I’ve previosly written about VMware on Azure using the Cloudsimple deployment https://msandbu.org/building-vmware-on-public-cloud-or-using-cloud-native/ where the cloudsimple solution is using a set of (dedicated hosts maximum 16) bare-metal servers in Azure to provide a VMware validated design setup within Microsoft Azure datasenter. The VMware solution is essentially running as its own ecossystem within Microsoft’s datacenters. Management of the VMware …
Lately there have been more and more ransomware attacks, where companies are faced with their systems and data becoming encrypted, and forcing them to pay a ransom to get access back to their data. A couple of weeks ago I started to subscribe to https://shadowintelligence.io/ feed just to see how many companies that are getting affected …
Protection against Ransomware Attacks, Credential Stuffing and Password Spray Attacks Read More »
When using Azure Policies as part of your govnernance framework, there is always on thing that has bugged me with Azure Policies and that is with regards to alerting about non-compliant resources. From within the portal you get a list of non-compliant resources shown as part of the Policy view. However there are no alerting …
Azure Monitoring alerting rule to notify on non-compliant resources Read More »
If you are hosting a blog like me, you can use Cloudflare to protect and accelerate your website which I have described here –> https://msandbu.org/moved-my-blog-to-cloudflare/ that means that front-end traffic is handled by Cloudflare and then to my origin site. Cloudflare recently introduced a new feature called Cloudflare access which allows you to securely publish web sites/applications …
Using Cloudflare Access to protect WordPress Admin sites Read More »
In a previous blog post (https://msandbu.org/automating-azure-sentinel-deployment-using-terraform-and-powershell/) I wrote how about you can use Terraform to automate the setup of Azure Sentinel and Log Analytics. The issue back then, was that you couldn’t automate Sentinel Analytics rules which you still needed to maintain using a third-party PowerShell module. NOTE: I’m working on publishing a Terraform module …
Earlier Tonight I was suddenly seeing a lot of big Twitter profiles (Including Elon Musk, Bill Gates, Barack Obama, Joe Biden, Uber, Apple and other) posting the following on their Twitter timeline. You can see one of the BTC address information here –> https://www.blockchain.com/btc/address/bc1qxy2kgdygjrsqtzq2n0yrf2493p83kkfjhx0wlh At the time of the writing this post, the BTC address has …
Yesterday as part of Google Cloud Next’20 On Air, Google introduced a preview of a new set of virtual infrastructure called Confidential VMs which leverage the Secure Encrypted Virtualization (SEV) feature of 2nd Gen AMD EPYC. Confidential VMs run on N2D series VMs and currently support Ubuntu v18.04, Ubuntu 20.04, Container Optimized OS (COS v81), and RHEL 8.2. So why is …
Google Cloud Confidential VMs vs Azure Confidential Computing Read More »
I’ve previosly written about Azure datacenters and especially about the norwegian datacenters (https://msandbu.org/not-all-azure-datacenters-are-equal-what-to-consider-with-regards-to-dr/), where we have two regions where only east is active and west is a passive datacenter which is only used to support the underlying services which require geo redudant services, such as Azure SQL, Storage and so on. This poses an issue …
Yesterday Microsoft released an update for CVE-2020-1350, a Critical Remote Code Execution (RCE) vulnerability in Windows DNS Server that is classified as a ‘wormable’ vulnerability and has a CVSS base score of 10.0. This issue results from a flaw in Microsoft’s DNS server role implementation and affects all Windows Server versions (not the DNS Client, and also domain controllers which have DNS are also affected) This vulnerability was discovered by security researchers at …
SIGRed CVE-2020-1350 Vulnerability in Windows (DNS) Server and fix Read More »
This blog site has been using Cloudflare for a while to provide acceleration and protection mechanisms in front of the website, I’ve also been working with NetScaler/ADC for a while to optimize crappy websites. One thing that most people hate when browsing, is waiting…. If you also are running a e-commerence website, those seconds of waiting …
TCP is not just TCP – Accelerate websites with Cloudflare Read More »
