Sophos has just released this new update for Sophos UTM, it fixes the known Cisco IOS VPN bug, among other things: Up2Date 9.410006 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-534]: [AWS] Template update notification Fix [NUTM-6178]: [AWS] pg_xlog directory filling up on AWS deployments Fix [NUTM-6186]: [AWS] Make all UTM logs available… Sophos UTM 9.410-6 releasedRead More Sophos UTM 9.410-6 released
Finally Veeam 9.5 B&R Update has been released, adding support for vSphere 6.5! Platform support Dell EMC Data Domain OS 6.0 support, including synthetic full backup performances optimizations, backup retention and health check reliability improvements. HPE 3PAR 3.2.2 MU3 support, including multiple API interaction improvements for added reliability and performance. HPE StoreOnce 3.15.1 support, bringning Instant VM Recovery to Catalyst-based backup repositories. Veeam Agent for Linux 1.0 support. Veeam Agent for Microsoft Windows 2.0 Public… Veeam 9.5 Backup and Replication – Update 1 released!Read More Veeam 9.5 Backup and Replication – Update 1 released!
After upgrading to 9.409-9, Cisco VPN client in Remote Access is broken, symptoms are that you can connect as usual with your client, but no traffic get’s through, the fix is to change the way that SHA2 is being truncated, user HolgerLehn in the Sophos Community has described this: Community link: https://community.sophos.com/products/unified-threat-management/f/hardware-installation-up2date-licensing/84979/since-9-409-8-and-9-ipsec-cisco-vpn-not-working/319183#319183 So in short, go into Shell in the UTM as loginuser, then su for root access, and type this: “cc change_object REF_IPsecPolicyCisco ipsec_auth_alg sha2_256_96″… Sophos UTM 9.409-9 – Cisco VPN Client bugRead More Sophos UTM 9.409-9 – Cisco VPN Client bug
Sophos has released 9.409-9 today, fixing many issues, see the release notes here: Up2Date 9.409009 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade Connected Wifi APs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-2392]: [AWS] Allow the user to select the security group to port during conversion Fix [NUTM-5327]: [AWS] Confd object missing after instance recovery in HA scenario Fix [NUTM-5339]: [AWS] [RESTD] allow… Sophos UTM 9.409-9 releasedRead More Sophos UTM 9.409-9 released
During security audit scans, it is sometimes seen that a Microsoft Internet Information Services (IIS) server is exposing the servers internal ip, when a speciel get request is sent to the server. This can be due to misconfig, unpatched server or maybe something that is default. It can be amended by running this on IIS servers from 2008 R2 and up: appcmd.exe set config -section:system.webServer/serverRuntime /alternateHostName:”mail.domain.com” /commit:apphost Reboot is not needed and now it will… Compliance check: IIS leaks internal IPRead More Compliance check: IIS leaks internal IP
VMWARE has just released vSphere 6.5 offering a lot of new and great features: vSphere 6.5 – Release Notes vSphere 6.5 – Whitepaper What’s new From my perspective, the biggest feature is the new “VMware vCenter Server 6.0 with an embedded VMware Platform Services Controller” The VCSA have been having a rough start in the early days, db errors and unresponsiveness, and most of all, the lack of Update Manager, but as of now, things… vSphere 6.5: The new vCenter server appliance finally here – how to migrate!Read More vSphere 6.5: The new vCenter server appliance finally here – how to migrate!
Sophos has released 9.408-4 of the UTM firmware today, it’s a big fix and fixes among other thing, the SMTP problem with same receipient set twice 🙂 Release notes: Up2Date 9.408004 package description: Remarks: System will be rebooted Configuration will be upgraded Connected REDs will perform firmware upgrade News: Maintenance Release Bugfixes: Fix [NUTM-5349]: [AWS] Restore fails if UTM is created with backup file in user data Fix [NUTM-5466]: [AWS] ssh disabled – No connection… Sophos UTM 9.408-4 releasedRead More Sophos UTM 9.408-4 released
When adding bigger disks or rebuilding a volume, storage manager normally shows how far it’s gotten in the process, but sometimes this percentage is missing! For now, a workaround it to do a SSH to the terminal of the Synology, and issue this command: “cat /proc/mdstat” And you can see how far you are and a approx. time frame for the end 🙂Read More Synologo NAS: Parity Consistency Checking missing Percentage
Adding an additional layer of security with DNSSEC: It’s easy to setup, your DNS provider has to support this though, read more about DNSSEC (Domain Name System Security Extensions) here: https://en.wikipedia.org/wiki/Domain_Name_System_Security_ExtensionsRead More martinsblog.dk now DNSSEC secured :)
When testing WordPress sites for development, it is often common, to restore the whole site to a testsite ex. test.domin.com, but we do not want to allow search engines to read data and index things on the test site after restore, we will have to change the site url, else we will be redirected to the normal url. Hardcoding site url: Edit wp-config.php and add theese lines:
This is a quick and… WordPress: How to change site URL and disallow robotsRead More WordPress: How to change site URL and disallow robots