Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Microsoft will release two easy Patch Tuesday bulletins rated 'important' to address four issues in Visual Studio Team Foundation Server and System Center Configuration Manager and address privilege elevation flaws.
"The first patch, rated important, will apply to Visual FoxPro, which is a set of tools used to create and manage high-performance, 32-bit database applications and components," Trustwave SpiderLabs security research director Ziv Madorat said.
“The second patch, also rated important, will apply to System Center Configuration Manager, which helps manage physical, virtual and mobile clients with things like application delivery, desktop virtualisation and security.”
nCircle security operations director Andrew Storms said September patch run will be a "very light month".
"IT security teams shouldn't be lulled into a false sense of security though, they should use this time to get caught up applying existing patches and to change or replace cryptographic key lengths on the certificates used for older Microsoft systems.”
Some administrators will be sent scrambling next month to update cryptographic keys for Public Key Infrastructure in line with Redmond's move to increase key length to at least 1024 bits for Windows platforms dating back to XP.
The security boost was flagged last year and will block programs from interacting with systems that use keys shorter than 1024 bits. Internet Explorer, for example, will not be able to access secure sites that use certificates with short keys.
Angela Gunn from Microsoft's Trustworthy Computing flagged a series of errors which adminstrators of legacy architecture may experience.
With Darren Pauli.
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.
