Monthly Archives: April 2012

You are browsing the site archives by month.

Be careful on surfing.

http://www.bgr.com/2012/04/23/security-firm-identifies-origins-of-flashback-mac-virus/
On the news lately has been how WordPress blogs have been used to infect Macs.  On the wordpress side of the blog site (http://blogs.msmvps.com) we had an interesting event the other day.


We started getting reports from bloggers and readers that Eset,MSE and other virus engines kept alerting of a malicious javascript on the site.


Did multiple scans, did a Windows Online forensic analysis and found no malicious code actually “on” the box.  What I did find was that it appeared that plug ins on the site appeared to be calling javascripts.  It even appeared that possible googleapis were involved.  We rebuilt the WordPress side, leaving off all googleanalytics plug ins.  And making sure that all timthumbs on the site were updated.  Several themes from paid sites I downloaded still had vulnerable timthumb files in there.


But bottom line I’m not feeling warm and fuzzy.  I put in a url blocker to block any .class urls called into the blog to ensure that if there’s any plug ins had any malcious javascript they would be blocked.  But the site had the latest wordpress.  Bottom line, I’m not feeling warm and fuzzy that one can really secure a wordpress site.  So be careful when surfing… EVEN on this web site.

VSS tracing

In the 2008 era of backups I’ve not seen that the reregistering of DLLs helps.  What does help is merely listing the VSS writers and looking deep into the log flles and seeing what it’s complaining about.  Spotted this blog post that may also provide more info when you are trying to debug VSS backup issues.


How to: VSS Tracing – Ask the Core Team – Site Home – TechNet Blogs:
http://blogs.technet.com/b/askcore/archive/2012/04/29/how-to-vss-tracing.aspx

Want to be a film backer?

ZERO DAY A film about cybercrime and threats to the Internet by Charles Koppelman — Kickstarter:
http://www.kickstarter.com/projects/1175064326/zero-day-a-film-about-cybercrime-and-threats-to-th


Want to help back a documentary about cybercrime and Internet threats?


Donate any amount and be an official backer of a documentary about cybercrime.

Heads in the clouds

The Microsoft SMB Parallax | Looks Cloudy:
http://www.lookscloudy.com/2012/04/the-microsoft-smb-parallax/
“It seems that MS heads are just in the Clouds. Feels (and sounds) like they are only listening to a small subset of partners and are not listening to any other feedback, especially from clients (end users), through their partners. Very sad. Feels like they have their eyes and ears covered.”


I hate it when Vlad blogs a post that is spot on with what I see others feel.  When he touches a nerve he tends to spear it with a knife and make it bleed a bit.   And I’m not convinced Microsoft is actually even listening to partners, unless those partners are by the names of Dell and Geek squad. 


I also don’t like it when I’m told that I have no choice.  I do think they are choices, but as someone said the other day, we’ve all gotten soft and lazy and flabby and not exercised our muscles to devise our own solutions.


So how about we start talking about some of those options — Kerio (www.kerio.com ) is one

http://www.clearfoundation.com/Software/overview.html is another.  Thoughts?

What are the requirements to earn the Microsoft Partner Network Small Business Competency?

Ouch.  Well I can guess who will be getting that competency.  Larger firms and Geek Squads.


What are the requirements to earn the Microsoft Partner Network Small Business Competency? – Microsoft SMS&P Partner Community Blog – By Eric Ligman – Site Home – MSDN Blogs:
http://blogs.msdn.com/b/mssmallbiz/archive/2012/04/26/what-are-the-requirements-to-earn-the-microsoft-partner-network-small-business-competency.aspx


$1850 a year?  And requiring the Office 365 exam when nearly every partner I hear doesn’t like Microsoft billing their clients direct?


Man, I could be wrong but but nearly every SMB partner I know will consider this to be a slap in their face and only for the big partners.


More details:


Why you should care about the Small Business competency:
http://www.digitalwpc.com/GetInvolved/MSPartnerPerspectives/JonRoskill/Pages/Why-you-should-care-about-the-Small-Business-competency.aspx#fbid=1l4Dwk_W3Pd
Details on the Microsoft Partner Network Small Business Competency announced – Microsoft SMS&P Partner Community Blog – By Eric Ligman – Site Home – MSDN Blogs:
http://blogs.msdn.com/b/mssmallbiz/archive/2012/04/17/details-on-the-microsoft-partner-network-small-business-competency-announced.aspx

MS12-017: Vulnerability in DNS Server could allow denial of service: March 13, 2012 known issues

In case this hits anyone…..


MS12-017: Vulnerability in DNS Server could allow denial of service: March 13, 2012:
http://support.microsoft.com/kb/2647170/en-us?sd=rss&spid=12925
*Symptoms*
After you install this security update, the DNS Server service may not start, or you may receive an access violation error message shortly after the service starts, or after the operating system starts.

*Cause*
This issue may occur if DNS is configured to have a CNAME and a SOA record that both exist for the “@” record. The “@” record identifies the root of a DNS zone. This can frequently be identified in the DNS Manager as a record with the “(same as parent folder)” name. The SOA and NS records are allowed in this folder. RFC 2181 describes name uniqueness checks for CNAME records. According to RFC 2181, the CNAME may not exist in the “same as parent folder” (“@”) of a zone.

*Workaround*
To avoid this issue, identify and remove the “@” CNAME record that is causing the issue from the misconfigured zone before you install security update 2647170

DNS issues with SBS servers?

Several folks have reported DNS issues in the last couple of weeks and it appears that root hints are freaking out for whatever reason.


If you are running SBS 2008 or SBS 2011 and not using forwarders, make sure you put the registry key noted in this blog post on your boxes.


http://blogs.technet.com/b/sbs/archive/2009/01/29/cannot-resolve-names-in-certain-top-level-domains-like-co-uk.aspx

Check out Migrating to SBS 2011 Essentials

The migration documentation for going from SBS 2003 to SBS essentials has always been a bit lacking.  Check out Robert Pearman’s guidance instead!


Migrating to SBS 2011 Essentials eBook « Title (Required):
http://titlerequired.com/2012/04/23/migrating-to-sbs-2011-essentials-ebook/

Looking for resources to pass the 70-169 exam?

(MCTS): Microsoft Windows Small Business Server 2011 Standard, Configuring (70-169) Certification Guide | Packt Publishing Technical & IT Book and eBook Store:
http://www.packtpub.com/mcts-microsoft-windows-small-business-server-2011-standard-configuring-certification-guide/book


Check out Robert Crane’s book for an excellent resource!

WordPress is a spam gatherer and Netvibes is helping

I have a standalone godaddy hosted wordpress blog for the smbtnfresno group and my goodness is it a spam catcher.  Lately I’ve noted that netvibes.com is also a spam maker as well as it’s now a place where drugs are advertised on the back end of this site.





Nice, huh!