Security
Sign In With Google: The Hidden Risks of Identity Federation
Two paths diverged in a wood. One was worn smooth by years of easy traffic. The other asked more of you. More effort, more intention,…
Category
Security
PowerShell
Get file or folder permissions using PowerShell
The Get-Acl cmdlet in PowerShell’s Security module (Microsoft.PowerShell.Security) does a great job of getting file or folder permissions (aka the Access Control List or ACL).…
Security
Dealing with WordPress’ Unauthenticated Privilege Escalation Vulnerability in a REST API Endpoint
On Thursday, WordPress.org released WordPress 4.7.2, fixing the following four vulnerabilities. The user interface for assigning taxonomy terms in Press This is shown to users…
eDiscovery
BleachBit’s claim of permanently deleting emails from Exchange
In a recent news segment featuring BleachBit, Fox Business questioned whether Democratic presidential nominee Hillary Clinton may have used the software to permanently delete emails…
Administration
Disable automatic email forwarding in Office 365 and Exchange Server
Exchange Server and Exchange Online allow your users to automatically forward email to an external email address. Over the years, I’ve written about forwarding email…
Apple
Apple OS X 10.10.2 and iOS 8.1.3 Updates
Apple has released OS X Yosemite 10.10.2 and iOS 8.1.3 which fix a bunch of Exchange and Microsoft platform issues. Interestingly, Apple has started adding…
Google
Is GoGo’s use of a fake SSL certificate a Man-In-The-Middle attack?
Adrienne Porter Felt, an engineer on Google’s Chrome security team, recently found in-flight WiFi service provider GoGo using a fake certificate for Google.com and tweeted…
Security
Net neutrality and how ISPs can impact your email security
There was a time ISPs limited themselves to providing layer 3 connectivity. You got a connection, and if the link was up and your computer…
Archiving & Compliance
Change mailbox audit logging age limit in Exchange 2010 and later
In Exchange 2010 and later, you can use Mailbox Audit Logging to enable auditing of mailboxes for actions taken by mailbox owners, delegates and administrators.…
Active Directory
Exchange 2010: Change security groups to distribution groups
Distribution groups are a well-known concept for Exchange admins. Quite simply, a distribution group is an Active Directory group that’s Exchange-enabled and therefore has an…