The Wiert Corner – irregular stream of stuff

Jeroen W. Pluimers on .NET, C#, Delphi, databases, and personal interests

  • My badges

    Mastodon

  • Twitter Updates

  • My Flickr Stream

    20140508-Delphi-2007--Project-Options--Cannot-Edit-Application-Title-HelpFile-Icon-Theming20140430-Fiddler-Filter-Actions-Button-Run-Filterset-now20140424-VMware-Fusion-6.0.3.-no-reclaimable
    More Photos

  • Pages

  • All categories

  • Enter your email address to subscribe to this blog and receive notifications of new posts by email.

    Join 2,953 other followers

Archive for July 19th, 2010

Why digital signatures are weak: VeriSign Revokes Certificate Used to Sign Stuxnet Malware

Posted by jpluimers on 2010/07/19

The Stuxnet rootkit exploit shows why digital signatures are weak.
Not so much the signatures themselves are weak, but the process around signing with digital certificates is weak:

If an unauthorized person or piece of software  gains access to the private key of the digital certificate used for signing anything, then the whole chain starting with that digital certificate is compromised.

In this case, a private key used for signing Realtek drivers was used to sign the Stuxnet rootkit drivers.

VeriSign now has revoked this particular digital certificate.
Which results into all drivers that have been signed with this revoked certificate become marked as a potential security risk.

The rootkit also revealed another security issue with the Windows Shell exploited by specially crafted .lnk files, but the risk of the digital signing process has much bigger implications.

–jeroen

via: VeriSign Revokes Certificate Used to Sign Stuxnet Malware | threatpost.

Posted in Power User | Leave a Comment »

SQL Server: conditionally performing a DROP TRIGGER

Posted by jpluimers on 2010/07/19

Sometimes you need to drop a trigger, and depending on your SCM, your database might not actually have it.

Many people start blinding querying the system tables for this (a few of those examples are revealed by this Google search query).
This might be caused by old Microsoft documentation showing this as an example back in SQL Server 2000.

This is not needed for DML triggers (that react on data changes), querying the system tables is only needed for DDL triggers (that react on DDL actions).

For DML triggers (the vast majority!), you can use OBJECT_ID in stead. Read the rest of this entry »

Posted in Database Development, Development, SQL Server | Leave a Comment »

 
%d bloggers like this: