Uncategorized

Nutanix Clusters vs VMware on Azure?

I’ve previosly written about VMware on Azure using the Cloudsimple deployment https://msandbu.org/building-vmware-on-public-cloud-or-using-cloud-native/ where the cloudsimple solution is using a set of (dedicated hosts maximum 16) bare-metal servers in Azure to provide a VMware validated design setup within Microsoft Azure datasenter. The VMware solution is essentially running as its own ecossystem within Microsoft’s datacenters. Management of the VMware …

Nutanix Clusters vs VMware on Azure? Read More »

Protection against Ransomware Attacks, Credential Stuffing and Password Spray Attacks

Lately there have been more and more ransomware attacks, where companies are faced with their systems and data becoming encrypted, and forcing them to pay a ransom to get access back to their data. A couple of weeks ago I started to subscribe to https://shadowintelligence.io/ feed just to see how many companies that are getting affected …

Protection against Ransomware Attacks, Credential Stuffing and Password Spray Attacks Read More »

Azure Monitoring alerting rule to notify on non-compliant resources

When using Azure Policies as part of your govnernance framework, there is always on thing that has bugged me with Azure Policies and that is with regards to alerting about non-compliant resources. From within the portal you get a list of non-compliant resources shown as part of the Policy view. However there are no alerting …

Azure Monitoring alerting rule to notify on non-compliant resources Read More »

Using Cloudflare Access to protect WordPress Admin sites

If you are hosting a blog like me, you can use Cloudflare to protect and accelerate your website which I have described here –> https://msandbu.org/moved-my-blog-to-cloudflare/ that means that front-end traffic is handled by Cloudflare and then to my origin site. Cloudflare recently introduced a new feature called Cloudflare access which allows you to securely publish web sites/applications …

Using Cloudflare Access to protect WordPress Admin sites Read More »

Automation Azure Sentinel and Terraform

In a previous blog post (https://msandbu.org/automating-azure-sentinel-deployment-using-terraform-and-powershell/)  I wrote how about you can use Terraform to automate the setup of Azure Sentinel and Log Analytics. The issue back then, was that you couldn’t automate Sentinel Analytics rules which you still needed to maintain using a third-party PowerShell module. NOTE: I’m working on publishing a Terraform module …

Automation Azure Sentinel and Terraform Read More »

Google Cloud Confidential VMs vs Azure Confidential Computing

Yesterday as part of Google Cloud Next’20 On Air, Google introduced a preview of a new set of virtual infrastructure called Confidential VMs which leverage the Secure Encrypted Virtualization (SEV) feature of 2nd Gen AMD EPYC. Confidential VMs run on N2D series VMs and currently support Ubuntu v18.04, Ubuntu 20.04, Container Optimized OS (COS v81), and RHEL 8.2. So why is …

Google Cloud Confidential VMs vs Azure Confidential Computing Read More »

Azure Storage Object Replication

I’ve previosly written about Azure datacenters and especially about the norwegian datacenters (https://msandbu.org/not-all-azure-datacenters-are-equal-what-to-consider-with-regards-to-dr/), where we have two regions where only east is active and west is a passive datacenter which is only used to support the underlying services which require geo redudant services, such as Azure SQL, Storage and so on. This poses an issue …

Azure Storage Object Replication Read More »

SIGRed CVE-2020-1350 Vulnerability in Windows (DNS) Server and fix

Yesterday Microsoft released an update for CVE-2020-1350, a Critical Remote Code Execution (RCE) vulnerability in Windows DNS Server that is classified as a ‘wormable’ vulnerability and has a CVSS base score of 10.0. This issue results from a flaw in Microsoft’s DNS server role implementation and affects all Windows Server versions (not the DNS Client, and also domain controllers which have DNS are also affected) This vulnerability was discovered by security researchers at …

SIGRed CVE-2020-1350 Vulnerability in Windows (DNS) Server and fix Read More »

TCP is not just TCP – Accelerate websites with Cloudflare

This blog site has been using Cloudflare for a while to provide acceleration and protection mechanisms in front of the website, I’ve also been working with NetScaler/ADC for a while to optimize crappy websites. One thing that most people hate when browsing, is waiting…. If you also are running a e-commerence website, those seconds of waiting …

TCP is not just TCP – Accelerate websites with Cloudflare Read More »

Scroll to Top