courtroomdrama – WindowsTechs.com

Can security devices (e.g. Snort, Splunk, WAFs, etc.) generate alerts when they aren’t working as designed?

Posted on March 23, 2021 by courtroomdrama

APRA’s CPS 234 regulation section 56 states:

An APRA-regulated entity would typically deploy appropriate
information security technology solutions which maintain the security
of information assets. Examples include firewalls, network acce… Continue reading Can security devices (e.g. Snort, Splunk, WAFs, etc.) generate alerts when they aren’t working as designed?→

What is the industry-standard recommendation for where non-functional security requirements end and enterprise requirements begin?

Posted on June 13, 2020 by courtroomdrama

I have been tasked with coming up with security requirements for a project. I am finding it difficult to find the line between where project specific, nonfunctional requirements end and general security requirements for the enterprise begi… Continue reading What is the industry-standard recommendation for where non-functional security requirements end and enterprise requirements begin?→

Password hash in Active Directory 2008 R2? [closed]

Posted on March 25, 2020 by courtroomdrama

Based on my research it looks like 2008 R2 AD hashes passwords using MD4. That can’t be right…right? That is an ancient algorithm. If that is the case, what protections are in place for passwords in 2008 R2 AD?

Continue reading Password hash in Active Directory 2008 R2? [closed]→