Security
-
Install and configure EMET 5.5 Windows 10
Recently, Microsoft released the official support version of Enhanced Mitigation and Experience Tookit or EMET version 5.5. ย Per Microsoft: “The Enhanced Mitigation Experience Toolkit (EMET) helps raise the bar against attackers gaining access to computer systems. EMET anticipates the most…
-
Sophos UTM setup public key authentication for root
A quick how to post on how to setup public key authentication for root in Sophos UTM 9.x. ย If you want to enable root to have SSH access inside of Sophos UTM, you are required to setup public key authentication…
-
Secure SSH with Public Key Authentication and Two Factor with Duo
If you want the ultimate in security for your SSH enabled Linux box that is sitting in the DMZ or in a 1-to-1 NAT scenario, you can basically have 3 factor authentication setup for your SSH enabled server by using…
-
Sophos XG UTM firewall virtual appliance install and configure
So the other day I received the announcement from Sophos they had released their “next generation” firewall appliance that would be providing the way forward for current 9.x users. ย Sophos did mention they are keeping both code branches however and…
-
Configure Sophos UTM to work with Filezilla FTP Server
If you are running Sophos UTM at home and would like to use FileZilla FTP server, there are a few things that you need to setup to allow FTP communication with your internal server. ย My internal server at home is…
-
Sophos false positive C2/Generic-A alerts
I wanted to put this out there to you guys and see if anyone else had a round of Sophos false positive C2/Generic-A alerts yesterday or the last couple of days with Sophos Advanced Threat Protection identifying aย C2/Generic-A threat. ย The…
-
Installing MS15-034 Reboot Required
With the recent security alert concerning the “bluescreen of death” bug in Windows IIS servers from II7 and higher being affected, many are scrambling to hit maintenance windows to install the update to make sure their IIS server is secure.…
-
Setup RDP Two Factor Authentication with Duo Security
Remote desktop servers that are sitting out in DMZ’s or just forward facing RDP enabled servers are security risks at best since they are configured to answer to remote desktop sessions by design or purpose. ย No matter how strong your…
-
Receive alerts when user connects or disconnects from RDP
If you administer a forward facing terminal server or even if you have an RDP connection setup on your home Internet connection for quick access to your home network, then it serves as extra piece of mind to have a…
-
How to configure Port Forwarding in Sophos UTM
There was a question in the comments on a recent blog postย on how to configure port forwarding in Sophos UTM. ย While a little less intuitive than other UTM firewalls such as Untangle, it is still very easy to figure out.…