Profile

Cover photo
David Tower
Attended Purdue University
712 followers|852,656 views
AboutPosts

Stream

David Tower

Rants, Vents, Misc. Posts  - 
 
Sophos has an amusing marketing team. I question how this applicance would actually function in a rack however.

https://www.youtube.com/watch?v=A-kY2WWWEyQ
16
Matthew Augustus's profile photoJonathan Weekes's profile photoDavid Tower's profile photoCharles England's profile photo
7 comments
 
ha ha i love it... the video was even funnier for me as i just watched the most recent episode of "Silicon Valley" where they are designing a box for their product.... When can we get one :)
Add a comment...

David Tower

Infosec\Cybersecurity  - 
 
Just in case you need more reasons to lose sleep here is a Google sheet with an ongoing list of various ransomwares that have come out over the past few years. It isn't mine but I think it needs a bigger audience. the prevention tab is nice as it lists the known vectors and what to block at the network edge.

Stick "export?format=xlsx" on the end of the URL if you want an offline copy.

https://docs.google.com/spreadsheets/d/1TWS238xacAto-fLKh1n5uTsdijWdCEsGIM0Y0Hvmc5g/htmlview?sle=true#
AES(256), https://decrypter.emsisoft.com/, http://www.bleepingcomputer.com/news/security/new-radamant-ransomware-kit-adds-rdm-extension-to-encrypted-files/ http://www.cyphort.com/radamant-ransomware-distributed-via-rig-ek/ http://www.nyxbone.com/malware/radamant.html ...
9
3
Kenneth Oncinian's profile photo
 
Thank you, this is a good read.
Add a comment...

David Tower

Rants, Vents, Misc. Posts  - 
 
What makes a good systems engineer? “Not getting in a bad mood even if you’re woken up in the middle of the night.” according to a children's book in Japan. Well, I guess I'm glad my title got changed to something else so I can still be grumpy when the phone goes off in the middle of the night.

http://www.japantoday.com/category/lifestyle/view/book-for-japanese-kids-offers-one-big-reason-not-to-be-a-systems-engineer-when-you-grow-up
Young kids are years, or even decades, away from reaching the point in their life where it’s time to choose…
3
robert avila's profile photoArturo Medina's profile photoJohn Binuya's profile photoDavid L. Craig's profile photo
7 comments
 
Ditto being a parent, right? You know you are cut out for bringing newborns home from the hospital if sleep makes you irritable.
Add a comment...

David Tower

SysAdmin\NetAdmin  - 
 
Anyone have a good way of building a Geo-IP block list in Windows Firewall (Windows Server 2008R2 and up)?

Normally I would just block the traffic at the network edge and not worry about it...but this is a special snowflake use case. I have a couple of "cloud hosted" VMs running Windows Server 2008R2 and Windows server 2012. I have noticed an increase in brute force attacks against RDP and other protocols recently so I decided to do something about it.

Normally I would just whitelist the expected IPs for everything but HTTP & HTTPS and be done with it...but this is support some road warriors who live out of hotels so the IP keeps changing. When they remember to use a VPN they are using a commodity VPN instead of the company VPN (not my fight).

Is there something like fail2ban for Windows that I just don't know about?
1
Rich Kreider's profile photoRon Rossman Jr's profile photoWylie Bayes's profile photoDavid Tower's profile photo
6 comments
 
+Rich Kreider : thanks, I'll look into ts_block

+Chris Nicholson, +Rich Kreider  : no edge router access. Stand-alone VMs on a provider where I do not have that level of access. On the corp network this is the case but I'm supporting Sales and we did not have the local resources available.

+Ron Rossman Jr : investigating 2FA on the corp network. My current issue is stand-alone VMs for Sales that are not on the corp network. I'm trying to do the minimum possible work.
Add a comment...

David Tower

Introductions  - 
 
Greetings! I've been gone from this community for several months (self imposed social media cleanse) so I just wondered if the rules or culture have changed much since the summer.
2
Jairo B.'s profile photoA Marie's profile photoMike Rigsby's profile photoCombined Employees CU's profile photo
12 comments
 
+Mike Rigsby
+David Tower I wondered too. Good to have you back.
Add a comment...

David Tower

Shared publicly  - 
 
The Pinterest user experience leaves a lot to be desired and actively drives me to not what to use their site.

The black bar across the bottom that grows as you scroll destroys any desire to actually create an account. having "continue" and "login" buttons that both go the login screen is disingenuous as well. I want to continue without the black bar.
1
Add a comment...

David Tower

Infosec\Cybersecurity  - 
 
A new email campaign from ransomware developers...tricking people into installing a new variant thinking they are downloading the Widows 10 installer instead. Not likely to impact the managed workplace but very likely to hit unmanaged SMBs and private individuals.

http://www.theregister.co.uk/2015/07/31/windows_10_download_ransomware/
This one will be an 'absolute bastard,' say security bods
11
6
Jon L's profile photoBob Kinney's profile photoJASON RAMOS's profile photoFrank Buttitta's profile photo
6 comments
 
This had to happen !  Hope your Backups are working !
Add a comment...
Have him in circles
712 people
Mina Banod's profile photo
Today New Feed's profile photo
Periasamy R's profile photo
Electronics and Accessories's profile photo
Adelaide Mrs's profile photo
Christy Brackenhackenberg's profile photo
Natale Micheal's profile photo
Deep Discount Servers's profile photo
Brennan Rand's profile photo

David Tower

SysAdmin\NetAdmin  - 
 
Microsoft will start releasing monthly update rollups for Windows 7 and 8.1 to make imaging easier.

The various GWX updates are likely included so if you do not having blocking measures in place be aware. The telemetry updates are likely included as well if you have been avoiding those.

https://blogs.technet.microsoft.com/windowsitpro/2016/05/17/simplifying-updates-for-windows-7-and-8-1/
While we’ve spent a lot of time over the past year talking about Windows 10 (including new roadmap details), we know that organizations are still working with Windows 7 too, regularly updating their Windows 7 SP1 images to include the latest updates, app versions, and more. For those that are involved in that process, you’ve...
7
2
Nate Berry's profile photoRodney Fletcher's profile photoVal Antonescu's profile photoMichael Rodriguez's profile photo
6 comments
 
Try a program called never10 by Steve Gibson Security expert. Www.GRC.com your welcome.
Add a comment...

David Tower

General IT Discussion  - 
 
In case you haven't seen it yet Microsoft KB3035583 appears to unset the registry changes outlined in KB3080351 to block Windows 10 updates/notifications. If you use a GPO to block you are still fine but stand-alone systems may be at risk.

http://windowsitpro.com/windows-10/kb3035583-disables-windows-10-upgrade-blocking
A revamped update may be causing the Windows 10 upgrade to break through upgrade barriers.
10
1
Arturo Medina's profile photoScott Talhelm's profile photoJohn C. Reid's profile photoDavid Tower's profile photo
4 comments
 
+John C. Reid
as far as I know once the registry files are put back in place (by GPO or other means) then the update notifications stop again.
Add a comment...

David Tower

Dev\Code\Script  - 
 
SQL Server terminology question: WSFC, FCI and AG terms.

I'm having some problems wrapping my head around the SQL Server AlwaysOn terminology and what Failover Cluster Instances (FCI) and AvailabilityGroup (AG) setups actually mean.

First, is it still possible in SQL Server 2012 and up to have just the reliable Windows Server failover Cluster (WSFC) with a happy little quorum disk and cluster manager to control which node is running the database resources?

For FCI does it have the same AlwaysOn cluster manager as the AG does? I have seen some problems with legacy applications that have a set connection string interacting with the AG cluster controller is why I ask.

Corollary question, can you setup FCI without a replica? also when restoring an FCI databsae do you have to remove the database from AlwaysOn first, restore, then add back to AlwaysOn?

Finally is anyone using AG for applications with stateful connections? What has been your experience?

edit: MultiSubnetFailover is the connection string parameter I was thinking of
1
Add a comment...

David Tower

Shared publicly  - 
 
12th Night is upon, heralding the return of the ultimate cosmic horror, may all cower in the mournful shadow of the King Cake Baby. That is not dead which can eternal lie, and with strange aeons even death may die. We shall see that at which dogs howl in the dark, and may not the cold, glossy plastic of the King Cake Baby graze upon your palette for fear of pastry retribution. Rest well New Orleans.
1
mike teuscher's profile photo
 
The horror.... The horror.
Add a comment...

David Tower

Rants, Vents, Misc. Posts  - 
 
Statements like this make me weep for our technology future. This was said by a former chairman of the House Permanent Select Committee on Intelligence. Basically the Government needs to be able to break all encryption because otherwise "the terrorists win".

http://edition.cnn.com/2015/08/01/opinions/rogers-encryption-security-risk/index.html
Technology companies are creating encrypted communication that protects their users' privacy in a way that prevents law enforcement accessing the content.
1
John Ogden's profile photoGiusti Fy's profile photo
2 comments
 
LOL when american politicians doesnt like something about technology they take control of it yelling about terrorism. real terrorist have Pcs in the middle of the desert? i think no electricity and no PC for making HD ads for recruitment.
USA = NO PRIVACY, NO PRIVACY make me fell more like old deuschtland dictatorship or 1984.
good game usa.
Add a comment...
People
Have him in circles
712 people
Mina Banod's profile photo
Today New Feed's profile photo
Periasamy R's profile photo
Electronics and Accessories's profile photo
Adelaide Mrs's profile photo
Christy Brackenhackenberg's profile photo
Natale Micheal's profile photo
Deep Discount Servers's profile photo
Brennan Rand's profile photo
Work
Occupation
IT Professional
Basic Information
Gender
Male
Story
Introduction
Have you tried turning it off and back on again?
Education
  • Purdue University
    B.S. Telecommunications and Networking Technology, 1995 - 2000
Links