2008 - Our Digital World: What Will They Think of Next?
01/08/2008 - The Day the Music Died
12/18/2007 - 'Tis the Season ... for Cool Tech Toys
12/11/2007 - Why Do People Download Music Illegally?
12/04/2007 - What is (and isn't) spyware, anyway?
11/27/2007 - Are you dumping Vista to return to XP?
11/20/2007 - XP on the Eee PC: Home at last
11/13/2007 - More New Tech Toys
11/06/2007 - Santa Comes Early: Reviewing New Tech Toys
10/30/2007 - EeePC: Ultimate UltraMobile?
10/23/2007 - VistaNews debuts this week
10/16/2007 - Are Real-World Meetings Becoming a Thing of the Past?
10/09/2007 - The War Against Spammers Goes On
10/02/2007 - How To Alienate Your Customers, Part Two
09/25/2007 - Don't Find Vista Guilty Until Proven Innocent
09/18/2007 - Caught in Windows Update Hell?
09/11/2007 - When Lowering Your Price Makes Customers Mad
09/04/2007 - What's in a (Domain) Name?
08/28/2007 - Screen Real Estate is the Best Investment
08/21/2007 - Should the Government be in the ISP Business?
08/14/2007 - Online File Storage: The Good, the Bad and the Ugly
08/07/2007 - How Reliable Should Your Internet Connection Be?
07/31/2007 - Does your Computer Drive you Crazy?
07/24/2007 - Windows Media DRM: Cracked!
07/17/2007 - Are Computers Causing us to "Cocoon" Ourselves?
07/10/2007 - Should Internet Services that can be used as Terrorist Tools be Shut Down?
07/03/2007 - Are Computer "Glitches" Ruining your Life?
06/26/2007 - Online Education: No More Teachers' Dirty Looks
06/19/2007 - Is the Browser Battle Heating Up on a New Front?
06/12/2007 - Who's Afraid of the Big Bad EULA?
06/05/2007 - Will Vista make you Dumb and Lazy?
05/30/2007 - Is Technology Tracking Your Every Move?
05/22/2007 - Is Your "Me Mail" Driving People Mad?
05/15/2007 - The Evolution of Spam
05/08/2007 - Top Ten Gripes about Microsoft (and one honorable mention)
05/01/2007 - Should the Network Security Industry Exist?

 

 

2006

 

 

 

 

 

2005

 

Making MOM More Secure. Microsoft Operations Manager (MOM) 2005 is a great solution for managing your Exchange, SQL and other servers -- but what about security? In this article, we'll discuss some of the security issues related to MOM 2005, how Microsoft has made this version of MOM more secure, and best practices for deploying MOM in the most secure way possible. Published by Windowsecurity.com, 04/05/05. http://www.windowsecurity.com/articles/MOM-Secure.html

 

Increasing Security with Limited User Accounts and Restricted Groups. Discussion of the differences between the built-in and default local account types, and the differences between local and domain user accounts and how to increase security by creating customized limited user accounts and using Restricted Groups. Published by Windowsecurity.com, 04/26/05. http://www.windowsecurity.com/articles/Increasing-Security-Limited-User-Accounts-Restricted-Groups.html

 

Installing and Configuring Microsoft Data Protection Manager, Part 1. The beta of Microsoft's new Data Protection Manager (formerly called Data Protection Server) is now available to the public. DPM brings disk-based backup and recovery to enterprise networks as part of Microsoft’s new System Center product umbrella that also includes Microsoft Operations Manager (MOM) and Systems Management Server (SMS). Published by Windowsecurity.com, 07/26/05. http://www.windowsecurity.com/articles/Installing-Configuring-Microsoft-Data-Protection-Manager-Part1.html

 

Installing and Configuring Microsoft Data Protection Manager, Part 2. The beta of Microsoft's new Data Protection Manager (formerly called Data Protection Server) is now available to the public. DPM brings disk-based backup and recovery to enterprise networks as part of Microsoft’s new System Center product umbrella that also includes Microsoft Operations Manager (MOM) and Systems Management Server (SMS).

Published by Windowsecurity.com, 08/02/05. http://www.windowsecurity.com/articles/Installing-Configuring-Microsoft-Data-Protection-Manager-Part2.html

 

How to Use Microsoft’s Shared Computer Toolkit. The Shared Computer Toolkit for Windows was designed to help administrators better manage and secure public computers, such as those in kiosks, libraries, Internet cafes, schools, etc. But the toolkit is useful for any situation in which multiple persons use the same computer, including family computing and small business offices where several employees must use the same machine. Published by Windowsecurity.com, 09/06/05. http://www.windowsecurity.com/articles/Microsoft-Shared-Computer-Toolkit.html

 

First Look at Windows Vista: Secure at Last. With the release of each new version, Microsoft has focused more and more on protecting the system from inadvertent and deliberate security breaches, and the culmination of those efforts is Windows Vista (formerly known as Longhorn), the next generation of their client operating system that’s expected to be released sometime in 2006. Published by Windowsecurity.com, 10/11/05. http://www.windowsecurity.com/articles/First-Look-Windows-Vista-Secure-Last.html

 

Use Free Microsoft Tools to Protect Your Computers. As part of their trusted computing initiative, Microsoft has taken a lead in offering free security tools that you can download and use to help assess the security of your computers and protect your systems against viruses, spyware, and attacks. In this article, we’ll take a look at some of the utilities they’ve made available. Published by Windowsecurity.com, 11/17/05. http://www.windowsecurity.com/articles/Use-Free-Microsoft-Tools-Protect-your-Computers.html

 

Implementing EFS in a Windows Server 2003 Domain. Microsoft’s Encrypting File System (EFS), used to encrypt data on Windows 2000, XP and Server 2003 computers, relies on a public key certificate. If you don’t have a public key infrastructure, EFS can use a self-signed certificate. This is the default for using EFS on a standalone or workgroup computer. Implementing EFS within a domain with a PKI presents more complexity. In this article, we'll look at how to manage and use EFS in a Windows 2000 or Server 2003 domain. Published by Windowsecurity.com. http://www.windowsecurity.com/articles/Implementing-EFS-Windows-Server-2003-Domain.html

 

Will Upgrading to 64-bit Windows make you more Secure? Both Windows Server 2003 and Windows XP now come in 64 bit versions, to run on the 64 bit processors made by Intel and AMD. 64 bit hardware and operating systems offer some big advantages over the currently more commonplace 32 bit systems, including the ability to handle more physical memory and big performance boosts for applications that are written for the 64 bit system. Published by Windowsecurity.com, 12/13/05. http://www.windowsecurity.com/articles/64-Bit-Windows-More-Secure.html

 

Protect your Network from Rogue Users. IT departments spend a great deal of time, effort and money to protect against external threats – those that enter the network via the Internet or remote access – but sometimes forget the harm that can be done by an authorized user who decides to “go rogue” (circumvent network security policies for his/her own purposes). Published by Windowsecurity.com, 12/06/05. http://www.windowsecurity.com/articles/Protect-network-rogue-users.html

 

New Security Features in IE 7. The browser security wars have been heating up again lately. After a small but significant exodus in which many computer users switched from Internet Explorer to Mozilla’s Firefox because of its supposed security advantages, last month a report from Symantec shocked many open source fans with data showing the Mozilla browsers suffered from more security vulnerabilities than IE, including more that were of high severity. Now Microsoft is ramping up for a one-two punch to the competition with all the new security features in the next version of Internet Explorer, IE 7.0, which is currently in private beta testing. Published by Windowsecurity.com, 10/18/05. http://www.windowsecurity.com/articles/New-Security-Features-IE-70.html

 

BlueTooth: Is it a Security Threat? Bluetooth is becoming more and more popular, and it’s time to examine its security implications. Is it secure? Can it be made secure? What are particular security concerns? Published by Windowsecurity.com, 08/09/05. http://www.windowsecurity.com/articles/Bluetooth-Security-Threat.html

 

Code Signing: Is it a Security Feature? how code signing works and where it fits into your organization’s security plan. Published by Windowsecurity.com, 06/09/05. http://www.windowsecurity.com/articles/Code-Signing.html

 

Protect your Web Servers with SSL. HTTP communications are fine for the average Web server, which just contains informational pages. But if you’re thinking about running an e-commerce site or other Web services that require secure transactions, you need to be able to encrypt communications between your Web server and its clients. The most common means is by the use of Secure Sockets Layer (SSL), which uses public key cryptography to protect confidential user information (such as credit card or bank account numbers) that is transmitted across the Web. Published by Windowsecurity.com, 11/29/05. http://www.windowsecurity.com/articles/Protect-Web-Servers-SSL.html

 

NAT Traversal Security Issues. How NAT-T (Network Address Translation-Traversal) works and what the security issues are, and how to restore XP’s ability to connect to servers behind a NAT if you choose to do so.   Published by Windowsecurity.com, 06/23/05. http://www.windowsecurity.com/articles/NAT-Traversal-Security.html

 

Being Big Brother: Monitoring Employees’ Network Activity. George Orwell coined the term to refer to government intrusion into the private lives of citizens, but the meaning has expanded to include any authority figure. The law recognizes that there are circumstances in which monitoring of others’ activities is permissible or even desirable. In general, employers have a lot of leeway in monitoring what their employees do while on company premises and using company equipment. Published by Windowsecurity.com 09/15/05. http://www.windowsecurity.com/articles/Being-Big-Brother-Monitoring-employees-network-activity.html

 

Managed E-mail Security Services: Is it the Right Solution for your Network? Email communications are essential to getting the job done in today’s business world, but many companies are overwhelmed by spam, the security risks of e-mail borne viruses and worms and liability implications of e-mail containing pornography or other undesirable content. It’s getting harder and harder for network administrators to keep it all under control. Published by Windowsecurity.com, 09/29/2005. http://www.windowsecurity.com/articles/Managed-E-Mail-Security-Services-right-solution-network.html

 

Disk-based Backup: All Hype or the Best Protection for your Data? How disk-based backup can be used to replace or supplement your current tape backup system. Published by Windowsecurity.com, 03/08/05. http://www.windowsecurity.com/articles/Disk-Based-Backup.html

 

Product-based Security vs. Service-based Security. Security vendors today can follow either of two different models: they can sell a product (a firewall, an encryption program, etc.) that your company pays for upfront, or they can sell a service that incurs an ongoing fee. In some cases, they can combine the two: an antivirus program or anti-spyware appliance that requires an update service to function properly. The current trend seems to be away from the standalone product model and toward the service model. In this article, we examine the advantages and disadvantages of both. Published by Windowsecurity.com, 08/26/05. http://www.windowsecurity.com/articles/Product-based-Security-Service-based-Security.html

 

Allowing VPN Access to your Network from a Wireless DMZ. How to configure ISA Server 2004 to isolate wireless users from your main network. Published by TechRepublic/CNET, 8/17/05. http://techrepublic.com.com/5100-6350_11-5807148.html?tag=search

 

Don’t Let Identity Management Turn Chaotic as your Business Grows. Options for managing multiple user identities in the enterprise environment, including Microsoft Identity Integration Server (MIIS). Published by TechRepublic/CNET, 12/19/05. http://techrepublic.com.com/5048-5-0.html?SearchThis=shinder&nodeIds=all&queryType=2&tag=search

 

Ten Things You Should Know about Securing Wireless Connections. How to make wireless networking more secure. Published by TechRepublic/CNET, 9/22/05. http://techrepublic.com.com/5100-1009_11-5876956.html?tag=search

 

How Much Database Do You Need? Discussion of database solutions ranging from simple Access databases to SQL Server solutions. Published by TechRepublic/CNET, 12/12/05. http://techrepublic.com.com/5100-10878_11-5988815.html?tag=search

 

Creating a Scalable Content Management Solution. Comparing CMS options, including Microsoft’s Content Management Server 2002. Published by TechRepublic/CNET, 10/17/05. http://techrepublic.com.com/5100-7343_11-5895588.html?tag=search

 

Business Continuity Plans Should be Multi-layered and Expandable. How to create a strategy for ensuring that your network remains available, using server clustering and other technologies. Published by TechRepublic/CNET, 11/07/05. http://techrepublic.com.com/5100-9592_11-5933318.html?tag=search

 

An Intro to Risk Management. How to create an IT risk management plan. Published by TechRepublic/CNET, 11/28/05. http://techrepublic.com.com/5100-1009_11-5973246.html?tag=search

 

Putting Together an Upgrade Plan. How to develop a strategy for rolling out operating system and application upgrades most efficiently and effectively. Published by TechRepublic/CNET, 11/21/05. http://techrepublic.com.com/5100-10877_11-5960423.html?tag=search#

 

Developing a Strategic Growth Plan for your Network. Planning how your network can best handle growth. Published by TechRepublic/CNET, 10/03/05. http://techrepublic.com.com/5100-10878_11-5887524.html?tag=search

 

Ten Things you should know about Troubleshooting VPN Connections, co-authored with Thomas Shinder. Common problems encountered with VPN connections and what you can do about them. Published by TechRepublic/CNET 09/01/05. http://techrepublic.com.com/5100-1035_11-5845666.html?tag=search

 

Testifying in a Computer Crimes Case. As an IT professional and working network administrator, you may find yourself called upon to testify as a victim or witness (i.e., a representative of a company whose network is victimized) in a computer-related crime. Another possibility is that you might someday want to use your technical expertise to become a professional expert witness in computer-related cases. Published by Windowsecurity.com, 02/03/05. http://www.windowsecurity.com/articles/Testifying-Computer-Crimes.html

 

Build a Scalable Load Balancing Infrastructure. How to distribute client requests across multiple nodes in a load balancing cluster. Published by TechRepublic/CNET, 8/09/05. http://techrepublic.com.com/5100-10879_11-5820147.html?tag=search

 

Understanding How an Intrusion Detection System (IDS) Works. Basics of intrusion detection and prevention and how IDS/IPS fits into your network security plan. Published by TechRepublic/CNET, 7/13/05. http://techrepublic.com.com/5100-6350_11-5758234.html?tag=search#

 

How Do Compliance Issues Affect your Network? Government regulations such as HIPAA, SOX and the GLB Act require changes to many network security infrastructures and IT procedures. As if wading through this alphabet soup of statutes and regulations weren’t enough, it's not enough to be compliant; you must also be able to prove your compliance if the feds come knocking. This article looks at how regulations affecting specific industries impact the computer networks of companies in those industries. Published by Windowsecurity.com, 07/12/05. http://www.windowsecurity.com/articles/How-Do-Compliance-Issues-Affect-your-Network.html

 

Create a Scalable Remote Management Strategy. How to ensure that you’ll be able to control your servers and network no matter where you are, using Microsoft’s Remote Desktop/Terminal Services and third party solutions. Published by TechRepublic/CNET, 1/13/06. http://techrepublic.com.com/5100-10878_11-6026804.html?tag=search

 

Preserving Digital Evidence to Bring Hackers and Attackers to Justice. The world is waking up to the fact that hacking into a company’s computer network, launching attacks that cause network downtime or releasing viruses and other malicious code is more than a bit of "digital criminal mischief" -- it’s a serious crime that deserves serious attention from the criminal justice system. In this article, we’ll explain how standard rules of evidence apply to digital data and what precautions you should take to preserve it properly for a court trial. Published by Windowsecurity.com, 06/17/05. http://www.windowsecurity.com/articles/Preserving-Digital-Evidence.html

 

Ethical Issues for IT Security Professionals. This article takes a look at a neglected area of most computer security professionals' training: how to deal with the ethical issues that can - and invariably do - crop up during the course of doing your job. Published by Windowsecurity.com, 07/19/05. http://www.windowsecurity.com/articles/Ethical-Issues-IT-Security-Professionals.html

 

Retain Control of Documents and Messages with RMS. How to use Windows Rights Management Services to enforce your security policies. Published by Inside Windows Server Security, April 2005 (print).

 

Setting up a Honeypot to Attract Script Kiddies. Do your own digital “sting” operation and lure the bad guys away from your real production servers. Published by Inside Windows Server Security, April 2005 (print).

 

Preparing for Microsoft Exam 70-298, Parts One, Two and Three. Tips on preparing for Microsoft MCSE exam “Designing Security for a Microsoft Windows Server 2003 Network.”  Published by Inside Windows Server Security, April, May and June 2005 (print).

 

Keep Systems Updated with Patch Management Tools and Tactics. How to manage the deployment of security patches using Group Policy Software Installation, Windows Update/Microsoft Update, Systems Management Server (SMS), Windows Software Update Services (WSUS) and third party solutions. Published by Inside Windows Server Security, April 2005.

 

How to Get Users to Create More Secure Passwords. Strong password tips. Published by Inside Windows Server Security, April 2005 (print).

 

Use Group Policy to Rename the Administrator Account. Published by Inside Windows Server Security, April 2005 (print).

 

Prevent or control the Use of USB Flash Drives. Published by Inside Windows Server Security, April 2005 (print).

 

What’s New with EFS in Windows XP/Server 2003. Enhancements to the Encrypting File System and how they make EFS more manageable and security. Published by Inside Windows Server Security, April 2005 (print).

 

Keep Confidential Information Safe with a Data Protection Strategy. How to secure the data on your network using  EFS, RMS, access controls, application password protection, Group Policy, and IPsec to protect data throughout its life cycle from creation to storage on disk or transmission over the network. Published by Inside Windows Server Security, May 2005 (print).

 

Win the War against Spam and Spyware with a Multi-layered Defense Plan. How to implement multi-layered solutions at the perimeter, server and client levels to protect against spam and spyware. Published by Inside Windows Server Security, May 2005 (print).

 

Save your Servers with Microsoft Emergency Management Services (EMS). How EMS works and how to perform common management tasks with console redirection, as well as the security implications of using out-of-band connections. Published by Inside Windows Server Security, May 2005.

 

The VPN Wars: Which Tunneling Method is Most Secure? Comparing protocols for VPN remote access connections: PPTP, L2TP, IPsec tunneling mode, and explaining how to configure Windows Server 2003 as a VPN server. Published by Inside Windows Server Security, June 2005 (print).

 

Footprinting the Network. How hackers use non-intrusive methods to gather information that will help attack your network, and how to protect against it. Published by Inside Windows Server Security, June 2005 (print).

 

Keep Social Engineers Out of your Network with Multi-factor Authentication. How to implement smart card authentication on Windows 2000 or Server 2003 domains to protect against social engineering tactics. Published by Inside Windows Server Security, July 2005 (print).

 

Making VoIP More Secure. How to address common security concerns with Voice over Internet Protocol (VoIP). Published by Inside Windows Server Security, July 2005 (print).

 

Is your Web Browser Secure? Discuss points of vulnerability and compares security features in popular Web browsers; provides tips on closing up the holes hackers user to get in. Published by Inside Windows Server Security, July 2005 (print).

 

Protect the Perimeter with Microsoft ISA Server 2004. Co-authored with Thomas Shinder. How to use ISA Server as your first line of defense, using multi-layered filtering to guard against sophisticated application layer attacks that can get through a traditional packet filtering firewall. Published by Inside Windows Server Security, August 2005 (print).

 

Rainbow Tables: Cracking your Passwords Just Got Easier. How passwords are stored and transmitted on Windows systems, and how hackers improve the efficiency and speed of cracking passwords using rainbow tables; what you can do to protect your network. Published by Inside Windows Server Security, August 2005 (print).

 

Make E-mail More Secure by Protecting against Attacks and Confidentiality Breaches. How to use technologies such as RMS and third party e-mail encryption programs to protect e-mail content; how to protect e-mail from viruses and attacks; authenticating the identity of e-mail senders using digital signatures, SPF and Sender ID. Published by Inside Windows Server Security, August 2005 (print).

 

Split Tunneling Makes your Internal Network Vulnerable. How to make VPN connections more secure by preventing split tunneling and/or using VPN quarantine to require remote access clients to meet security criteria. Published by Inside Windows Server Security, August 2005 (print).

 

Virtual Machines Make Disaster Recovery Easier. How virtual machine software such as Virtual PC/Virtual Server can be used to consolidate servers and restore them easily in case of disaster. Published by Inside Windows Server Security, August 2005 (print).

 

Create a DMZ to protect your Internal Network. How to reduce the risk to your LAN posed by Web servers and other servers that have incoming connections directly from the Internet, by placing them in a perimeter network. Published by Inside Windows Server Security, September 2005 (print).

 

Make Instant Messaging on the Corporate Network More Secure. Use encryption, IM gateway software and other security technologies to reduce the security risks posed by using IM for business communications. Published by Inside Windows Server Security, September 2005 (print).

 

Get Rid of Sensitive Data that’s Hiding on your Computers. How to find hidden data and how to remove it permanently, using computer forensics techniques. Published by Inside Windows Server Security, September 2005 (print).

 

Make Terminal Connections More Secure. How to use stronger encryption and other techniques to make Remote Desktop and Terminal Services connections more secure. Published by Inside Windows Server Security, September 2005 (print).

 

Protect your Network from the Telecommuter Threat. Establishing telecommuter security policies and enforcing them using VPN quarantine and other technologies. Published by Inside Windows Server Security, October 2005 (print).

 

Keep Unauthorized Users Out with Biometrics. How to implement fingerprint recognition and other biometric solutions to provide for stronger multi-factor authentication on Windows networks. Published by Inside Windows Server Security, October 2005 (print).

 

Beat the Bots: Defend your Network Against Malicious Robotic Programs. How to protect against robotic programs that distribute Trojans and other malware. Published by Inside Windows Server Security, October 2005 (print).

 

Protect your Network with VPN Quarantine Controls. Security problems inherent in VPN remote access connections, requisites for implementing VPN-Q and how to define client health parameters. Published by Inside Windows Server Security, November 2005 (print).

 

Build a Windows PKI for More Secure Authentication. How to use Windows Server 2003 certificate services to create a public key infrastructure for your organization. Published by Inside Windows Server Security, November 2005 (print).

 

Protect your Exchange Server with Relays and Split Configuration. How to use popular technologies and techniques to protect your e-mail server from common attacks. Published by Inside Windows Server Security, November 2005 (print).

 

Secure your Backup Software. How to address vulnerabilities in popular backup applications. Published by Inside Windows Server Security, November 2005 (print).

 

Protect Critical Servers from Unauthorized Access with IPsec Isolation. Use IPsec to implement server and domain isolation that will protect them from computers that aren’t Windows domain members. Published by Inside Windows Server Security, December 2005 (print).

 

Avoid Exposing your Network to the Security Threat Posed by Handhelds. How to protect the network from handheld devices such as Pocket PCs and smartphones that connect to it. Published by Inside Windows Server Security, December 2005 (print).

 

Foil Windows Registry Hacks with Four Simple Best Practices. How to prevent malicious users from gaining access to the Windows registry and disabling the operating system or adversely affecting system behavior and security. Published by Inside Windows Server Security, December 2005 (print).

 

Make Exam Prep Easier and Less Costly by Building a Virtual Network. How to use VM software such as Virtual PC and Virtual Server to create a network on one machine that you can use to practice for certification exams. Published by Inside Windows Server Security, December 2005 (print).

 

Plug the Plug and Play Vulnerabilities. How PnP exploits work and how to protect your systems against them. Published by Inside Windows Server Security, December 2005 (print).

 

Reduce your Attack Surface with the Security Configuration Wizard. Locking down unneeded services, blocking unused ports and restricting access to system files on critical servers more easily by using Microsoft’s SCW.  Published by Inside Windows Server Security, January 2005 (print).

 

Protect HTTP Servers with a Reverse Proxy. How to use a reverse proxy server to better control outsiders’ access to your Web servers, protect your backend database servers and gain a centralized point of control. Published by Inside Windows Server Security, January 2005 (print).

 

Discover Vulnerabilities Before Hackers Do with Penetration Testing. How to use penetration tests to identify design flaws and misconfigured settings on your network that can present an opportunity to hackers. Published by Inside Windows Server Security, January 2005 (print).

 

Avoid Security Risks Caused by DDNS. How Dynamic DNS can pose security threats to your network while reducing administrative overhead, and how to use Active Directory integrated zones and configure DNS servers to protect against these risks. Published by Inside Windows Server Security, January 2005 (print).

 

Use SSL Bridging to Maintain  Security through the ISA Firewall. The problem with SSL and traditional application layer filtering firewalls, and how ISA Server’s SSL bridging technology prevents malicious code from sneaking through the firewall in an SSL connection. Published by Inside Windows Server Security, January 2005 (print).