Microsoft require(d?) that the certificate protecting the ECP endpoint for a SAML2/Shibboleth federated domain from Office365 was a “trusted” certificate (one issued by what Microsoft consider … Read more

Qualys have recently released a security advisory for those using OpenSSH clients.  In essence using a vulnerable OpenSSH client can expose your private key to … Read more

There are various commercial solutions for providing automatic group population within FIM (into other directories such as Active Directory) which look at arbitrary attributes in … Read more

If you’re at student at Kent developing a web-based application as part of your programme of study and would like to integrate with the university’s … Read more

We have recently seen an large increase in the number of phishing emails directed at University accounts. These contain a downloading tool which downloads malware … Read more

Recently we had an issue where our snort logs stopped appearing in Splunk despite working fine for many months. After some digging I found that if … Read more

For some time we had wanted to implement SSO on our Papercut installation but any form of SSO was not supported by Papercut. With release … Read more

I’ve been doing a lot of work recently getting our FIM ready to provision and manage mailboxes and other objects in Exchange 2013 and, in doing … Read more

Active Directory, for reasons best known to itself, stores many boolean attributes (such as userAccountControl or msExchELCMailboxFlags) together in an aggregate integer rather than separating them … Read more

Response Policy Zones (RPZ) can be used not only to protect the University community from botnet command and control traffic, but also connections to malware … Read more