Welcome to cissp CISSP training Certified Information Systems Security Professional
Search
Nickname Password Security Code Security Code Type Security Code  

SecureNinja BootCamps
FITSI the certification program for the federal workforce

CCCure Quiz Engine

Rated #1 Training

Best hacking and penetration testing magazine in the world

Library of Documents

Forum Postings

CISSP's Blogs

Here is a list of Blogs maintained by CISSP's.

SECURITY JOBS

- Information Security Jobs

ISC2 BLOGS

- Official ISC2 Blog

CISSP's BLOGS

- Allen Baranov
- Andy Willingham
- Anton Aylward
- Benjamin Tomhave
- Bob Johnston
- Chad McDonald
- CSCI Blog
- Daniel Accioly Rosa
- Dave Lewis
- Donald Glass
- Gary Hinson
- Martin McKeay
- Michael Ehart
- Michael Santarcangelo Security Catalyst
- Peter Gregory
- Rebecca Herold
- Shaun Balkum
- Vijay Upadhyaya
- Vincent Arnold 

LEGAL INFO BLOGS

- Bow Tie Law's Blog
- Chilling Effects Clearinghouse
- Cyber Law Update
- Digestible Law
- Law.Com Daily Alerts
- Law.Com Technology News
- Law.Com
- International Legal News
- Lessig Blog
- Michael Overly
- NCSL info site
- Susan Brenner
- The Gray Blog

ISO 27001 & BS 25999

- Dejan Kosutic

You know of a blog that is not listed, please Click Here to send us the link

Recommended Podcasts

MISC Menu

Security Books

Surveys

Where do you find the best price for books?

Amazon.Com
Bookpool.Com
The ISC2 webstore
CISSPS.COM
Cheapbooks.com
Ecampus.com
Other (Please leave a comment with name of site)



Results
Polls

Votes 1827

Top10 Links

Top10 Downloads

Who's Online

There are currently, 76 guest(s) and 12 member(s) that are online.

You are Anonymous user. You can register for free by clicking here

Security News: XATO commentary on NSA Security Documents
Posted on Tuesday, 19 June 2001 @ 10:54:28 EDT
Contributed by cdupuis | Topic: Security_Tools

Xato has release an interesting paper on the relevance of the IIS hardening document that were release by NSA. Once again it proves that you should not rely on a single source of information, if you do, then ensure that it is right. The documents from NSA still provides a very good basis but they are not the only resource in securing your IIS server.

Click on Read More below for the full story.

Last week the National Security Agency (NSA) released a series of documents on the subject of Windows 2000 security. Since we at Xato (www.xato.net) focus so much on IIS security, we were anxious to see what the world's most elite intelligence agency had to share. As we dove into the IIS document we were quite disappointed with what we found. Instead of discovering a wealth of information in these recently unclassified documents, we found a largely inadequate and sometimes incorrect security guide.

The NSA, according to Executive Order 12333, has a twofold mission. The first of these is to "...achieve information assurance for information infrastructures critical to U.S. national security interests." It is the biggest spender in the U.S. government and is considered the most secret government agency. But has the NSA lost its technological edge in the battlefield of internet security?

With billion dollar budgets, we would expect the NSA to be able to give this author of this document the resources to properly research and produce a report worthy of their agency. Some may say we are being too critical of this paper and perhaps if it came from anyone else we would not bother with this commentary. BUT THIS IS THE NSA. We would expect (and want) them to at least be better than us.

This commentary only covers the IIS document, as we have not yet had a chance (and are somewhat afraid) to review the rest. Overall, we found the document to be of fair quality but we noted some significant problems. Here are some examples:

On page 4 of the document (page 20 in the PDF) there is a "...list of services that are not required for most installations of IIS 5.0..." For the most part we agreed with the list but we felt there are a number of other services that should not be enabled on an IIS web server. Some of these are the Fax Service, Internet Connection Sharing, Telnet, and NetMeeting Remote Desktop Sharing to name a few. We also wanted to note that disabling Logical Disk Manager prevents disk management from the Computer Management MMC and disabling Plug and Play can cause some very slow Windows startup times. Service configuration on an IIS server is very important (and takes much research and practice to get right) but the NSA document was very incomplete on this subject.

On page 8 (page 24 in the PDF) Table 1 shows some recommended NTFS and IIS permissions. There are several things we disagree with here. First, we noticed right away that it mentions using .cmd files in executable directories. For a number of reasons, it is best practice to not put any batch files in a web directory. Next, we noticed that it recommends giving script and executable directories "Read & Script" permissions. Read permissions are not required or advised and this recommendation contradicts Chapter 4, which states several times not to assign read permissions to the scripts directory. We questioned some of the other permissions but until we fully test our suspicions, we will not comment further on this.

On page 12 (page 28 in the PDF) it talks about securing the IIS metabase. We felt that an entire page devoted to protecting the metabase (which is already very well protected by default) is sending people in the wrong direction. If someone has enough rights to stop the IIS service and replace the metabase file, you mostly likely have much more to be concerned about than your metabase getting modified. Later in the paragraph it says "To reinforce access control to this file, it is recommended that this file be hidden from unauthorized users. Moving or renaming the file can accomplish this security measure." We found that disturbing as it is attempting to establish the hiding of the file as a security measure. If someone has enough access to modify the metabase file, they certainly have enough access to open the registry and view the key (which btw, is incorrect in the document, there is no space) to discover where the metabase is located. We have no idea why the NSA would make such a ridiculous recommendation and we certainly hope that they are not protecting their own servers in such a manner. We found several other security-through-obscurity recommendations throughout the document. We realize that obscurity has played a big role in the success of the NSA but it just doesn't work when it comes to internet security.

On pages 5 and 30 (pages 21 and 46 in the PDF) it mentions removing the Log On As Batch Job and Access This Computer From The Network permissions for the IUSR account. This is simply bad advice because if you have the Allow IIS to Control Password option checked (which is checked by default), you will need the Access This Computer From The Network privilege. This privilege is required because authentication is delegated to IISSUBA.DLL, which uses a network logon to authenticate. Conversely, if you have that option unchecked, you will need the Logon Locally privilege.

On page 38 (page 54 in the PDF) it is talking about the Application Configuration settings in the IIS MMC snap-in. The documents states that "Discussions in this document focus on the security relevant settings, which are limited to the App Options and Process Options dialog boxes..." This sentence implies that he App Mappings tab in the Application Configuration dialog box is not relevant to security. However, many IIS vulnerabilities (especially the most interesting ones) are attacks on default extension mappings in IIS. Extensions such as .htr, .htw, .idc, .idq, and .printer should not be mapped on a production web server unless that server actually makes use of those extensions. To their credit, they do mention script mappings somewhat in Chapter 4 (although hiding the metabase got more coverage) but we felt that this is a serious security issue and that App Mappings should be considered "security relevant settings."

We found numerous other contradictions, omissions, and poor recommendations in the document leading us to the conclusion that it should NOT be used as the basis for securing an IIS web server. Certainly it contains some valuable information but it should only be used as a supplement to the many other documents and books available. Frankly it scares us that the agency commissioned to protect the United States has produced such a poor document. We hope that this is not the best work our tax dollars can produce. We also hope that other government agencies do not rely on this document alone to protect themselves. It is bad enough that so many corporate IT personnel are completely incompetent, but to see such poor work coming from the NSA makes us wonder who can really protect us. We write this in hopes that an agency that has an annual electric bill exceeding $21 million will redirect some of that energy into producing some more impressive security knowledge. Perhaps even do some research on their own and produce some new knowledge that we haven't all seen before. After all, you are the NSA.

Part of the reason we are so bothered by this security guide is because security advice has a tendency to propagate through other security documents. These recommendations will be blindly recommended by others and eventually we have these recommendations and no one is really sure why we have them. I would bet that the recommendation to hide the metabase appears in IIS security documents for years to come. The security community over the years has developed a collective knowledge of security practices. Every new document that is produced contributes to that knowledge, even if that knowledge is flawed. An agency with as much influence as the NSA should certainly be more careful with the knowledge they share.

.sozni


Login

Nickname

Password

Security Code:
Security Code
Type Security Code

Don't have an account yet? You can create one. As a registered user you have some advantages like theme manager, comments configuration and post comments with your name.

Related Links

Article Rating

Average Score: 0
Votes: 0

Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad

Options


Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Thursday, 03 June 2010 @ 20:31:50 EDT
(User Info | Send a Message)

منتديات لمسة دفا [lmst-d.com] دليل لمسة دفا [dir.lmst-d.com] عرب [arabtoc.com] دليل مواقع [max4arab.net] التحلية [a77a.com] دليل مواقع [max4arab.net] منتديات ويانا [wyana.net] شات [wll3.com] ترفيه [k-ala7sas.com] حواء [k-ala7sas.com] ولد حائل برمجه [wldhail.com] ولد حائل تسليه [wldhail.com] منتدى الود طبعي [x090x.com] توبيكات الود طبعي [x090x.com] فيديو الود طبعي [x090x.com] خواطر الود طبعي [x090x.com] موقع الود طبعي [x090x.com] الجلسة الدعوية [al-jalsa.com] منتديات الجلسة الدعوية [al-jalsa.com] بحر الشوق [b7r5.com] منتديات بحر الشوق [vb.b7r5.com] مدونات [vb.b7r5.com] دليل منتديات [b7r5.net] توبيكات ملونه [vb.b7r5.com] دردشة [chat.b7r5.com] منتديات [forums.jraaa7.com] دليل مواقع [max4arab.net] صور [pic.jraaa7.com] عنب [a3np.com] زفات [afra7.net] عالم حواء [afra7.net] زفات اسلاميه [zffat.com] دليل الافراح [dir.afra7.net] عالم المراه [fff7.com] عاشق

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Wednesday, 23 June 2010 @ 09:05:24 EDT
(User Info | Send a Message)

<a href="http://ruoof.net/vb">منتديات ريوف</a>
<a href="http://ruoof.net/vb">ريوف</a>
<a href="http://ruoof.net/vb">موقع ريوف</a>
<a href="http://ruoof.net/vb/forumdisplay.php?f=53">أخبار عاجلة</a>
<a href="http://ruoof.net/albom">صور ريوف</a>
<a href="http://ruoof.net/albom/cat5.htm">اختصارات ماسنجر</a>
<a href="http://ruoof.net/albom/cat18.htm">وسائط</a>
<a href="http://up.ruoof.net">مركز تحميل ريوف</a>
<a href="http://up.ruoof.net">تحميل صور</a>
<a href="http://dir.ruoof.net">دليل مواقع ريوف</a>
<a href="http://ruoof.net/vb">منتدى ريوف</a>
<a href="http://ruoof.net/vb/forumdisplay.php?f=48">يوتيوب</a>
<a href="http://ruoof.net/vb/forumdisplay.php?f=48">YouTube</a>
<a href="http://ruoof.net/vb">ريوف</a>
<a href="http://ruoof.net/vb">منتديات ريوف</a>
-
<a href="http://forum.miss44.com">بنات سدير</a>
<a href="http://forum.miss44.com">بنات جلاجل </a>
<a href="http://forum.miss44.com"> بنات الحوطه</a>
<a href="http://forum.miss44.com">بنات تمير</a>
<a href="http://forum.miss44.com">بنات الروضه</a>
<a href="http://forum.miss44.com">ازياء سدير</a>
<a href="http://forum.miss44.com">ملابس سدير</a>
<a href="http://forum.miss44.com">مكياج سدير</a>
<a href="http://forum.miss44.com">وظائف نسائيه</a>
<a href="http://forum.miss44.com">موقع سدير</a>
<a href="http://forum.miss44.com">سدير نت</a>
<a href="http://forum.miss44.com">مكشات سدير</a>
<a href="http://forum.miss44.com">دردشة سدير</a>
<a href="http://forum.miss44.com">شات سدير</a>
<a href="http://forum.miss44.com">منتدى سدير</a>
<a href="http://forum.miss44.com">شبكة سدير</a>
<a href="http://forum.miss44.com">خريطة سدير</a>
<a href="http://forum.miss44.com">مدينة سدير</a>
<a href="http://forum.miss44.com">منطقة سدير</a>
<a href="http://forum.miss44.com">سيدات سدير</a>
<a href="http://forum.miss44.com"

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Thursday, 24 June 2010 @ 09:39:17 EDT
(User Info | Send a Message)

منتديات ريوف [ruoof.net] ريوف [ruoof.net] موقع ريوف [ruoof.net] أخبار عاجلة [ruoof.net] صور ريوف [ruoof.net] اختصارات ماسنجر [ruoof.net] وسائط [ruoof.net] مركز تحميل ريوف [up.ruoof.net] تحميل صور [up.ruoof.net] دليل مواقع ريوف [dir.ruoof.net] منتدى ريوف [ruoof.net] يوتيوب [ruoof.net] YouTube [ruoof.net] ريوف [ruoof.net] منتديات ريوف [ruoof.net] - بنات سدير [forum.miss44.com] بنات جلاجل [forum.miss44.com] بنات الحوطه [forum.miss44.com] بنات تمير [forum.miss44.com] بنات الروضه [forum.miss44.com] ازياء سدير [forum.miss44.com] ملابس سدير [forum.miss44.com] مكياج سدير [forum.miss44.com] وظائف نسائيه [forum.miss44.com] موقع سدير [forum.miss44.com] سدير نت [forum.miss44.com] مكشات سدير [forum.miss44.com] دردشة سدير [forum.miss44.com] شات سدير [forum.miss44.com] منتدى سدير [forum.miss44.com] شبكة سدير [forum.miss44.com] خريطة سدير [forum.miss44.com] مدينة سدير [forum.miss44.com] منطقة سدير [forum.miss44.com] سيد&#1

Read the rest of this comment...




replica watches (Score: 1)
by replicahandbag on Friday, 23 July 2010 @ 21:55:29 EDT
(User Info | Send a Message)

These courses are exercises hermes replica [www.mylacebags.com]that are developed and tested by discount dior handbags [www.mylacebags.com]people who consider themselves handbags on sale [www.mylacebags.com] from the chest fat and Louis Vuitton handbags [www.marisabags.com] therefore a good reputation for their Jimmy Choo handbags [www.marisabags.com] work very well.Therefore push designer handbags [www.marisabags.com]through the elementary school Marni handbags [www.thelacebags.com] until the fiscal year, but exercises dior replica handbags [www.thelacebags.com], the target and closes the d&g handbags [www.thetotebag4u.com]chest fat. Some people may also be for chloe replica handbags [www.thetotebag4u.com]strip that fat the strength designer watches [www.poperwatches.com]training exercises for breast tightening Ferrari replica [www.poperwatches.com]of the muscles and the development in Cartier replica [www.poperwatches.com]this field. It can be a natural croum watches [www.qualityfirstwatch.com]shape of the breast and even a safe power Breitling watches [www.qualityfirstwatch.com]stations look.I have a POP3 email account. replica Blancpain [www.standardwatch.com]I live by that email address and cannot replica Tag Heuer [www.standardwatch.com]change it to a gmail account. But, Breguet for sale [www.thefirstwatches.com]can I forward my POP3 email to a gmail account Cartier for sale [www.thefirstwatches.com]and still see the emails on my phone in a timely manner?




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 16:18:28 EDT
(User Info | Send a Message)

<a href="http://www.eg-girl.com">بنت مصر</a>
<a href="http://www.eg-girl.com">دردشة بنت مصر</a>
<a href="http://www.eg-girl.com">شات بنت مصر</a>
<a href="http://www.eg-girl.com">دردشة مصرية</a>
<a href="http://www.eg-girl.com">شات مصرى</a>
<a href="http://www.eg-girl.com">شات بنات مصر</a>
<a href="http://www.eg-girl.com">دردشة بنات مصر</a>
<a href="http://www.eg-girl.com">شات مصر</a>
<a href="http://www.eg-girl.com">دردشة مصر</a>
<a href="http://www.eg-girl.com">بنات مصر</a>
<a href="http://www.eg-girl.com">دردشة</a>
<a href="http://www.eg-girl.com">شات</a>
<a href="http://www.eg-girl.com">دردشه مصريه</a>
<a href="http://www.eg-girl.com">شات مصري</a>
<a href="http://links.eg-girl.com">اغانى مصرية</a>
<a href="http://vb.eg-girl.com">منتدى بنت مصر</a>
<a href="http://vb.eg-girl.com">منتديات بنت مصر</a>
<a href="http://chat.eg-girl.com">شات بنت مصر الكتابى</a>
<a href="http://chat.eg-girl.com">دردشة بنت مصر الكتابية</a>
<a href="http://voice.eg-girl.com">شات بنت مصر الصوتى</a>
<a href="http://voice.eg-girl.com">دردشة بنت مصر الصوتية</a>
<a href="http://games.eg-girl.com">العاب بنت مصر</a>
<a href="http://video.eg-girl.com">يوتيوب بنت مصر</a>
<a href="http://mob.eg-girl.com">جوال بنت مصر</a>
<a href="http://kitchen.eg-girl.com">مطبخ بنت مصر</a>
<a href="http://azya.eg-girl.com">الازياء والموضة بنت مصر</a>
<a href="http://pic.eg-girl.com">ماسنجر بنت مصر</a>
<a href="http://topics.eg-girl.com">توبيكات بنت مصر</a>
<a href="http://chat.eg-girl.com/Aswan.html">شات اسوان</a>
<a href="http://chat.eg-girl.com/Alexandria.html">شات الاسكندرية</a>
<a href="http://chat.eg-girl.com/Asyut.html">شات اسيوط</a>
<a href="http://chat.eg-gir

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 16:19:16 EDT
(User Info | Send a Message)

<a href="http://www.2sw2r.com/vb/t92499.html">توبيكات رمضانيه</a>
<a href="http://www.2sw2r.com/vb/t92499.html">توبيكات رمضان</a>
<a href="http://www.2sw2r.com/vb/f87">اكلات رمضانيه</a>
<a href="http://www.2sw2r.com/vb/f87">اطباق رمضانيه</a>
<a href="http://www.2sw2r.com/vb/f87">اكلات رمضان</a>
<a href="http://www.2sw2r.com/vb/t94257.html">صور ماسنجر رمضان</a>
<a href="http://www.2sw2r.com/vb/t92489.html">صور ماسنجر رمضانيه</a>
<a href="http://www.2sw2r.com/vb/t91938.html">طبخات رمضانيه</a>
<a href="http://www.2sw2r.com/vb/f87">طبخات رمضان</a>
<a href="http://www.2sw2r.com/vb/t27949.html">مسلسلات رمضان</a>
<a href="http://www.2sw2r.com/vb/t107959.html">توبيكات العيد</a>
<a href="http://www.2sw2r.com/vb/t108718.html">توبيكات عيد الفطر</a>
<a href="http://topics.2sw2r.com/">توبيكات</a>
<a href="http://forum.ftyaat.com/">منتديات فتيات</a>
<a href="http://video.2sw2r.com">يوتيوب</a>
<a href="http://topics.2sw2r.com/">توبيكات ملونه</a>
<p><a href="http://www.2sw2r.com/vb/t91679.html/">حلويات رمضانيه</a></p>
<p><a href="http://www.2sw2r.com/vb/f87/">طبخات رمضانيه</a></p>
<p><a href="http://www.2sw2r.com/vb/f87/">طبخات رمضان</a></p>
<p><a href="http://www.2sw2r.com/vb/t26840.html">تواقيع رمضانيه</a></p>
<a href="http://www.2sw2r.com/vb/t191984.html">حلقات مسلسل ليله عيد</a>
<a href="http://www.2sw2r.com/vb/t191991.html">حلقات مسلسل متلف الروح</a>
<a href="http://www.2sw2r.com/vb/t191994.html">حلقات مسلسل ايام الفرج</a>
<a href="http://www.2sw2r.com/vb/t191996.html">حلقات مسلسل خيوط ملونه</a>
<a href="http://www.2sw2r.com/vb/t238288.html">حلقات مسلسل هوامير الصحراء الجزء الثاني

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 16:56:16 EDT
(User Info | Send a Message)

بنت مصر [www.eg-girl.com]
دردشة بنت مصر [www.eg-girl.com]
شات بنت مصر [www.eg-girl.com]
دردشة مصرية [www.eg-girl.com]
شات مصرى [www.eg-girl.com]
شات بنات مصر [www.eg-girl.com]
دردشة بنات مصر [www.eg-girl.com]
شات مصر [www.eg-girl.com]
دردشة مصر [www.eg-girl.com]
بنات مصر [www.eg-girl.com]
دردشة [www.eg-girl.com]
شات [www.eg-girl.com]
دردشه مصريه [www.eg-girl.com]
شات مصري [www.eg-girl.com]
اغانى مصرية [links.eg-girl.com]
منتدى بنت مصر [vb.eg-girl.com]
منتديات بنت مصر [vb.eg-girl.com]
شات بنت مصر الكتابى [chat.eg-girl.com]
دردشة بنت مصر الكتابية [chat.eg-girl.com]
شات بنت مصر الصوتى [voice.eg-girl.com]
دردشة بنت مصر الصوتية [voice.eg-girl.com]
العاب بنت مصر [games.eg-girl.com]
يوتيوب بنت مصر [video.eg-girl.com]
جوال بنت مصر [mob.eg-girl.com]
مطبخ بنت مصر [kitchen.eg-girl.com]
الازياء والموضة بنت مصر [azya.eg-girl.com]
ماسنجر بنت مصر [pic.eg-girl.com]
توبيكات بنت مصر [topics.eg-girl.com]
شات اسوان [chat.eg-girl.com]
شات ال&#157

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 17:20:31 EDT
(User Info | Send a Message)

شات اسيوط [chat.eg-girl.com]
شات البحيرة [chat.eg-girl.com]
شات بني سويف [chat.eg-girl.com]
شات القاهرة [chat.eg-girl.com]
شات المنصورة [chat.eg-girl.com]
شات دمياط [chat.eg-girl.com]
شات الفيوم [chat.eg-girl.com]
شات طنطا [chat.eg-girl.com]
شات الجيزة [chat.eg-girl.com]
شات الاسماعيلية [chat.eg-girl.com]
شات كفر الشيخ [chat.eg-girl.com]
شات مرسى مطروح [chat.eg-girl.com]
شات المنيا [chat.eg-girl.com]
شات المنوفية [chat.eg-girl.com]
شات الوادى الجديد [chat.eg-girl.com]
شات العريش [chat.eg-girl.com]
شات بورسعيد [chat.eg-girl.com]
شات بنها [chat.eg-girl.com]
شات قنا [chat.eg-girl.com]
شات الغردقة [chat.eg-girl.com]
شات الزقازيق [chat.eg-girl.com]
شات سوهاج [chat.eg-girl.com]
شات جنوب سيناء [chat.eg-girl.com]
شات السويس [chat.eg-girl.com]
شات الاقصر [chat.eg-girl.com]
شات حلوان [chat.eg-girl.com]
شات 6 اكتوبر [chat.eg-girl.com]
دليل موقع بنت مصر [dir.eg-girl.com]




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 17:51:20 EDT
(User Info | Send a Message)

دردشة مصرية [dir.eg-girl.com]
شات مصري [dir.eg-girl.com]
شات سعودي [dir.eg-girl.com]
شات كويتي [dir.eg-girl.com]
شات قطري [dir.eg-girl.com]
شات بحريني [dir.eg-girl.com]
شات عماني [dir.eg-girl.com]
شات اماراتي [dir.eg-girl.com]
شات يمني [dir.eg-girl.com]
شات فلسطيني [dir.eg-girl.com]
شات لبناني [dir.eg-girl.com]
شات سوري [dir.eg-girl.com]
شات خليجي [dir.eg-girl.com]
شات عراقي [dir.eg-girl.com]
شات الحب [dir.eg-girl.com]
شات عربي [dir.eg-girl.com]
منتديات ثرمداء [forum.tharmada.com]
ثرمداء [tharmada.com]
منتدي ثرمداء [forum.tharmada.com]
موقع ثرمداء [tharmada.com]
منتديات عسكر [3i3i3.com]
منتديات ساهر الطرف [www.s-tarf.com]
ساهر الطرف [www.s-tarf.com]
ساهر [www.s-tarf.com]
منتديات [www.s-tarf.com]
مركز تحميل ساهر الطرف [s-tarf.com]
منتديات عالم ثاني [www.3alaam.com]
عالم ثاني [www.3alaam.com]
أرصفة مبعثرة [www.3alaam.com]
بوح على أهداب [www.3alaam.com]
صور جاهزة ل&#16

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 18:09:09 EDT
(User Info | Send a Message)

الحياة الوردية [www.3alaam.com]
صور [www.3alaam.com]
برامج الكمبيوتر [www.3alaam.com]
اضحك معنا [www.3alaam.com]
mms msm [www.3alaam.com]
منتديات [www.7irtny.com]
شات [www.chat.7irtny.com]
ازياء,اكسسوارات [f9f7.com]
برامج حماية,افضل برامج [f9f7.com]
مطبخ-حلويات-اكلات-معجنات [f9f7.com]
قصص-حكايات-روايات [f9f7.com]
دردشة بنات الشرقية [www.s7r7.com]
منتدى بنات الشرقية [www.s7r7.com]
دليل بنات الشرقية [www.s7r7.com]
توبيكات بنات الشرقية [www.s7r7.com]
العاب بنات الشرقية [www.s7r7.com]
منتديات كلنا السعودية [www.f9f7.com]
كلنا للسعودية [www.f9f7.com]
في اي بي [www.vipxvip.org]

خليجي  ، شات خليجي ، دردشه خليجي ، اكبر تجمع خليجي [www.khlegy.com]

مدونه خليجي [www.khlegy.com]

مركز تحميل خليجي [www.khlegy.com]

دليل مواقع خليجي [www.khlegy.com]

خليجي [www.khlegy.com]

خليجي [www.khlegy.com]

خليجي [www.khlegy.com]




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 18:57:55 EDT
(User Info | Send a Message)

توبيكات رمضانيه [www.2sw2r.com]
توبيكات رمضان [www.2sw2r.com]
اكلات رمضانيه [www.2sw2r.com]
اطباق رمضانيه [www.2sw2r.com]
اكلات رمضان [www.2sw2r.com]
صور ماسنجر رمضان [www.2sw2r.com]
صور ماسنجر رمضانيه [www.2sw2r.com]
طبخات رمضانيه [www.2sw2r.com]
طبخات رمضان [www.2sw2r.com]
مسلسلات رمضان [www.2sw2r.com]
توبيكات العيد [www.2sw2r.com]
توبيكات عيد الفطر [www.2sw2r.com]
توبيكات [topics.2sw2r.com]
منتديات فتيات [forum.ftyaat.com]
يوتيوب [video.2sw2r.com]
توبيكات ملونه [topics.2sw2r.com]

حلويات رمضانيه [www.2sw2r.com]

طبخات رمضانيه [www.2sw2r.com]

طبخات رمضان [www.2sw2r.com]

تواقيع رمضانيه [www.2sw2r.com]
حلقات مسلسل ليله عيد [www.2sw2r.com]
حلقات مسلسل متلف الروح [www.2sw2r.com]
حلقات مسلسل ايام الفرج [www.2sw2r.com]
حلقات مسلسل خيوط ملونه [www.2sw2r.com]
حلقات مسلسل هوامير الصحراء ا&

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 19:23:33 EDT
(User Info | Send a Message)

حلقات مسلسل ملكه في المنفى [www.2sw2r.com]
حلقات مسلسل حكايات بنعيشها الجزء الثاني [www.2sw2r.com]
حلقات مسلسل امراه في ورطه [www.2sw2r.com]
حلقات مسلسل شيخ العرب همام [www.2sw2r.com]
حلقات مسلسل عايزه اتجوز [www.2sw2r.com]
حلقات مسلسل بالشمع الاحمر [www.2sw2r.com]
حلقات مسلسل كليوباترا [www.2sw2r.com]
حلقات مسلسل قضيه صفيه [www.2sw2r.com]
حلقات مسلسل الجماعه [www.2sw2r.com]
حلقات مسلسل ليلى الجزء الثاني [www.2sw2r.com]
حلقات مسلسل كريمو [www.2sw2r.com]
حلقات مسلسل حيتان وذئاب [www.2sw2r.com]
حلقات مسلسل عجيب غريب الجزء الثاني [www.2sw2r.com]
حلقات مسلسل الرهينه [www.2sw2r.com]
حلقات مسلسل للحياه ثمن [www.2sw2r.com]
حلقات مسلسل يا صديقي [www.2sw2r.com]
حلقات مسلسل البلشتي [www.2sw2r.com]
حلقات مسلسل العب غيرها [www.2sw2r.com]
حلقات مسل&#1587

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 19:43:52 EDT
(User Info | Send a Message)

حلقات مسلسل الغافه [www.2sw2r.com]
حلقات مسلسل اصيل [www.2sw2r.com]
حلقات مسلسل انين [www.2sw2r.com]
حلقات مسلسل ساهر الليل [www.2sw2r.com]
حلقات مسلسل الحب الذي كان [www.2sw2r.com]
حلقات مسلسل فص كلاص [www.2sw2r.com]
حلقات مسلسل اخوان مريم [www.2sw2r.com]
حلقات مسلسل تصانيف [www.2sw2r.com]
حلقات مسلسل بنات ادم [www.2sw2r.com]
حلقات مسلسل السندباد بن محارب [www.2sw2r.com]
حلقات مسلسل سوالف طفاش الجزء الثاني [www.2sw2r.com]
حلقات مسلسل مزحه برزحه [www.2sw2r.com]
حلقات مسلسل الصراع [www.2sw2r.com]
حلقات مسلسل شر النفوس الجزء الثالث [www.2sw2r.com]
حلقات مسلسل طماشه الجزء الثاني [www.2sw2r.com]
حلقات مسلسل زمن طناف [www.2sw2r.com]
حلقات مسلسل بنات شمه [www.2sw2r.com]
حلقات مسلسل احلام سعيد [www.2sw2r.com]
حلقات مسلسل ما اصعب الكلام [www.2sw2r.com]




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 21:15:00 EDT
(User Info | Send a Message)

حلقات مسلسل الغافه [www.2sw2r.com]
حلقات مسلسل اصيل [www.2sw2r.com]
حلقات مسلسل انين [www.2sw2r.com]
حلقات مسلسل ساهر الليل [www.2sw2r.com]
حلقات مسلسل الحب الذي كان [www.2sw2r.com]
حلقات مسلسل فص كلاص [www.2sw2r.com]
حلقات مسلسل اخوان مريم [www.2sw2r.com]
حلقات مسلسل تصانيف [www.2sw2r.com]
حلقات مسلسل بنات ادم [www.2sw2r.com]
حلقات مسلسل السندباد بن محارب [www.2sw2r.com]
حلقات مسلسل سوالف طفاش الجزء الثاني [www.2sw2r.com]
حلقات مسلسل مزحه برزحه [www.2sw2r.com]
حلقات مسلسل الصراع [www.2sw2r.com]
حلقات مسلسل شر النفوس الجزء الثالث [www.2sw2r.com]
حلقات مسلسل طماشه الجزء الثاني [www.2sw2r.com]
حلقات مسلسل زمن طناف [www.2sw2r.com]
حلقات مسلسل بنات شمه [www.2sw2r.com]
حلقات مسلسل احلام سعيد [www.2sw2r.com]
حلقات مسلسل ما اصعب الكلام [www.2sw2r.com]




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 21:26:49 EDT
(User Info | Send a Message)

حلقات مسلسل اميمه في دار الايتام [www.2sw2r.com]
حلقات مسلسل زواره خميس [www.2sw2r.com]
حلقات مسلسل في بيتنا غشنه [www.2sw2r.com]
حلقات مسلسل سقوط الخلافه [www.2sw2r.com]
حلقات مسلسل زهره وازواجها الخمسه [www.2sw2r.com]
حلقات مسلسل باب الحاره الجزء الخامس [www.2sw2r.com]
حلقات مسلسل زمن مرجان [www.2sw2r.com]
حلقات مسلسل شيكات [www.2sw2r.com]
حلقات مسلسل البيت المسكون [www.2sw2r.com]
حلقات مسلسل وراء الشمس [www.2sw2r.com]
حلقات مسلسل سكتم بكتم [www.2sw2r.com]
حلقات مسلسل صبايا الجزء الثاني [www.2sw2r.com]
حلقات مسلسل غشمشم الجزء الخامس [www.2sw2r.com]
حلقات برنامج خواطر الجزء السادس [www.2sw2r.com]
حلقات مسلسل اهل الرايه الجزء الثاني [www.2sw2r.com]
حلقات مسلسل بيني وبينك الجزء الرابع [www.2sw2r.com]
حلقات مسلسل طاش ماطاش السابع &#159

Read the rest of this comment...




Re: XATO commentary on NSA Security Documents (Score: 1)
by webplu9 on Monday, 23 August 2010 @ 22:03:42 EDT
(User Info | Send a Message)

العاب [www.games.7irtny.com]
تحميل [www.up.7irtny.com]
توبيكات [www.topic.7irtny.com]
شبكه الحلم [www.al-hlm.com]
منتديات الحلم [www.al-hlm.com]
اسيوط [assuit-online.com]
جامعة اسيوط [assuit-online.com]
توبيكات,توبيكات ملونه [www.ooo9.net]
صور رومانسية [www.aghla7.com]
هدوء [forums.hdo0.com]
سعودي اح [www.ksea7.com]
دردشه صوتيه [www.ksea7.com]
الخليج [al5lig.com]
منتديات الخليج [al5lig.com]
شات الخليج [al5lig.com]
شات [www.al5lig.com]
حب [www.al5lig.com]
خليجى [www.al5lig.com]
الخليج [al5lig.com]
انا خليجى [www.al5lig.com]
بنات الخليج [www.al5lig.com]
خليجات [www.al5lig.com]
منتج [www.goiamall.com]
سوق [www.goiamall.com]
غزلان ناصر [www.ghezlan-nasser.com]
خليجي [www.google.com.sa]

شات خليجي [www.google.com.sa]

دردشه خليجي [www.google.com.sa]




All logos and trademarks in this site are property of their respective owner.
The comments are property of their posters, all the rest © 2007 by CCCure.Org, and the site maintainers Clement Dupuis and Nathalie Lambert. Reuse is strictly prohibited without written permission of CCCure.Org or it's maintainers.

This web site is not associated directly or indirectly with ISC2, the SANS Institute, ISACA, or other certification authority. The GCFW, CISSP, SSCP, ISSEP, ISSMP, CISA, and CISM are all the property of their respecful owners. The content of this site is provided to you freely due to the generosity of our sponsors.


  • Career
  • Magazines
  • Conferences
  • Study Books
  • Certifications
  • Training
  • Tutorials
  • Quizzes
  • Forums

    • Page Generation: 1.16 Seconds