Recent Posts

Posted in hotfix News Security

Vulnerability in Group Policy Fixed with MS15-011 & MS15-014

Today Microsoft published hotfix MS15-011 and MS15-014 that addressed a potential issues that could allow an man in the middle attack on computer. This vulnerability affected system that could be compromised by a man in the middle or what I like to call a “Coffee Shop Attack”. The summary is that by interfering with the traffic that is being sent…

Continue Reading...
Posted in News

Out Now: Remote Server Admin Tools for Windows 10 Technical Preview

Update: This final RTM version of this tool has now been released at http://www.microsoft.com/en-us/download/details.aspx?id=45520 Microsoft has just released the Windows 10 Technical Preview to the public. As per normal Windows 10 has a number of admin tools installed out of the box. But on top of that there is also the Remote Server Admin Tools (RSAT) that can be used for…

Continue Reading...
Posted in News

Work Folders Client for iPad

Work Folders which is the feature that was released with Windows Server 2012 R2 and Windows 8.1 is a “OneDrive” like feature that allows users synchronise their “work” files on their devices. The key difference with this feature is that the files are stored on premise on the back end instead of the cloud which is far more palatable for companies…

Continue Reading...
Posted in Podcast

Podcast: RunAs Radio with myself and Richard Campbell

I recently recorded a podcast with Richard Campbell to talk about some of the latest changes with Group Policy especially around passwords in Group Policy Preference and mitigations for Pass The Hash. We then talk about some of the things we would like to see in the next version of Windows regarding security. You can check out the podcast at…

Continue Reading...
Posted in Security TechEd Video

Keeping your company secure using Group Policy

In this TechEd session I presented at TechEd New Zealand 2014 I covered some of the changes with Group Policy preferences recently as well as some of the new Group Policy improvements you can do to protect yourself against Pass the Hash attacks. Unfortunately at the end one of my Demo’s did not work however I actually did get it to work only a…

Continue Reading...
Posted in News

Updated: Windows 8.1 Update and Windows Server 2012 R2 Update Administrative Templates ADMX/ADML pack

Update: I had discovered that this original ADMX template were missing some Internet Explore 11 Group Policy settings. As a result the ADMX/ADML pack has now been re-released but can be downloaded using the same link below. Microsoft has just released the Administrative Templates (ADMX/ADML) files that allow you to configure their newest Group Policy Administrative Template setting for Windows…

Continue Reading...
Posted in TechEd Video

How to use Internet Explorer 11 Enterprise Mode with Group Policy

The session that myself and Chris Jackson (a.k.a. AppCompatGuy) at TechEd New Zealand 2014 has now been published. So for your viewing pleasure I have embedded the video below: This session covers Internet Explorer 11 with Enterprise Mode and how you can use Group Policy to manage the feature to enable you to migrated to the latest version of IE…

Continue Reading...
Posted in News

Internet Explorer ActiveX Blocking Group Policy

Microsoft has just released a patch MS14-051 (https://support.microsoft.com/kb/2976627) for Internet Explore on Windows 7 and Windows 8 that allows IT Admins to block out of date ActiveX controls from running in the browser. This move aligns IE with other browsers that actively block out of date version of plug-ins such as Java but is still very similar to the ActiveX…

Continue Reading...