Nutanix Clusters vs VMware on Azure?
I’ve previosly written about VMware on Azure using the Cloudsimple deployment https://msandbu.org/building-vmware-on-public-cloud-or-using-cloud-native/ where the cloudsimple solution is using a set of (dedicated hosts maximum 16) bare-metal servers in Azure to provide a VMware validated design setup within Microsoft Azure datasenter. The VMware solution is essentially…
Read More »Protection against Ransomware Attacks, Credential Stuffing and Password Spray Attacks
Lately there have been more and more ransomware attacks, where companies are faced with their systems and data becoming encrypted, and forcing them to pay a ransom to get access back to their data. A couple of weeks ago I started to subscribe…
Read More »Azure Monitoring alerting rule to notify on non-compliant resources
When using Azure Policies as part of your govnernance framework, there is always on thing that has bugged me with Azure Policies and that is with regards to alerting about non-compliant resources. From within the portal you get a list of non-compliant resources…
Read More »Using Cloudflare Access to protect WordPress Admin sites
If you are hosting a blog like me, you can use Cloudflare to protect and accelerate your website which I have described here –> https://msandbu.org/moved-my-blog-to-cloudflare/ that means that front-end traffic is handled by Cloudflare and then to my origin site. Cloudflare recently introduced a new…
Read More »Automation Azure Sentinel and Terraform
In a previous blog post (https://msandbu.org/automating-azure-sentinel-deployment-using-terraform-and-powershell/) I wrote how about you can use Terraform to automate the setup of Azure Sentinel and Log Analytics. The issue back then, was that you couldn’t automate Sentinel Analytics rules which you still needed to maintain using…
Read More »BTC Scam on Twitter – Twitter Compromised?
Earlier Tonight I was suddenly seeing a lot of big Twitter profiles (Including Elon Musk, Bill Gates, Barack Obama, Joe Biden, Uber, Apple and other) posting the following on their Twitter timeline. You can see one of the BTC address information here –> https://www.blockchain.com/btc/address/bc1qxy2kgdygjrsqtzq2n0yrf2493p83kkfjhx0wlh…
Read More »Google Cloud Confidential VMs vs Azure Confidential Computing
Yesterday as part of Google Cloud Next’20 On Air, Google introduced a preview of a new set of virtual infrastructure called Confidential VMs which leverage the Secure Encrypted Virtualization (SEV) feature of 2nd Gen AMD EPYC. Confidential VMs run on N2D series VMs and currently support Ubuntu v18.04, Ubuntu…
Read More »Azure Storage Object Replication
I’ve previosly written about Azure datacenters and especially about the norwegian datacenters (https://msandbu.org/not-all-azure-datacenters-are-equal-what-to-consider-with-regards-to-dr/), where we have two regions where only east is active and west is a passive datacenter which is only used to support the underlying services which require geo redudant services,…
Read More »SIGRed CVE-2020-1350 Vulnerability in Windows (DNS) Server and fix
Yesterday Microsoft released an update for CVE-2020-1350, a Critical Remote Code Execution (RCE) vulnerability in Windows DNS Server that is classified as a ‘wormable’ vulnerability and has a CVSS base score of 10.0. This issue results from a flaw in Microsoft’s DNS server role implementation and affects all Windows Server versions (not the DNS Client, and also domain controllers which have…
Read More »TCP is not just TCP – Accelerate websites with Cloudflare
This blog site has been using Cloudflare for a while to provide acceleration and protection mechanisms in front of the website, I’ve also been working with NetScaler/ADC for a while to optimize crappy websites. One thing that most people hate when browsing, is…
Read More »