Archives

Site Status

This site is no longer actively maintained. Blog posts (2008-2017) are for historical search purposes. Thanks!

Archive for News – Page 11

Block Executables from AppData folder

by KW · Comments (0)
Oct 22 2013

The SMB Kitchen team from Third Tier has made available (for free) a CryptoLocker Prevention Kit that includes a 20 page document that includes step by step instructions on how to lock down your servers and workstation using Group Policy settings to minimize future attacks.

The purpose of this post is to summarize those steps down to a single page. These steps are specific to SBS 2008/2011, but should be applicable to Windows 2008/2012 servers.

GOAL: create Software Restriction Policies within Group Policies to block executables (.exe) from running when they are located in the AppData folder or subfolders therein.

CREATE POLICIES FOR XP

  1. Open up Group Policy and drill down to Domain –> Computers –> SBSComputers
  2. Right click on SBSComputers and select ‘Create a GPO in this domain and link…
  3. Title this policy Prevent CryptoLocker XP and click OK
  4. Right click on this policy and select Edit
  5. Navigate to Computer Configuration –> Policies –> Windows Settings –> Security Settings –> Software Restriction Policies
  6. Right click on Software Restriction Policies and click on ‘New Software Restriction Policies
  7. Right click on Additional Rules and click on ‘New Path rule’ and then enter the following information and then click OK
    Path = %AppData%\*.exe
    Security Level = Disallowed
    Description: Don’t allow executables from AppData
  8. Repeat Step 7 for AppData subfolders
    Path = %AppData%\*\*.exe
    Security Level = Disallowed
    Description: Don’t allow executables from AppData subfolders
  9. Close this policy configuration window
  10. From the Prevent CryptoLocker XP policy locate WMI filtering near the bottom of the middle frame and select ‘Windows SBS Client – Windows XP

CREATE POLICIES FOR VISTA / WIN7 / WIN8

  1. Open up Group Policy and drill down to Domain –> Computers –> SBSComputers
  2. Right click on SBSComputers and select ‘Create a GPO in this domain and link…
  3. Title this policy Prevent CryptoLocker Vista and higher and click OK
  4. Right click on this policy and select Edit
  5. Navigate to Computer Configuration –> Policies –> Windows Settings –> Security Settings –> Software Restriction Policies
  6. Right click on Software Restriction Policies and click on ‘New Software Restriction Policies
  7. Right click on Additional Rules and click on ‘New Path rule’ and then enter the following information and then click OK
    Path = %localAppData%\*.exe
    Security Level = Disallowed
    Description: Don’t allow executables from AppData
  8. Repeat Step 7 for AppData subfolders
    Path = %localAppData%\*\*.exe
    Security Level = Disallowed
    Description: Don’t allow executables from AppData subfolders
  9. Close this policy configuration window
  10. From the Prevent CryptoLocker Vista and higher policy locate WMI filtering near the bottom of the middle frame and select ‘Windows SBS Client – Windows Vista
Comments (0)
Categories : Essentials, News, SBS, Security, Servers, SMB, Tools, Windows
Tags : ,

From XP and Vista to Windows 8.1 over the years

by KW · Comments (0)
Oct 20 2013

My trusty (and crusty) Dell Optiplex 745 has been a great workstation for me over the past seven years.

  • I started with Windows XP on the workstation.
  • Over the 4th of July weekend in 2007 I upgraded my workstation to Vista and wrote about my experience here.
  • Then in October 2009 I did an in-place upgrade of my workstation from Vista to Windows 7, and wrote about it here.
  • So here we are in October 2013, and I finally decided to proceed with a double upgrade this weekend – first to Windows 8, and then Windows 8.1.

Once again my experience was fantastic. Here is a summary of my process:

Pre-Cleanup

I knew I had collected a lot of older 3rd party utilities and apps on this workstation over the years. So, I first took time to review and uninstall those apps that I did not need or use. I recommend doing this before proceeding with the upgrade.

For Quicken, I did a final download of all my accounts and then did a backup of my Quicken database.

I also cleaned out temp files using CCleaner, and reviewed my various Download directories and removed anything I no longer needed.

Backup

Please be sure you have a full system image backup of your workstation before proceeding. That’s just being smart. In my case, I still run Windows Home Server in-house, and fired up a backup of my workstation.

Verify Hardware/Software Compatibility

My only complaint was that it appeared that Microsoft bundled the Upgrade Assistant with the actual setup of Windows 8 – which means that you had to obtain/purchase a copy of Windows 8 prior to determining if your workstation is compatible.

However, with kudos from GHacks.net, I found that Microsoft does indeed have a standalone Windows 8.1 Upgrade Assistant which you can download and run.

image

I was pleasantly surprised to find that I only had 13 items that I needed to review, and the majority of those were older 3rd party utilities that I really don’t care if they work or not. The only significant app that was flagged that I was concerned with was Quicken, as I was still running Quicken 2011.

image

Upgrade to Windows 8

I then used my Action Pack subscription to download the Windows 8 Professional iso file, and burned it to a DVD. Running the in-place upgrade took quite a while,  but lo and behold, when it finished I was setting at a Windows 8 login.

Before proceeding with upgrading to Windows 8.1, I thought it would be advisable to check out the workstation – Internet, Office, Quicken, and printing, and everything looked good.

Upgrade to Windows 8.1

I went to the Windows Store app looking for the Upgrade to 8.1, but it wasn’t there. So, I decided to run Windows Update and install all Windows 8  related updates, and then rebooted. After that, the Windows store app showed the 8.1 Upgrade option.

Final Comments

Jump in and learn Windows 8. Buy yourself a book.

There’s even a free Windows 8.1 eBook from Microsoft Press!

Comments (0)
Categories : News, Windows
Tags :

Free Windows 8.1 eBook

by KW · Comments (0)
Oct 18 2013

Microsoft Press has made available a free eBook, written by Ed Bott, titled Introducing Windows 8.1 for IT Professionals Technical Overview.

That certainly is a mouthful – but this 130 page eBook is jammed pack with information.

Here is the Table of Contents:

  • imageIntroduction
  • Overview of 8.1
  • The 8.1 User Experience
  • Deploying 8.1
  • Security in 8.1
  • Internet Explorer 11
  • Delivering Windows Store Apps
  • Recovery options in 8.1
  • 8.1 and Networks
  • Virtualization in 8.1
  • Windows RT 8.1
  • Managing Mobile Devices
Comments (0)
Categories : News, Windows
Tags : ,

Be careful with KB2862330

by KW · Comments (0)
Oct 18 2013

Several new Windows updates were recently released. The word from a trusted security MVP is to be careful, especially with KB2862330 which has caused some BSOD’s on some systems (Read more on this issue).

Once again, I always encourage people to make sure that they create a system restore point before installing updates, or better yet, do regular full backups of your computer.

If you do encounter a BSOD with any Microsoft update, call Microsoft:

“We can offer anyone who has this issue and is willing to go through troubleshooting a free-of-charge support incident and Support will work with you 1-1 to get your computer(s) back into a working state. The teams who released this update do know that there may be a problem and are doing additional testing to identify the root cause of the issue that folks are experiencing,” (Ben Herila, Microsoft product manager).

Comments (0)
Categories : News, Security, Windows
Tags :

Windows 8.1 now available!

by KW · Comments (0)
Oct 17 2013

imageThe much-anticipated upgrade to Windows 8 …

Windows 8.1

is now available today (October 17, 2013).

 

Upgrading to Windows 8.1 is free and easy. Just start up Windows 8, click on the Windows Store tile, and click to start updating!

image  image  image

After Windows 8.1 has been installed, and you restart your computer. you will be have a chance to set additional Express Settings. You can choose to take the default settings, or customize them on your own.

After logging in, you will have an option to generate a security code (6 digit pin code) for you to use in case of suspicious activity with your account.

Enjoy!

Comments (0)
Categories : News, SMB, Windows
Tags :

Windows Server 2012 R2 Free ebook!

by KW · Comments (0)
Sep 04 2013

imageMicrosoft Press recently released another free ebook, this one titled: Introducing Windows Server 2012 R2 Preview Release.

It is available in three formats (PDF, EPUB, and MOBI).

Click here to go to the Microsoft Press blog site to download your copy.

Enjoy!!!

Comments (0)
Categories : News, Servers, SMB, Windows
Tags : ,

SMBNation 2003 – A Look Back

by KW · Comments (0)
Sep 02 2013

image

SMB Nation will be holding it’s 2013 fall conference in Las Vegas on Oct 10-12, 2013.

 

IMG_0131Harry Brelsford and his staff have come a long way from the very first SMB Nation, which was held in Indianapolis, Indiana in September, 2003.

I thought it would be fun to view some photos from that first conference (click here for photo gallery).

 

Enjoy!

Comments (0)
Categories : Conferences, News, SBS, SMB
Tags :

Ballmer to Retire from Microsoft

by KW · Comments (0)
Aug 23 2013

Steve Ballmer, in an internal letter to Microsoft employees, announced his plans to retire as CEO of Microsoft within the next 12 months. This letter was posted to the Microsoft News Center today (August 23, 2013).

http://www.microsoft.com/en-us/news/press/2013/aug13/08-23StatementPR.aspx

Steve has been the target of a lot of kudos and bashing over the years. I don’t intend to bash him.

My only experience with Steve is when he would come and speak to the worldwide MVP Summit. He appears to be very much at home with an audience of 3,000 techies drilling him with questions. He would stand up on stage, take questions from the audience, give his answers (all without any notes or teleprompters), and quite often, jot down notes on comments he received.

He truly was larger than life on that stage. He would move all around, rarely sitting. You could feel his passion for Microsoft.

Here is a photo I took at the 2009 MVP Summit when one of the MVP’s gave him a “Windows Home Server (WHS)” sticker:

steve_ballmer

It’s a dawning of a new era for Microsoft. I wish Steve well.

Comments (0)
Categories : News, SMB, Windows
Tags :

New HP Microserver Gen8 available!

by KW · Comments (0)
Aug 09 2013

Hurrah! HP has released their next generation of the HP Microserver, properly labeled as: HP ProLiant MicroServer Gen8.

First, a quick look back …

HP MediaSmart Server / Data Vault Server

Nearly five years ago, HP released their HP MediaSmart Server for running Microsoft’s Windows Home Server solution. Although it was designed as a “home” solution, many of us immediately saw this as a great backup solution for small businesses. 

Sure enough, a year later, HP repackaged the MediaSmart Server, and sold it as the HP StorageWorks Data Vault Server. Nearly everyone of my customers has a MediaSmart/Data Vault server strictly for doing workstation backups.

All at a cost of less than $500!

image     image

HP MicroServer

Two and a half years ago, I purchased my first HP ProLiant MicroServer. I have one in my lab that I use for demos. It is currently running Windows Server 2012 Hyper-V, 2012 Essentials and Windows 8. At every I.T. seminar or conference I have spoken at in the past two years, you get everyone’s attention when showing off the HP MicroServer.

I have the HP MicroServer installed at customer sites being used as a backup server (WHS 2011), as a member server running Windows Foundation/SharePoint, and as a development system for LOB web applications.

And now, presenting …

HP ProLiant MicroServer Gen 8

Last month HP released the next generation of the MicroServer – HP ProLiant MicroServer Gen 8. And it’s a beauty!

The improvements over the prior MicroServer includes: supports up to 16GB memory, up to 12TB (terabytes) of non-hot plug STA drives, HP iLO4 integrated with the gigabit NIC switch, add-on Raid 5, and easier internal access when adding memory.

It comes in two models: Intel Celeron G1610T (2 core, 2.3GHz, $449) or Intel Pentium G2020T (2 core, 2.5 Ghz, $529). Both models come standard with 2GB memory.

image

But don’t take my word for it. Read what my good friend and MVP partner,  Robert Pearman has to say about the new Gen8 MicroServer!

Let me know what you think of it!

Comments (0)
Categories : Backup, News, SBS, Servers, WHS
Tags :

Cruise Video

by KW · Comments (0)
Aug 09 2013

My wife and I celebrated our 40th wedding anniversary with a cruise (Jul 28-Aug 4) to the Bahamas, St. Thomas and St. Martin/Sint Maarten. Here’s a short 11 minute video slideshow of photos we took. Enjoy!

Comments (0)
Categories : News
« Previous Page
Next Page »

Categories