Microsoft require(d?) that the certificate protecting the ECP endpoint for a SAML2/Shibboleth federated domain from Office365 was a “trusted” certificate (one issued by what Microsoft consider … Read more
OpenSSH clients
Qualys have recently released a security advisory for those using OpenSSH clients. In essence using a vulnerable OpenSSH client can expose your private key to … Read more
Group Populator for FIM
There are various commercial solutions for providing automatic group population within FIM (into other directories such as Active Directory) which look at arbitrary attributes in … Read more
Student project wanting users to log in?
If you’re at student at Kent developing a web-based application as part of your programme of study and would like to integrate with the university’s … Read more
Phishing emails using dodgy invoices
We have recently seen an large increase in the number of phishing emails directed at University accounts. These contain a downloading tool which downloads malware … Read more
Snort logs not appearing in Splunk
Recently we had an issue where our snort logs stopped appearing in Splunk despite working fine for many months. After some digging I found that if … Read more
Implementing Papercut SSO using a Shibboleth SP
For some time we had wanted to implement SSO on our Papercut installation but any form of SSO was not supported by Papercut. With release … Read more
AD Attributes required for automatic Exchange provisioning
I’ve been doing a lot of work recently getting our FIM ready to provision and manage mailboxes and other objects in Exchange 2013 and, in doing … Read more
Managing AD boolean-in-integer flagsets with FIM
Active Directory, for reasons best known to itself, stores many boolean attributes (such as userAccountControl or msExchELCMailboxFlags) together in an aggregate integer rather than separating them … Read more
RPZ and malware domain traffic
Response Policy Zones (RPZ) can be used not only to protect the University community from botnet command and control traffic, but also connections to malware … Read more