0

Cloud computing brings changes for IT security workers

Watch out, computer security professionals: Cloud computing vendors are coming for your jobs.It may be inevitable, or you may be able to take back control by rigorously studying how your organization uses technology. But either way, life is changing for IT security experts.Companies like Google and Amazon have figured out configuration management while enterprises avoid the process, said Marcus Ranum, chief security officer of Tenable.“That’s the reason why Amazon is going to have your jobs in 10 years. We are failing as an industry,” said Ranum, who spoke Wednesday at a meeting of the Information Systems Security Association, New England chapter.To read this article in full or to leave a comment, please click here

0

Microsoft Creates Hyper-V Containers

More love for Linux containers (but with less 'Linux')

0

Cloud Security Alliance: $10K Prize to Hack Our Gibson

Could Zero Cool crack a software-defined perimeter?

0

In a mock cyberattack, Deloitte teaches the whole business how to respond

A security breach or big data loss can trigger an emergency for the entire business, not just for the IT or security teams, so staffers from multiple departments must know how to react quickly and effectively in such situations.This was one of the main lessons taught in a cyber incident war-gaming exercise held for the media on Tuesday in New York by consulting firm Deloitte.Deloitte typically conducts such exercises on behalf of large organizations that want to prepare for when they are hit by a major computer breach. In Tuesday’s event, the participants were executives from various companies, many of whom had participated in such an exercise before.To read this article in full or to leave a comment, please click here

0

Reminder: Solarized for Better Terminals

I have used the “Solarized” colour scheme on my Mac for several years. This is:

… a sixteen color palette…designed for use with terminal and gui applications

If you spend a lot of time using the Terminal, this makes a huge difference. It gives me the right combination of colours to make sure everything is readable, and reduces eye-strain.

I’ve used it for so long that I’ve forgotten about it. It’s become “normal” for me.

PuTTY Defaults == Unusable

Recently I’ve been forced to use PuTTY on Windows. I’d forgotten how terrible the default colour scheme is, particularly when you’re using VIM, or doing an “ls” on a RHEL system. Check this screenshot:

The default LS_COLORS on a RHEL system, using PuTTY defaults, will displays directories in dark blue on a black background. Hopeless. I can’t read those directory names.

Solarized to the rescue

I downloaded the “Solarized Dark” registry file from here. Double-click that to merge the registry settings. You’ll then see a new PuTTY Saved session “Solarized Dark”:

Load that session. Save it as the Default Settings if you like. Add any other settings you need – e.g. username, SSH key. Add the hostname/IP, and connect. Now see how Continue reading

0

HP Moonshot – Stuff I Wish I’d Known

Yeah, it looks just like this.

I've been working with HP Moonshot for some months now. It's a neat box with a lot of interesting features. There are plenty of press releases and (possibly paid-for) "reviews" available out there, but not much frank commentary from actual end users, and that's disappointing.

What is it?
Briefly, Moonshot is a miniature blade enclosure. I'm sure there are marketing folks who would like me to use different terminology, but it boils down to servers, Ethernet switches and power all rolled into one box.

There are some key differentiators between this enclosure and some of its larger cousins:

Low Power - The whole package is tuned for high density and low power. There are no monstrously fast multi-socket servers available, but the density is amazing. With 8 cores per node and 180 nodes per chassis we're talking about 300+ cores per rack unit!

Less Redundancy - Unlike the C-class enclosures which sport redundant "Onboard Administrator" modules, Moonshot has a single "Chassis Manager". I do not view this as a problem for two reasons: First, Moonshot is mostly suited for massively horizontally scalable applications which should tolerate failure of a whole chassis. Second, failure of Continue reading

0

Dell’s Venue 10 7000 vs Microsoft Surface 3: Same price, different appeal

The Venue 10 7000 from Dell and the Surface 3 from Microsoft share a few things in common: they will ship in a few weeks, are marketed as tablets that can be used as laptops, and start at $499. But they offer different advantages.To determine which one provides better value, buyers must decide whether they’ll use the device mostly as a tablet or as a laptop. Here’s how the products stack up on features.Screen size and resolutionThe Dell Venue 10 7000 has a slight edge on resolution, while the Surface 3 provides more screen size. Dell’s tablet has a 10.5-inch screen that can display images at a 2560 x 1600-pixel resolution, while the Surface 3 has a 10.8-inch screen with a 1920 x 1280-pixel resolution. The Venue uses the emerging OLED technology, while the Surface 3’s more conventional screen is based on LCD technology.To read this article in full or to leave a comment, please click here

0

PQ Show 47 – VMKernel Bindings & iSCSI with Chris Wahl

Chris Wahl of WahlNetwork.com and co-author of Networking for VMware Administrators joins Ethan Banks for a discussion of when -- and when NOT -- to use VMkernel bindings when doing iSCSI plumbing between VMware hosts and storage arrays.

Author information

The post PQ Show 47 – VMKernel Bindings & iSCSI with Chris Wahl appeared first on Packet Pushers Podcast and was written by Ethan Banks.

0

Oracle bolsters Retail Cloud with new services

It’s been just over half a year since Oracle completed its US$5.3 billion acquisition of Micros, and on Wednesday the company added several new services to the retail-focused technologies it gained through that deal.Six new Oracle Retail cloud services, specifically, are now available by subscription, with the goal of helping retailers manage e-commerce, customer engagement, order management, order fulfillment, loss prevention and brand compliance.Oracle’s new Retail Brand Compliance Management cloud service, for instance, automates many of the operations required to grow and improve private-label merchandising operations. Retailers can use it to plan, track and manage merchandising activities, drop shipping and supplier relationships.To read this article in full or to leave a comment, please click here

0

Flaw in WordPress caching plug-in could affect over 1 million sites

A vulnerability in the popular WP Super Cache plug-in for WordPress could allow attackers to inject malicious scripts into websites. The scripts, when loaded by administrators, could trigger unauthorized actions.WordPress websites are a popular target for hackers and many of them are compromised due to plug-in vulnerabilities. Just on Tuesday, the FBI warned that attackers sympathetic to the extremist group ISIS -- also known as ISIL -- have defaced many websites by exploiting known vulnerabilities in WordPress plug-ins.The persistent cross-site scripting (XSS) flaw in WP Super Cache can be exploited by sending a specifically crafted query to a WordPress website with the plug-in installed, according to Marc-Alexandre Montpas, a senior vulnerability researcher at Web security firm Sucuri.To read this article in full or to leave a comment, please click here

0

Seven new hardware technologies for Windows 10 PCs

The arrival of Windows 10 later this year could usher in more convenient, fun and wire-free PC computing.Some new features that make for easier hardware handling are already available, but not yet in Windows PCs, which still make up the vast majority of desktop and laptop machines. For example, Apple's MacBook and Google's Chromebook Pixel have set the stage for USB Type C ports and its associated reversible cables to be used in Windows PCs later this year. Meanwhile, the new Windows Hello feature -- which will allow users to unlock a Windows 10 device by recognizing a face, iris or fingerprint -- could bring 3D cameras and more sensors to PCs.To read this article in full or to leave a comment, please click here

0

Microsoft creates a container for Windows

Hoping to build on the success of Docker-based Linux containers, Microsoft has developed a container technology to run on its Windows Server operating system.“We’re finding that interest in containers is very high,” said Mike Schutz, who runs cloud platform product marketing for Microsoft. Twenty percent of Azure users deploy Linux and a significant number of those users run Docker containers, he said.The Windows Server Container can be used to package an application so it can be easily moved across different servers. It uses a similar approach to Docker’s, in that all the containers running on a single server all share the same operating system kernel, making them smaller and more responsive than standard virtual machines.To read this article in full or to leave a comment, please click here

0

Intel courts China’s hardware startups to popularize its mobile, IoT chips

Erwin Liu is the CEO of a fledgling Chinese startup, and he’s been the happy recipient of free chips from Intel.“Whenever I went to Intel’s offices, they would always give us some free samples,” he said.Liu’s company, CEIN Biotechnology, which develops finger vein scanners, is just one among the many Chinese tech startups Intel is courting.In the battle for chip supremacy, the U.S. tech giant has been trying to dig deep into China’s hardware industry, and ensure that not just big vendors use its technology, but small emerging players too.On Wednesday, Intel held its annual developers conference in Shenzhen, China, at a time when rival ARM-based chips from Qualcomm and MediaTek have been all the rage.To read this article in full or to leave a comment, please click here

0

Network Zen: You Cant Change The Fact But You Might Change The Perception

  The mendicant was perplexed. This wasn’t unusual and, truth be told, the mendicant often didn’t understand everything and lived in a constant state of perplexedness. But this time, he was sure of the facts and knew that something was not right. He sighed and went to find the the Master. The Master was communing […]

The post Network Zen: You Cant Change The Fact But You Might Change The Perception appeared first on EtherealMind.

0

VPN Design discussion

In this post, I will give you a business requirements and information about the business of a fictitious company,together we will try to find an optimal solution for the given questions. There will be many valid solution as you will see from the comments, we will have to make tradeoffs between each design goals while… Read More »

The post VPN Design discussion appeared first on Network Design and Architecture.

0

Docker Tutorial 4 – More Run With a Couple of Extra Goodies

This is a casual Docker tutorial series. We started out first with very simple sessions on how to install Docker, the docker run command and had fun with volumes. In future videos we will hit more advanced topics.   In this fourth video … Continued

0

Stop making the NSA the bogeyman of privacy

Snowden is my hero, but here's the thing: the NSA is the least of our worries. Firstly, their attention is foreign, not domestic. Secondly, they are relatively uncorrupt. Our attention should be focused on the corrupt domestic law-enforcement agencies, like the ATF, DEA, and FBI.

0

Apple Watch reviews: Complete roundup

Like clockwork, the embargo on Apple Watch reviews ended on Wednesday morning, just two days ahead of when pre-orders of the device are scheduled to open up. Per usual, Apple sent review units to a few outlets who have now lifted the veil of secrecy from Apple's highly anticipated wearable. Below are a few of the more notable excerpts from the initial grouping of Apple Watch reviews.Nilay Patel of The Verge: Let's just get this out of the way: the Apple Watch, as I reviewed it for the past week and a half, is kind of slow. There's no getting around it, no way to talk about all of its interface ideas and obvious potential and hints of genius without noting that sometimes it stutters loading notifications. Sometimes pulling location information and data from your iPhone over Bluetooth and Wi-Fi takes a long time. Sometimes apps take forever to load, and sometimes third-party apps never really load at all. Sometimes it's just unresponsive for a few seconds while it thinks and then it comes back.To read this article in full or to leave a comment, please click here

0

Apple Watch Reviews: Complete Roundup

Like clockwork, the embargo on Apple Watch reviews ended on Wednesday morning, just two days ahead of when pre-orders of the device are scheduled to open up. Per usual, Apple sent review units to a few outlets who have now lifted the veil of secrecy from Apple's highly anticipated wearable. Below are a few of the more notable excerpts from the initial grouping of Apple Watch reviews.Nilay Patel of The Verge: Let’s just get this out of the way: the Apple Watch, as I reviewed it for the past week and a half, is kind of slow. There’s no getting around it, no way to talk about all of its interface ideas and obvious potential and hints of genius without noting that sometimes it stutters loading notifications. Sometimes pulling location information and data from your iPhone over Bluetooth and Wi-Fi takes a long time. Sometimes apps take forever to load, and sometimes third-party apps never really load at all. Sometimes it’s just unresponsive for a few seconds while it thinks and then it comes back.To read this article in full or to leave a comment, please click here

0

Google ordered by German authority to change privacy practices

A German data protection authority has ordered Google to change how it handles users’ private data in the country by the end of the year.The administrative order was issued on Wednesday by the Hamburg Commissioner for Data Protection and Freedom of Information, Johannes Caspar, in order to force Google to comply with German data protection law and give users more control over their data.Google started combining existing policies for various services when it changed its privacy policy in 2012, despite the concerns of European Union data protection authorities. At least six authorities then started formal investigations into the new policy; Hamburg was one of those six.To read this article in full or to leave a comment, please click here