Archive

Category Archives for "Networking"

Security ‘net: Internet of Things and iPhones edition

One of my college professors has suggested that the question of whether or not Apple should help the FBI break the encryption on the iPhone used by a terrorist is an ideal diagnostic question for your view of all things privacy. There are, of course, gray area answers, like “Apple should help the FBI break the encryption in this case, but not others.” The problem is, of course, that this isn’t the simple answer it might seem. First, there are motives behind the apparent motives. Many people see Apple as just “doing what’s right to save the world.” I don’t see it that way at all. Given I’m a bit cynical (who would have guessed), I see two motives from Apple’s point of view.

First, Apple is trying to protect a marketing stance. They’ve as much as admitted this in court documents and the implied threat of suing the U.S. Government for loss of revenue if they’re forced to build a version of their O/S that will allow the FBI to break the encryption. Just Security notes—

There are other interests at stake here too. Apple has a liberty interest in not being dragooned into writing forensic Continue reading

FTC: Imposter scams, identity theft, and debt collection top consumer grumbles

The Federal Trade Commission found few surprises in its annual summary of consumer complaints – offensive debt collection activities, identity theft, and imposter scams were the main offenders in 2015. Imposter scams have been in the news of late because the Internal Revenue Service issued a report in January that said that aggressive and threatening phone calls by criminals impersonating IRS agents continues to plague taxpayers. The Treasury Inspector General for Tax Administration in January said it has received reports of roughly 896,000 contacts since October 2013 and have become aware of over 5,000 victims who have collectively paid over $26.5 million as a result of the scam. The IRS also noted recently that there has been a 400% surge in phishing and malware incidents in this tax season alone.To read this article in full or to leave a comment, please click here

Cisco enters storage, hyperconvergence market with data center splash

SAN DIEGO – Cisco this week is throwing its hat into the hyperconvergence and software-defined storage ring with a system co-developed with software company SpringPath. Cisco is also rolling out at its Cisco Partner Summit here a new generation of Nexus 9000 data center switches featuring 25G/50G Ethernet based on custom ASICs. The new products dovetail with Cisco’s acquisition today of CliQr, a maker of “application-defined” hybrid cloud orchestration software for deploying and managing applications across bare metal, virtualized and container environments.To read this article in full or to leave a comment, please click here

Slacking Off

A Candlestick Phone (image courtesy of WIkipedia)

A Candlestick Phone (image courtesy of WIkipedia)

There’s a great piece today on how Slack is causing disruption in people’s work habits. Slack is a program that has dedicated itself to getting rid of email, yet we now find ourselves mired in Slack team after Slack team. I believe the real issue isn’t with Slack but instead with the way that our brains are wired to handle communication.

Interrupt Driven

People get interrupted all the time. It’s a fact of life if you work in business, not just IT. Even if you have your head down typing away at a keyboard and you’ve closed out all other forms of distraction, a pop up from an email or a ringing or vibrating phone will jar your concentration out of the groove and force your brain to deal with this new intruder into your solitude.

That’s evolution working against you. When we were hunters and gatherers our brain had to learn how to deal with external threats when we were focused on a task like stalking a mammoth or looking for sprouts on the forest floor. Our eyes are even developed to take advantage of this. Your peripheral vision will pick up Continue reading

Cisco flexes some data center muscle at Partner Summit 2016

Cisco’s reseller event, Partner Summit, kicked off this week in San Diego. The event is normally a big one for Cisco as thousands of its resellers gather to be updated on the latest, greatest plans for Cisco. All eyes are on Chuck Robbins as this is the first Partner Summit held under his watch as the company’s CEO. The event kicks off today and has already seen Cisco make a couple of significant announcements in the data center.This morning Cisco announced its intention to acquired Silicon Valley based, CliQr Technologies for $260 million. The 105-person company provides application centric cloud orchestration that enables customers to model, deploy and manage across bare metal, virtual and container environments regardless of whether the infrastructure is on premise or in a private or public cloud. The technology will be used to help Cisco customers move to a seamless hybrid cloud model where the information can be moved between clouds, and resources can be provisioned across clouds. CliQr’s technology is already tightly integrated into a number of Cisco data center products including ACI (Application Centric Infrastructure) and Unified Computing System (UCS).  To read this article in full or to leave a comment, please Continue reading

Cisco flexes some data center muscle at Partner Summit 2016

Cisco’s reseller event, Partner Summit, kicked off this week in San Diego. The event is normally a big one for Cisco as thousands of its resellers gather to be updated on the latest, greatest plans for Cisco. All eyes are on Chuck Robbins as this is the first Partner Summit held under his watch as the company’s CEO. The event kicks off today and has already seen Cisco make a couple of significant announcements in the data center.This morning Cisco announced its intention to acquired Silicon Valley based, CliQr Technologies for $260 million. The 105-person company provides application centric cloud orchestration that enables customers to model, deploy and manage across bare metal, virtual and container environments regardless of whether the infrastructure is on premise or in a private or public cloud. The technology will be used to help Cisco customers move to a seamless hybrid cloud model where the information can be moved between clouds, and resources can be provisioned across clouds. CliQr’s technology is already tightly integrated into a number of Cisco data center products including ACI (Application Centric Infrastructure) and Unified Computing System (UCS).  To read this article in full or to leave a comment, please Continue reading

Fibre Channel is still alive and kicking

In 1897 the great American author, Mark Twain was rumored to have stated, “the reports of my death are greatly exaggerated”. In the tech industry, Fibre Channel could make the same statement. It seems that for years, the death of Fibre Channel has been speculated, as Fibre Channel over Ethernet (FCoE) or even IP networks would be the death knell for the more traditional storage protocol.However, Fibre Channel is still alive and kicking. It’s certainly not the high growth market it once was but the market has maintained about a $2 billion run rate over the past few years. The big driver for the continued investment has been the rise of flash-based storage. The value proposition of flash is speed so it makes sense to deploy a storage network that is as fast as possible.To read this article in full or to leave a comment, please click here

Staying afloat: the DROWN Attack and CloudFlare

CloudFlare customers are automatically protected against the recently disclosed DROWN Attack. We do not have SSLv2 enabled on our servers.

We publish our SSL configuration here so that others can use it. We currently accept TLS 1.0, 1.1 and 1.2.

We are proactively testing our customers' origin web servers to detect vulnerable servers and will be reaching out to any that have a server that is vulnerable to DROWN.

In the interim, ensure that SSLv2 is fully disabled and/or that private keys are not shared with servers that still need to have SSLv2.

Microsoft unveils Windows 10 feature to stymie advanced hack attacks

Microsoft wants to help protect companies from hack attacks, and it's introducing a new Windows 10 feature soon to improve the operating system's security capabilities.Windows Defender Advanced Threat Protection is aimed at helping businesses deal with serious threats by using machine learning to protect Windows 10 devices. The feature builds a profile of how a computer behaves, and then alerts IT managers if it starts acting in a way that's indicative of a security breach. If the system detects an attack, it will provide administrators with recommended steps to remediate it.That's supposed to help IT managers sleep a bit better at night when facing threats powered by undisclosed "zero-day" vulnerabilities, along with social engineering attacks that take advantage of users making mistakes.To read this article in full or to leave a comment, please click here

Hot security products at RSA 2016

bugBlast Next-gen AppSec PlatformKey features – bugBlast correlates results from vulnerability testing tools with real-time threat intel for a single view of an application’s security; can massively scale to test mega-apps for software, Web and mobile. More info.To read this article in full or to leave a comment, please click here

Does your Wave2 AP need NBase-T?

Cisco recently launched the 2800 and 3800 series 802.11ac wave-2 access points. The 3800 Datasheet quotes a theoretical maximum throughput of 5.2Gbps when operating in Dual 5GHz radio mode (2 x 2.6Gbps). If you ran two cables to your AP you could use the second ethernet port to create a 2 x 1Gbps LAG. However there is still some debate about whether 2Gbps of throughput is sufficient for a single-radio Wave2 AP.
Some companies may not be willing to invest the time and expense to swap out their copper for fiber or run yet more copper to their APs. The NBase-T standard 802.3bz provides an alternative approach, promising speeds of 2.5Gbps or 5Gbps over Cat5e cabling over 100 Meter runs.

Peter Jones from Cisco is the chair of the NBase-T alliance and presented to us in Tech field day on the new 802.3bz standard and the technology behind it. Cisco terminology for NBase-T-like functionality is ‘MultiGigabit Ethernet’. Currently the Cisco Catalyst 2k, 3K, and 4K switching line have specific models or line cards which support a number of combined UPoE/MultiGig ports. The reason for new hardware is that new digital signal processors (DSPs) are required to achieve the 2.5Gbps Continue reading

1 2,801 2,802 2,803 2,804 2,805 3,484