Sopho: Patch your firewalls – zero day runs wild

Over the weekend, Sophos announce it had released a hotfix for Sophos XG firewalls. This hotfix patched an SQL injection attack which allowed attackers to download payloads to the device.

It looks like the hashed usernames and passwords have been stolen from the XG devices. This means all XG owners should reset the passwords for administration and any local VPN users as well.

It appears the attack was done either on the admin portal (port 4444) or the user portal (port 443). Normally the administration portal is closed on the WAN, however, it is normal practice to have the user portal exposed on the WAN.

If your firewall has been compromised, Sophos recommends these steps

  1. Reset device administrator accounts
  2. Reboot the XG device(s)
  3. Reset passwords for all local user accounts
  4. Although the passwords were hashed, it is recommended that passwords are reset for any accounts where the XG credentials might have been reused

We are awaiting further information from Sophos.

Microsoft Server 2008 Foundation

Microsoft Foundation Server 2008

Microsoft have released a new operating system designed for the small business. Wait, don’t we already have one of those?

Microsoft Server 2008 Foundation is aimed at businesses with 15 employees or less. It’s an OEM product that only comes with new machines sold by either Dell or HP (at time of writing). Another thing to note are the artificial limitations placed on the OS.

  • 15 users maximum
  • Limited to 8gb of memory
  • Visualization disabled

At the same time it does have one benefit. It’s a very cheap Terminal Server.

The OS is upgradable to other versions of server 2008, but what is the point? I can guarentee that by the time this happens, the hardware will be out of date, or the hardware simply won’t be able to be upgraded significantly to improve the performance of the server with the upgraded operating system.

The biggest problem with Foundation is its lack of Exchange. What business operates without email these days?

I love Microsoft products, but this sounds like a knee jerk reaction to a slow uptake on Windows 2008 Small Business Server and will ultimately fail. Watch this space…

Lets just hope this is an April Fools joke.

New Zealand Blackout (Section 92 Copyright Act)

New Zealand's new Copyright Law presumes 'Guilt Upon Accusation' and will Cut Off Internet Connections without a trial. Join the black out protest against it!Support your fellow New Zealander and help get rid of this stupid law which comes in to effect later this month. Section 92 gives copyright holders the power to accuse people of copyright infringement without any proof! This law needs to be repelled.

Section 92 of the Copyright Amendment Act assumes Guilt Upon Accusation and forces the termination of internet connections and websites without evidence, without a fair trial, and without punishment for any false accusations of copyright infringement. We should speak out against injustices like Guilt Upon Accusation being done in the name of artists and protecting creativity.

http://creativefreedom.org.nz/blackout.html

Windows 7 maye be free…

In a statement to Betanews this afternoon, a Microsoft spokesperson refrained from explicitly denying that it would offer Windows 7 as a free upgrade to some Vista owners.

“Microsoft often explores options with our partners to determine product offerings,” the Microsoft spokesperson told Betanews. “We are not announcing anything new at this time.”

It would certianly be a good move since I’d expect the adoption of Windows 7 will be very slow.

Source

Google Sync made possible through patent license with Microsoft

As it turns out, Google did not develop a calendar and contacts synchronization platform all on its own. Rather, it licensed Exchange Server patents from Microsoft, in a deal that company is describing today as an “open” license

This is very important.  Microsoft is now sharing protocols.  Interesting to see what happens next.

Source