Sopho: Patch your firewalls – zero day runs wild

Over the weekend, Sophos announce it had released a hotfix for Sophos XG firewalls. This hotfix patched an SQL injection attack which allowed attackers to download payloads to the device.

It looks like the hashed usernames and passwords have been stolen from the XG devices. This means all XG owners should reset the passwords for administration and any local VPN users as well.

It appears the attack was done either on the admin portal (port 4444) or the user portal (port 443). Normally the administration portal is closed on the WAN, however, it is normal practice to have the user portal exposed on the WAN.

If your firewall has been compromised, Sophos recommends these steps

  1. Reset device administrator accounts
  2. Reboot the XG device(s)
  3. Reset passwords for all local user accounts
  4. Although the passwords were hashed, it is recommended that passwords are reset for any accounts where the XG credentials might have been reused

We are awaiting further information from Sophos.

dpkg-divert: error: rename involves overwriting

When upgrading from Ubuntu 16.04 to 18.04 LTS you may recieve this error. Use the following command to manually move the file

sudo mv /usr/share/dbus-1/system-services/org.freedesktop.systemd1.service /usr/share/dbus-1/system-services/org.freedesktop.systemd1.service.bak

Now run the upgrade process again

sudo apt upgrade

If this does not work, try

sudo apt -f upgrade

Teams – new features for April 2020

Microsoft is about to roll out new features for Teams.

You likely saw last week that Microsoft introduced new backgrounds for meetings, likely to combat Zoom’s popularity. Microsoft really needs to add more than 4 people on screen at one time, but we hear this is coming soon.

New features coming this April:

  • Raise hands in meetings – I hope this extends to live events so we can have more than one person on screen able to grab control
  • Multi-chat window
  • End meeting for all participants – this has just been release
  • More settings for organizers once a meeting is in progress
  • Downloading of a participant report once a meeting has finished
  • New policy to enforce lobby settings for external users
  • New policies around creating and joining meetings. You will be able to stop everyone being able to create meetings. If the user does not have the create meeting option, when they join meetings the meeting will not start until someone with this privilege joins

And finally coming for May 2020 we have more than 4 people on video within a Teams meeting.

Full details:

We are increasing the number of participants who can be viewed simultaneously on the Teams meeting stage from 4 to 9. This new experience optimizes for attendees who have enabled video and places the remaining audio-only participants below the meeting stage. To provide a high audio and video quality experience, the layout logic will consider user bandwidth and alter the number of videos shown to provide the best meeting experience. We’ll be gradually rolling this out to customers near the end of April and expect the rollout to be completed in early May.

DrivePool – Alternative to Storage Spaces

As you all probably know, I’ve had a lot of problems with storage spaces. Many of these issues are from not knowing how to correctly configure storage spaces. Specific settings need to be enabled in order to get the most out of your array. The wrong setting can heavily impact your read/write speed, which is what many of the comments have been about. It struck me that there had to be a better application for doing this. This is where we come to DrivePool (This isn’t sponsored – I just love this application).

I have a simple media server at home. I wanted a way to combine disks without using a full-on approach like storage spaces. I did quite a bit of research where I came across and tested a great tool called DrivePool.

DrivePool

DrivePool allows you to configure spare disks on your system to create a redundant storage pool. It’s very flexible.

All my disks were formatted with NTFS. Some of the disk even had existing data on them. That’s actually fine (not recommended, but fine non the less). There are a number of different options to use. For example, I can say that my d:\downloads folder is not duplicated for redundancy, but other folders are. You can set how to balance the disks etc.

The application is very flexible.

What you get is a pool created out of your existing disks that don’t have to be formatted, which can have mixed file systems (NTFS with ReFS).

I am very impressed by this program and highly recommend it. I have purchased a license – it is very affordable. Find out more at https://stablebit.com/