Security and Assurance

Security and compliance in datacenters, private cloud and hosting environments.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Priviledged access workstation managed by Azure

    Azure PAW service, so the customer PAW devices can be managed by Microsoft, and customer can run multiple workloads on the secure device.

    24 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  2. Publish somewhere, an explanation about new SIDs added in service security descriptors of Windows Server 2019

    For example, in Windows Server 2016 1607, the SD SDDL for w32time service (sc sdshow w32time) is:
    D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRRC;;;IU)(A;;CCLCSWLOCRRC;;;SU)(A;;CCLCSWRPLOCRRC;;;LS)(A;;CCSWWPLORC;;;LS)

    Now, in Windows Server 2019 1809, the SD SDDL for w32time service is:
    D:(A;;CCLCSWRPWPDTLOCRRC;;;SY)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;BA)(A;;CCLCSWLOCRRC;;;IU)(A;;CCLCSWLOCRRC;;;SU)(A;;CCLCSWRPLOCRRC;;;LS)(A;;CCSWWPLORC;;;LS)(A;;CCDCLCSWRPWPDTLOCRSDRCWDWO;;;S-1-5-80-3169285310-278349998-1452333686-3865143136-4212226833)

    What is the identity for this unsolvable SID?
    S-1-5-80-3169285310-278349998-1452333686-3865143136-4212226833

    0 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  3. Remove Windows Defender from default install

    1) Windows Defender causes the installation of a lab setup to be 4x slower: https://github.com/Microsoft/ws2016lab/wiki

    2) Please don't even get me started on how wrong you are doing if you need to put an antivirus solution IN A SERVER. (WTF Microsoft?!)

    3) Obligatory xkcd reference: https://xkcd.com/463/

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  4. PGP for Office2016/17, Exchange 2016 & Server 2016

    MIT Key Server:
    http://pgp.mit.edu:11371/
    (users public PGP database)

    Eg:
    Mailvelope
    http://www.mailvelope.com/

    MICROSOFT
    Please make all your Microsoft products easy to work with PGP.
    external server to external server can use DKIM for PGP keys.
    and allow your products to work with legit key servers like MIT. make your own key server, if you want to, but share/sync the info back to MIT server(like PGP-DNS).
    allow sharing of key servers data, like mirror/sync
    allow key servers to use DKIM keys to communicate to external servers.

    Thanks.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Misc  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base