21.06.2017 22:55:00 Quelle: https://www.reddit.com/

In hiring for sysadmins with security knowledge, are we asking too much?

We're hiring for a couple general sysadmins who have some knowledge of security, and having enormous difficulty finding qualified people. Even finding people who can get past tech screening is hard. And these are pretty well-paying positions.

I'm one of the tech leads, so I'm one of the people doing the tech screens.

We include simple screening questions to make sure they know CIDR, the structure of a PowerShell command (verb-object), how to probe to see if a port is open between two systems, what LDAP is for, a bit about vSphere switches and vCenter to assess basic knowledge there, purposes of GPO and how to scope it, some questions about challenges relating to patching Java and Adobe, especially around impact, that sort of thing.

15% of the candidates get through the screen. We had one candidate in seven months who was what we were looking for, and that didn't pan out. None of them actually know all that much once we get to the real interview. They don't really know how to craft a good GPO to address an issue. They don't really know how to analyze a security risk. and understand the impact of proposed remediations. They don't understand the basics of Windows AD replication or vSphere management. They don't know how to diagnose why System A can't talk to System B. They don't know how to create a service account with limited permissions, or provide an LDAP bind account in the right format, or create a proper Kerberos SPN, or delegate permissions over an AD OU, or write a script to monitor group membership and alert on it. It's really quite maddening.

What we're asking is actually pretty standard stuff to me. It doesn't require in depth knowledge, even to the level that I, a generalist, am familiar with. We're hiring for a position that requires less tech knowledge than mine. When I read this subreddit or go to conferences or work with people from the parent company, I often feel like my knowledge is barely adequate for my job, but this stuff is pretty straightforward to me. The other leads feel very similar to me, but we all agree we're not getting good candidates.

Are we asking too much from candidates these days? If so, I'm wondering if I need to hit the market, because if these candidates are getting jobs paying what we're offering, and I'm not making tons more, clearly there are jobs out there paying more than I'm making.

submitted by /u/CFFEPTK
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 10:55:00 Quelle: https://www.reddit.com/

Pivoting from computer engineering to system administration

First of all excecuse me for I'm not a native English speaker so my English writing might be bad. I'm going to graduate with a computer engineering degree in four months but lately I've been more interested in linux system administration since most of the jobs I might end up working with my degree are probably java programming jobs which i don't really like, the problem here is that i don't think I have a decent preparation for this job, i used linux but for basic stuff also my university preparation regarding linux is more about how linux work on a very low level (paging , processes management , scheduling, syscalls , etc..) of course it helps but not so much , so I researched and what i understood is that learning bash scripting is essential also learning how linux work which is a bit broad so pretty much my plan is reading this three books

https://www.amazon.it/How-Linux-Works-Superuser-Should/dp/1593275676/ref=pd_sim_14_2?_encoding=UTF8&psc=1&refRID=940KN4VPPC95Z5JG0SAQ

https://www.amazon.it/Linux-Command-Line-Complete-Introduction/dp/1593273894/ref=pd_bxgy_14_img_2?_encoding=UTF8&psc=1&refRID=2R8TTSYYAS6MS8QTKYG6

https://www.amazon.it/Automate-Boring-Stuff-Python-Programming/dp/1593275994/ref=pd_bxgy_14_img_3?_encoding=UTF8&psc=1&refRID=GKESMH5RKFS2FGRVF3DY

I know this is pretty basic and doesn't cover it all but it's what i could find. Also I'm a pretty knowledgeable in database and networking so this two aspects aren't really a problem, yet my knowledge in network security is pretty basic. So that's all, do you guys have any opinions or advice for me on how should I prepare myself to find an entry level maybe even an internship in system administration?

submitted by /u/Wellz71
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

23.06.2017 04:55:00 Quelle: http://go.theregister.com/

Apple, LG, Huawei, ZTE, HTC accused of pilfering find my phone tech

Military comms developer says Android and iOS are trampling its patents

A software company that makes tracking tools for military and 911 crews says some of the biggest mobile phone makers on the planet are stealing its technology for their own security tools.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

23.06.2017 04:55:00 Quelle: http://go.theregister.com/

Apple, LG, Huawei, ZTE, HTC accused of pilfering find my phone tech

Military comms developer says Android and iOS are trampling its patents

A software company that makes tracking tools for military and 911 crews says some of the biggest mobile phone makers on the planet are stealing its technology for their own security tools.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

14.12.2016 18:57:00 Quelle: http://www.itiko.de/

Der neue Avira Password Manager: Nie mehr Passwörter vergessen

E-Mail, Facebook, Instagram, Amazon oder das Online-Bankkonto: das sind nur einige Beispiele dafür, wo sich Anwender täglich aufs Neue einloggen. Um auf Nummer sicher zu gehen, sollten Nutzer für jeden Account ein unterschiedliches, sicheres Passwort verwenden. Die Realität sieht jedoch anders aus: Die meisten Anwender nutzen ein Passwort für mehrere Konten und ändern es nur […]

    ext. Link anzeigen

13.06.2017 01:02:00 Quelle: https://www.reddit.com/

BlackBerry UEM

We've been looking into overhauling our whole MDM/VPN situation and we have a demo scheduled to look at BlackBerry UEM. Anyone else out there using it? Any pros/cons/loves/hates?

submitted by /u/Jaymesned
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

25.06.2017 10:55:00 Quelle: https://www.reddit.com/

Need some advice on presenting an issue to my boss

First, this is not my real account, I made this to be anon as my coworker in question knows my real account.

I knew my coworker (also in IT) was playing webgames on his lunch. My helpdesk guy told me that he heard him complaining about our AV, which blocks 317 games and auto adds them to be blocked as new ones are presented. He mentioned that he was unblocking things for himself.

I sifted through the logs and found that he had used his admin creds, small team so we left him with creds incase my boss and I are both out, to unblock 3 games as well as allow multiple game websites. Normally this would not be a problem if I had a policy specifc for IT, however, my philosophy is that if the users live in these rules then so do we.

So now I have multiple game sites and games open to everyone, as well as a few other things. He was told before by our boss when he promoted him that this stops. He also caused an issue out of a non-issue with someone in another department. Instead of just saying "never did that before, ill look into it and have our boss schedule it if I can" he said something like "well I'm not doing it. I don't know how. don't ask me about it". mind you this was during about a 20min back and fourth that I am a 3rd party to hearing.

I set a meeting with our boss to go over this stuff but I really don't know how to present it. I have everything documented, logs and all, in PDF in 4 locations just in case. Just don't know how to present this in a way that doesn't make it sound like I am trying to get rid of him.

his work is subpar, I don't know .net that well but I know what I see and the time it takes does not add up, he argues everything. In azure I added App Insight for our apps and asked him to use them, and I would teach him (which I did offer), so he could understand where his problems are more. I was met with a "yeah not using it".

submitted by /u/wralend
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 04:55:00 Quelle: https://www.reddit.com/

Setting up RADIUS to authenticate for both WPA2 Enterprise and OpenVPN?

Sup guys, so, right now I’m playing around with using our new pfSense firewall setup for a new VPN setup…looking to setup some sort of 2FA with it to replace our old and shitty PPTP VPN on our Server 2008 box. I’d like to use RADIUS to authenticate against AD for the VPN, no big deal, my question lies here: I already have WPA2 Enterprise setup and in production using my two Windows RADIUS servers (2008 R2) for authentication, in my setup anybody with a domain account can login to the wifi with the proper cert, it’s not dependent on group membership. For the VPN, I want to restrict VPN access to one specific security group…is it possible to keep my current NPS setup for the wireless, while restricting VPN access to a specific group? I was thinking I could add all required users for WiFi into a specific security group as well, but how would I allow those authenticating from the VPN to access the VPN, but not allow those from the WiFi group (unless they are in the VPN group) to access the VPN? Thanks guys for any help

submitted by /u/osx86ftw
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 04:55:00 Quelle: http://go.theregister.com/

Vblock tags in Vxblock: Move is a simplification for punters

We drill into Cisco-Dell-EMC mini-shakeup

Dell EMC's converged infrastructure portfolio is changing. The Vblock – with its Cisco Nexus 1000v switch – is going away, while VxBlocks – with software-defined networking – are taking over.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

23.06.2017 04:54:00 Quelle: https://www.reddit.com/

Dont you love it when primary internet goes down...

and then backup circuit can't handle all the traffic? Comcast, I couldn't have done it without you. Without you, how else would I be able to explain to the client why they need to upgrade their backup circuit? Or why remote offices that rely on Citrix can no longer connect to the network over the backup circuit? How would I be able to answer the questions "Why should we pay for $700/mo for fiber when Comcast is only $250?" and reliable 75% of the time?

I would also like to give a special shout out to Comcast's superb customer support. It is always reassuring to know they are receiving multiple calls from the area so that we know it is not just that one client that is down and they are working to resolve the issue but can provide no technical information. This is extremely helpful to me so that I can provide the client with the reassurance that their issue will be resolved in a timely manor and is expected to be resolved after hours.

I can't wait to get the 1AM-4AM alerts of Comcast bouncing up and down like a yo-yo.

Thank you, thank you, thank you.

I need a beer.

submitted by /u/sidneydancoff
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.03.2017 10:17:00 Quelle: http://blog.wiwo.de/

Krokers RAM: Neues CeBIT-Konzept beweist auch, wie zerstritten die Aussteller sind

Mein Rant am Morgen: Von der Sommer-CeBIT als Event und Festival profitieren längst nicht alle Teilnehmer – die Interessen streben weiter auseinander. Es dürfte eine anstrengende Woche für Oliver Frese gewesen sein: Nicht nur, dass sich der Vorstand des CeBIT-Ausrichters Deutsche … Weiterlesen

der Autor auf            ext. Link anzeigen

24.06.2017 22:55:00 Quelle: https://www.reddit.com/

Segregating Websites with PHP/HHVM

Firstly sorry if this is the wrong sub reddit to ask these questions in!

I am in the process of creating a default secure configuration for a bunch of web servers and have a few questions.

The servers are going to be using either Ubuntu or Debian and running mysql / php+hhvm / apache. The sites are a combination of static html sites, drupal and wordpress. I was planning on either running the sites behind a reverse nginx (and maybe a caching server) proxy that handled all SSL on a separate server for speed - what are your thoughts on this?

My concern at the moment is that if one of the sites gets hacked, either through a vulnerability in a plugin or sql injection vulnerability, then all the sites on the server are compromised.

How do you separate websites so they are secure? Do you use different users per site and if so how does this work with apache or nginx? Is there anything else I should consider when I'm designing my setup?

submitted by /u/spudd01
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 04:55:00 Quelle: http://go.theregister.com/

Vblock tags in Vxblock: Move is a simplification for punters

We drill into Cisco-Dell-EMC mini-shakeup

Dell EMC's converged infrastructure portfolio is changing. The Vblock – with its Cisco Nexus 1000v switch – is going away, while VxBlocks – with software-defined networking – are taking over.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

07.06.2017 01:01:00 Quelle: http://go.theregister.com/

Hotel guest goes broke after booking software gremlin makes her pay for strangers rooms

'Anomaly' drained my bank account, techie complains

An eBay staffer says her bank account was wiped out and her rent check bounced – after the New York hotel she stayed in started charging other guests' reservations to her card.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

22.06.2017 04:54:00 Quelle: https://www.reddit.com/

F-Secure vs. Kaspersky? And can you trust a Russian program?

And why?

Mostly surfing. W7 and Windows Firewall, R7000 with Merlin, incl. Firewall and Ddos protection.

And, can you trust a Russian program in your computer?

submitted by /u/SirSwede
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

23.06.2017 10:55:00 Quelle: http://go.theregister.com/

Facebook gives itself mission to bring the world closer by getting people off Facebook

Zuckerberg preaches connectivity gospel, sends faithful to do good works

ANALYSIS  Mark Zuckerberg's given Facebook a new mission statement: “To give people the power to build community and bring the world closer together", in the process rediscovering The Social Network™'s original purpose and exposing web utopianism as hopelessly optimistic.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 16:58:00 Quelle: https://www.reddit.com/

Question about Server 2016 Licensing

I've googled but can't find a definitive answer. I have a 2012 R2 Datacenter license. Can i install 2016 under that?

submitted by /u/crazykilla
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 22:55:00 Quelle: https://www.reddit.com/

Segregating Websites with PHP/HHVM

Firstly sorry if this is the wrong sub reddit to ask these questions in!

I am in the process of creating a default secure configuration for a bunch of web servers and have a few questions.

The servers are going to be using either Ubuntu or Debian and running mysql / php+hhvm / apache. The sites are a combination of static html sites, drupal and wordpress. I was planning on either running the sites behind a reverse nginx (and maybe a caching server) proxy that handled all SSL on a separate server for speed - what are your thoughts on this?

My concern at the moment is that if one of the sites gets hacked, either through a vulnerability in a plugin or sql injection vulnerability, then all the sites on the server are compromised.

How do you separate websites so they are secure? Do you use different users per site and if so how does this work with apache or nginx? Is there anything else I should consider when I'm designing my setup?

submitted by /u/spudd01
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 04:55:00 Quelle: http://go.theregister.com/

Tech giants flash Russia their code blueprints in exchange for access

What could possibly go wrong?

Cisco, IBM, HP, McAfee and SAP are among plenty of western technology companies that have been showing their source code to Russian authorities in exchange for the right to sell their products in the country.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

10.01.2017 02:00:00 Quelle: http://www.kommune21.de/

Dormagen: Übersichtlich und modern

Die von der Firma wer denkt was konzipierte Beteiligungsplattform der Stadt Dormagen präsentiert sich nun im neuen Look.

    ext. Link anzeigen

07.04.2017 16:53:00 Quelle: http://feedproxy.google.com/

WLAN-Access-Points von Lancom mit Wave 2 und SDN

Die WLAN-Access-Points der Reihe LN-170x und LN-68x von Lancom SystemsDer Aachner Netzwerkspezialist Lancom Systems hat seine Palette von WLAN-Access-Points (AP) für Geschäftskunden um vier Modelle erweitert. Sie unterstützen den aktuellen Standard IEEE 802.11ac Wave 2. Der LN-1700 und LN-1702 erreichen Bruttodatenraten von bis zu 1733 MBit/s, der LN-862 und LN-860 von 867 MBit/s.

der Autor auf            ext. Link anzeigen

24.06.2017 22:55:00 Quelle: https://www.reddit.com/

Looking for an open-source monitoring system for a small network

I have a basic local network composed of a bunch of different ARM boards running Linux (about 10 currently, maybe around 15 in the future) and a few other special devices (a NAS running FreeNAS, a random printer, a power inverter I'm not sure yet how to communicate with).

I'm really not a sysadmin or even a devops, so I like simple (or should I say primitive) and secure setups. Typically, I don't do any virtualization or container based architecture, it's all just dedicated devices. Each device generally have one service running (mail, http, jabber, mpd, ...). One of the main downside is that all these boards run on MicroSD cards (yeah I know - I have a backup system on the NAS though). As a result, I really need a way to monitor closely this micro home lab.

I don't have any experience with the existing solutions and I'm starting from scratch. I'm aware of the bad reputation of Nagios and have heard a shit ton of solutions such as Zabbix, Prometheus, Inciga2, ... but it's hard to tell if they meet my needs.

I'll make a short summary on the actual needs:

  • monitoring 10-15 small local machines (+ 1 or 2 remote)
  • a model where most of the monitored machines push the info (for security reasons I don't want to open accesses in most of the cases, be it a special user over ssh or random service)
  • receiving alerts on any disk failures
  • receiving alerts on up and down of machines and services
  • receiving alerts on random anomalies (full disk, segfaults, ...)

What I do NOT need:

  • handling of virtualization or containers
  • scalability to large network
  • interface with any kind of cloud
  • a decentralized model (I can allocate another dedicated machine on the network for that purpose)

Ideally, the configuration of that thing would be simple & stupid so I can make sense of it, track it and maintain it without much pain on version bumps.

submitted by /u/MeOfficial
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 22:56:00 Quelle: https://www.reddit.com/

Microsofts Storage Spaces... Question regarding disks and parity

Assuming you have four disks, each 10gb, what's the difference between:

  1. Three disks in parity, with one hot spare.
  2. Four disks in parity, with zero hot spares.

Is one more reliable than the other? My understanding is that both can only suffer a maximum of one disk loss.

submitted by /u/HowardSternScoresman
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

22.06.2017 16:56:00 Quelle: http://go.theregister.com/

Flash-based and Dell-free: NetApp trots out SolidFire FlexPod

Flash? It's all flash, mate

NetApp has introduced an all-flash SolidFire-based FlexPod.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

22.06.2017 04:54:00 Quelle: https://www.reddit.com/

F-Secure vs. Kaspersky? And can you trust a Russian program?

And why?

Mostly surfing. W7 and Windows Firewall, R7000 with Merlin, incl. Firewall and Ddos protection.

And, can you trust a Russian program in your computer?

submitted by /u/SirSwede
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

22.12.2016 13:09:00 Quelle: http://feedproxy.google.com/

Amazon Last Minute Angebote: Philips Hue, Beats PowerBeats2, Withings Body, iPhone 7 Hüllen, 240GB SSD, 8TB ext. Festplatte und mehr

Der heutige Donnerstag stellt den letzten Tag der Amazon Last Minute Angebote dar. Heute habt ihr letztmalig die Chance, bei der Aktions-Woche zuzuschlagen. Solltet ihr noch nicht alle Weihnachtsgeschenke zusammen haben, dann werft einen Blick auf die Amazon Blitzangebote sowie die Angebote des Tages. Das heutige Motto lautet „Vom 13. bis 22. Dezember 2016 findet […]

    ext. Link anzeigen

20.06.2017 10:56:00 Quelle: http://go.theregister.com/

Samsungs Magician for SSDs can let crims run evil code

What is this: Storage insecurity day? Asking cos Acronis has the same problem

The CERT Coordination Centre at Carnegie Mellon University has just popped two items onto storage admins to-do lists.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 16:58:00 Quelle: https://www.reddit.com/

Issues installing Sophos Central Endpoint over proxy with a logon script

So I have a logon .bat script that looks like this:

cd \ if exist "C:\Program Files (x86)\Sophos\AutoUpdate\license_agreements.txt" ( GOTO end ) Else ( REM pause ping 127.0.0.1 -n 20 > nul echo setting proxy... netsh winhttp set proxy proxy-server=proxy.address.here:8084 ping 127.0.0.1 -n 10 > nul REM pause REM echo wait for 5 seconds REM ping 127.0.0.1 -n 5 > nul REM pause echo beginning sophos install \\DC-SVR2\Software$\Sophos\SophosInstall.exe -q -tps remove REM pause REM echo waiting for 10 minutes REM ping 127.0.0.1 -n 600 > nul REM pause echo resetting proxy netsh winhttp reset proxy ) :end 

Reddit formatting maybe a little wonky...

this is in a school behind a proxy

so as you can see it needs winhttp proxy to install, I found that this actually different to the proxy you set in IE.

I will try to keep this simple so I don't give misinformation

ON SERVER

  • running the script allows it to install on our servers
  • setting winhttp proxy manually and then running the exe allows in to install on servers

ON WORKSTATION

  • setting it as a logon script causes it to fail on workstations (cannot connect to internet)
  • running the script manually on a workstation causes it to fail (cannot connect to internet)
  • setting winhttp proxy manually on workstations and running exe causes it to fail (cannot connect to internet)

So what is different between it connecting to the internet on our server vs a workstation?

any thoughts appreciated...

submitted by /u/elliottmarter
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

14.06.2017 01:04:00 Quelle: https://www.reddit.com/

DDoS thread received: Meridian Collective (Probably a SCAM)

We received today an email demanding 1 BTC to avoid being attacked by a DDoS on Friday 16th this month ( june ). We are a small company based in Spain. Possibly a scam as the bitcoin address they gave in the e-mail has been sent to others ( found through google ).

spanish police notified and responsible listed in whois for emblixhosting.com also notified with an e-mail.

We have also notified our ISP just in case.

Any suggestion on how to proceed further ?

Just for reference, hereafter is the text of the e-mail and the headers.

------ Thread e-mail text -----

PLEASE FORWARD THIS EMAIL TO SOMEONE IN YOUR COMPANY WHO IS ALLOWED TO MAKE IMPORTANT DECISIONS!

We are the Meridian Collective and we have chosen your website/network as target for our next DDoS attack.

1 - We checked your security system. The system works is very bad

2 - On Friday 16_06_2017_8:00p.m. GMT !!! We begin to attack your network servers and computers

3 - We will produce a powerful DDoS attack - up to 300 Gbps

4 - Your servers will be hacking the database is damaged

5 - All data will be encrypted on computers Crypto-Ransomware

4 - You can stop the attack beginning, if payment 1 bitcoin to bitcoin ADDRESS: 1HgGf2BCRkBmJNy13oWPo267bq7Lp17Djr

5 - Do you have time to pay. If you do not pay before the attack 1 bitcoin the price will increase to 5 bitcoins

6 - After payment we will advice how to fix bugs in your system

Please send the bitcoin to the following Bitcoin address:

1HgGf2BCRkBmJNy13oWPo267bq7Lp17Djr

Once you have paid we will automatically get informed that it was your payment.

How do I get Bitcoins?

You can easily buy bitcoins via several websites or even offline from a Bitcoin-ATM. We suggest you to start with localbitcoins.com or do a google search.

What if I don’t pay? If you decide not to pay, we will start the attack at the indicated date and uphold it until you do, there’s no counter measure to this, you will only end up wasting more money trying to find a solution. We will completely destroy your reputation amongst google and your customers and make sure your website will remain offline until you pay. This is not a hoax, do not reply to this email, don’t try to reason or negotiate, we will not read any replies. Once you have paid we won’t start the attack and you will never hear from us again! Please note that Bitcoin is anonymous and no one will find out that you have complied.

-------- Headers follow minus internal network details marked [Redacted]----------

 Return-Path: <Nannie@mebtel.net> X-Original-To: [Redacted] Delivered-To:[Redacted] Received: from [Redacted] by [redacted] (Postfix) with ESMTP id 36DD018201A8 for [redacted]; Tue, 13 Jun 2017 17:23:22 +0200 (CEST) Delivered-To: [Redacted] Received: from gmail-pop.l.google.com [74.125.206.109] by [Redacted] with POP3 (fetchmail-6.3.26) for [Redacted] (single-drop); Tue, 13 Jun 2017 17:23:22 +0200 (CEST) Received: by 10.237.41.2 with SMTP id s2csp452310qtd; Tue, 13 Jun 2017 08:21:30 -0700 (PDT) X-Received: by 10.237.46.34 with SMTP id j31mr507952qtd.149.1497367289757; Tue, 13 Jun 2017 08:21:29 -0700 (PDT) Authentication-Results: mx.google.com; spf=softfail (google.com: domain of transitioning nannie@mebtel.net does not designate 130.117.93.39 as permitted sender) smtp.mailfrom=Nannie@mebtel.net Received-SPF: softfail (google.com: domain of transitioning nannie@mebtel.net does not designate 130.117.93.39 as permitted sender) client-ip=130.117.93.39; Received: by 10.237.59.216 with POP3 id s24mf109799569qte.1; Tue, 13 Jun 2017 08:21:29 -0700 (PDT) X-Gmail-Fetch-Info: [Redacted] Received: from [Redacted] by [Redacted] with ESMTP id v5DFHcfD026875 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for [Redacted]; Tue, 13 Jun 2017 17:17:40 +0200 Received: from emb.emblixhosting.com (emb.emblixhosting.com [162.144.44.60]) by [Redacted] (8.13.8/8.12.10/SuSE Linux 0.7) with ESMTP id v5DFHT13011421 for [Redacted]; Tue, 13 Jun 2017 17:17:41 +0200 Received: from [179.99.83.164] (port=49316 helo=163.172.169.211) by emb.emblixhosting.com with esmtpa (Exim 4.89) (envelope-from <Nannie@mebtel.net>) id 1dKnZK-0002Ux-MJ for [Redacted]; Tue, 13 Jun 2017 20:47:23 +0530 Message-ID: <49B3DD86EB3F13508C89C07FDB16394B@mebtel.net> From: "Meridian.collective" <Nannie@mebtel.net> To: [Redacted] Subject: Meridian Collective Date: Tue, 13 Jun 2017 08:15:12 -0700 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="410ade9008201f22ff91d19f316b" X-Priority: 1 X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - emb.emblixhosting.com X-AntiAbuse: Original Domain - [Redacted] X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - mebtel.net X-Get-Message-Sender-Via: emb.emblixhosting.com: authenticated_id: ganeshreddy@rotathon.org X-Authenticated-Sender: emb.emblixhosting.com: ganeshreddy@rotathon.org X-Source: X-Source-Args: X-Source-Dir: 

Edit: format of headers

submitted by /u/Azucarillo
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

14.06.2017 19:04:00 Quelle: https://www.reddit.com/

Anyone on Symantec Cloud/Symantec seeing machine lockups/crashes?

This is something we started seeing today after a roll out of what we think was a new version of their workstation component to numerous places.

We've been attempting to migrate away for a while now but the uninstall of it is very much a manual thing.

What we are seeing today is machines that are just completely locking up, CTRL ALT DEL not working, explorer crashes, clock locks up, can't interact with it and it requires a hard reboot.

The people who have had this where we have removed Symantec no longer have the issue. We've raised a request with them but I'm not holding out much hope on that actually helping.

EDIT: To clarify we aren't seeing this on Servers, mostly only workstations where I believe Symantec.Cloud is a rebadged Norton Internet Security.

submitted by /u/TNTGav
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

23.06.2017 16:55:00 Quelle: https://www.datenschutz.de/

Deutsche Vorratsdatenspeicherung europarechtswidrig: Datenschutzvorgaben werden nicht eingehalten

Pressemitteilung des Unabhängigen Landeszentrums für Datenschutz Schleswig-Holstein (ULD) vom 23.06.2017 Ab dem 01.07.2017 – so wurde es im Dezember 2015 in dem Telekommunikationsgesetz geregelt – müssen die Anbieter von Telekommunikationsdiensten „auf Vorrat“ Daten für Zwecke der Strafverfolgung speichern, die bei der Nutzung anfallen: Verkehrsdaten für 10 Wochen, Standortdaten für 4 Wochen. Jedoch verstößt diese Regelung … Weiterlesen Deutsche Vorratsdatenspeicherung europarechtswidrig: Datenschutzvorgaben werden nicht eingehalten

    ext. Link anzeigen

21.06.2017 22:56:00 Quelle: https://www.reddit.com/

anyone know of any AV products that arent such a pain in the ass and dont require a million exceptions?

Last year I tore Kaspersky 10 out of our environment because it was mis-configured, out of date, and just plain messed up. It took over a month to manually remove the agent with their tool.

 

Flash forward a few months, I went with Trend Micro Worry-Free Business Security Services. It's the cloud-hosted one with the name almost identical to two of their other products so it's super confusing when creating a support ticket. It was easy to install and it seems to work well enough with our environment and has already blocked a lot of viruses and malicious links. However, I've had to add a lot of exclusions to get things working in a lot of cases. And sometimes it doesn't like registry changes and slows the system down to a crawl.

 

My main issue is that for each group of systems, you have three different places where you can specify AV exclusions. There's a real-time anti-virus, behavior monitoring and then the regular scheduled scan. There might even be another one I forgot. And with all of these, I can't import or export the text from a file or anything. I have to copy and paste it all by hand. Our previous AV had over 200 exceptions but I only applied a handful of them.

 

I also had a demo when I started and had to re-install EVERY SINGLE MACHINE because they couldn't move the demo key to a production key. Then I had to do it AGAIN because the support person I talked to messed up. And not to be too harsh, but every single support person I've talked to has sounded like a complete idiot. And I'm pretty forgiving.. but sheesh

 

All that being said, is there perhaps a better anti-virus out there that isn't such a pain in the ass? I mean I know ALL AV programs suck.. but I've heard that products like ESET work a little differently than other AV products.. I have no idea how, but I figured it might be worth looking into.

 

My environment: 2008 R2 domain with Exchange 2010 and 2008 R2 terminal services with thin clients and roaming profiles. Several Windows 7 desktops too.

submitted by /u/noshutdown
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

27.05.2017 05:40:00 Quelle: https://www.reddit.com/

Setting up Google Cloud Directory Sync with AD using LDAPS

I wanted to see if anyone else has set up a GCDS sync with their Active Directory over LDAPS. We've been syncing over port 389 but I'd like to encrypt that connection (port 636) and am trying to figure out how to go about getting a certificate and installing it on one of my AD servers. I'm not that knowledgeable with certificates so I was hoping someone could provide some guidance. Thanks!

submitted by /u/soultitanium
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

22.06.2017 04:54:00 Quelle: https://www.reddit.com/

removing win10 pro bloatware and start menu links with powershell

We are creating a master image to deploy about 10 pcs to new employees. Currently we are using IOBit to uninstall the apps that are preinstalled with new user accounts once they're signed in, but that isn't ideal.

I've run the powershell scripts that stop the app packages from being run, but I noticed that when I sign in on the pc with a new user account, the startmenu groups are still there, as well as some other stupid stuff like twitter, facebook, games, etc as well as suggestions like instagram in the actual start menu.

Do any of you have solutions in place for win10 pro (Not enterprise) that'll stop this madness and allow us to clean image PCS, have users sign in and be done with it?

OR, know of any uninstallers that can be scripted so that I can have snap deploy remove all of the stuff prior to user sign on?

Thanks!

submitted by /u/FNSlick
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

25.06.2017 04:55:00 Quelle: https://www.reddit.com/

Removing Bitlocker on Mac OS

Is it possible to decrypt and reformat a USB drive encrypted with bit locker on a Mac?

submitted by /u/AndreThreeHundred
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

06.06.2017 19:02:00 Quelle: http://go.theregister.com/

Vodafone to block its ads from appearing next to fake news

Era of automated ads risks brand image, apparently

Vodafone will block its advertising appearing against so-called "fake news" and hate speech from today.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 22:55:00 Quelle: https://www.reddit.com/

Open Source Hypervisors in 2017

I'm trying to get into the world of virtualization and am having a tough time deciding between the hypervisors on the market. This is currently only for a personal server which runs resources for my (very) small business, but want to use it as an opportunity to learn about enterprise level virtualization as well. My workload would be almost entirely linux VMs.

So far the contenders I have found are: -oVirt/RHEV: From what I've heard, this is the most VMware-like of the lot. After a lot of effort and weird bugs, I was able to get a small installation running with a self hosted engine, and able to get a couple of VMs up and running. While it does have a decent feature set, the software doesn't look all that polished and I ran into a lot of issues, although ones I was able to resolve, while setting it up. Another pro for oVirt is that it has Red Hat's backing.

-Vanilla KVM w/ something like Kimchi for web management: Vanilla KVM worked nicely, but the feature set is very small. Also don't think that this is enterprise level or even for a small business. Kimchi also seemed like a nicely polished interface, but I haven't had a chance to test it. I'm worried that there aren't many developers on it.

-XenServer: Haven't tried it yet, but I have heard some good things about it, but all from posts that are a few years old. I get the impression that it's not really going anywhere. The other downside is that XenCenter is Windows only and while there are options like Xen-Orchestra, they cost money.

-OpenStack w/KVM: I know that OpenStack is way overkill for I'm trying to do, (run some simple VMs on a single server) but it is the only one on here that actually feels like a modern enterprise level piece of software, that is being kept up to date. I used Packstack to put it on Centos and the installation was actually surprisingly easy. The web management interface and CLI both seemed very nice. However, I wasn't able to get a VM up and running from an ISO. I believe that was because of problems with setting up a network, but I also think I could have spent more time on it. OpenStack also seems to have a different paradigm of virtualization. I'm not sure if this would interfere with me trying to use it the way I want to. (my VMs would still be more like pets than like cattle and I'm not sure it's worth the effort for me to transition.)

What do you guys think? Am I missing anything? Stuff like Proxmox was left off because it just doesn't seem to be used in the enterprise world. I'm particularly interested if there is anybody out there using oVirt or OpenStack in a small business environment and what their opinions of the two are.

submitted by /u/schrodingersnarwhal
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

13.06.2017 07:03:00 Quelle: https://www.reddit.com/

Solutions for Home Users using a physical VPN Appliance.

We used to use a DMVPN based solution with our ASA5510 and ASA5505s, but we've moved away from Cisco Firewalls, towards other vendors (Fortigate/Watchguard - Cost saving measure). Is anyone using a good solution that allows me to send home a user with either a Thin Client or PC and VPN appliance that they can setup with little "user" effort.

This wouldn't necessarily be heavily used except by C-Levels and Developers.

Thanks everyone.

submitted by /u/synapticpanda
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

16.06.2017 01:03:00 Quelle: https://www.reddit.com/

How can I configure Wireshark so I can let it run all day?

I have a workstation with a second NIC hooked up to a SPAN port so I can see all traffic on the switch port that goes to our router. I like to use the Statistics > Conversations option within Wireshark sorted by Bytes so that I can see the top talkers over our slow link and respond as need when someone is saturating our bandwidth. Wireshark can only run for so long before it uses up all my RAM and becomes unresponsive. I'm just wondering if there are some settings I can change to make it able to run for a longer time.

submitted by /u/schizometric
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

24.06.2017 22:55:00 Quelle: https://www.reddit.com/

Segregating Websites with PHP/HHVM

Firstly sorry if this is the wrong sub reddit to ask these questions in!

I am in the process of creating a default secure configuration for a bunch of web servers and have a few questions.

The servers are going to be using either Ubuntu or Debian and running mysql / php+hhvm / apache. The sites are a combination of static html sites, drupal and wordpress. I was planning on either running the sites behind a reverse nginx (and maybe a caching server) proxy that handled all SSL on a separate server for speed - what are your thoughts on this?

My concern at the moment is that if one of the sites gets hacked, either through a vulnerability in a plugin or sql injection vulnerability, then all the sites on the server are compromised.

How do you separate websites so they are secure? Do you use different users per site and if so how does this work with apache or nginx? Is there anything else I should consider when I'm designing my setup?

submitted by /u/spudd01
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)