Resources

Just when you thought it was safe to move along to other technical topics, along comes Scott Quimby’s Hardening Active Directory Part III to scare you even more.  If you haven’t watched Part I and Part II, you can find them here. In Part III we will do a little review of some core topics […]

We harp on the fact that if you have *ANY* VPN, or remote access capabilities into your district, you *MUST* use a commercial SSL certificate and not a self-signed SSL – no exceptions. However, an area of growing frustration is that many current browsers are starting to give warnings about whether or not you should […]

Hopefully for most of you, this is old news, but I know how busy everyone gets, especially this time of year with the end of school coming upon us.   So, in case you missed it Microsoft RDP has been back in the news again as the source in yet another serious vulnerability – dubbed BlueKeep […]

I was recently reading a security study that said that 25% of applications are unpatched for an entire year!  As you approach the summer remember that you need to patch not only the operating system but also all your applications. Many of our biggest threats are application based: Adobe Flash Oracle Java Adobe Reader (PDFs) […]

Now that we have shifted to predominantly remote workers and remote teaching and learning, we have a number of new challenges as well as increased threats. Challenge #1 – Remote File Access.   The solution is moving files from traditional home directories and traditional common drives to cloud-based shared folders and home directories.

This tidbit is part three in a series on understanding some mechanisms available to you for protecting e-mail sent from your domain.   We covered this topic in last month’s Tech Talk / SYSOP meetings but for all those that missed them or those that want a refresher, I am covering this again here in this […]

This tidbit is part two in a series on understanding some mechanisms available to you for protecting e-mail sent from your domain. We covered this topic in last month’s Tech Talk / SYSOP meetings but for all those that missed them or those that want a refresher, I am covering this again here in this […]

Bob and I have discussed over and over the need for improved public wireless configuration.   Some of you have gotten the message.  Sadly many have not.  As we approach the summer, let’s get this fixed once and for all. Here are a few design changes many of you need to implement: If your endpoints in […]

Do you know how secure you are from the outside world?  Maybe you’re new and inherited a network, or there has been so much churn over the years with servers being added and retired and software previously available in-house now being hosted?   Maybe you have just lost track of patching? Regardless of the reason, a […]

I have been watching the Cisco AMP and Paladin CyberSentinel Managed Endpoint Detect & Respond consoles for a number of clients of late.  One thing is extremely apparent. Your administrators are under constant attack from emails with fake invoices, as well as Microsoft Word and Excel documents – all of which are infected.