Susan Bradley's blog

Apparently we now have third Tuesday patching day

Out today is

1. a rerelease of MS14-066 to Server 2012 and Server 2008 R2 to fix a cipher problem that was causing performance issues with Access/SQL, problems with Amazon load balancers.

2. and out of band patch for Kerberos – critical to domain controllers and especially 2008R2 and lower.  Attacker would have to have credentials on the domain first in order to exploit and gain admin rights.

So do you use RWA in your small business networks

Just an unofficial survey for myself.

Is RWW or RWA as important these days?  Or do you use RDgateway/RDP with RDS cals to provide anywhere access to your SMB networks?

Or is it via VPN?

What’s the process that you make sure that your clients can remotely access their network at any time?

Or are they all in the cloud already and don’t need access to an on premises server?

HyperV and Broadcoms

Okay so it all started with a new server.  One that I want to use as a test, so I’m putting an exact copy of my real server on it in order to do this test.  But obviously it cannot be on the same IP range as the real server.  So no problem, I’ll put in a virtual router in order to do this.  So I put in a Sophos virtual router in order to facilitate this.  http://fastvue.co/sophos/blog/how-to-deploy-sophos-utm-on-hyper-v-in-7-simple-steps/

Getting ready to do a dry run of my migration

And figured that it was also a good time to double check that I could recover from my backups.  So I parked a backup onto an external usb drive that was attached to my new HyperV host.  I shared out the usb drive to “everyone” in order to get it from the domain over to a workgroup host (note to self this should be ‘unshared’ from this methodology in order to protect from cryptolocker later on).  I went across the network from my SBS box to the usb attached hard drive on the HyperV host (workgroup mode not domain ergo why I had to d

October patch status report – 10 days past release

Issues we are still tracking:

****
KB30000061 is a kernel update:


KB3000061 fails to install on Server 2012:   Also impacting Windows 8.

Got a few hours to watch some videos?

Lots of great videos here on this page:

Derbycon 2014 Videos (Hacking Illustrated Series InfoSec Tutorial Videos):

http://www.irongeek.com/i.php?page=videos/derbycon4/mainlist

I highly recommend spending a few hours looking around the videos here!

 

 

Real patch pain metrics

Humor me please?

If you can recall a patch directly causing impact to your systems please email me directly – email susan-at-msmvps.com (change the -at- to @) with the KB number and what it impacted please?  I would love to put together a list of real patch pain, and not just perceived patch pain.

Fact:  There have been a lot of non security updates that are impacting our patching views.

(I’m looking at you Exchange)

Case in point:

Getting ready for a test run

Getting ready for a migration at the office from the 2008 R2 era HyperV to a 2012 R2 era hyperV

iphone 064

And as the server sounds like a jet engine taking off…

it always makes me laugh how small the drives are, and how big the unit it

Patches to keep an eye on:

KB30000061 is a kernel update:

KB3000061 fails to install on Server 2012:   Also impacting Windows 8.

Exchange updates

I install Exchange update rollups all by themselves and on 9/24 Exchange put the 2007 and 2010 update rollups on MU and WSUS.  Normally they don’t kick a reboot but this time it did.

While I have seen issues reported with the 2013 update especially in a mixed Exchange deployment with 2010, I have not seen issues with 2007 nor 2010.

Pages

Subscribe to RSS - Susan Bradley's blog