Adobe Security Bulletin

Security Updates available for Adobe Reader and Acrobat


Release date: September 16, 2014 Vulnerability identifier: APSB14-20 Priority: See table below CVE Numbers: CVE-2014-0560, CVE-2014-0561, CVE-2014-0562, CVE-2014-0563, CVE-2014-0565, CVE-2014-0566, CVE-2014-0567, CVE-2014-0568 Platform: Windows and Macintosh

Summary


Adobe has released security updates for Adobe Reader and Acrobat for Windows and Macintosh. These updates address vulnerabilities that could potentially allow an attacker to take over the affected system. Adobe recommends users update their product installations to the latest versions:
  • Users of Adobe Reader XI (11.0.08) and earlier versions should update to version 11.0.09.
  • For users of Adobe Reader X (10.1.11) and earlier versions who cannot update to version 11.0.09, Adobe has made available version 10.1.12.
  • Users of Adobe Acrobat XI (11.0.08) and earlier versions should update to version 11.0.09.
  • For users of Adobe Acrobat X (10.1.11) and earlier versions, who cannot update to version 11.0.09, Adobe has made available version 10.1.12.

Affected software versions


  • Adobe Reader XI (11.0.08) and earlier 11.x versions for Windows
  • Adobe Reader XI (11.0.07) and earlier 11.x versions for Macintosh
  • Adobe Reader X (10.1.11) and earlier 10.x versions for Windows
  • Adobe Reader X (10.1.10) and earlier 10.x versions for Macintosh
  • Adobe Acrobat XI (11.0.08) and earlier 11.x versions for Windows
  • Adobe Acrobat XI (11.0.07) and earlier 11.x versions for Macintosh
  • Adobe Acrobat X (10.1.11) and earlier 10.x versions for Windows
  • Adobe Acrobat X (10.1.10) and earlier 10.x versions for Macintosh

Solution


Adobe recommends users update their software installations by following the instructions below: Adobe Reader The product’s default update mechanism is set to run automatic update checks on a regular schedule. Update checks can be manually activated by choosing Help > Check for Updates. Adobe Reader users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows Adobe Reader users on Macintosh can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Macintosh Adobe Acrobat The product’s default update mechanism is set to run automatic update checks on a regular schedule. Update checks can be manually activated by choosing Help > Check for Updates. Acrobat Standard and Pro users on Windows can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows Acrobat Pro users on Macintosh can find the appropriate update here: http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh

Priority and severity ratings


Adobe categorizes these updates with the following priority ratings and recommends users update their installations to the newest versions: http://helpx.adobe.com/security/products/reader/apsb14-20.html

And if Microsoft had done this?

u2photo
http://support.apple.com/kb/HT6439?viewlocale=en_US&locale=en_US

And if Microsoft had done this… wonder how much folks would have been up in arms over this?

Automatically update test plan with build number

A great feature in Microsoft Test Manager is that it allows you to track which application build your are running your tests against. This is useful for manual testing to track which tests was run against a particular build, it will be assigned to a bug reported during testing and it is used to locate test assemblies used for running automated tests.

It’s really simple to set this up, just go to the properties for the test plan and assign the build definition to the test plan:

image

Unfortunately you need to assign the Build in use manually, which is both tedious and easy to forget.

The solution to this is of course automation. The TFS 2013 build templates can easily be extended to run a post build script (typically PowerShell). See http://msdn.microsoft.com/en-us/library/vstudio/dn376353.aspx if you want to know more about how to run a script in the build process.

The script below will find all test plans in the team project where the build definition is used and update them with the latest build. All you need to do is add the script to source control and reference it in the build definition:

image

Running the build will update the test plans using the build definition to the latest build:

image

The latest version of the script is available from TFS Community Build Extensions on Github here: ApplyVersionToAssemblies.ps1. A snapshot is shown below:

##———————————————————————–

## <copyright file=”UpdateTestPlanBuildNumber.ps1″>(c) http://TfsBuildExtensions.codeplex.com/. This source is subject to the Microsoft Permissive License. See http://www.microsoft.com/resources/sharedsource/licensingbasics/sharedsourcelicenses.mspx. All other rights reserved.</copyright>

##———————————————————————–

# Update all test plan using the current build definition with the latest build number.

#

  

# Enable -Verbose option

[CmdletBinding()]

  

# Disable parameter

# Convenience option so you can debug this script or disable it in

# your build definition without having to remove it from

# the ‘Post-build script path’ build process parameter.

param([switch]$Disable)

if ($PSBoundParameters.ContainsKey(‘Disable’))

{

   Write-Verbose “Script disabled; no actions will be taken on the files.”

}

  

# If this script is not running on a build server, remind user to

# set environment variables so that this script can be debugged

if(-not $Env:TF_BUILD -and -not ($Env:TF_BUILD_BUILDURI -and $Env:TF_BUILD_BUILDDEFINITIONNAME -and $Env:TF_BUILD_COLLECTIONURI))

{

   Write-Error “You must set the following environment variables”

   Write-Error “to test this script interactively.”

   Write-Error ‘$Env:TF_BUILD_BUILDURI – For example, enter something like:’

   Write-Error ‘$Env:TF_BUILD_BUILDURI = “vstfs:///Build/Build/15″‘

   Write-Error ‘$Env:TF_BUILD_BUILDDEFINITIONNAME – For example, enter something like:’

   Write-Error ‘$Env:TF_BUILD_BUILDDEFINITIONNAME = “MyProduct.Main.CI”‘

   Write-Error ‘$Env:TF_BUILD_COLLECTIONURI – For example, enter something like:’

   Write-Error ‘$Env:TF_BUILD_COLLECTIONURI = “http://localhost:8080/tfs/DefaultCollection”‘

   exit 1

}

  

# Make sure build uri is set

if (-not $Env:TF_BUILD_BUILDURI)

{

   Write-Error (“TF_BUILD_BUILDURI environment variable is missing.”)

   exit 1

}

Write-Verbose “TF_BUILD_BUILDURI: $Env:TF_BUILD_BUILDURI

 

# Make sure build definition name is set

if (-not $Env:TF_BUILD_BUILDURI)

{

   Write-Error (“TF_BUILD_BUILDDEFINITIONNAME environment variable is missing.”)

   exit 1

}

Write-Verbose “TF_BUILD_BUILDDEFINITIONNAME: $Env:TF_BUILD_BUILDDEFINITIONNAME

 

# Make sure tfs collection uri is set

if (-not $Env:TF_BUILD_COLLECTIONURI)

{

   Write-Error (“TF_BUILD_COLLECTIONURI environment variable is missing.”)

   exit 1

}

Write-Verbose “TF_BUILD_BUILDDEFINITIONNAME: $Env:TF_BUILD_BUILDDEFINITIONNAME

 

[Reflection.Assembly]::LoadWithPartialName(‘Microsoft.TeamFoundation.Client’)

[Reflection.Assembly]::LoadWithPartialName(‘Microsoft.TeamFoundation.TestManagement.Client’)

[Reflection.Assembly]::LoadWithPartialName(‘Microsoft.TeamFoundation.Build.Client’)

 

# Find all test plans using this build definition

$tpc = [Microsoft.TeamFoundation.Client.TfsTeamProjectCollectionFactory]::GetTeamProjectCollection($env:TF_BUILD_COLLECTIONURI)

$tcm = $tpc.GetService([Microsoft.TeamFoundation.TestManagement.Client.ITestManagementService])

$buildServer = $tpc.GetService([Microsoft.TeamFoundation.Build.Client.IBuildServer])

$teamProject = $buildServer.GetBuild($Env:TF_BUILD_BUILDURI);

$testProject = $tcm.GetTeamProject($teamProject.TeamProject);

$testPlans = $testProject.TestPlans.Query(“SELECT * FROM TestPlan”)

 

$matchingTestPlans = @()

foreach($testPlan in $testPlans)

{

    if($testPlan.BuildFilter.BuildDefinition -eq $Env:TF_BUILD_BUILDDEFINITIONNAME)

    {

        $matchingTestPlans += $testPlan

    }

}

 

# Update test plans with latest build

if($matchingTestPlans)

{

   Write-Host “Will update test plans using $Env:TF_BUILD_BUILDDEFINITIONNAME to $Env:TF_BUILD_BUILDURI to $($matchingTestPlans.count) test plans.”

  

   foreach ($matchingTestPlan in $matchingTestPlans) {

     if(-not $Disable)

     {

        $matchingTestPlan.BuildUri = $Env:TF_BUILD_BUILDURI

        $matchingTestPlan.Save()

        Write-Verbose $matchingTestPlan.Name – version applied”

     }

   }

}

else

{

   Write-Warning “Found no test plans to update.”

}

 

Microsoft Security Bulletin Minor Revisions Issued: September 16, 2014

Summary

The following bulletins have undergone a minor revision increment.
Please see the appropriate bulletin for more details.

* MS14-046 – Important

Bulletin Information:

MS14-046 – Important

– »technet.microsoft.com/library/se···ms14-046
– Reason for Revision: V1.1 (September 16, 2014): Bulletin revised
to announce a detection change in the 2966827 update for
Microsoft .NET Framework 3.0 Service Pack 2 on Windows 8 and
Windows Server 2012. This is a detection change only. There were
no changes to the update files. Customers who have already
successfully updated their systems do not need to take any
action.
– Originally posted: August 12, 2014
– Updated: September 16, 2014
– Bulletin Severity Rating: Important
– Version: 1.1

Moving our BlogEngine.NET server to Azure

As part of our IT refresh we have decided to move this BlogEngine.NET server from a Hyper-V VM in our office to an Azure website.

BlogEngine.NET is now a gallery item for Azure website, so a few clicks and your should be up and running.

image

However, if you want to use SQL as opposed to XML as the datastore you need to do a bit more work. This process is well documented in the video ‘Set BlogEngine.NET to use SQL provider in Azure’, but we found we needed to perform some extra steps due to where our DB was coming from.

Database Fixes

The main issue was that our on premises installation of BlogEngine.NET used a SQL 2012 availability group. This amongst other things, adds some extra settings that stop the ‘Deploy Database to Azure’ feature in SQL Management Studio from working. To address these issues I did the following:

Took a SQL backup of the DB from our production server and restored it to a local SQL 2012 Standard edition. I then tried the  Deploy to Azure

image

But got the errors I was expecting

image

There were three types

Error SQL71564: Element User: [BLACKMARBLEAUser] has an unsupported property AuthenticationType set and is not supported when used as part of a data package.
Error SQL71564: Element Column: [dbo].[be_Categories].[CategoryID] has an unsupported property IsRowGuidColumn set and is not supported when used as part of a data package.
Error SQL71564: Table Table: [dbo].[be_CustomFields] does not have a clustered index.  Clustered indexes are required for inserting data in this version of SQL Server.

The first fixed by simply deleting the listed users in SQL Management Studio or via the query

DROP USER [BLACKMARBLEAuser]

The second were addressed by removing the  ‘IsRowGuidColumn’  property in Management Studio

image

or via the query

ALTER TABLE dbo.be_Categories SET (LOCK_ESCALATION = TABLE)

Finally II had to replace the non-cluster index with a cluster one. I got the required definition form the setup folder of our BlogEngine.NET installation, and ran the command

DROP INDEX [idx_be_CustomType_ObjectId_BlogId_Key] ON [dbo].[be_CustomFields]

CREATE CLUSTERED INDEX [idx_be_CustomType_ObjectId_BlogId_Key] ON [dbo].[be_CustomFields]
(
    [CustomType] ASC,
    [ObjectId] ASC,
    [BlogId] ASC,
    [Key] ASC
)

Once all this was done in Management Studio I could Deploy DB to Azure, so after a minute or two had a BlogEngine.NET DB on Azure

Azure SQL Login

The new DB did not have user accounts associated with it. So I had to create one

On the SQL server’s on Master  DB I ran

CREATE LOGIN usrBlog WITH password='a_password';

And then on the new DB I ran

CREATE USER usrBlog FROM LOGIN usrBlog ;
EXEC sp_addrolemember N'db_owner', usrBlog

Azure Website

At this point we could have created a new Azure website using the BlogEngine.NET template in the gallery. However, I chose to create an empty site as our version of BlogEngine.NET (3.x) is newer than the version in the Azure gallery (2.9).

Due to the history of our blog server we have a non-default structure, the BlogEngine.NET code is not in the root. We retain some folders with redirection to allow old URLs to still work. So via an FTP client we create the following structure, copying up the content from our on premises server

  • sitewwwroot  – the root site, we have a redirect here to the blogs folder
  • sitewwwrootbm-bloggers – again a redirect to the blogs folder, dating back to our first shared blog
  • sitewwwrootblogs – our actual server, this needs to be a virtual application

    Next I set the virtual application on the Configure section for the new website, right at the bottom, of the page

    image

    At this point I was back in line with the video, so need to link our web site to the DB. This is done using the link button on the Azure  web site’s management page. I entered the new credentials for the new SQL DB and the DB and web site were linked. I could then get the connection string for the DB and enter it into the web.config.


  • Unlike  in the video the only edit I need to make was to the connection string, as all the other edits had already been made for the on premises SQL


    Once the revised web.config was uploaded the site started up, and you should be seeing it now


    Source: Rfennell

    Change Config or Spend More Money to Fix Surface Pro 3 Slow WiFi?

     

    People who purchased the Microsoft Surface Pro 3 have been complaining since June of slow WiFi speeds. Microsoft has not specifically addressed this issue or acknowledged that they are aware of this particular issue. This makes it tough to determine if or when a fix will be forthcoming.

    A little background information on 802.11ac may be helpful for some people. The faster “ac” speeds apply ONLY to the 5 GHz band. If you are expecting supersonic speeds and are using a 2.4 GHz only 802.11n or 802.11g router, this isn’t going to happen. To truly take advantage of 802.11ac, you need a current generation 802.11ac dual band router (and currently, with the SP3, you need to specifically and deliberately attach to the 5 GHz band).

     

    2.4 GHz only N routers

     

    There’s not much you can do to resolve slow speeds with 2.4 GHz only routers, but you can perhaps get incrementally better speed in a congested area if you try a couple of things. There are lots of other devices that share the 2.4 GHz band and are potential sources of interference like microwave ovens, old 2.4 GHz cordless phones, and Bluetooth. Some folks may be using add-on keyboards that attach to the Surface Pro 3 via Bluetooth and are connected to 2.4 GHz wireless routers. Bluetooth and 802.11n 2.4 GHz share overlap in the same frequencies. It’s entirely possible that there is interference. This hasn’t been proven, but since they do share the frequency range, some but not all devices may be impacted.

    1. Change the channel from auto to 3, 4, 5, 7, 8, 9, or 10. Almost everyone will be using 1, 6, or 11. You can try to determine the least congested channel by running the netsh command below from a cmd prompt:

    netsh wlan show networks mode=BSSID

    and then try to determine the least used channel (which will probably change anyway since all your neighbors are probably set to auto). I’m not sure this will provide much relief, but it is worth trying. You’ll get

     

    Microsoft Windows [Version 6.3.9600]
    (c) 2013 Microsoft Corporation. All rights reserved.

    C:Usersbarb>netsh wlan show networks mode=BSSID

    Interface name : Wi-Fi
    There are 20 networks currently visible.

    SSID 1 : hawk5
        Network type            : Infrastructure
        Authentication          : WPA2-Personal
        Encryption              : CCMP
        BSSID 1                 : c4:04:15:29:b4:23
             Signal             : 82%
             Radio type         : 802.11ac
             Channel            : 157
             Basic rates (Mbps) : 6 12 24
             Other rates (Mbps) : 9 18 36 48 54

    SSID 2 : fabfive
        Network type            : Infrastructure
        Authentication          : WPA2-Personal
        Encryption              : CCMP
        BSSID 1                 : 40:16:7e:bf:0d:0c
             Signal             : 66%
             Radio type         : 802.11n
             Channel            : 157
             Basic rates (Mbps) : 6 12 24
             Other rates (Mbps) : 9 18 36 48 54

    SSID 3 : high5
        Network type            : Infrastructure
        Authentication          : WPA2-Personal
        Encryption              : CCMP
        BSSID 1                 : e8:fc:af:94:fe:6c
             Signal             : 88%
             Radio type         : 802.11ac
             Channel            : 48
             Basic rates (Mbps) : 6 12 24
             Other rates (Mbps) : 9 18 36 48 54

    …etc…

    C:Usersbarb>

    2. Change the channel width to 20 if it is set on 40 or auto.

     

    2.4/5 GHz Dual Band Routers

     

    Some routers (Apple has been doing this for years) ship with both the 2.4 and 5 GHz channels set to the same SSID (name). Other vendors have started doing this, some by default, others let you specify this optionally. It’s marketed as an “Smart Connect” type config where the “best” channel is selected by the client/router automatically. I asked a couple of users in the Microsoft Surface Communities forum about their config and learned that they were using the same SSID. I asked them to make a change and specify unique SSIDs and attach to 5GHz. They’ve reported their problem has disappeared. Similarly, people with Netgear, ASUS, and Linksys routers have changed to unique, separate names for the 2.4 and 5 GHz SSID’s, connected to the 5 GHz SSID and reported back that their issue is resolved.

     

    1. Many of the newer 802.11ac routers are emphasizing using a single SSID name for all for smart connectivity that determines the best radio for a computer or device to attach to. This is an issue for the Surface Pro 3.

     linksys

    The Linksys/Belkin WRT1900AC ships with the same name for both SSID’s out of the box. This is an issue for SP3 owners.

     smartconnect

    The  Netgear R8000 has Smart Connect features that depend on using a single name for THREE SSID’s. This is an issue for SP3 owners.

    airport5GHz  

    Apple Airport Extreme Routers have used a single SSID by default for several years. This is an issue for SP3 owners.

    There are some folks who just prefer to use the same SSID and manually configure whatever router they own in this single SSID name configuration themselves. Sadly, while this is not an issue for apparently any other computer or device, it is an issue for the Surface Pro 3. There is anger expressed when I suggest changing the configuration. Sorry, you shouldn’t need to do this, but if you want better speeds, currently, this is required.

     

    2. If you have a dual band 802.11n router, not a 802.11ac router, the issue is the same. You need to use the 5 GHz SSID and configure separate and distinct SSID names.

     

    3. If you are connecting to the 5 GHz band and are having speed issues, try setting the channel to the highest one available or to the lowest one available instead of “auto”.

    Again, Microsoft has not acknowledged this specific issue or acknowledged that a fix will be forthcoming.

    One more thing.. the throw money at it solution

     

    For those of you with 802.11n 2.4 GHz only single band routers, as I mentioned previously, you won’t enjoy 802.11ac speeds unless you upgrade to a a 802.11ac (by definition, dual band) router, configure it for separate SSID names and connect to the 5 GHz band.

    This is the current state of affairs. It’s up to Microsoft to fix.

    Windows 9 – Preview Announcement set for September 30th

    Several articles note that new attributes of the new operating system will be previewed on September 30, 2014

    http://www.computerworld.com/article/2683914/microsoft-sets-windows-9-reveal-for-sept-30.html

    QUOTE:  Microsoft issued invitations on Monday for a Sept. 30 event where it will unveil the next version of Windows, according to multiple online reports.  The San Francisco press conference will introduce the next iteration of Microsoft’s venerable Windows operating system. Most pundits and analysts expect the OS to be dubbed “Windows 9,” with the company sticking with the numerical moniker of the 2012 predecessor. It has also been known by the code name “Threshold.”

    Presumably set for release in the first half of 2015, Windows 9, may be either the last major release of the operating system or the first in a string of smaller, less-ambitious updates as Microsoft accelerates its already too-fast-for-enterprise release schedule.  A revamped Start menu — one that hews more closely to the one in Windows 7 — a de-emphasis of the touch-first “Modern,” née “Metro,” mode and UI (user interface), and the ability to run Modern apps in Windows on the classic desktop have been bandied as Windows 9’s most obvious changes.

    The mention of “enterprise” in Microsoft’s invitation bolsters the speculation that Windows 9 will be primarily aimed at business and corporate customers, who have spurned Windows 8 because of its split-UI personality. That, in turn, argues for a surfacing of new features and other changes that make the OS easier to operate and navigate with mouse and keyboard, still the primary input methods for business PCs.

    It’s important for Microsoft to make Windows 9 attractive to those customers, Gartner analysts have said, if Microsoft is to convince them to move beyond Windows 7 — which has a lock on the corporate market — in time to avoid a repeat of the Windows XP longevity problem.

    Microsoft Security Bulletin Re-Releases Issued: September 15, 2014

    Summary

    The following bulletins have undergone a major revision increment.
    Please see the appropriate bulletin for more details.

    * MS14-055 – Important

    Bulletin Information:

    MS14-055 – Important

    https://technet.microsoft.com/library/security/ms14-055
    – Reason for Revision: V2.0 (September 15, 2014): Bulletin revised to
    remove Download Center links for Microsoft security update
    2982385 for Microsoft Lync Server 2010. See the Update FAQ for
    details.
    – Originally posted: September 9, 2014
    – Updated: September 15, 2014
    – Bulletin Severity Rating: Important
    – Version: 2.0

    So what’s this Storage server thing?

    http://blogs.msmvps.com/bradley/2014/09/12/windows-storage-server-2012-r2-essentials/

    Windows Storage Server 2012 R2 Essentials.

    Okay so what is this?

    To be clear it’s not Windows Storage Server 2012 R2 Standard.  It has no feature set from the Storage server line.

    It’s a new OEM only sku… or rather a price point.  It’s the Standard server os with the Essentials role, so it needs to BE a domain controller or SEE a domain controller.  It can’t be merely a workgroup computer (unfortunately).

    So think of it as a low cost/OEM only/has to be or see a domain controller but still provide the Essentials role/feature set.

    So?  What do you think of it now?

    Will you consider it for your client base?

     

    Removal instructions for Trojan.Agent Kryptik

    What is Trojan.Agent Kryptik?

    The Malwarebytes research team has determined that Trojan.Agent Kryptik is a Trojan Clicker. Typically these are used to perform online actions in order to boost hit-counts.

    https://forums.malwarebytes.org/index.php?%2Ftopic%2F157179-removal-instructions-for-trojanagent-kryptik%2F

    Presentation till “Har du en DevOps i ditt team?” (SWE)

    Tack till er som kom på seminariet i fredags – bra diskussioner och feedback på ett i mitt tycke superintressant ämne.

    För er som vill ha tillgång till presentationen så finns den nu upplagd på SlideShare: http://www.slideshare.net/Solidify-Sverige/har-du-en-devops-i-ditt-team.

    Surface Pro 3 Purchased in USA – Wireless May not Work Outside North America

     

    I’ve been involved in a couple of threads on Microsoft communities like http://answers.microsoft.com/en-us/surface/forum/surfpro3-surfnetwork/using-surface-pro-3-in-europe-no-support-for/91d6f4ec-f9d1-4bfe-a0f5-f2bbd6517053 which highlight and issue that Microsoft doesn’t seem to care about.

    While the majority if wireless routers and AP’s in Europe and Asia by default are set at channels 1-11 for the 2,4 GHz band, additional higher power channels 12-14 are optionally available. Many private organizations and companies utilize this. I don’t know the situation with public WiFi abroad, but I suspect the configuration may vary, depending on the provider. I’m certainly hearing from afflicted users like this one from Germany:

     

     

     germany 802.11d

    If you read the above referenced thread, you can draw your own conclusions, but as *I* read the available information, Microsoft owes folks a localized optional driver.

    I’d love to hear from afflicted users on Twitter. @barbbowman

    September 11th Thoughts

    Where were you on September 11, 2001?

    My own story actually begins on September 6, 2001. That is the day when I hosted the first InfraGard meeting in Birmingham, Alabama. More than sixty security professionals came to Energen headquarters to hear a description of the InfraGard program and a presentation by Special Agent Mike Mauldin who described to us that when terrorist decide to attack our country, they may actually attack our critical infrastructures rather than a direct military vs. military attack.

    Five days later I was in Carlsbad, California where I was supposed to be speaking to a Network Associates Customer Council meeting. I received the phone call early (Pacific time) from my wife who told me to turn on the television. I got up, got dressed, and went down to the bar where people were gathering to watch the big screen tv and try to decide what to do. Obviously, the meeting was canceled. Both planes had hit before my wife called me, but we watched together in horror as the building collapsed. I went back to my room, called my wife, and told her that I would be home as soon as possible, but that I was going to have to drive.

    I had 40 hours alone in the car to think about what was going on. To think about what was important. To think about whether I was “making a difference” in what I did for a living. It was a life-changing event.

    The 9-11 Memorial

    Last year, my wife and I had the chance to visit the 9-11 Memorial in New York City. When we first exited the subway, we could see the new Freedom Tower.

    The memorial consists of two very large squares at the location of the original Twin Towers, each has a waterfall heading into a bottomless pit. The names of the victims of the 9/11 attacks are engraved on the edges of the memorial.

    The key shows that the names of First Responders are at the bottom left corner of the South Pool, which is the first place that those visiting the memorial will see. The names of those in each tower are on their respective towers, and the victims of the Pentagon and the “non twin tower” flights have also been recorded in the memorial.

    While my wife and I were there as both Americans and as tourists, I had come to the memorial looking for one particular name. While there is an option to look up the names before you go to find their exact location, I told my wife that I would rather just walk around both memorials until I found the name I was looking for.

    I was looking for the name John P. O’Neill. John was featured in a New Yorker story called “The Counter Terrorist” and has a page on PBS FrontLine: The Man Who Knew. John started working the FBI at age 18 as a tour guide, but after college returned as an agent and was sometimes mocked for his obsession with terrorism in general and Al Qaeda in particular. He was already investing “the Blind Sheikh” prior to the first World Trade Center bombing and his dedication to the investigation revealed the relationships between the various attacks the U.S. and its interests suffered around the world. His story is also detailed in the book The Man Who Warned America: The Life and Death of John O’Neill, the FBI’s Embattled Counterterror Warrior.

    I wore my Birmingham FBI shirt that day and had my wife take a picture of me standing by his name.

    Many that day were victims and many were heroes. John O’Neill was the latter. People like him inspire me to do what I do in my own small way to try to protect our country.

    InfraGard

    Last week I was able to attend the National InfraGard Congress up in DC. I saw dozens of other American citizens who each represented their InfraGard chapter and some of the tens of thousands of InfraGard members who are each doing their part to make sure our country is as safe as they can make it. We heard from FBI Director James Comey, who presented awards to many of our members and the FBI InfraGard coordinators who work with us. We heard from FBI Assistant Director Joseph Demarest, the creator of the FBI’s “New Cyber” program, and from FBI Section Chief, John Riggi, National Cyber Operations and Outreach Section, and from FBI Unit Chief, John Pi, a computer programmer turned medical doctor turned FBI Special Agent who now leads the FBI’s National Industry Partnership Unit, which leads the InfraGard program from the FBI side of the partnership. Each of them stressed the same point. The FBI can’t do this job alone. They need the partnership and support of the American public, and ESPECIALLY that portion of the public who is trained in security and cyber security. If your job is related to Critical Infrastructure protection, I hope you will consider joining InfraGard, because as a member of the security community, you know things about YOUR critical infrastructure that our friends in government do not know, or do not know at the same level of expertise as you.

    The Birmingham InfraGard still meets on the Second Tuesday of the month, as we have every month since 9/11. If you are in the Birmingham area, we’d love for you to join us.

    And if you don’t work in Critical Infrastructure, I still hope you will consider, “What can I do in my role at work, at home, or in our educational system, to help educate the public about risks and threats and to help make our nation safer?”


    Source: garwarner

    Microsoft Surface 2 + Lumia + 200 Go sur OneDrive

    Bonsoir à tous


    Envie d’acheter une tablette, de changer de Smartphone ou les deux ? Ne laissez pas passer cette affaire :


    Pack Start: Que ce soit pour travailler ou se divertir, tout est inclus dans ce asserpack résolument conçu pour la mobilité.


    Il comprend la Surface 2 équipée d’Office 2013, avec 200Go de stockage OneDrive, 1 an de Skype offert et le Lumia 630, le Smartphone au processeur 4 cœurs.


    Ne cherchez pas tout y est.


    C’est ici http://www.microsoftstore.com/store/msfr/fr_FR/pdp/Pack-Exclusif-Surface-2-32Go-+-Nokia-Lumia/productID.307698200?WT.mc_id=lesinstants_septembre_start_pack_090814


    Bonne soirée Patrice.

    Bulletin de sécurité Microsoft du 9 septembre 2014

    Bonjour à tous


    La version complète de la synthèse des Bulletins de sécurité Microsoft pour cette publication est disponible ici : https://technet.microsoft.com/fr-fr/security/bulletin/ms14-sep


    Pour recevoir une notification automatique lorsque qu’un Bulletin de sécurité Microsoft est publié, consultez http://www.microsoft.com/fr-fr/security/resources/newsletters.aspx


    Bonne journée Patrice

    Utiliser Windows Defender avec Norton ou McAfee protection antivirus?

    Bonjour tout le monde, Vous ne devriez jamais exécuter plus d’un programme antivirus en même temps. Les deux programmes peuvent ralentir votre ordinateur, et ils pourraient même identifier l’autre comme un virus, qui pourrait conduire à la corruption de fichiers ou d’autres conflits et des erreurs qui font que votre protection antivirus moins efficace ou pas efficace du tout.


    Microsoft  recommande d’utiliser la protection anti-virus qui est inclus dans votre version de Windows. Windows 8  inclut une protection antivirus et antispyware appelé Windows Defender . Si vous utilisez Windows 7 ou Windows Vista, vous pouvez télécharger Microsoft Security Essentials gratuitement.


    Pour plus d’informations, voir  Comment augmenter votre défense logiciels malveillants et protéger votre PC .


    Vous pouvez également utiliser Kaspersky http://www.kaspersky.com/fr/anti-virus-latest-versions


    Bonne journée. Patrice.

    Microsoft publie une perversion d’un outil Cloud

    Bonjour à tous,
    Microsoft publie une préversion de Migration Accelerator for Azure, un nouveau service permettant la migration automatisée vers sa plateforme Azure depuis des serveurs physiques ou virtualisés. Une technologie issue du rachat récent d’InMage.



    Bonne soirée… Sans la pluie 

    Output from jobs

    I tripped over a little problem the other day that’s worth reporting.  I was running something like this:

     

    $sb = {
    $procs = get-service
    $procs | Export-Csv test.csv -NoTypeInformation
    }

    Start-Job -ScriptBlock $sb -Name test

     

    I was collecting some data and outputting a CSV.  My problem was more complex but this stands as a good example

     

    I didn’t get the data I wanted

     

    Thinking about it I put the full path to where I wanted the CSV

     

    $sb = {
    $procs = get-service
    $procs | Export-Csv C:MyDatascriptsTesttest.csv -NoTypeInformation
    }

    Start-Job -ScriptBlock $sb -Name test

     

    And it works.

     

    So where did my data go in the original version?

     

    I ran this

     

    $sb = {
    Get-Location

    $procs = get-service
    $procs | Export-Csv test.csv -NoTypeInformation
    }

    Start-Job -ScriptBlock $sb -Name test

     

    And then pulled the data from the job

     

    £> Receive-Job -Id 10

    Path
    —-
    C:UsersRichardDocuments

     

    Obvious really – a job runs in a new powershell process that doesn’t run your profile so it starts in the default location  – which is your home directory. And sure enough the CSV file is there

     

    £> ls C:UsersRichardDocuments*.csv


        Directory: C:UsersRichardDocuments


    Mode                LastWriteTime     Length Name
    —-                ————-     —— —-
    -a—        14/09/2014     11:50      46042 test.csv

     

    I can’t remember how many times I’ve told people that PowerShell jobs run in a separate process so I should have realised.  Excellent example of the more you know the more you need to learn

    You are conning yourself..

    .. if you believe the hype that a cheap tablet can replace a full PC..

    A full PC specification will include an AMD dual core or Intel i3 processor, 4gb RAM, a decent sized 500gb to 1Tb hard drive, a 14.1” or larger screen, a decent sized keyboard, multiple ports for USB, HDMI etc., and it will cost you around $500.

    On the above machine, you can surf the Internet, play games, store music, videos and photos, send and receive email, make video calls, do work..

    There is a Viewsonic V10P_1BN7PUS6_02 available with Windows 8 which has a Netbook sized screen, Netbook based Atom processor, 2gb RAM and a 32gb hard drive. Netbook = LOW spec, by the way, and it will cost you in excess of $800.

    On this machine, they say that you can surf the Internet, play games, store music, videos and photos, send and receive email, make video calls, do work. Well maybe you can, but look at the storage specification !!!

    If a notebook PC was supplied with a 16 or 32gb hard drive, it wouldn’t last a week before the machine was complaining about lack of storage space. I have one or two clients whose photo output can exceed 32gb per month apart from anything else they do.

    Question:

    Why do tablet manufacturers fit such small storage options to tablets?

    • The technology is still new and very expensive.
    • SSD drives are the same size as a notebook hard drive and would not fit into a tablet.
    • Even if the larger SSD sizes were available in a form that would fit into a tablet, the inclusion of such a device would DOUBLE the price of the tablet.

    The best tablet and, in my opinion, the only one which can pass for a PC:

    Microsoft’s Surface 3 machine is a good example of a tablet which can replace a traditional notebook PC, but the cheapest, an i3 model, comes in at $850 c/w a 64gb SSD storage device (still too small) all the way up to $2000 for the i7 model which has a 500gb SSD storage device (the low end of traditional notebooks).

    The starting price for a Surface 3 which just about has enough room, 128gb, for Windows while still allowing for some flexibility costs $1050.

    If you want a tablet which really can do ALL that you present or old notebook can or could do, you are looking to pay DOUBLE the price for an almost truly equivalent tablet.

    Microsoft is the ONLY company not trying to pull the wool over anybody’s eyes, and is the ONLY company truly making a device which is close to a traditional PC, so don’t blame Microsoft re there not being enough space on other tablet’s storage devices.

    The rest are just trying to make money while the sun shines. It is totally unreasonable to expect a $200 – 300 tablet to do all that even a basic notebook can manage easily. The small storage ability of tablets means that you MUST use the cloud for all data which includes photos, music, videos etc. whether you want to join the cloud or not.

    A note on retro fitting SSDs to notebooks and desktop PCs:

    Large capacity hard drives are fitted to the above machines such that the user has maximum flexibility. If you replace a large HDD with a small SSD, you reduce the flexibility by as much as ten times. It is a high price to pay to get a faster ‘boot from cold’ time, and you should bear this in mind before making the change.

    Resoluciones del Nuevo Mes: Septiembre 2014

    Un poco tarde esta vez, es tiempo de revisar mis resoluciones de Agosto:

    - Escribir un reemplazo de jQuery para ser usado en tests de consola con Node.js [completo] ver repo
    - Escribir funciones simples en JavaScript para manipulación de arreglos [completo] ver repo
    - Continuar con proyecto Liqueed [completo] ver repo
    - Comenzar con Aktores Distribuido [parcial] ver repo
    - Comenzar con AjErl Distribuido [pendiente]

    Además, trabajé en:

    - Dar una charla de introducción a Express [completo] ver repo ver presentación ver ejemplos
    - Mejorar AjScript [completo] ver repo
    - Mejorar RuScript, Ruby intérpreter en JavaScript [completo] ver repo
    - Refactor SimplePipes [completo] ver repo
    - Generar código del servidor Node.js/Express desde RAML [completo] ver repo
    - Crear un sitio dinámico descripto en JSON para Express [completo] ver repo
    - Mejorar RustScript, intérpreter de Rust en JavaScript [completo] ver repo
    - Crear Mochy, test framework a la Mocha [completo] ver repo
    - Crear RSharp, language intérpreter de lenguaje R en C# [completo] ver repo
    - Refactorizar (y simplificar) SimpleRules, motor de reglas en JavaScript [completo] ver repo
    - Primeros ejemplos para SimpleMule [completo] ver repo
    - Mejorar salida para SimpleUnit [completo] ver repo

    Mis resoluciones para el nuevo mes:

    - Aktores distribuidos
    - AjErl distribuidos
    - Soporte web y ejemplo en RuScript
    - Completar Mochy
    - Mejorar RSharp
    - Trabajar con NodeJs en Deep Learning, Internet of Things, Artificial Intelligence
    - Trabajar en Code Generation usando AjGenesis para Node
    - Trabajar en Liqueed Project

    Nos leemos!

    Angel “Java” Lopez
    http://www.ajlopez.com
    http://twitter.com/ajlopez

    Recent Comments

    Archives