SecurityRatty: tag: restrict

On virtualisation

2007-05-29 16:20:00 by Niels Provos in Google Online Security Blog

...restricted to the virtual environment which can be discarded and then restored to pristine condition after use Virtual machines are sometimes thought of as impenetrable barriers between the guest and host, but in reality they're (usually) just another layer of software between you and the attacker. As with any complex application, it would...

Tags: machine, virtual machine process, virtual machine software, host machine, host, software, virtual machine, low, low level access

When Will the Media Industry Embrace the BORA Principle?

2007-03-22 10:06:00 by Eric Marvets in The Security Samurai

...restrict access to the entity by limiting and hardening access points or decrease the exploitability of the entity once compromised Many industries have fought BORA, which is akin to fighting gravity. I can think of three this morning, namely the software, credit card, and media industries. Its infuriating to think of all the revenue lost...

Tags: credit card, credit, credit card industry, credit card fraud, industry, media industry, cut fraud, fraud, credit cards

The Govenator flexes for privacy!

2007-10-26 14:36:00 by Michael Concordia in Data Protection, Management and Leakage

...restrict access to the information? And how do we prevent unauthorized access if somehow the information makes it off our network, either through email, USB drives, or even if were hacked Cause if you dont do it, please rest assured that there are lawyers somewhere who will be more than happy to ask a jury those very same questions. And in...

Tags: information, personal information, protect customer information, health insurance information, data breaches, data, social security, medical privacy laws, taxpayers social security

Conflict of interest or not taking responsiblity for policies and enforcement?

2008-03-31 10:40:11 by Editor in Adventures in Security

No business should restrict how its employees can better themselves or the company because of current business knowledge. Knowledgeable employees are a valuable resource. Organizations must be able to position them so that both they and the employees benefit

Tags: employees, knowledgeable employees, current business knowledge, business, employees benefit, valuable resource, position, restrict, organizations

Limiting Process Privileges Should Be Easier

2007-11-09 10:00:00 by Security Retentive in Security Retentive

...restrict what it can do, etc. is simply wrong in most operating systems What strikes me about the above example is that it ought to be a lot easier for a developer/administrator to define the policy for a given process and its run environment, without having to know this much arcana about exactly how to do it Luckily, there are a few...

Tags: process, uid, effective process sandbox, kill, prohibit kill, uid range, prohibit, privileges, target uid

Virtual Environment User Based Access Controls

2008-02-03 19:34:33 by John Peterson in Security In The Virtual World

...restrict what resources a user can access, when they can access them and how they access them Virtual NAC??? No, I'm talking beyond just Access Controls. I'm talking strict policy control embedded in a virtual switch that can control what users are allowed to do Has anyone seen a solution to this concern JP

Tags: user, strict policy control, control, specific user, control user activity, access, access controls, user access, virtual desktop

New challenges in mobile device discovery

2008-04-17 08:07:55 by Lisa Phifer in WhatIs: Enterprise IT tips and expert advice

...restrict mobile access, complemented by IPS to spot anything that slips through the cracks. Such techniques can be effective, but today's mobile devices can present new challenges that deserve further attention

Tags: mobile, devices connect, devices, restrict mobile access, mobile devices, challenges, application portals, slips, network

SDL and the OWASP Top Ten

2008-05-01 15:46:00 by sdl in The Security Development Lifecycle

...Restrict URL Access Looking at this list, we address Cross-Site Scripting issues in the SDL very thoroughly today: we have several XSS detection and prevention tools our development teams use to defend against XSS attacks. (As Ive written here before, some of these tools are Microsoft-internal, but some are publicly available ; I highly...

Tags: security, web application security, top, security standpoint, list, previous list, agile development teams, development teams, security researcher

Virtual Environment User Based Access Controls

2008-02-03 19:34:33 by John Peterson in Security In The Virtual World

...restrict what resources a user can access, when they can access them and how they access them Virtual NAC??? No, I'm talking beyond just Access Controls. I'm talking strict policy control embedded in a virtual switch that can control what users are allowed to do Has anyone seen a solution to this concern JP

Tags: user, strict policy control, control, specific user, control user activity, access, access controls, user access, virtual desktop

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo