Security

Microsoft Internet Explorer Popularity vote

Mar 1st

Those of you who follow the news may be aware of minor but major changes to Microsoft Internet Explorer.

All Windows 7, Vista and XP users who currently use internet explorer will be offered a choice as part of the deal Microsoft reached with European Commission.

Microsoft IE sits awaiting the worlds judgment, like the American high school cheerleader who’s inexplicable popularity is for the first time being put to the test, as the not so popular kids elect a new leader.

A pop-up window will prompt people to choose and install one of 12 different browsers or let them stick with Microsoft’s Internet Explorer.

Kraya recommends users choose anything but Internet explorer. Users are able to select any browser of their own choosing however we would strongly recommend users pick from our top picks:

Mozilla Firefox http://www.mozilla.com/firefox/

Opera http://www.opera.com/

Google Chrome http://www.google.com/chrome

Apple Safari http://www.apple.com/safari/

The big question is will the Anti-trust agreement and the fines totaling 1.68bn euros ($2.44bn, £1.5bn) that have been imposed by the EU on Microsoft make any difference? Take a look at the BBC graphic below, IE has a massive dominance in the browser market in the main due to the sheer ambivalence and ignorance of its users, no one (or very few) choose to use IE it was the default, what they had to use and by the point they had learned that there might be a choose out there with had learned IE, so stuck with it not because it was superior but because its what they know.

Browser market share

Firefox has for some time been catching on IE but it still has a long way to go. Its progress has been at lest in part due to its superiority as a browser over IE. However recent updates have left Firefox slower and buggier than ever before. For a browser that has never been advertised in main stream media, unlike Google Chrome, its rise to control a quarter of the browser market has been purely viral.

Google on the other hand has in anticipation of today’s changes embarked on a massive advertising campaign to push Chrome and gain even more control over the Internet, only time will tell just how successful Google ad spending has made it. The question now is will it be money well spent, or will Google find itself the next target of the EU competition and anti-trust regulators?

Only time will tell as is the case of Microsoft, I for one will be eagerly waiting updated browser market share statistics, as I’m sure Mr Gates will be. However I cant help but feel that we have in no way seen the beginning of the end of IE, undoubtedly its share will slip, I just don’t think the EUs Settlement can break what are now years of ingrained habit and apathy.
Further information:

http://news.bbc.co.uk/1/hi/technology/8537763.stm

7, anti, Apple, browers, browser, choice, Chrome, competition, deal, different, dominance, E, EU, European Commission, fines, Firefox, Google, I, IE, install, Internet Explorer, Kraya, micro, Microsoft, Microsoft Internet Explorer, Mozilla, offered, Opera, pop-up, recommend, regulators, Safari, settlement, trust, update, Updates, Vista, window, Windows, XP

Adobe update – excessive traffic to ardownload.adobe.com

Dec 16th

Posted by stephen in Rants

No comments

Adobe has not been without its problems of late, and whilst there have been security issues that could have lead to losses, so far none of our clients have suffered financially from Adobe’s failings. Until now that is.

One of our Clients had their ADSL cut off this week as they had exceeded the usage policy. Why? Adobe Update Manager on one Windows XP PC had decided to download over 70GB of data over the course of a 7 day period. It would appear that it was getting itself in a loop and just kept trying to update continuously, 70GB worth of continuously.

The Adobe website serves the update MSI binary files as content type Text/Plain, the Adobe Update client has a very short timeout and immediately opens another connection to re-start the download. Hence if there is a slow connection or the caching server does not return the whole file in a timely manner the Adobe Update client enters the infinite loop of retries, causing the excessive bandwidth consumption witnessed here.

There are several forum threads including on Adobe’s own site http://forums.adobe.com/thread/392129 all linking this issue to a conflict between and old version of WebMarshall and Adobe updater; however our machines do not use WebMarshall and we do not have it installed anywhere on our networks.

We do however use Squid caching on our CentOS 5 servers. The server in this instance seems to be fulfilling the requests on each occasion in a timely manner – the issue is that each time Adobe updater passes a URL it is different in key areas, which Squid interprets as a separate request. This is not abnormal and we have seen this before when we have tried to configure squid to cache Windows updates. However rather than enter a loop of requests, Windows updates simply fail. Other automatic updaters work well with caching systems and indeed most ISPs are now implementing different forms of web caching on their own networks. Dose this mean the Adobe issue is affecting them in the same way?

The issue seems to only affect PCs (or at least we have seen no affected Mac users as yet), and it also seems to affect most Adobe products.

For now Adobe and the ISPs have remained quiet on the issue, however we have 3 other clients (and my own home ADSL ) who cannot update Adobe at all, access to ardownload.adobe.com appears to have been blocked by the ISP. Quite when the Adobe update issue will be resolved is unknown; however we have also taken the decision to block access to ardownload.adobe.com from all of our networks, for the moment.

Richard, one of our Systems Admin Team has published a more detailed account of the technicalities involved here: http://richard.blog.kraya.co.uk/2009/12/16/a-big-adobe-problem/

abnormal, Adobe, Adobe products, Adobe update, Adobe Update client, Adobe Update manager, adobe updater, Adobe website, Adobe’s, ADSL, Apple, ardownload.adobe.com, automatic, bandwidth, bandwidth consumption, block, blocked, cache, caching, caching system, CentOS, CentOS 5, CentOS 5 servers, Clients, Computer, configure squid, conflict, connection, continuously, Cut off, data, download, exceeded, excessive, excessive bandwidth consumption, fail, failings, financially, fix resolve, GB, immediately, infinite loop, ISP, IT, Kraya, KrayaTec, loop, loop of requests, Mac, MSI binary files, PC, problems, resolved, retries, security issues, Server, serves, slow, Squid, Squid caching, Stephen, Stephen ramsay, suffered, support, timeout, to ardownload.adobe.com, traffic, update, update Adobe, update continuously, update MSI binary files, updater, updaters, Updates, URL, usage, users, web caching, Web Marshall, WebMarshall, Windows, Windows updates, XP

Day Spa Photos and Video

Nov 5th

Posted by stephen in Kraya

When I meet new and existing clients one thing that always gets a Laugh is the Krayatec Day Spa. Everyone not only finds the whole description rather amusing, they love the effects it has on their PC’s.

You can read more about it here http://stephen.blog.kraya.co.uk/2009/03/13/computer-day-spa/ but one thing everyone wants to know is how dirty as the inside of my computer and whats the worst that you have seen. So attached below are some photos and videos, not of the worst we have every seen but of a some examples of an old dirty PC.

You Shouldn’t look if your easily disgusted!

A PC Being cleaned as part of the Krayatec DaySpa http://stephen.blog.kraya.co.uk/2009/03/13/computer-day-spa/

Warning the Videos bellow are worse and sorry about the mobile phone quality

httpv://www.youtube.com/watch?v=HOnTvEltTV8

httpv://www.youtube.com/watch?v=S7o-sGcCdDQ

kraya krayatec dayspa computer cleaning clean dirty dust pc compressor air dirt stephen ramsay, photo, video

Security Alert – Re Fradulant Emails

Oct 20th

Posted by stephen in Kraya

Further to a few enquires we have received today, you may have received an email similar to the one attached. Please note that it is what we call a phishing scam.

The email is a fraud and should be disregarded. It is an attempt to confuse you into visiting a fraudulent site and reveling your login details. We see these all the time, claiming to be from all kind of companies, with lots of different slants, but fundamentally they are just trying to get you to supply personal login information so that they may take over your accounts.

Please be very careful when you receive email like this! Do not click on any links unless you are certain it has come from a reputable source. The Antivirus and SPAM scanners we use are good but they can never be 100%. Rather than click on a link in an email open a web page and type in the address yourself just because it says Click here to visit Bank of Scotland Secure (www.bankofscotland.co.uk) doesn’t mean thats where the link sends you!

If you have any questions please just call us, or forward the email to us for an option.

Ps Any emails regarding changes to the email system would come from me personally.

____________________________________________________________________________________
FRAUDULENT EMAIL BELOW, Replace YOURDOMAIN.COM with your own Domain!
____________________________________________________________________________________

From: robot@YOURDOMAIN.COM [mailto:robot@YOURDOMAIN.COM]
Sent: Monday, October 19, 2009 11:42 PM
To: admin@YOURDOMAIN.COM
Subject: The settings for the admin@YOURDOMAIN.COM mailbox were changed

Dear user of the YOURDOMAIN.COM mailing service!

We are informing you that because of the security upgrade of the mailing service your mailbox (admin@YOURDOMAIN.COM ) settings were changed. In order to apply the new set of settings click on the following link:

MailScanner has detected a possible fraud attempt from ” YOURDOMAIN.COM ” claiming to be http:// YOURDOMAIN.COM /owa/service_directory/settings.php?email= admin@ YOURDOMAIN.COM &from= YOURDOMAIN.COM &fromname=admin

Best regards,

YOURDOMAIN.COM

Technical Support.

accounts, anti, Antivirus, attach, attachment, Bank of Scotland, change, changed, Click here, companies, details, domain, email, email system, fraud, fraudulent site, information, KrayaTec, login, mailbox, owa, personal, phishing, phishing scam, ramsay, scam, scanners, secure, setting, slants, source, spam, Stephen, virus, visit, visiting, website

Changing your password in Kerio Mailserver

Jun 16th

Posted by stephen in Security

Changing your passwords is very easy.

Under your Windows computer press Crtl + Alt + Del and select change password.

To Change your email password, simply log into your Web Mail (call us if you don’t know the address)

Then Select change password from the Settings drop down menu as below

settings menu in kerio webmail

And then enter your old and new passwords in the box below.

kerio password change dialog box

Remember to make it something secure that no one will guess, no kids, partners or team names and no dictionary words. Random Numbers and letters, remember capitals and lower case combinations are best, or try a sentence like “Why can 1 never remember 555″ you can use spaces. Remember the best passwords are ones that can not be are easy to remember and would not be easily broken using a dictionary or password list attack (this is where a system tires every word in the dictionary or in a common password list, things like Rang3rs or C3lt1c or to easy.

+, +, Alt, attack, best, best passwords, broken, capitals, change password, Changing your passwords, combinations, common password list, Crtl, Del, dictionary, dictionary words, drop down, easy to remember, email password, guesed, Kerio, Kerio MailServer, kerio webmail, kids, Kraya, KrayaTec, letters, lower case, MailServer, Microsoft, Microsoft Widows, no one will guess, Numbers, partners, password list, ramsay, Random, Remember, secure, sentence, settings, spaces, Stephen, Stephen ramsay, system, team names, tires, try, Web Mail change password, webmail, Widows

Kerio Mailserver Upgrade from 6.6 to 6.7

May 18th

Posted by stephen in Linux

Over the next few weeks Kraya will be upgrading everyone who currently uses Kerio to the latest version of the mail server software. If you have been directed to this blog post, it is probably because your upgrade is happening soon. Please read below to understand how this might affect you.

The latest update to Kerio Mailserver fixes a number of bugs including slow response times when using Outlook and the issues with the Kerio Offline Outlook connector consuming large amounts of RAM. It also fixes an issue with Thunderbird incorrectly mapping default folders such as trash and junk.

More detailed information on all of the changes can be found in the release notes for Kerio Mail server 6.7.0 here. However you should note that this information is aimed at techies not users.

Information for each user base:

Thunderbird and other users using IMAP accounts

You should notice no changes to your email client. We will be looking at users accounts where duplicate folders have been highlighted to us over the next few weeks to ensure these are removed and mapped correctly.

Web Mail users

No action is needed, when you next log in you may notice a few minor adjustments to the operations in web mail.

Outlook Users

A new version of the Kerio Outlook Connector needs to be installed. When you open Outlook for the first time you will be greeted by a message asking you if you want you upgrade now, the answer is YES. The upgrade will take a few minutes and your Outlook will restart. Please take a look at the Screen shot links below for both Windows XP and Vista.

Windows XP Screenshots and Upgrade walk through
Windows VISTA Screenshots and Upgrade walk through

As always if you have any issues or questions please do not hesitate to get in touch.

6.6, 6.7, 6.7.0, bugs, changes, Connector, default, deleted, duplicate, duplicate folders, first time, fixes, folders, IMAP, improvements, incorrectly, installed, issues, junk, Kerio, Kerio Mail server 6.7.0, Kerio MailServer, Kerio Offline Outlook Connector, Kraya, Mail, Mail Server, MailServer, mapping, new version, Offline, Offline Outlook Connector, Outlook, Outlook connector, POP, POP3, problems, RAM, release notes, response, restart, Screen shots, Screenshots, Server, slow, spam, Thunderbird, times, Trash, Upgrade, upgrading, version, Vista, Web Mail, Windows, Windows vista, windows XP, XP

Windows VISTA Screenshots and Upgrade walk through for Kerio Mailserver upgrade

May 18th

Posted by stephen in Linux

Throughout this process it is VITAL that you leave the computer to complete the update. Please do not interact with the computer unless told to do so below.

The Morning after the upgrade, please log in is normal before opening anything else please open Outlook as normal. You will the be greeted by the message below;

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows VISTA Screenshot Message 1 on open of Outlook

Please select YES.
The new Version will now be downloaded from the server. You should see this:

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows VISTA Screenshot Ooutlook progress 1

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows VISTA Screenshot of Microsoft Outlook progress

Once this has completed Outlook will be closed and the New Version installed. Once the update has completed you will see this:

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows VISTA Screenshot Ooutlook completed

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows VISTA Screenshot Outlook Completed

Press yes and leave outlook alone for a few minutes (5 to 10 depending on your own computer) whilst it completes the re-synchronisation.

If you have any issues please let us know. Furthermore, we are very keen to hear about any improvements or problems you have.

Windows XP Screenshots and Upgrade walk through for Kerio Mailserver upgrade

May 18th

Posted by stephen in Security

Throughout this process it is VITAL that you leave the computer to complete the update. Please do not interact with the computer unless told to do so below.

The Morning after the upgrade, please log in is normal before opening anything else please open Outlook as normal. You will the be greeted by the message below;

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows XP Screenshot Message 1 on open of Outlook

Please select YES.
The new Version will now be downloaded from the server. You should see this:

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows XP Screenshot Outlook progress 1

Once this has completed Outlook will be closed, as below:

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows XP Screenshot Outlook progress 2

Then the New Version will be installed:

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows XP Screenshot Outlook progress 3

Once the update has completed you will see this:

Kerio Mailserver Upgrade from 6.6 to 6.7 Windows XP Screenshot Outlook upgrade complete

Press yes and leave outlook alone for a few minutes (5 to 10 depending on your own computer) whilst it completes the re-synchronisation.

If you have any issues please let us know. Furthermore, we are very keen to hear about any improvements or problems you have.

Kerio Mail Server – Feedback and Updates

May 14th

Posted by stephen in Linux

Kerio have recently introduced a new update for the Kerio MailServer (KMS), which has fast become krayatec’s favoured mail server.

We have now deployed Kerio MailServer 6.2 to most of our clients and despite a handful of teething problems, most are now seeing advantages over Exchange and their previous IMAP based systems.

Feedback from clients has generally been positive, however for two of our clients the switch has not been as pain free as we would have liked and they are still experiencing several issues:

VERY Slow connections between the Kerio Outlook connector and the Server.
Kerio Outlook Connector seems to consume huge amounts of RAM, particularity on older Systems.
Outlook and MS Word Mail merge function seams to fail after installation of Kerio Off-line Outlook connector. This issue is still under investigation by both our own and Kerio’s Technical teams.
IMAP sync issues when using Thunderbird: Kerio and Thunderbird seem to be unable to share junk, sent and deleted folders leading to duplication.
Thunderbird and Kerio integration is not perfect in general and Thunderbird is unable to feed back junk mail training data, or rule learning, to the Kerio Mail Server.

The release notes for the new Update to Kerio MailServer 6.7 suggests that this upgrade will fix most of these issues. The update has now been deployed to our own Kerio system and we are currently testing this in full prior to deployment to our clients systems. After discussing the updates with the Kerio team, we are very hopeful of resolving the above issues. However, it is indisputable that issues may remain with legacy systems, particularity Windows 2000.

Feedback / comments and suggestions for the above issues are always welcome.

6.2, advantages, clients systems, comments, Connector, data, deleted, deployed, deployment, duplication, Exchange, fail, feed back, Feedback, fix, folders, help, IMAP, IMAP sync, indisputable, installation, investigation, issues, junk, junk mail, Kerio, Kerio integration, Kerio MailServer, Kerio MailServer 6.2, Kerio MailServer 6.7, Kerio Off-line Outlook connector, Kerio Outlook connector, KMS, KrayaTec, legacy systems, Mail, Mail merge, Mail Server, MailServer, not perfect, Off-line Outlook connector, older Systems, Outlook, pain, particularity, previous, problem, RAM, ramsay, release notes, resolving, rule learning, sent, Server, several, slow, Slow connections, Stephen, Stephen ramsay, suggestions, system, systems, Technical, teething problems, testing, Thunderbird, training, Windows 2000, Word

Security Bulletin – Adobe Reader and Acrobat

May 14th

Posted by stephen in Apple

Below is an update to Security Bulletin – Adobe – April 09

Adobe have published a new Security Bulletin and provided updates for Adobe Reader and Acrobat patches. These updates resolve the previously reported vulnerabilities in Adobe Reader 9.1 and Acrobat 9.1 and earlier versions. This vulnerability (CVE-2009-1492) would cause the application to crash and could potentially allow an attacker to take control of the affected system remotely and install Malicious code.

We have already recommended that user consider using alternatives to Adobe reader, this continues to be our current advice. However users still using Adobe should now update and install these patches as soon as practical.

Adobe recommends users of Adobe Reader 9.1 and Acrobat 9.1 and earlier versions update to Adobe Reader 9.1.1 and Acrobat 9.1.1. Adobe recommends users of Acrobat 8 update to Acrobat 8.1.5, and users of Acrobat 7 update to Acrobat 7.1.2. For Adobe Reader users who can’t update to Adobe Reader 9.1.1, Adobe has provided the Adobe Reader 8.1.5 and Adobe Reader 7.1.2 updates.

7.1, 7.1.2, 8, 8.15, 9.1, 9.1.1, Acrobat, Acrobat 7, Acrobat 7.1.2, Acrobat 8, Acrobat 8.1.5, Acrobat 9.1, Acrobat 9.1.1, Adobe, Adobe Acrobat, Adobe Reader, Adobe Reader 7.1.2, Adobe Reader 8.1.5, Adobe Reader 9.1, Adobe Reader 9.1.1, alternatives, Apple, Apple Mac, APSB09-06, attacker, Bulletin, current advice, CVE-2009-1492, CVE-2009-1493, earlier, install, Mac, Malicious code, Microsoft, patch, ramsay, Reader, remotely, resolve, Security, Security Bulletin, stephe, Stephen ramsay, system, take control, update, versions, Vulnerabilities, Vulnerability, Windows

Technological Ramblings by Stephen

Stephen Ramsay is the Head of Krayatec Edinburgh’s leading Linux centric IT Support Company. We provide IT Support, telecoms and technology partnerships to businesses running Windows, Linux and Apple based systems. We also manage the complete and seamless integration of, all these operating systems into one coherent, network and technology strategy.
This blog is part work, part personal, so I hope you enjoy the mix and feel free to leave some comments, reply via Twitter, or drop me an Email for more information, on anything you read here, or to find out a bit more about what we do and how we do it.
blogrol
Kraya
Open Source Software
Social Networks
usefull geekerie
- DNS / MX Propagation Checker
- Whats my dns
Tag Cloud
anti-virus Apple Apple Mac attack changes Computer computers fail infected issues Kerio Kerio MailServer Kraya KrayaTec Linux Mac MailServer Microsoft monitor network office ramsay Random restart secure Security Server slow Social Networks software Spa spam Stephen Stephen ramsay stepram tweets twitter update Vista Vulnerability website Windows Windows vista windows XP XP
Calendar
March 2010

M T W T F S S

« Feb

1 2 3 4 5 6 7

8 9 10 11 12 13 14

15 16 17 18 19 20 21

22 23 24 25 26 27 28

29 30 31
Blog Archives

March 2010
M	T	W	T	F	S	S
« Feb
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30	31

Security

Technological Ramblings by Stephen

blogrol

Kraya

Open Source Software

Social Networks

usefull geekerie

Tag Cloud

Calendar

Blog Archives