Security Now!: Information from Answers.com

This article needs references that appear in reliable third-party publications. Primary sources or sources affiliated with the subject are generally not sufficient for a Wikipedia article. Please add more appropriate citations from reliable sources. (July 2008)

Security Now!

Hosting	Leo Laporte Steve Gibson
Language	English
RSS	MP3 Feed
Updates	Weekly
Audio format	MP3
Debut	August 19, 2005
Genre	Computer Security
Website	http://www.twit.tv/SN

Security Now! is a weekly podcast hosted by Leo Laporte and Steve Gibson.^[1] It was the second podcast released on the TWiT.tv network. The first episode was released on 19 August 2005.

Released each Thursday, Security Now! consists of a discussion between Gibson and Laporte of issues of computer security and, conversely, insecurity. Covered topics have included security vulnerabilities, firewalls, password security, spyware, rootkits, Wi-Fi, virtual private networks (VPNs), virtual machines, full virtualization, hardware-assisted virtualization, and virtual appliances.

1 Podcast feed
- 1.1 Show format
- 1.2 Additional content
2 Listener feedback
3 Popularity
4 Episode list
5 Windows Metafile vulnerability claims
6 References
7 External links

Podcast feed

Security Now! is distributed via its main podcast RSS feed (link) and on the GRC Security Now! page.^[2] The audio is encoded as 64 kbps MP3 files with 16 kbps versions available for listeners on low bandwidth connections or those with limited storage space. The audio files are licensed under the creative commons by-nc-sa license.

Show format

The podcast runs for approximately 90 minutes, with the actual discussion of the subject of the podcast typically starting 20 minutes into the show. The first 20 minutes being spent on general chat, security news, sponsors and reading out letters and e-mails. Discussion of Gibson's disk recovery product SpinRite has been criticized for its dominance in the show .^[3]

Additional content

As part of GRC's section on the podcast, supplementary notes and transcripts of each show are available in plain text, HTML and PDF formats.

Listener feedback

Regular episodes of the podcast have been devoted to the answering of questions and responding to feedback provided by Security Now! listeners. Originally every 4th episode (referred to as a "mod 4 episode" or "mod 4 equals 0 episode.") was devoted to this, but starting with Episode 108 this merged with the then recently introduced "Mailbag" episodes ("mod 4 + 2 episodes")^[4] and became a bi-weekly feature. Listeners submit their comments and questions for the podcast at the GRC.COM Website.

Popularity

In August 2007, Security Now! won in the People's Choice Podcast Awards Technology/Science category.^[5] In August 2006, Security Now! ranked fourth in the "Top 40" of all podcasts listened to via the PodNova service.^[6] Security Now! averaged around 100,000 downloads per episode throughout 2006.^[7]^[8]

Episode list

Episode list

Episode	Date	Episode name	Discussed
1	19 August 2005	As the Worm Turns	Zotob, one of the first worms of 2005.
2	25 August 2005	HoneyMonkeys	Microsoft's Strider HoneyMonkey research project to find malicious and phishing web sites.
3	1 September 2005	NAT Routers as Firewalls	Network address translation routers and how they can act as firewalls.
4	8 September 2005	Personal Password Policy	Various ways of creating and using a personal password "algorithm" for Internet web sites.
5	15 September 2005	Personal Password Policy — Part 2	A wrap-up of the password topic with answers to listeners' questions.
6	22 September 2005	Mechanical and Electromagnetic Information Leakage	How researchers at UC Berkeley were able to recover text typed at a keyboard through the sound made by the keys, and how CRT emissions can be used to snoop on users. [1]
7	29 September 2005	"SPYaWAREness"	How and why Steve Gibson wrote one of the first spyware removal tools.
8	6 October 2005	Denial of Service Attacks	How denial-of-service attacks are being used not only against large corporate sites but the average computer user also.
9	13 October 2005	Rootkits	Rootkits, their use, detection and removal.
10	20 October 2005	Open Wireless Access Points	The privacy and security concerns of "open" wireless access points.
11	27 October 2005	Bad Wi-Fi Security	Some of the less secure Wi-Fi security methods, including WEP and MAC address filtering.
12	3 November 2005	Sony's "Rootkit Technology"	Sony's XCP, the technology behind the 2005 Sony BMG CD copy protection scandal.
13	10 November 2005	Unbreakable Wi-Fi Security	Wi-Fi Protected Access encryption on wireless networks and the various flavours of it.
14	17 November 2005	Virtual Private Networks — Theory	The reasoning behind virtual private networks and how they can offer security for the average user.
15	24 November 2005	Virtual Private Networks — Secure Tunneling Solutions	SSL and SSH used in conjunction with virtual private networks.
16	1 December 2005	Listener Q&A #1	Answers to questions sent in by Security Now! listeners.
17	10 December 2005	PPTP and IPSec VPN Technology	Earlier VPN protocols and some of the difficulties in applying them.
18	15 December 2005	Hamachi Rocks!	Hamachi — a zero-configuration VPN system.
19	22 December 2005	VPNs — Part 3	Hamachi, iPIG and OpenVPN systems compared.
20	29 December 2005	Listener Q&A #2	Listener questions and the first word on the Windows Metafile vulnerability.
20se	1 January 2006	WMF special edition	A special short edition concerning the WMF vulnerability and a temporary hot-fix by software developer Ilfak Guilfanov.
21	5 January 2006	The Windows Metafile vulnerability	Ilfak Guilfanov who makes a guest appearance and the impact of the WMF vulnerability.
22	12 January 2006	The Windows Metafile backdoor?	Steve Gibson raises his concerns that the WMF vulnerability could be a backdoor inserted deliberately by Microsoft.
23	19 January 2006	GRC's MouseTrap	Steve Gibson's MouseTrap utility to test Windows computers for the WMF vulnerability [2].
24	26 January 2006	Listener Q&A #3	—
25	2 February 2006	How the Internet Works — Part 1	The fundamental technology behind the Internet.
26	9 February 2006	How the Internet Works — Part 2	The two main data protocols of the Internet: UDP and TCP.
27	16 February 2006	How LANs Work — Part 1	The operation of local area networks.
28	23 February 2006	Listener Q&A #4	—
29	2 March 2006	Ethernet Insecurity	The flaws in Ethernet security and the phenomenon of ARP cache poisoning [3].
30	9 March 2006	Cryptographic Issues	The social and ethical implications of cryptography.
31	16 March 2006	Symmetric Stream Ciphers	The use and security behind stream ciphers and early decoder rings.
32	23 March 2006	Listener Q&A #5	—
33	30 March 2006	Symmetric Block Ciphers	The fundamentals of symmetric block ciphers.
34	6 April 2006	Public Key Cryptography	Public key cryptography such as the Diffie-Hellman key exchange and RSA.
35	13 April 2006	Cryptographic Hashes	How cryptographic hashes work and are used to verify the integrity of files and email.
36	20 April 2006	Listener Q&A #6	—
37	27 April 2006	Primes and Certificates	Prime number generation, key recovery, and digital certificates.
38	4 May 2006	Browser Security	The security of web browsers.
39	11 May 2006	Buffer Overruns	How buffer overruns occur.
40	19 May 2006	Listener Q&A #7	—
41	26 May 2006	TrueCrypt	Discussion of the open source file encryption program TrueCrypt.
42	1 June 2006	NAT Traversal	Discussion of NAT routers and techniques for P2P programs to traverse them.
43	8 June 2006	Open Ports	Open, closed, and stealth ports
44	15 June 2006	Listener Q&A #8	—
45	22 June 2006	The Hosts File	The Hosts file, and its use in privacy and spyware applications
46	29 June 2006	Router Logs	Steve discusses whether or not router logs are useful security information.
47	6 July 2006	Internet Weaponry	Denial of Service Attacks and botnets.
48	13 July 2006	Listener Q&A #9	—
49	21 July 2006	Netstat	Operation and use of netstat.
50	28 July 2006	Intro to Virtualization	Virtual machine technology and its history.
51	4 August 2006	Vista's Virgin Stack	Windows Vista's new network stack.
52	11 August 2006	Security Bulletins	JavaScript exploits, eBay gaming and Hamachi's sale to LogMeIn
53	17 August 2006	VMware	VMware Player and its Virtual Machine "appliances"; use of virtualization for sandboxing
54	24 August 2006	Blue Pill	"Blue Pill" rootkit that takes advantage of next generation virtualization hardware support and is "completely undetectable".
55	31 August 2006	Application Sandboxes	Lighter programs for virtualization, with focus on semi freeware-semi nagware ("just" one nag once a month) and crippleware (some "extra" features can be unlocked by paying) (Sandboxie. [4]
56	7 September 2006	Listener Q&A #10	—
57	14 September 2006	Virtual PC versus VMware	Virtual PC review and why Steve thinks VMware is superior.
58	21 September 2006	Two New Critical Windows Problems	Vulnerability in Vector Markup Language for IE and Windows 2000 NTFS file corruption bug.
59	28 September 2006	Parallels	Steve and Leo closely examine the commercial multiplatform virtual machine offerings from Parallels, comparing them to VMware and Virtual PC.
60	5 October 2006	Listener Q&A #11	—
61	12 October 2006	ISP Privacy and Security	Two new Zero day attack Internet Explorer vulnerabilities and the exploration of commonly expressed privacy and security concerns presented by the need to trust Internet Service Providers.
62	19 October 2006	Internet Proxies	The entire range of applications for Internet proxies and proxy servers, as well as both the benefits and the potential security and privacy liabilities created by filtering and caching web and other Internet content.
63	26 October 2006	MojoPac	MojoPac from RingCube Technologies. Steve tells all about what he found and what he believes it means now and in the future.
64	2 November 2006	Listener Feedback Q&A #12	—
65	9 November 2006	Why Is Security So Difficult?	Leo and Steve discuss the difficulties of securing Windows.
66	16 November 2006	Windows Vista Security	The new security features Microsoft has designed and built into their new version of Windows, Vista.
67	23 November 2006	Kernel Patch Protection	Vista's Kernel Patch Protection (aka PatchGuard), its limitations, benefits, and real purpose.
68	30 November 2006	Listener Feedback Q&A #13	—
69	7 December 2006	Internet Anonymity	Is there such a thing as anonymity on the Internet? How important is it?
70	14 December 2006	Freenet and TOR	Two interesting implementations of Internet anonymization: The Freenet Project for anonymously storing and transmitting files, and Tor, "the onion router" which can anonymise Internet traffic.
71	21 December 2006	SecurAble	SecurAble, Steve's latest freeware for analyzing processor support for x86-64, the NX bit and hardware virtualization.
72	28 December 2006	Listener Feedback Q&A #14	—
73	4 January 2007	Digital Rights Management	The history of digital rights management and the technologies used to enforce it.
74	11 January 2007	Peter Gutmann on Vista DRM	Peter Gutmann is a guest to discuss the Advanced Access Content System for protecting high-definition content in Windows Vista.
75	16 January 2007	Vista DRM	Premium content protection features in Windows Vista.
76	23 January 2007	Listener Feedback Q&A #15	—
77	1 February 2007	Microsoft Responds	Microsoft's response to Peter Gutmann's paper on Windows Vista's digital rights management.
78	8 February 2007	Hardware DEP	How hardware data execution protection works, how to turn it on, and the possible pitfalls of using it.
79	15 February 2007	Spambots	An explanation of how spambots work, and how one can ascertain the original source of spam.
80	22 February 2007	Listener Feedback Q&A #16	—
81	1 March 2007	Hard Drive Unreliability	A discussion of the distressing results and implications of two recent very large studies of hard drive field failures.
82	8 March 2007	Cyber Warfare	A discussion of the interesting topic of state-sponsored Cyber Warfare.
83	15 March 2007	Vista's UAC	A closer look at Windows Vista's User Account Control.
84	22 March 2007	Listener Feedback Q&A #17	—
85	29 March 2007	Cross Site Scripting and Jikto	A discussion of Jikto and the cross-site scripting flaws it looks for.
85A	2 April 2007	Special Edition: The Animated Cursor Vulnerability	Special edition to warn and inform listeners of a serious zero-day exploit that affects NT, XP, and Vista - even if fully patched.
86	5 April 2007	Cross Site Scripting Part II	Updates on the Animated Cursor Vulnerability, a recommendation for security software from eEye, and how the Sony Reader works, plus an in depth discussion of scripting vulnerabilities.
87	13 April 2007	SQL Injections	Another common attack vector in web software is the SQL injection. Steve explains what it is and how it happens.
88	19 April 2007	Listener Feedback Q&A #18	—
89	26 April 2007	WEP Insecurity	An in depth look at the latest security problems regarding WEP.
90	3 May 2007	Multifactor Authentication	Steve explains Multifactor Authentication.
91	10 May 2007	Marc Maiffret of eEye Digital Security	Windows and Mac security, the coming threat from web applications and Blink.
92	17 May 2007	Listener Feedback Q&A #19	—
93	24 May 2007	Software Patents	Steve and Leo discuss Software Patents.
94	31 May 2007	The Fourth Factor	The fourth factor of Multifactor Authentication.
95	8 June 2007	Open ID	Open ID, how it works and what it means to you.
96	14 June 2007	Listener Feedback Q&A #20	—
97	22 June 2007	Operation Bot Roast	The FBI says it has uncovered its findings from Operation Bot Roast.
98	28 June 2007	Internet Identity Metasystems	Discussion of authentication with a look at Internet identity metasystems.
99	5 July 2007	Trusted Platform Module (TPM)	The Trusted Platform Module - a hardware solution to security now shipping on many computers.
100	13 July 2007	Listener Feedback Q&A #21	—
101	19 July 2007	Are You Human?	Differentiating humans and automated clients using CAPTCHA.
102	26 July 2007	Listener Mailbag #1	—
103	3 August 2007	PayPal Security Key	Interview with Michael Vergara, PayPal's Director of Account Protections.
104	9 August 2007	Listener Feedback Q&A #22	—
105	17 August 2007	Leak Test	What Leak Tests are and how they are used.
106	23 August 2007	Listener Mailbag #2	—
107	30 August 2007	PIP and More Perfect Passwords	VeriSign's Personal Identity Provider beta and The New Perfect Passwords page.
108	7 September 2007	Listener Feedback #23	—
109	14 September 2007	Steve's E-Commerce	Steve talks about his E-Commerce system, and the behind-the-scenes workings.
110	20 September 2007	Listener Feedback #24	—
111	27 September 2007	OpenID Precautions	Steve and Leo discuss the problems and concerns surrounding OpenID.
112	5 October 2007	Listener Feedback #25	—
113	12 October 2007	Roaming Authentication	Discussion of Steve's authentication system for employees of GRC.
114	18 October 2007	Listener Feedback #26	—
115	25 October 2007	Perfect Paper Passwords	Further discussion of Steve's authentication system for employees of GRC.
116	1 November 2007	Listener Feedback #27	—
117	8 November 2007	Even More Perfect Paper Passwords	Further discussion of Steve's authentication system for employees of GRC.
118	15 November 2007	Listener Feedback #28	—
119	22 November 2007	Third Party Cookies	Discussion of the security implications of third-party cookies.
120	29 November 2007	Listener Feedback #29	—
121	6 December 2007	Is Privacy Dead?	Steve and Leo discuss internet privacy.
122	13 December 2007	Listener Feedback #30	—
123	20 December 2007	JungleDisk	Interview with Dave Wright of JungleDisk, an application to interface with Amazon S3.
124	27 December 2007	Listener Feedback #31	—
125	3 January 2008	Symmetric Ciphers	Steve describes the Rijndael symmetric-key algorithm in detail.
126	10 January 2008	Listener Feedback #32	—
127	17 January 2008	Corporate Security	A discussion of the challenges of IT security in the enterprise.
128	24 January 2008	Listener Feedback #33	—
129	31 January 2008	Windows SteadyState	Discussion of Windows SteadyState, a tool that gives administrators enhanced options for configuring shared computers.
130	7 February 2008	Listener Feedback #34	—
131	14 February 2008	Free CompuSec	Discussion of Free CompuSec, a free full disk encryption system.
132	21 February 2008	Listener Feedback #35	—
133	28 February 2008	TrueCrypt v5.0	Steve details the increased functionality of TrueCrypt v5.0.
134	6 March 2008	Listener Feedback #36	—
135	13 March 2008	IronKey	Interview with David Jevans, CEO and founder of IronKey about the security-hardened IronKey USB storage device.
136	20 March 2008	Listener Feedback #37	—
137	27 March 2008	RAM Hijacks	Steve describes the operation of static and dynamic RAM memory.
138	3 April 2008	Listener Feedback #38	—
139	10 April 2008	Network Congestion	Discussion of the "cost" of using the Internet.
140	17 April 2008	Listener Feedback #39	—
141	24 April 2008	RSA Conference 2008	Steve describes the week he spent at the 2008 annual RSA Conference
142	1 May 2008	Listener Feedback #40	—
143	8 May 2008	YubiKey	Special guest Stina Ehrensvard, CEO of Yubico, speaks about her company's new secure authentication device.
144	15 May 2008	Listener Feedback #41	—
145	22 May 2008	Secunia's PSI	Discussion of the Secunia's Personal Software Inspector (PSI) - security vulnerability scanner.
146	29 May 2008	Listener Feedback #42	—
147	5 June 2008	Microsoft's Baseline Security Analyzer	Also includes the MS Security Assessment tool (MSAT).
148	12 June 2008	Listener Feedback #43	—
149	19 June 2008	ISP Betrayal	Part 1 of 3 discussing some ISPs installation of customer profiling/spying hardware.
150	26 June 2008	Listener Feedback #44	—
151	3 July 2008	Phracking Phorm	Part 2 of 3 discussing some ISPs installation of customer profiling/spying hardware.
152	10 July 2008	Listener Feedback #45	—
153	17 July 2008	DePhormed Politics	Part 3 of 3 discussing some ISPs installation of customer profiling/spying hardware.
154	24 July 2008	Listener Feedback #46	—
155	31 July 2008	Bailiwicked Domain Attack	How DNS operates, and how the recent vulnerability discovery affects it.
156	7 August 2008	Listener Feedback #47	—
157	14 August 2008	DNS: After The Patch	Update on the security of DNS after the recent patch, and the "ultimate hack" for DNS.
158	21 August 2008	Listener Feedback #48	—
159	29 August 2008	Is Vista Safe?	Discussion of a recent analysis on security holes in Windows Vista.
160	4 September 2008	Listener Feedback #49	—
161	11 September 2008	Google's Chrome	Examination of Google's new "Chrome" web browser, with an emphasis on security.
162	18 September 2008	Listener Feedback #50	—
163	25 September 2008	DNS Security	The benefits, challenges, and nuances of secure DNS.
164	2 October 2008	Sockstress	Steve explains yet another security flaw in the TCP stack.
165	9 October 2008	Listener Feedback #51	—
166	16 October 2008	Cross Site Request Forgery	Steve tells you why you must always explicitly log out from banking and other important sites.
167	23 October 2008	Listener Feedback #52	—
168	30 October 2008	ClickJacking	Steve discusses clickjacking, aka "UI redressing", which tricks users into unintended web-based actions.
169	7 November 2008	Listener Feedback #53	—
170	13 November 2008	TKIP Crack	Why you shouldn't worry about the TKIP crack.
171	21 November 2008	Listener Feedback #54	—
172	28 November 2008	Sandboxie	Steve and Leo return to take a much closer look at Sandboxie.
173	4 December 2008	Listener Feedback #55	—
174	11 December 2008	Sandbox Limitations	Discussion about the limitations of any sort of sandboxing for limiting the negative impacts of malware on a user's privacy and system's security.
175	18 December 2008	Listener Feedback #56	—
176	25 December 2008	Drop My Rights	A look at the Microsoft utility "DropMyRights" which can be used to easily run selected applications under reduced privileges. (Pre-recorded episode due to the Christmas holiday.)
177	1 January 2009	Breaking SSL, PDP-8's & UltraCapacitors	Discussion about using MD5 collisions to fake SSL certificate validity. Talk about PDP-8 minicomputer kits and the importance of next generation ultracapacitors. (Not security-related.)
178	8 January 2009	Listener Feedback #57	—
179	15 January 2009	Cracking Security Certificates	Steve and Leo talk about security certificates and how a team of security researchers successfully cracked this "uncrackable" security to create fraudulent identifications.
180	22 January 2009	Listener Feedback #58	—
181	29 January 2009	Crypto Rehash	Review of much of the cryptographic material covered during the podcast's lifetime.
182	5 February 2009	Listener Feedback #59	—
183	12 February 2009	Modes of Encryption	Introduction to crypto theory and practice of encryption operating modes.
184	19 February 2009	Listener Feedback #60	—
185	26 February 2009	Cryptographic HMACs	Discussion about keyed message digest algorithms and Hashed Messages Authentication Codes.
185a	28 February 2009	Gray-Haired Computing - Bonus Episode	Leo, Steve and Ray Maxwell reminisce about the old days of computing.
186	5 March 2009	Listener Feedback #61	—
187	12 March 2009	Fixing Autorun	Discussion about Autorun. Security problems past and recent and solutions are discussed.
188	19 March 2009	Listener Feedback #62	—
189	26 March 2009	Internet Explorer 8	Discussion about Internet Explorer 8.
190	2 April 2009	Listener Feedback #63	—
191	9 April 2009	GhostNet	Steve describes the construction and operation of a worldwide covert cyberspace intelligence gathering network, operating in 103 countries, that was named "GhostNet" by its Canadian discoverers.
192	16 April 2009	Listener Feedback #64	—
193	23 April 2009	Conficker	Discussion of the detailed operation and evolution of Conficker, the most technically sophisticated worm the Internet has ever encountered.
194	30 April 2009	Listener Feedback #65	—
195	7 May 2009	The SSL/TLS Protocol	Discussion of the detailed operation of the Internet's most-used security protocol, originally called "Secure Sockets Layer" and now evolved into "Transport Layer Security". The security of this crucial protocol protects all of our online logins, financial transactions, and pretty much everything else.
196	14 May 2009	Listener Feedback #66	—
197	21 May 2009	Windows 7 Security	Discussion of the changes, additions and enhancements Microsoft has made to the security of their forthcoming release of Windows 7.
198	28 May 2009	Listener Feedback #67	—
199	4 June 2009	The Geek Atlas, IPv6 & a non-VPN	Steve and Leo explore three topics this week: A terrific new book for geeks and non-geeks alike, the uncertain future of IPv6 (and a few cautions about rushing to adoption) and a idea Steve has been mulling around for a "lightweight" means for making secure Internet connections with a VPN tunnel.
200	11 June 2009	Listener Feedback #68	—
201	18 June 2009	SecureZIP	Discussion of the operation, features, and security of PKWARE's FREE SecureZIP file archiving and encrypting utility. This very compelling and free offering implements a complete PKI (Public Key Infrastructure) system with per-user/per-installation certificates, public and private keys, secure encryption, digital signing, and other security features we have discussed during previous podcasts.
202	25 June 2009	Listener Feedback #69	—
203	2 July 2009	Boyer & Moore	Discussion of the invention of the best, and very non-intuitive, means for "string searching" - finding a specific pattern of bytes within a larger buffer. This is crucial not only for searching documents but also for finding viruses hidden within a computer's file system.
204	9 July 2009	Listener Feedback #70	—
205	16 July 2009	Lempel & Ziv	Discussion of the operation of one of the most prevalent computer algorithm inventions in history: Lempel-Ziv data compression. Variations of this invention form the foundation of all modern data compression technologies.
206	23 July 2009	Security News Updates	Discussion of security updates in Microsoft Office, IAS, Virtual PC, Virtual Server, msvid control, and more.
207	30 July 2009	Listener Feedback #71	—
208	6 August 2009	Listener Feedback #72	—
209	13 August 2009	Vitamin D	Steve takes the occasion of the podcast's 4th Anniversary to discuss what he has learned about Vitamin D.
210	20 August 2009	Listener Feedback #73	—
211	27 August 2009	Voting Machine Hacking	Steve describes the systematic compromising of the Sequoia AVC Advantage Voting Machine by a team of scientists from University of California, San Diego, the University of Michigan, and Princeton University.
212	3 September 2009	Listener Feedback #74	—

Windows Metafile vulnerability claims

In episode 22 of Security Now! in January 2006, Steve Gibson made an accusation^[9] that Microsoft may have intentionally put a backdoor into the Windows Metafile processing code of the Windows 2000 and XP operating systems.

Gibson claimed that while reverse engineering the Windows Metafile format, he could only run arbitrary code if he used a "nonsensical" value in the metafile. His conclusion was that Microsoft had intentionally designed Windows in this way to allow them to use the feature as a backdoor to running code on Windows computers without the knowledge of the user.

Gibson's claim was refuted^[10] by Stephen Toulouse of Microsoft in an MSDN blog posting on 13 January 2006, stating that Gibson's observations applied only to metafiles containing one data record, and that the behavior was not intentional. Gibson then apologized for the mistake, but held that the author of that bit of code intended that "feature" to be there, but that that bit of code was not necessarily meant to be in Windows.

Further information: Windows Metafile vulnerability and Transcript of episode 22 of Security Now!

References

^ Leo Notenboom. "Security Now". http://ask-leo.com/security_now.html. Retrieved 2009-08-28.
^ Steve Gibson. "Security Now! website". http://grc.com/securitynow.htm. Retrieved 2007-08-18.
^ "Steve Gibson mentioning SpinRite criticism". http://12078.net/grcnews/article.php?id=7614&group=grc.securitynow#7614.
^ Steve Gibson with Leo Laporte. "First Mailbag Episode". http://www.grc.com/securitynow.htm#102. Retrieved 2007-08-03. "Security Now!: 102"
^ http://www.podcastingnews.com/2007/08/16/peoples-choice-podcast-award-winners-announced/
^ "PodNova Top 40". PodNova. 8 2006. http://www.podnova.com/index_top40.srf. Retrieved 2007-01-12. "4. Security Now!"
^ Leo Laporte (2006-07-19). "June Numbers". Leo Laporte's blog. TWiT.tv. http://www.twit.tv/2006/07/19/june_numbers. Retrieved 2007-01-12. "Security Now: 103,034"
^ Leo Laporte (2006-11-21). "October Numbers". Leo Laporte's blog. TWiT.tv. http://www.twit.tv/2006/11/20/october_numbers. Retrieved 2007-01-12. "Security Now 61: 99,751"
^ Steve Gibson; Leo Laporte (January 2006). "Security Now!, Transcript of Episode #22". Security Now! podcast. http://www.grc.com/sn/SN-022.htm. Retrieved March 18, 2006.
^ Stephen Toulouse (January 2006). "Looking at the WMF issue, how did it get there?". Microsoft Security Response Center Blog. MSDN TechNet Blogs. http://blogs.technet.com/msrc/archive/2006/01/13/417431.aspx. Retrieved March 18, 2006.

External links

v • d • e TWiT.tv

Leo Laporte

Podcasts	this WEEK in TECH · Security Now! · net@night · Daily Giz Wiz · Futures in Biotech · FLOSS Weekly · Futures in Biotech · MacBreak Weekly · Windows Weekly · Munchcast · this WEEK in LAW · The Tech Guy · This WEEK in FUN · Abby's Road · This WEEK in GOOGLE · Dr. Kiki's Science Hour · NSFW · TWICH

TWiT Live Shows	Maxwell's House · TWiT Fit · This Week in Computer Hardware · PC Perspective Podcast (affiliated) · East Meets West (affiliated)

Presenters	Cammy Blackstone · Dick DeBartolo · John C. Dvorak · Steve Gibson · Sarah Lane · Alex Lindsay · Amber MacArthur · Merlin Mann · Megan Morrone · Patrick Norton · Marc Pelletier · Dr. Kirsten "Kiki" Sanford · Martin Sargent · Randal L. Schwartz · Brian Brushwood · Paul Thurrott · This WEEK in TECH panelists

This entry is from Wikipedia, the leading user-contributed encyclopedia. It may not have been reviewed by professional editors (see full disclaimer)

Donate to Wikimedia

	Mr. Nice Guy (1986 Comedy Film)
	La Tendre Ennemie (1936 Fantasy Film)
	Godzilla vs. Space Godzilla (1994 Horror Film)

	You have activated share and security but now you want to cancel the share and security? Read answer...
	You have deleted norton now you have windows live onecare security you want to add extra security with mcafee security on your windows xphas anyone done this? Read answer...
	Is Ross Wilson with a secure hotter girlfriend now? Read answer...

	What is different about Social security in 1940 and social security now in 2009?
	Your husband passed away he was on soc Security disability you are 55 can you collect his social security now?
	Are you entitled to any social security benefits from the US social security if you now recieve the old age security and the personal pension plan from Canada?

Security Now!

Contents