FieldNote: Scanned firewall, found TCP ports open: 25, 80, 443
One time, I had a phone call from the ISP for the company I was working at and they said they did a firewall scan without notifying us. Ok, thanks for that, but next time, be honest and let us know when you are going to perform a penetration test and we’ll be happy to
Security breach by known bad actor group
Another scary post on Halloween. Scary that is, if you're not following security best practices. This bad actor group exposes a timing issue with O365 safe links. They create a certificate for a site, that looks ligament, and then exploit it as quickly as they can. For example: Securemail.contoso.com. Since the cert is valid and
No longer expire your passwords
The world is always changing and the password expiring value is one that recently was updated. Microsoft has updated the stance around expiring passwords: https://blogs.technet.microsoft.com/secguide/2019/05/23/security-baseline-final-for-windows-10-v1903-and-windows-server-v1903/ The short answer is, only the expiring portion of the password policy is being discussed. You way want to still expire passwords, but with technologies like Windows Hello, the world
Does Exchange Server 2016 or 2013 allow the use of the Windows Server 2016 cluster CLOUD WITNESS feature?
https://docs.microsoft.com/en-us/windows-server/failover-clustering/deploy-cloud-witness No, neither version supports the cloud witness option. However, Exchange Server does fully support an Exchange File Share Witness server in Azure. If you choose this option, you’ll need a writable Domain Controller and a Windows Server to host up the File Share Witness directory. The reason for a Windows Server for the FSW,
FieldNote: Palm pilot double side taped to server
An IT staff member found a Palm Pilot stuck to the underside of a server. It was held there with double sided tape and had a cord running out of the device. The engineer followed the cord, found out it was plugged into the core network switch in the data center. It was packet sniffing network traffic that was
EXO is safe
With the recent security updates released for all versions of Exchange: Exchange Server 2019 Cumulative Update 1 (KB4471391), VLSC Download Exchange Server 2016 Cumulative Update 12 (KB4471392), Download, UM Lang Packs Exchange Server 2013 Cumulative Update 22 (KB4345836), Download, UM Lang Packs Exchange Server 2010 Service Pack 3 Update Rollup 26 (KB4487052), Download, also available on Microsoft Update The question comes
Exchange server quarter updates posted early
While the Exchange product group does try and release every 3rd month (March, June, September, December) and 3rd week of that month for quarterly updates, with the chatter about a possible security vulnerability, the Exchange PG is releasing these security fixes for all currently supported Exchange versions as noted on the eHelo blog page. There
FieldNote: Secure password in file?
Sometimes you must store a password for an account in a PowerShell script file. One option is to leverage the ConvertTo-SecureStringcmdlet. By running this cmdlet on a machine, with a specific password, a secure string is generated. You put that value into your file, and then you can run a ConvertFrom-SecureSting to run the script securely. However, I