Posts tagged data

Adobe update – excessive traffic to ardownload.adobe.com

Dec 16th

Adobe has not been without its problems of late, and whilst there have been security issues that could have lead to losses, so far none of our clients have suffered financially from Adobe’s failings. Until now that is.

One of our Clients had their ADSL cut off this week as they had exceeded the usage policy. Why? Adobe Update Manager on one Windows XP PC had decided to download over 70GB of data over the course of a 7 day period. It would appear that it was getting itself in a loop and just kept trying to update continuously, 70GB worth of continuously.

The Adobe website serves the update MSI binary files as content type Text/Plain, the Adobe Update client has a very short timeout and immediately opens another connection to re-start the download. Hence if there is a slow connection or the caching server does not return the whole file in a timely manner the Adobe Update client enters the infinite loop of retries, causing the excessive bandwidth consumption witnessed here.

There are several forum threads including on Adobe’s own site http://forums.adobe.com/thread/392129 all linking this issue to a conflict between and old version of WebMarshall and Adobe updater; however our machines do not use WebMarshall and we do not have it installed anywhere on our networks.

We do however use Squid caching on our CentOS 5 servers. The server in this instance seems to be fulfilling the requests on each occasion in a timely manner – the issue is that each time Adobe updater passes a URL it is different in key areas, which Squid interprets as a separate request. This is not abnormal and we have seen this before when we have tried to configure squid to cache Windows updates. However rather than enter a loop of requests, Windows updates simply fail. Other automatic updaters work well with caching systems and indeed most ISPs are now implementing different forms of web caching on their own networks. Dose this mean the Adobe issue is affecting them in the same way?

The issue seems to only affect PCs (or at least we have seen no affected Mac users as yet), and it also seems to affect most Adobe products.

For now Adobe and the ISPs have remained quiet on the issue, however we have 3 other clients (and my own home ADSL ) who cannot update Adobe at all, access to ardownload.adobe.com appears to have been blocked by the ISP. Quite when the Adobe update issue will be resolved is unknown; however we have also taken the decision to block access to ardownload.adobe.com from all of our networks, for the moment.

Richard, one of our Systems Admin Team has published a more detailed account of the technicalities involved here: http://richard.blog.kraya.co.uk/2009/12/16/a-big-adobe-problem/

abnormal, Adobe, Adobe products, Adobe update, Adobe Update client, Adobe Update manager, adobe updater, Adobe website, Adobe’s, ADSL, Apple, ardownload.adobe.com, automatic, bandwidth, bandwidth consumption, block, blocked, cache, caching, caching system, CentOS, CentOS 5, CentOS 5 servers, Clients, Computer, configure squid, conflict, connection, continuously, Cut off, data, download, exceeded, excessive, excessive bandwidth consumption, fail, failings, financially, fix resolve, GB, immediately, infinite loop, ISP, IT, Kraya, KrayaTec, loop, loop of requests, Mac, MSI binary files, PC, problems, resolved, retries, security issues, Server, serves, slow, Squid, Squid caching, Stephen, Stephen ramsay, suffered, support, timeout, to ardownload.adobe.com, traffic, update, update Adobe, update continuously, update MSI binary files, updater, updaters, Updates, URL, usage, users, web caching, Web Marshall, WebMarshall, Windows, Windows updates, XP

Kerio Mail Server – Feedback and Updates

May 14th

Posted by stephen in Linux

No comments

Kerio have recently introduced a new update for the Kerio MailServer (KMS), which has fast become krayatec’s favoured mail server.

We have now deployed Kerio MailServer 6.2 to most of our clients and despite a handful of teething problems, most are now seeing advantages over Exchange and their previous IMAP based systems.

Feedback from clients has generally been positive, however for two of our clients the switch has not been as pain free as we would have liked and they are still experiencing several issues:

VERY Slow connections between the Kerio Outlook connector and the Server.
Kerio Outlook Connector seems to consume huge amounts of RAM, particularity on older Systems.
Outlook and MS Word Mail merge function seams to fail after installation of Kerio Off-line Outlook connector. This issue is still under investigation by both our own and Kerio’s Technical teams.
IMAP sync issues when using Thunderbird: Kerio and Thunderbird seem to be unable to share junk, sent and deleted folders leading to duplication.
Thunderbird and Kerio integration is not perfect in general and Thunderbird is unable to feed back junk mail training data, or rule learning, to the Kerio Mail Server.

The release notes for the new Update to Kerio MailServer 6.7 suggests that this upgrade will fix most of these issues. The update has now been deployed to our own Kerio system and we are currently testing this in full prior to deployment to our clients systems. After discussing the updates with the Kerio team, we are very hopeful of resolving the above issues. However, it is indisputable that issues may remain with legacy systems, particularity Windows 2000.

Feedback / comments and suggestions for the above issues are always welcome.

6.2, advantages, clients systems, comments, Connector, data, deleted, deployed, deployment, duplication, Exchange, fail, feed back, Feedback, fix, folders, help, IMAP, IMAP sync, indisputable, installation, investigation, issues, junk, junk mail, Kerio, Kerio integration, Kerio MailServer, Kerio MailServer 6.2, Kerio MailServer 6.7, Kerio Off-line Outlook connector, Kerio Outlook connector, KMS, KrayaTec, legacy systems, Mail, Mail merge, Mail Server, MailServer, not perfect, Off-line Outlook connector, older Systems, Outlook, pain, particularity, previous, problem, RAM, ramsay, release notes, resolving, rule learning, sent, Server, several, slow, Slow connections, Stephen, Stephen ramsay, suggestions, system, systems, Technical, teething problems, testing, Thunderbird, training, Windows 2000, Word

Conflicker update

Apr 9th

Posted by stephen in Security

No comments

BBC are currently reporting that the Conficker worm has started to update infected machines with a mystery package of data. We would like to reassure our customers that we are closely monitoring our networks and have not seen any evidence of this affecting any of our customers.

It began updating late yesterday with and encrypted software package to compromised machines. The update is being delivered by Peer to peer file sharing technology and appears to be transmitting slowly, presumably to avoid alerting people.

We are in the office over the Easter weekend and will continue to monitor all servers all weekend.

alerting, avoid, BBC, compromised, computers, Conficker worm, Conflicker, data, Easter weekend, encrypted, evidence, file sharing, infected, machines, Microsoft, Microsoft windows, monitor, monitoring, mystery, networks, P2P, package, Pear to pear, peer, peer to peer, presumably, ramsay, servers, slowly, Social Networks, software, Stephen, stepram, technology, transmitting, update, updating, Windows, worm

You cant follow me around and anyway what I choose to do in the privacy of my own home…

Apr 7th

Posted by stephen in Privacy

1 comment

Who you phone and email and what you do in your own home is private right? What’s more we all believe that if the authorities want to tap your phone, they need a warrant right?

Well not anymore, from today (Monday 06/04/09) your phone company and Internet service provider must keep a complete log of every phone call, email and text message you send and a log of all your web traffic, all in the name of Anti-terrorism.

The data stored will not include the content of the e-mails or a recording of the phone call / text. However it will cover the subject line, sender and receiver of the message and all of their personal information, such as name, date of birth, address and telephone numbers. Even more worryingly if you carry a mobile phone, the Mobile Network will also be required to store your location, that’s right the police can now trace your exact whereabouts at all times via your Mobile. Handy tool if you are a missing child, but it doesn’t just relate to real time data this relates to historical data too as this information must be stored by the Mobile phone operator.

All of this information is to be used to determine connections between individuals, an important point I will revisit in a moment.

Regards web traffic it will also store the site you visited and its owner information but not the actual content. Why won’t it store its content, well not because they don’t want to know what you are looking at, but because that would create too much data. What’s more if they want to know what you were looking at they can find it easily on a web back or web archiving service. Try visiting Archive.org and asking for news.bbc.co.uk, then look for September 11^th 2001 and you can relive the awful moment in time that has led us here, or rather been used as an excuse to lead us here.

Just in case you’re thinking well it’s only the police and they can be trusted right? Wrong, this data can be accessed by a whole host of organisations including Government departments and Local authorities for all kinds of reasons, without your knowledge or consent.

Well I’m a goodie two shoes, they wont find anything on me! Are you sure, how often do you look at certain sites, what does that say about your religious, political or moral beliefs or opinions. Ok so it’,s not that anything you do might be dodgy or illegal, but do you really want your local council officials looking at your browsing history and drawing inferences from it, correctly or otherwise. Who do you talk to who are your connections, personal and business, the express aim of this legislation is to track this kind of information. Who is accessing your internet connection, do you have a partner staying over? How often do they use your internet and what are they accessing, what does that give away about you, your sexuality and relationships?

Most importantly what have you and I done wrong to justify this invasion of our privacy and civil liberties, simply become terror targets. If this all sounds a little draconian, it is, I’m all for the police having the ability to track and trace criminals when they are under suspicion of a crime but this doesn’t apply to criminals it applies to all of us, all of the time and we are not under suspicion are we?

Just think, Local authorities have been in the press recently for using these types of powers to check up on all kind of misdemeanor, Dog Fouling, Single Persons Council Tax Discount claims, Un-occupied Properties / Holiday home claims, School role applications. Whilst these are all law breaches, are they proportionate to the invasion of our privacy and restriction of our civil liberties?

Perhaps we should think about Google’s power, it is a truly amazing tool and I love what Google is able to do and the ease of use their tools bring to my PC, but this also comes at a price, Google also stores some of your personal information and use that to bring you content you are interested in. But it’s not linked directly to you and certainly not to your exact position 24 hours a day 7 days a week, oh and its Opt it, you choose to use their services or not. Or maybe you don’t if your face or house is on street view, but that’s topic for another day.

After reading all of this you would be forgiven for thinking I am some kind of civil liberties campaigner or that I have something to hide? Well I am not and I do not, but this all seams a little to much like my favorite book for comfort, George Orwell, warned us of the dangers of a large single European country with vast powers over all of its citizens and the ability to use the Thought Police. Sound a bit far fetched? This legislation applies across the whole of Europe and most definitely allows the authorities to complete a large amount of psychoanalysis just by looking at your habits. To take an easy example, what dose the newspaper you read every day say about you and your political beliefs?

If you haven’t read 1984, perhaps you should, it is more real than you might think or that the ‘Big Brother’ headlines you read in the press, might suggest.

11 2001, 11 september, 1984, 24 7, 24 hours, 24/7, 7 days, accessing, actual content, address, al-Qaeda, all of the time, all of us, Anti-terrorism, applications, authorities, beliefs, believe, Big Brother, Bomb, bommings, browsing history, business, Campaigner, certain sites, citizens, civil liberties, civil liberties campaigner, connections, consent, content, content of the e-mails, Council, council tax, crime, criminals, dangers, data, date of birth, determine, directly, dodgy, Dog Fouling, draconian, email, Eric Aruther Blair, Europe, exact, exact location, exact position, far fetched, favorite book, follow, George Orwell, goodie two shoes, Google, Google’s power, government, Government departments, GPS, habits, historical, Holiday homes, home, illegal, individuals, inferences, information, internet, internet connection, internet service provider, invasion, invasion of privacy, IRA, ISP, July 7, justify, knowledge, law, law breaches, legislation, linked, Local authorities, local council, Location, log, London, London Bombings, looking at, MI5, MI6, misdemeanor, missing child, mister meaners, mobile, Mobile Network, mobile phone, Mobile phone operator, moral, msg, name, newspaper, not under suspicion, officials, opinions, organisations, Osama, Osama Bin Laden, our privacy, own home, owner information, partner, personal, personal information, phone, phone call, phone company, phone tap, police, political, political beliefs, position, powers, price, Privacy, private, proportionate, psychoanalysis, ramsay, real time, receiver, recording, relationships, religious, restriction, restriction of civil liberties, School role, security services, send, sender, September, September 11, service, sexuality, single Europe, single European country, Single Persons Council Tax Discount claims, site, snoop, snoopping, Social Networks, something to hide, spy, spying, Stephen, stepram, store, stored, street view, subject, telephone number, terror, terror targets, terrorisim, text, text message, they wont find anything on me, Thought, thought police, trace, track, track and trace, Tracking, trust, trusted, Txt, types of powers, Un-occupied Properties, under suspicion, vast powers, warned, warrant, web, web archiving, web habits, web traffic, whereabouts, whole of Europe, without, you, your location, your Mobile, your own home

Technological Ramblings by Stephen

Stephen Ramsay is the Head of Krayatec Edinburgh’s leading Linux centric IT Support Company. We provide IT Support, telecoms and technology partnerships to businesses running Windows, Linux and Apple based systems. We also manage the complete and seamless integration of, all these operating systems into one coherent, network and technology strategy.
This blog is part work, part personal, so I hope you enjoy the mix and feel free to leave some comments, reply via Twitter, or drop me an Email for more information, on anything you read here, or to find out a bit more about what we do and how we do it.
Categories
- hardware
- how to
- Journeys
- Kraya
- Linux
- Privacy
- Random Rambelings
- Rants
- Security
  - Apple
  - Windows updates
- tweets
- Uncategorized
- Windows
Tag Cloud
anti-virus Apple Apple Mac Computer computers email IMAP issues junk Kerio Kerio MailServer Kerio Offline Outlook Connector Kraya KrayaTec Linux Mac Mail Server MailServer Microsoft Microsoft windows network office Outlook ramsay Random Security Server slow Social Networks software spam Stephen Stephen ramsay stepram Thunderbird tweets twitter Ubuntu update Vista Vulnerability webmail Windows windows XP XP
blogrol
Kraya
Open Source Software
Social Networks
usefull geekerie
- DNS / MX Propagation Checker
- Whats my dns
Calendar
September 2010

M T W T F S S

« Jul

1 2 3 4 5

6 7 8 9 10 11 12

13 14 15 16 17 18 19

20 21 22 23 24 25 26

27 28 29 30
Blog Archives

September 2010
M	T	W	T	F	S	S
« Jul
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30

Posts tagged data

Adobe update – excessive traffic to ardownload.adobe.com

Kerio Mail Server – Feedback and Updates

Conflicker update

You cant follow me around and anyway what I choose to do in the privacy of my own home…

Technological Ramblings by Stephen

Categories

Tag Cloud

blogrol

Kraya

Open Source Software

Social Networks

usefull geekerie

Calendar

Blog Archives