Xiaomi Mi3 Smartphone – The Best Value Smartphone You Have Never Heard Of….

nbeam published 10 years ago in Android Smartphones & Tablets. Tags: , ,

1

The Xiaomi Mi3 (pronounced “Sh” + “Oww” + “ME” — “ME” “Three”) is one seriously good phone at a seriously low price. You probably aren’t familiar with the Xiaomi brand if you are are a Western reader. However of all the Chinese upstart electronics manufacturers, Xiaomi is perhaps the MOST poised to become a household name before 2016.

Why?

There are several things that set Xiaomi apart from the bulk of other Chinese companies:

1. Quality – Xiaomi over-engineers their phones and tablets in much the same way as Apple and Samsung do. They feel solid, go through rigorous quality control, (more…)

How to Easily Stream Video from Your Android Phone or Windows Computer to Your Roku… for FREE!

nbeam published 10 years ago in Consumer Tech. Tags: , , ,

1

I recently had a second child. Her name is Eleanor and she is kind of awesome. Her big sister, Izzy, just turned two… (all parents out there are nodding their heads as they have immediately assessed and understood my circumstances…) So my wife and I have a toddler and a newborn, a situation that has required a bit of time off of work for me. (Hence I have stepped back from the blog in the last month or so…) It has also led to my watching of a lot of Netflix on our Roku 2 XS box as you tend to not get out much the first few weeks after a new kid shows up.

Now, I am an inherently cheap person and I recently ran out of things to watch on Netflix. I do, however, have a digital video collection on one of my laptops at the house and I also have video files on my phone. But hooking either of those things up to our “dumb” TV (as opposed to smart TV) involves much hassle.

In the past, one of my main gripes with the Roku is the fact that it historically has been a real pain to stream your own video to it. Having a bit of time (during the naps of our toddler) and to keep myself somewhat sane I decided to look into the issue again. As a result, I have found some rather phenomenal tools that make use of DLNA to make (more…)

Platform Hardening – General Guidelines…

nbeam published 11 years ago in Information Security. Tags: , , , ,

1

Recently I had to produce some very high-level, general documentation for platform hardening. Boy, there isn’t much out there in terms of content when you start researching this topic out. Yes, there are lots of specific hardening docs for specific platforms but if you are like me and need to write generic “policies” or guidelines you need something that is honestly a bit more vague.

I broke my documentation down into two sections, Ideology and Policies… Here was the result:
(more…)

More OpenSSL Horror – CCS Injection Vulnerability – Fix Your Linux Servers…

nbeam published 11 years ago in Information Security, Linux, OpenSSL, SSL, Ubuntu. Tags: , ,

1

Read about it more in detail here on Redhat’s site. This vulnerability affects all applications using certain versions of OpenSSL, so this is a cross-platform issue.

This isn’t nearly as atrocious as Heartbleed was as there isn’t a chance of leaking your private keys. However, if you use Qualsys labs excellent SSL web scanner to check your site’s security, this will immediately degrade your web application to an “F”.

Scrutiny of SSL has been ramped up significantly in the wake of Heartbleed, so if your application deals with any kind of regulated data I suggest you patch your servers immediately.

For Ubuntu users, this means it is time to do an OS upgrade to 14.04 LTS if you aren’t running a previous LTS version that is still receiving security updates…

do-release-upgrade your way to a safer tomorrow…

I have tagged this post with “heartbleed” as folks researching that issue need to pay attention to this one as well. The fix is the same; patch OpenSSL!

Regards!

References:
https://access.redhat.com/site/articles/904433
https://www.ssllabs.com/ssltest/analyze.html

Managing ADMX files… Windows Server 2008 R2 Domain Controller & Windows Server 2012 / Windows 8 Member Machines

nbeam published 11 years ago in Domain Administration, Group Policy Management, Microsoft, Server 2012, Server 2012R2, Windows Administration. Tags: , , ,

2

One of my glorious privileges in IT is managing and enforcing security policy for the company I work for. Being a windows shop, one of the primary tools I use to that end is Group Policy.

For those of you not familiar with Group Policy, it is Microsoft’s gift (and sometimes curse) to admins such as myself. Group Policy, especially in a Domain, is an incredibly powerful tool. It can be used to do all kinds of things, from the simple to the bizarre… across your entire enterprise. The basic premise is that you have a “policy” for how you want your machines to work. For example, you might want to enforce strong passwords, or you might want to do something as granular as granting one particular group of people specific security rights to a local folder on all workstations, perhaps you need to make sure that inbound RDP sessions are disabled by default on a specific set of machines… whatever you want, particularly if it is a Microsoft feature, most likely it can be centrally controlled and administered via group policy. Suffice to say, it is an absolutely essential tool for any Windows Administrator in any large enterprise (you know, more than 2 servers and 10 endpoints…), particularly when it comes to security. That is as much as I will say about it in this post.

I was presented with a particular problem recently. We needed to disable a windows feature that was introduced in Server 2012/Widows 8. Group Policy should do the trick… however when I started digging around in the console I wasn’t finding the setting I needed. It quickly dawned on me that the majority of domain controllers are running Windows Server 2008 R2… and the server I am trying to edit policy on is referencing policy definitions for Server 2008 R2 / Windows 7 and therefore wouldn’t be aware of settings for Windows 8 / Server 2012 machine. What’s an admin to do?
(more…)