Apologies, the blog site is having perf issues right now

Bear with me as I work on the issues.


Source: SBS

Comments

Apologies, the blog site is having perf issues right now

Bear with me as I work on the issues.


Source: SBS

Comments

Hello world!

Welcome to Microsoft MVPs. This is your first post. Edit or delete it, then start blogging!

Comments (1)

Good nuggets from the Veeam community forum digest

Somehow I signed up for the Veeam community forum digest which has some really good nuggets lately…


like …


"If you are using HP Proliant DL380 G7's for your vSphere 5.5 hosts, be aware of this potential PSOD issue and patch your hosts soon with this fix from HP."


"Here's a fantastic summary of vSphere 5.5 best practices, including some NetApp specific recommendations. Since it’s not immediately clear – the blog post is actually a table of contents (each recommendation is a link leading to detailed blog post)."


Source: SBS

Comments

Good nuggets from the Veeam community forum digest

Somehow I signed up for the Veeam community forum digest which has some really good nuggets lately…


like …


"If you are using HP Proliant DL380 G7's for your vSphere 5.5 hosts, be aware of this potential PSOD issue and patch your hosts soon with this fix from HP."


"Here's a fantastic summary of vSphere 5.5 best practices, including some NetApp specific recommendations. Since it’s not immediately clear – the blog post is actually a table of contents (each recommendation is a link leading to detailed blog post)."


Source: SBS

Comments

#IwantmySecurityemail

#IwantmySecurityemail


I'm starting a social campaign.  I don't live in Canada.  I live in the USA.  I gave Microsoft permission to email me.  I don't buy this bit that it's due to an Canadian spam email law.


Source: SBS

Comments

#IwantmySecurityemail

#IwantmySecurityemail


I'm starting a social campaign.  I don't live in Canada.  I live in the USA.  I gave Microsoft permission to email me.  I don't buy this bit that it's due to an Canadian spam email law.


Source: SBS

Comments

What I sent to Microsoft:

Many years ago there was a security researcher who said the following: 

"Don't lose sight of security. Security is a state of being,
 not a state of budget. He with the most firewalls still does
 not win. Put down that honeypot and keep up to date on
 your patches. Demand better security from vendors and
 hold them responsible. Use what you have, and make
 sure you know how to use it properly and effectively.

 And above all else, don't abuse or take for granted sources of help and
 information.  Without them, you might find yourself lost or
 inconvenienced."
 ~Rain Forest Puppy


While he has gone on to other things, that last part has always stuck with me.  Don't take for granted sources of help and information.  Without them, us, the good guys, will be lost.

Getting rid of the email notifications of security information is impacting me, one of the good guys.  It's how I communicate to over 5,000 IT administrators on a patchmanagement listserve that it's time to send out updates.  It's how I get alerted to when there are security advisories.  And any other changed to bulletins.  It makes me go look and understand what my risks are.  Taking this away and attempting to replace it with RSS feeds means you just damaged not only me, but countless number of Enterprises the world over that also rely on this mechanism to be alerted to changes in the security ecosystem.

While I do use RSS feeds, there is nothing that quite takes the place of an email.

So may I ask on behalf of the community of the good guys that you reconsider this decision of yours to suspend the use of email notifications of

* Security bulletin advance notifications
* Security bulletin summaries
* New security advisories and bulletins
* Major and minor revisions to security advisories and bulletins

And give us, the good guys, the ability to opt into such communication and waive any and all governmental policies you think are impacted by this communication.

Susan Bradley


 


********************************************************************
Title: Microsoft Security Notifications
Issued: June 27, 2014
********************************************************************

Notice to IT professionals:

As of July 1, 2014, due to changing governmental policies concerning
the issuance of automated electronic messaging, Microsoft is
suspending the use of email notifications that announce the
following:

* Security bulletin advance notifications
* Security bulletin summaries
* New security advisories and bulletins
* Major and minor revisions to security advisories and bulletins

In lieu of email notifications, you can subscribe to one or more of
the RSS feeds described on the Security TechCenter website.

For more information, or to sign up for an RSS feed, visit the
Microsoft Technical Security Notifications webpage at
http://technet.microsoft.com/security/dd252948 .

Other Information
=================

Follow us on Twitter for the latest information and updates:
http://twitter.com/msftsecresponse

Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing
a Microsoft security update, it is a hoax that may contain
malware or pointers to malicious websites. Microsoft does
not distribute security updates via email.

The Microsoft Security Response Center (MSRC) uses PGP to digitally
sign all security notifications. However, it is not required to read
security notifications, security bulletins, security advisories, or
install security updates. You can obtain the MSRC public PGP key at
https://technet.microsoft.com/security/bulletin/pgp.

To receive automatic notifications whenever Microsoft Security
Bulletins and Microsoft Security Advisories are issued or revised,
subscribe to Microsoft Technical Security Notifications on
http://technet.microsoft.com/security/dd252948.


Source: SBS

Comments

What I sent to Microsoft:

Many years ago there was a security researcher who said the following: 

"Don't lose sight of security. Security is a state of being,
 not a state of budget. He with the most firewalls still does
 not win. Put down that honeypot and keep up to date on
 your patches. Demand better security from vendors and
 hold them responsible. Use what you have, and make
 sure you know how to use it properly and effectively.

 And above all else, don't abuse or take for granted sources of help and
 information.  Without them, you might find yourself lost or
 inconvenienced."
 ~Rain Forest Puppy


While he has gone on to other things, that last part has always stuck with me.  Don't take for granted sources of help and information.  Without them, us, the good guys, will be lost.

Getting rid of the email notifications of security information is impacting me, one of the good guys.  It's how I communicate to over 5,000 IT administrators on a patchmanagement listserve that it's time to send out updates.  It's how I get alerted to when there are security advisories.  And any other changed to bulletins.  It makes me go look and understand what my risks are.  Taking this away and attempting to replace it with RSS feeds means you just damaged not only me, but countless number of Enterprises the world over that also rely on this mechanism to be alerted to changes in the security ecosystem.

While I do use RSS feeds, there is nothing that quite takes the place of an email.

So may I ask on behalf of the community of the good guys that you reconsider this decision of yours to suspend the use of email notifications of

* Security bulletin advance notifications
* Security bulletin summaries
* New security advisories and bulletins
* Major and minor revisions to security advisories and bulletins

And give us, the good guys, the ability to opt into such communication and waive any and all governmental policies you think are impacted by this communication.

Susan Bradley


 


********************************************************************
Title: Microsoft Security Notifications
Issued: June 27, 2014
********************************************************************

Notice to IT professionals:

As of July 1, 2014, due to changing governmental policies concerning
the issuance of automated electronic messaging, Microsoft is
suspending the use of email notifications that announce the
following:

* Security bulletin advance notifications
* Security bulletin summaries
* New security advisories and bulletins
* Major and minor revisions to security advisories and bulletins

In lieu of email notifications, you can subscribe to one or more of
the RSS feeds described on the Security TechCenter website.

For more information, or to sign up for an RSS feed, visit the
Microsoft Technical Security Notifications webpage at
http://technet.microsoft.com/security/dd252948 .

Other Information
=================

Follow us on Twitter for the latest information and updates:
http://twitter.com/msftsecresponse

Recognize and avoid fraudulent email to Microsoft customers:
=============================================================
If you receive an email message that claims to be distributing
a Microsoft security update, it is a hoax that may contain
malware or pointers to malicious websites. Microsoft does
not distribute security updates via email.

The Microsoft Security Response Center (MSRC) uses PGP to digitally
sign all security notifications. However, it is not required to read
security notifications, security bulletins, security advisories, or
install security updates. You can obtain the MSRC public PGP key at
https://technet.microsoft.com/security/bulletin/pgp.

To receive automatic notifications whenever Microsoft Security
Bulletins and Microsoft Security Advisories are issued or revised,
subscribe to Microsoft Technical Security Notifications on
http://technet.microsoft.com/security/dd252948.


Source: SBS

Comments

When you don't have a TPM chip

Built a computer for Dad that is a small ATX form factor.  Found out the motherboard didn't support a TPM chip.  Rats.


So right now testing out Symantec full drive encryption (no true crypt here).  Sophos firm encryption is a consideration for someone wanted to roll out cross platform encryption.


I personally have not found encryption to nail the CPU or show any impact on the machine.  Granted it does just a little bit during the initial encryption, but after that I'm not seeing a hit.


Source: SBS

Comments

« Previous entries Next Page »