http://msinfluentials.com/blogs/jesper/archive/2008/05/13/thoughts-on-security-by-obscurity.aspxThis has not really been that normal a week for me, but at least another article made it into print. The June 2008 issue of TechNet Magazine is headlined by an article I wrote with my friend Roger Grimes, Security Adviser for Infoworld , on Security byenCommunityServer 2008.5 SP2 (Build: 40407.4157)http://msinfluentials.com/blogs/jesper/archive/2008/05/13/thoughts-on-security-by-obscurity.aspx#8679Mon, 16 Jun 2008 16:45:09 GMT91db4bc3-5a69-4a9f-94bf-eedb569902ab:8679markk02474@gmail.com<p>Microsoft&#39;s security by obscurity:</p> <p>&quot;The API utilized to register a firewall with the WSC can be obtained by contacting Microsoft at wscisv@microsoft.com. A Non-Disclosure Agreement (NDA) is required for the disclosure of this API due to security concerns.&quot;</p> <p><a rel="nofollow" target="_new" href="http://msdn.microsoft.com/en-us/library/bb190942">msdn.microsoft.com/.../bb190942</a>(VS.85).aspx</p> <div style="clear:both;"></div><img src="http://msinfluentials.com/aggbug.aspx?PostID=8679" width="1" height="1">http://msinfluentials.com/blogs/jesper/archive/2008/05/13/thoughts-on-security-by-obscurity.aspx#8644Fri, 13 Jun 2008 02:21:26 GMT91db4bc3-5a69-4a9f-94bf-eedb569902ab:8644markk02474@gmail.com<p>Perhaps you can make Vista Firewall/NLA/RAS interactions less obscure? You gave a sample rule for VPN connections: netsh advfirewall firewall add rule name=&quot;Allow CIFS on VPN interfaces&quot; dir=out action=allow enable=yes profile=public localIP=any remoteIP=any remoteport=445 protocol=TCP interfacetype=RAS</p> <p>Now, if I use such rules on 5,000 user machines needing VPN access, won&#39;t DSL (PPPoE), and dialup connections also be considered RAS connections and &nbsp;match? Some number of users will be exposed using their home connections, right?</p> <p>Network Awareness is poorly documented. What&#39;s the algorithm? Its triggered when an interface comes up and uses DHCP and gateway mac address info, but will it be triggered when I use a 3rd party VPN client shim driver to connect? Will it notice the routing change and new default gateway?</p> <p>I learned security through obscurity when I used the ITS operating system - some things haven&#39;t changed!</p> <div style="clear:both;"></div><img src="http://msinfluentials.com/aggbug.aspx?PostID=8644" width="1" height="1">http://msinfluentials.com/blogs/jesper/archive/2008/05/13/thoughts-on-security-by-obscurity.aspx#8279Sun, 18 May 2008 06:34:17 GMT91db4bc3-5a69-4a9f-94bf-eedb569902ab:8279Victor Constanstinescu - MVP<p>Not sure why the talkback didn&#39;t work. Here it is: <a rel="nofollow" target="_new" href="http://victor-youngun.blogspot.com/2008/05/great-debate-security-by-obscurity.html">victor-youngun.blogspot.com/.../great-debate-security-by-obscurity.html</a></p> <div style="clear:both;"></div><img src="http://msinfluentials.com/aggbug.aspx?PostID=8279" width="1" height="1">