Fraudulent Certificates Could Allow Spoofing


Microsoft warned that COMODO issued 9 fraudulent certificates to a third party whose identity was not sufficiently validated. These fraudulent certificates could be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all web browser users. According to Microsoft Security Advisory, the followig web properties are affected: login.live.com mail.google.com http://www.google.com login.yahoo.com (3 … Continue reading Fraudulent Certificates Could Allow Spoofing

Using Site to Site VPN As Proxy


I worked for an IT consulting company before. The headquater of the company locates in Denver. One of our clients is in Chicago. The project for that client will be done 50% by the Denver office and the other 50% by the oversea development center. According to the client’s security policy, only American IP address … Continue reading Using Site to Site VPN As Proxy

MTU May Impact VPN Connection Performance


Have you ever experienced that the site2site VPN connection performance is poor despite the Internet connection between the two sides is good and both equipment works properly? I met this situation once. And it turned out to be caused by the settings of MTU (Maximum Transfer Unit). The default MTU of Ethernet is 1,500 Bytes. … Continue reading MTU May Impact VPN Connection Performance

Batch Script: Windows AD Migration


I worked on a Windows domain migration project several months ago. The P company acquired the B company, and request to migrate all former B company’s employees’ desktops and laptops to P company’s AD domain. Firstly, I created all new AD accounts for B company’s employees in P company’s AD. Then I wrote the following … Continue reading Batch Script: Windows AD Migration