CSC IT

Time to Squish SQL Injection

Lazy Workers May Be Deemed Hackers

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

The Scale of Security

Hacker-Tool Law Still Does Little

Enterprise Intrusion Analysis, Part One

Responding to a Brute Force SSH Attack

Data Recovery on Linux and <i>ext3</i>

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

WiMax: Just Another Security Challenge?

News, Infocus, Columns, Vulnerabilities, Bugtraq ...

Microsoft has issued a Security Bulletin Advance Notification indicating that its February releases will contain nine bulletins. These bulletins will have the severity rating of critical and important and will be for Microsoft Windows, Internet Explorer, Microsoft Silverlight, Microsoft Server Software, Microsoft Office, and Microsoft .NET Framework. These bulletins are scheduled to be released on Tuesday, February 14, 2012.

US-CERT will provide additional information as it becomes available.

The NCSTATEAUTH eDirectory tree (aka ETSSAUTH) will be decommissioned (all servers turned off and surplussed). All services that use it for authentication must transition to another source. We are available to assist with any transition to WolfTech authentication.

The NCSTATEAUTH eDirectory tree (aka ETSSAUTH) currently provides authentication services for the mypack portal, SAS BI and UIA. We are not aware of others, but we will use log files after those services transition to other authentication sources to determine whether anything is still connecting.

We need for units that may have written applications or configured settings to use the NCSTATEAUTH tree to please check to see if their applications are still using it, and to let us know.

Microsoft plans to fix coding errors in Internet Explorer, .NET Silverlight and Microsoft Office.

Hugh Pickens writes "Bloomberg reports that the FBI has released a decades-old file it kept on Steve Jobs, the deceased Apple co-founder, after a background check for a possible appointment by former President George H. W. Bush conducting interviews with unnamed associates of Jobs to judge his character, drug use and potential prejudices. 'Several individuals questioned Mr. Jobs' honesty stating that Mr. Jobs will twist the truth and distort reality in order to achieve his goals,' according to the materials. Several people commented 'concerning past drug use on the part of Mr. Jobs,' according to the file including marijuana, hashish and LSD during the period 1970 – 1974. The file also noted that Jobs was not a member of the communist party."

Read more of this story at Slashdot.

mikejuk writes "The UK's National Museum of Computing has come up with a novel idea to raise funds for its new gallery for its rebuilt Colossus computer — you can sponsor a valve. All you have to do is buy a small area in a picture of Colossus (at £0.1 per pixel — min £10), upload a picture to occupy the space, set a URL and pay using PayPal."

Read more of this story at Slashdot.

--- FOLLOWUP POST: 2012-02-09 11:06:40 ---

**Please enroll all iOS devices again** with https://swm.oit.ncsu.edu:8443/enroll/

We applied the production Apple Push Certificate about 11:00 am today and confirmed enrollment is working as well as all push functions. OSX devices continue to work and are using secure communication.

--- FOLLOWUP POST: 2012-02-09 08:43:30 ---

***Please hold off on re-enrolling iOS devices*** Due to mis-communication with the vendor we have a working push certificate that can not be upgraded in the future. Will be applying the correct certificate after 9 am today 2/9/2012. Sorry for the confusion.

--- FOLLOWUP POST: 2012-02-08 14:21:02 ---

The over the air registration and push notification is now working in the Casper Enterprise Suite service. Removing certificates and keys from the database by force and manually replacing with new ones fixed the issue. **Please enroll all iOS devices again** https://swm.oit.ncsu.edu:8443/enroll/

--- FOLLOWUP POST: 2012-02-08 12:01:57 ---

Still working with vendor to resolve the issue where push notifications are not working.

--- FOLLOWUP POST: 2012-02-07 16:22:09 ---

We continue to work with the vendor to resolve the push notification issue. We are at second level escalation.

--- FOLLOWUP POST: 2012-02-07 12:53:39 ---

We continue to work to resolve the enrollment issue with iOS devices. Devices are enrolling but push notifications are not completing. We have escalated the issue with vendor.

--- ORIGINAL POST: 2012-02-06 18:09:50 ---

The iOS Enrollment feature is timing out installing the MDM Profile (Certificate installs fine). OIT is working with the vendor to resolve the issue. However we do not expect to have this working until we can remote with the vendor tomorrow 2-7-2012.

--- FOLLOWUP POST: 2012-02-09 10:54:28 ---

This work was completed as scheduled.

--- ORIGINAL POST: 2012-02-09 03:00:11 ---

Comtech will be moving some end user network connections in Jordan and Jordan Addition Telecom closets in Preparation for IPT Phase II. Overall building communications will not be affected. All work is scheduled to be completed by 7am.

The search giant is offering a series of gift cards worth up to $25 if you allow it to monitor the Web sites you visit and how you use them.

A hacking group calling itself Swagg Security claims to have breached network security and publicly released names, passwords, and other private data from the Apple supplier.

--- FOLLOWUP POST: 2012-02-09 08:06:28 ---

Network maintenance is complete.

--- ORIGINAL POST: 2012-02-09 03:00:11 ---

On Thursday, 2/09/12 from 6am - 8am, ComTech will be moving end user network connections and replacing switching equipment in Textiles telecom closets in preparation for IPT Phase II. Customers will experience rolling outages as part of this scheduled maintenance.

There's a war on the Web for your personal data, and Abine's newly updated Do Not Track Plus browser add-on hands you the Internet equivalent of a neutron bomb.