Docker Security Cheat Sheet https://ift.tt/2tgi15r Docker Security Cheat Sheet Introduction Docker is the most popular containerization technology. Upon proper use, it can increase the level of security (in comparison to running applications directly on the host). On the other hand, some misconfigurations can lead to downgrade the level of security or even introduce new vulnerabilities. […]
Hybrid Exchange in Azure: Notes from the field https://ift.tt/3eiQsOA Having an Exchange Hybrid Management server is still an official requirement from Microsoft to support organizations using Exchange Online with identities managed by the on-prem Active directory. So, if you are moving your entire “legacy” datacenter to Azure, it means having your Hybrid Exchange in Azure […]
Create Your Own Certificate Authority (CA) for Homelab Environment https://ift.tt/3q6to7V I use my own Root CA to manage certificates in the homelab environment. Create a Root CA Certificate Generate a Root CA that is valid for 10 years: $ openssl req -newkey rsa:2048 -keyout homelab-ca.key -nodes -x509 -days 3650 -out homelab-ca.crt Verify X509v3 extensions: $ […]
Tip: PSSysadminToolkit; PowerShell Scripts for Administrators https://ift.tt/3kggUsQ [German]Small tip for administrators of Windows systems in corporate environments. Steviecoaster has published a collection of PowerShell scripts on Github that administrators can use to determine certain information very easily. The PSSysadminToolkit can be found on this GitHub page for free download. I became aware of the collection […]
Windows Server 2019: Intel RSC support for NICs disabled in Hyper-V, storage stacks writes operations as write-throughs https://ift.tt/3cbsWBW [German]Another small piece of information for administrators of a Hyper-V cluster under Windows Server 2019. It looks like Intel has disabled RSC support for all NICs on the driver side as of release 1903. In addition, storage […]
Manage Windows Servers with Ansible https://ift.tt/32PkDWV This is a follow-up to the previous post about automating Windows Server setup with unattended install. Ansible can manage Windows versions under current support from Microsoft. Unlike Linux hosts that use SSH by default, Windows hosts are configured with WinRM. WinRM Configuration When connecting to a Windows server, there […]
True Bitlocker one-time key with Intune https://ift.tt/3iDfF4Q Intune and Windows 10 supports automatic key rollover when a key has been used to unlock or recover a drive. This means the key in Azure AD will be automatically replaced with a new key after a successful recovery key usage. This is driven by the client and […]
Microsoft specifies patching of the Netlogon vulnerability (CVE-2020-1472) https://ift.tt/2HEuqax [German]Microsoft has revised and clarified its guidance on how to close the Netlogon vulnerability in Windows Server installations that act as domain controllers. This is in response to feedback from users who were confused by previous support posts. The vulnerability, updates and uncertainties I had reported […]
Red Hat and CentOS systems aren’t booting due to BootHole patches https://ift.tt/2BMHiZL Enlarge / Security updates intended to patch the BootHole UEFI vulnerability are rendering some Linux systems unable to boot at all. Early this morning, an urgent bug showed up at Red Hat’s bugzilla bug tracker—a user discovered that the RHSA_2020:3216 grub2 security update […]
Critical SAP Bug Allows Full Enterprise System Takeover https://ift.tt/3frh9OP The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter. […]
Stack IT News 