Homeland Secure IT Alert

Secure IT Alert for Friday, February 11th, 2011

Adobe has beat out Microsoft for the number of vulnerabilities addressed on Patch Tuesday with the unleashing of a plethora of patches for their Acrobat, Reader, Coldfusion, Shockwave Player and Flash Player.

Reader’s updates are considered CRITICAL and there 29 holes that are plugged… Shockwave comes in second with 21 CRITICAL vulnerabilities fixed, followed by Flash with 13 CRITICAL. These are for Windows, Mac OSX, Linux and Solaris.

The 5 Coldfusion vulnerabilities affect the security of Microsoft Windows, Mac OSX and Unix. Though this update is labeled as only “IMPORTANT”, I wouldn’t skip it!

The long and short of this is – Update! Also be sure to keep your anti-virus / anti-malware current.

If you are in the Greenville / Upstate, SC area and need assistance, please email info@homelandsecureit.com or call 864.990.4748

Homeland Secure IT Alert

Homeland Secure IT Alert

Secure IT Alert for Wednesday, February 9th, 2011

The February 2011 Patch Tuesday was not boring…   Updates include something for everyone.  Basically every current Microsoft Windows OS version was addressed.

The big one was the IE Update that fixed four code execution holes in the popular web browser.

In addition to fixing thumbnail and font vulnerabilities which mainly affect desktop users, several updates are very important for your servers.

Windows Server has an Active Directory DoS potential, elevation of privileges vulnerabilities from Client/Server Run-time SubSystem (CSRSS), LSASS, Kerberos  & multiple kernel related issues and an Information Disclosure Vulnerability from scripting engines… Most of these are for XP & Windows Server 2003 but the scripting issue affects Windows 7 & Server 2008 R2 only.

As with most of these, Server Core is not affected.

Please apply the appropriate patches ASAP.  Windows Update should be run, or if you are using WSUS, it should handle this for you.

But wait, there’s more!

Microsoft Visio 2002, 2003 and 2007 are vulnerable to code execution… More information is available in the MS11-008 Security Bulletin. This does not affect Visio 2010 or Visio 2007/2010 Viewer.

The Windows IIS FTP service running on Windows Vista, Windows 7, Server 2008 and Server 2008 R2 suffers from a buffer overflow vulnerability which if exploited could cause a DoS (Denial of Service) or worse, allow an attacker to obtain full control of the server. This one is likely the most severe of the updates and should be addressed immediately!

Should you require assistance, or have questions, please call us at 864.990.4748 or email info@homelandsecureit.com. We offer Microsoft Support in Greenville and Upstate, SC.

Homeland Secure IT Alert

Secure your Wi-Fi Connection with a VPN

WSPA’s Amy Wood (@TVAmy) had a great segment on last night (2011-02-07) in which she had Doug Cone (@nullvariable) a local web/graphics “devsigner” discussing the dangers of using public Wi-Fi. You can find that story here.

He demonstrated a tool which allows even the most novice of “hackers” to see a list of others who are using any given open wireless access point. He did this at a coffee shop and then went around and scared the bejeebus out of people by showing them how much information was at his fingertips.

In a discussion on Facebook the other day with Doug and Russell Tripp (@RussellTripp), I suggested that those two get together and product a video showing the same information in depth and then explaining how to protect yourself from this all-too-real security threat. I believe they may be doing that as a follow-up to the WSPA story and will post that information here as a reply when that becomes a reality.

In the mean time, I thought I give some info about one tool that is both readily available and super-affordable that you can use to secure your connection when using a public Wi-Fi hotspot. That tool is a VPN, or Virtual Private Network. Yes, the same VPN technology that has been around for a very long time and used in businesses and larger corporations, and it is so easy, a caveman could do it. (I’m sure a lawsuit is forthcoming for my use of that slogan)

A VPN connection established to your home will allow you to connect to the open wireless network of your choice, build a “tunnel” to your home connection, and then send all traffic through the wireless network through the encrypted tunnel, providing a very secure transport.

All that is needed is a VPN capable router or firewall at your home. But wait, you say you can’t afford a Cisco ASA 5505 (or WatchGuard or SonicWALL security appliance). That’s okay, you don’t need one.

You may already have a compatible home router that can be setup with the free DD-WRT (the website http://www.dd-wrt.com has a list of compatible routers) which provides VPN capability to your 40 dollar Linksys or similar device!

The setup is pretty straight-forward once the device end is ready. Connecting takes only seconds.

The VPN is not just for Microsoft Windows, but also Apple Mac OSX, iPad, linux, freebsd, solaris, etc. Most smartphones including Android, iPhone, Windows Mobile and Blackberry should have the ability to utilize your VPN too.

If you don’t have a compatible router, you could optionally use OpenVPN on your PC, and last but not least, you could use the OpenVPN HOSTED service. The hosted solution comes with a price tag, but for many it may be worth it to protect their privacy.

If you are fortunate enough to work for a company with a VPN already in place, you could probably use that as an option, assuming the IT policy permits you to do so.

Should you require assistance in Greenville or the Upstate for your personal or business VPN needs, we are partners with Cisco, WatchGuard, SonicWALL, ZyXEL and have a solution that is right for you. Call 864.990.4748 or email info@homelandsecureit.com.

Printer Part Diagram

It is Monday morning and you went to print your first batch of papers for the week but that didn’t go so well. Paper has been jammed in the printer, or maybe not even picked up out of the paper tray.

What to do? Should you either replace that beast or call a printer repair technician?

Replacing the printer is going to cost a good bit of money, but will generally result in a quicker solution since your favorite office supply store may have a suitable printer in stock. Of course if you need special trays, like an envelope feeder for instance, you may be in for a wait while that is ordered in.

Many times a service provider can repair a printer by fixing a jam or clearing an error and you could be back to printing as quickly as they come and work their magic. Others, you may find yourself waiting as the printer is taken to the shop, diagnosed, parts ordered if not in stock and subsequently replaced and the printer returned to your business.

On the positive side for replacing a printer:

• New device, may operate years without further issue
• Possible better toner usage, saving you money over the life of the printer
• Could use less energy
• Possible faster printing
• Additional features, such as networking, duplex, color
• May be in stock / instant gratification
• Can depreciate it

On the negative side of replacement

• Old printer ends up in landfill if not recycled (not a green thing to do)
• May require changes to your document configurations / printer driver setups
• May not work properly with older Windows XP OS  due to lack of drivers (rare)
• May not interface the same way (Parallel / USB / LAN)
• Some custom software requires a specific printer be used
• Repair may have been cheaper

Whether you repair or replace is likely going to be based on the bottom line, just how much it will cost you, or optionally, how long it will take to complete the repair (downtime).

If you can afford the downtime, I would suggest calling a service technician to at least evaluate the potential for fixing the issue with your current printer. Some repairs are as simple as pulling a misfed/torn paper out of the machine, or unblocking a sensor. It would be a shame to chunk an otherwise functional printer in the garbage.

When should you replace? If you are working with a 150 dollar printer that you picked up from an office supply house and you don’t have a closet full of ink for that model, replace it.

If you have a 4 year old HP office laser printer with two input trays that has served you well. This is a great candidate for repair. So are any printers with multiple input trays, high capacity trays, high speed throughput, duplexing, collating or other special features.

Should you have questions, we repair / service and sell HP, Dell, Ricoh, Brother, Lexmark, Samsung and Oki Business printers in the Greenville & Upstate SC area. Please call 864.990.4748 or email info@homelandsecureit.com

Let's hope your server room never gets THIS hot!

We are helping a client move their entire network (servers, computers, switches, firewalls) to a new facility. Unfortunately, the new digs do not allow for an optimum placement of their servers. They are to be relegated to an upstairs location in the building, and an air conditioner system is being installed to provide the cooling required to keep everything from melting down.

The worst part is that this far removed server room will contain 4 servers, a computer used for remote access, switches, backup solutions, VoIP system, UPS and various other components, and nobody will be close by to hear if alarms are going off for the RAID, UPS or overheat conditions.

What to do? We will use software to monitor the device temperatures, and we are suggesting a remote temperature sensor for the entire room which will maintain a chart of temperature trends, and allow us to set email alerts in the event the room itself exceeds a determined threshold.

These devices are inexpensive insurance against a meltdown that could cost thousands of dollars to recover from, not to mention downtime for the business affected. We will also be recommending an IP camera in that room that will allow remote visual monitoring, including alarms should something move in the room itself (there will be a log of who entered the room this way). And should the server and room temperatures rise beyond the threshold and alert someone via email, they can then view the camera with a browser or smartphone (Android, iPhone or Blackberry) and see if the room is in flames.

Should you be interested in one of these devices for your Greenville / Upstate server room, or wiring closet, please contact us at 864.990.4748 or info@homelandsecureit.com to discuss options that are available for you.

Google Chrome is Gaining Ground Fast

Are you still using Internet Explorer? The majority of people are that hit our website and most others that track this information, but, as you can see from the graph on the right, alternative browsers are gaining ground.

Microsoft Internet Explorer, like it or not, is the de facto “standard” that web sites and web applications are built to support. There are many reasons for that, and obviously the main one is that IE is shipped with Microsoft Windows Operating Systems, and Microsoft Windows dominates as the OS of choice for both individuals and businesses.

As Apple Mac OS, Linux and other operating systems become a bit more mainstream, the alternative browsers that these systems ship with will cut into the Microsoft IE market share, but there is more going on here than a switch to new operating systems.

You are probably way ahead of me on this, but due to concerns over security, there seems to be a mass exodus away from IE. We’ve heard from our clients that they are worried about the seemingly endless flow of vulnerability announcements from Microsoft and then the subsequent patches that must be installed in order to ensure they can safely browse the web.

That, combined with the fact that other browsers are offering what feels like a faster browsing experience, a slew of new features, additional plugins or addons not available on IE, and a shiny new look makes it easy to see why the IE market share has dropped and Chrome has come up.

Chrome recently added some Active Directory integration making the browser even better than before for System Administrators.

Surprisingly, Mozilla Firefox, the second most popular browser, has actually been declining in popularity along side IE, while Safari and Opera have remained pretty constant in the low end of the scale.

With Chrome breaking into the ten percent market share, and pulling away from Apple’s Safari rapidly, it appears that Chrome could overtake Firefox in the next 12 to 18 months. Very interesting information.

Click on the graph for the link to the original article and more information.

No matter which browser you use, remember, there ARE security flaws. Chrome is not impervious to exploits, so, please remember to browse responsibly! Use current anti-virus / anti-malware, and common sense. (IE, Don’t install addons, plugins or codecs etc that you do not trust).

If you would like to discuss security concerns or whether a particular browser may be right for your business here in Greenville or the Upstate, please call 864.990.4748 or email info@homelandsecureit.com

IPv4 Exhaustion Prediction

We knew the day was coming, and today we learned that it was sooner than later.

IANA (Internet Assigned Numbers Authority), the organization that manages IP addresses and domain allocations has assigned two IPv4 address blocks to APNIC (The Asian-Pacific Network Information Centre), which in turn has caused a provision in the IANA rules to go into affect, releasing the last five IPv4 address groups totaling 82.5 million addresses to the regional internet registries.

So that’s it for the total pool of 4.3 billion IP addresses!

Where do we go from here? IPv6 baby! It has been there waiting in the wings for this moment, and now it is time for it to shine. ISPs will be left with no choice but to begin deployment.

What is interesting is that the graph on the left, from the Wikipedia site about “IPv4 Address Exhaustion” was spot on in predicting the end…

It is time (actually past time) to be planning for your own future, meaning, getting your infrastructure ready for the IPv6 deployments that will be coming. You may need some new hardware, and certainly a few configuration changes, but either way, you should be working with your network support professional to ensure you are ready.

If you need assistance in the Greenville or Upstate, SC area, please call upon us. We offer computer, server and network support, service, repair, sales and consultation.  864.990.4748 or info@homelandsecureit.com

All of our partner companies (Cisco, WatchGuard, SonicWall, etc) offer IPv6 ready firewalls, security appliances, routers, and more!

Homeland Secure IT Alert

Secure IT Alert for Monday, January 31, 2011

Microsoft has announced in Security Advisory 2501696 that they are investigating a potential vulnerability that may exist in ALL current supported editions of Microsoft Windows (Including Windows 7, Server 2008, Vista, XP and Server 2003). In fact, the only version that may not be affected would be the Server Core installations.

According to the bulletin, Microsoft is aware of the “proof-of-concept” code that has been released, so they are looking into it further, though they have seen no “active exploitation of the vulnerability”.

MHTML is the culprit and apparently, it IS possible (under certain conditions) for the vulnerability to allow an attack to inject client-side scripts in the response of a web request run in the context of the user’s Internet Explorer. The script could then spoof content, disclose personal information or emulate any action that the user could actually take on the affected web site. (IE, make selections, input data, etc).

What can you do to protect yourself? According to MS, you could lock down MHTML, set your internet security zone settings to “high” to block ActiveX controls and Active Scripting (in IE, Tools, Internet Options, Security, Internet, Security level for this zone and set slider to High). You could also set IE to prompt before running “Active Scripting” or disable “Active Scripting” all together in the Internet and Local intranet security zone. (In IE, Tools, Internet Options, Security, Internet, CUSTOM LEVEL, then under Settings, find the Scripting section and set Active Scripting to “Prompt” or “Disable”.   Same under Local Intranet.). You can then add sites that you trust to the IE Trusted sites zone.

Use of an anti-virus software package like Trend Micro Titanium or Trend Micro Worry-Free Business Security which has the ability to watch web traffic is HIGHLY recommended. And of course, you could use an alternative browser, such as Google Chrome, or Mozilla Firefox…  Many firewalls and security appliances from vendors like Cisco, WatchGuard and SonicWALL have the ability to block this type of traffic as well.

If you have questions or concerns about your personal computer or an entire business network in the Greenville / Upstate, SC area, please call 864.990.4748 or email info@homelandsecureit.com

Homeland Secure IT Alert

Who's Afraid of Virginia Woolf?

Unable to make the opening night of “Who’s Afraid of Virgina Woolf?” due to our daughter Megan & son Brett being involved with a choral event on Friday night, we relegated ourselves to catching the 3:00 PM Sunday matinee showing at The Warehouse Theatre in Greenville, SC.

One of the most apparent things was that my daughter was the youngest person in attendance, and my wife and I were not too far behind. Yes, the crowd was a bit older than we were. Not that age has anything to do with theatre, it was simply something that stuck in my head.

As we were waiting for the show to begin, I was able to take in the set, which is quite elaborately constructed. The detail was beautiful, and as the play began it was not too difficult to feel as if you were in the home of the couple who had lived there for 20+ years. There were other touches that added to the ambiance, such as the gobos and gels that made it seem as if light were coming through the window panes in the home.

Most of you know that I am audiophile of sorts, having run FOH sound for churches & bands and I am also a professional musician, so the quality of audio is of great importance to me. Spoken word being the primary medium used in a play to convey the message to the audience means that if the dialog is not clear, then there is really no need to be there, right? Well, The Warehouse Theatre did not let me down in this production. The cast was superbly enunciated and projected well and the audio engineer and technicians did their parts well too.

“Who’s Afraid of Virgina Woolf?” was written by Edward Albee and was made into a movie starring Elizabeth Taylor after a time on Broadway. You can find more about that on Wikipedia like I just did. Living the sheltered life I have (sheltered from culture apparently), I had never seen the movie or the play before and I didn’t do my homework and study up before going  just as with other productions at The Warehouse Theatre, so I had no idea of what to expect.

The storyline is available for you to read elsewhere so I will tell you a little bit about the characters and actors who portrayed them.

There are four characters you will get to know in play. Martha & George are an older couple (presumably mid to late 40s) who are nothing short of professionals in the art of attacking each other with words sharper than swords. Think Al and Peggy in the sitcom “Married with Children” and turn it up to “11″, then double it. The actors playing these parts, Mimi Wyche and Chip Egan are so good at this that you might think they were married to each other!

Two other characters show up at the home of Martha & George and are brought into the madness whether they like it or not. Honey & Nick (played by Debra Capps and Brock Koonce) have not been married very long and the exposure to Martha & George manages to bring out the worst in them as well. Both Debra and Brock do an admirable job with their parts. The interaction between the two couples is very much as one might expect it to be under the circumstances.

Our 18 year old daughter was curious as to why the younger couple did not just get up and leave, but I don’t believe she can grasp the fact that a young man, who wants to leave his mark on the world, may endure anything in order to make that climb up the ladder. After all, Martha is the daughter of the founder of the university that George and Nick are employed by, and the simple act of leaving could seal his fate. In thinking about it, someone who has not been married may not understand much about this play

A word of warning – there is foul language and intense moments. People with impressionable children and those who are easily offended may wish to avoid this ride.

It is easy to understand why the opening weekend is sold out for this show. I wouldn’t be surprised if the rest of the show doesn’t sell out too. Warehouse Theatre really IS Intense, Intimate and Unexpected…