So, I went to login to my #HomeLab vCenter this morning and I was presented with this *LOVELY* error message: There was no way around this one. No option to pass go, accept the risk and just continue. After going through Browser Bingo and getting the same error (vCenter implements HSTS which prevents bypassing things […]
Category: Security
All things Security
So, I’ve started a new job back in the IT career field and I couldn’t be happier. I’m able to do things related to my expertise again. One of the challenges in my job has been a community-wide lack of #MFA in our network environments. I won’t discuss which community, because it will start a […]
So, this is a topic that has hit me a couple of times, mostly because it’s just not something you do very often. With my brand new PA-440 firewall, I wanted to install certificates that are signed by my internal network certificate authority. It makes it much cleaner when connecting so I don’t get any […]
In this final segment, I’m going to share my firewall settings that allow my #3CX system to function for both internal phones and external mobile users. This has been enjoyable discovering since I wasn’t able to find any other 3CX users using a Palo Alto firewall (probably because if they are using a Palo Alto, […]
If you have ever spent much time working with the Ubiquity UDM Pro, you will find that it is a great device for many things (network controller, video and phone controller, etc.). However, it’s not the best firewall if you are going to do some advanced rulesets or want to have that extra peace of […]
Categories
Apache Log4j Critical Vulnerability
On 9 December, 2021, a Proof-of-Concept (PoC) exploit was published highlighting a Remote Code Execution (RCE) critical vulnerability in the Apache Log4j library. Log4j is a popular Java library that can be found in many applications and services found throughout the Internet. Some of the more popular products that leverage this are: Minecraft: Java Edition […]
Microsoft is advising system admins to update any systems that have PowerShell 7.0 or 7.1 installed due to another vulnerability that has been identified. Details on what the issues are can be found here and here. Versions 7.0.8 and 7.1.5 were released this past week that fix the two vulnerabilities. Here is the downside: The […]
So we all know the pain that is keeping multiple systems patched and updated throughout the month. If you have the *pleasure* of having to do that manually, then I may have a possible solution for you. Ansible is an Open Source project overseen by RedHat and the basic tooling is available for free. Originally […]
So one of the nice little surprises after upgrading my desktop to Windows 10 20H2 (Fall 2020 Build) was the addition of a native OpenSSH client in PowerShell. I need to do some testing with all of my use cases, but I may be able to do away with the venerable PuTTY that has been […]
So there I was looking for which accounts I created on my test VMs. Because, of course, I didn’t use the same account name on all of the test clients. That would have made too much sense. With some of the changes to Windows 10 20H2 that I’ll talk about in another posting, I thought […]