FileZilla is a popular open source file transfer client program that provides an
easy to use graphical user interface, restores interrupted file
transfers, and supports SFTP (SSH File Transfer Protocol).
Administration of multiple FTP sources and support for firewalls are
provided as well. It is available for all major platforms and supports
multiple languages.
Firewalls News
| FileZilla FTP Client and FTP Server Microsoft wants to park a cloud container in your driveway By Joe Wilcox, Betanews Cloud computing dominated the morning's Microsoft Financial Analyst Meeting 2010 presentations. COO Kevin Turner and Chief Research Strategy Officer Craig Mundie spent more time talking cloud computing than any other topic. For Mundie, it was a bold departure from previous years, where he spoke broadly and almost exclusively about forthcoming technologies -- typically years from release, if ever. Last year, he asserted that the successor to the PC would be "a room." Some reasons for Microsoft's cloud focus should be obvious: 1. Azure is available, as of six months ago. 2. Cloud computing is all the rage right now. 3. Microsoft recently released new hosted applications. 4. Competitors are rallying behind the cloud to runaround the Office-Windows-Windows Server applications stack. 5. Hosted apps let businesses offer employees anytime, anywhere, on-anything data access, while better protecting corporate information. But there is another reason that might be less obvious: New sales. For core products Office and Windows, and increasingly SharePoint and Windows Server, Microsoft is reselling to the same customers. With these established products, the company doesn't have anything really new to offer. C`mon what's all that different between Office 2007 and 2010? Windows 7 is an easier upgrade because most businesses run 9-year-old Windows XP. But Microsoft is still selling to the same customers. Azure and hosted Microsoft applications are new, fresh products with that familiar look and feel of the old stuff. Microsoft also can solve real-world problems: Helping businesses to meet mobile demands with lower privacy and security risks. It only takes one stolen or lost laptop containing millions of customer records to spoil a corporation's year. Cloud computing provides a means of giving employees greater mobility while holding data behind the firewall. Mundie used "data authority" to describe Microsoft's approach. "The other thing that we look to the cloud for increasingly is to be the data authority," he told financial analysts. "And I think that will be true whether as a person or an institution you want to have one place where you believe you can put an authoritative copy of information or have it propagate around to all the appropriate applications or devices in your life or work environment." From the "something new to sell" perspective, Mundie and Turner did more than tell financial analysts about emerging opportunities around the cloud. The executives made sales pitches to potential customers. After all, many of the financial companies represented in the FAM audience should be looking at adopting the kind of cloud services Microsoft offers -- sooner, rather than later. Surely Microsoft would also benefit from financial analysts satisfied with its cloud services. Wall Street's elite make more than recommendations about stock investments. They are IT influencers, even subtly. Satisfied customers are good evangelists. Successful marketing is also about controlling the vernacular, something Microsoft attempted to do with "software plus services." Today Mundie put firmer spin on "client plus cloud as a computing platform"; the term "client plus cloud" isn't new for Microsoft, but both executives gave it a firm kick. Mundie explained: Let me talk about role we think the cloud plays. Many people talked about it runs your applications or it's a piece of your infrastructure. But we think of it more broadly...The cloud is a place where we get to do the orchestration across all these myriad devices in your life, across a whole array of applications. The world that many of us have grown...as the mobile environment or personal computing or laptop computing environment were emerging were that each of them was a bit too much of an island. It was a very manual process to maintain the relationship and data and communication that you would ideally want among these devices. And as the number and type of devices grows essentially without bound, it would be a nightmare if this was left as an exercise to the user. So the cloud becomes a place where we can orchestrate the operation of these collection of devices and that will be a very, very important part of what makes this useful and interesting. But "client plus cloud" isn't descriptive enough. Unless I misunderstood the executives, Microsoft is going into the big-iron hardware business. So "client plus cloud" has broader meaning. Mundie told FAM attendees they can explore a "prototype of a container" with 600 servers "sitting in the parking lot right outside." He explained what such a porta-server farm could do for them: "It's completely self-contained. You don't need chilled water. In fact, you just hook it up to your garden hose. You put in electricity and your fiber optic connection and you can be online...You'll be able to buy these things and just have them delivered in your parking lot and put it anywhere you want. This is the ability to combine the super scale capabilities that [Turner] alluded to and the knowledge and understanding that comes from that with the ability to do creative engineering." Now that's a sales pitch. Copyright Betanews, Inc. 2010       70% of Microsoft cloud 'wins' are new customers By Joe Wilcox, Betanews Microsoft COO Kevin Turner made the bold statement this morning during the company's annual FInancial Analyst Meeting. "One of the most exciting things about our cloud strategy is that 70 percent of the wins in the cloud that we had in Q4, ladies and gentlemen, were new Microsoft customers," Tuner told financial analysts. "Yeah, new Microsoft customers. They were IBM Lotus Notes customers, Novell e-mail customers. They were all this other stuff, in addition to the Microsoft customers, that we're actually able to grow our portion of the pie this next year in a very dramatic way, because we can explode worker productivity." "New" and "customers" are two words not often conjoined at Microsoft. The company's enterprise products are so well established, new sales are usually to existing customers. That Microsoft is adding any new customers from its cloud services is significant. The number Turner stated is staggering, assuming his definition of "new" means a customer who isn't using Microsoft products somewhere else, which is a tough claim for this reporter to believe. Turner identified cloud computing as one of several "big focus" areas for enterprises. "The first one is around rebooting, retransitioning, replatforming ourselves, if you will, around leading with a cloud with our customers," he said. If you want to go to the cloud, we'll help you do that. We've changed that. I don't believe that was a good move strategically, and it's one I'm personally course correcting on as a direction." The statement is surprising. In January, I raised concerns that Microsoft's Azure cloud strategy had changed shape -- that the deliverable looks more like a cross between Amazon cloud services and hosted Microsoft applications than the operating system in the sky vision previously outlined by Ray Ozzie, chief software architect. That Turner, who represents the Office and Windows hawks, is presenting the cloud strategy is troubling. What about Ozzie? The cloud had been his baby and the way for Microsoft's reinvention. Still there's some sense to Microsoft's approach. Turner used "Access Anywhere" to describe what I've long called "anytime, anywhere, on-anything" computing. Turner's term is more concise but similar concept. Businesses can take control of their information by providing access through hosted services. Employees can benefit from mobile computing without taking precious data outside the firewall on laptops, smartphones and other mobile devices. "We now have over 10,000 paying customers on our cloud infrastructure platform and that number is continuing to grow every day," Turner said. (By the way, I could not get Microsoft's video plug-in to work in any non-Internet Explorer 8 browser; I've pulled the quotes from the live transcript, which uses a Java plug-in.) "Our second big focus for businesses clearly is around the Windows 7 and Office 2010 refresh," Turner told FAM attendees. Microsoft sells nearly 8 copies of Windows 7 a second. "For the first time in a long time, we grew share versus Apple in the United States in laptops per IVC this past year. Thanks to Windows 7. In fact, we were up 2.7 points against Apple in the United States in laptops." That Turner must even mention Apple says something about how he views the Mac maker competitively. Apple's market capitalization exceeds Microsoft and only a few hundred million in revenue separated the companies during second calendar quarter. Turner identified several competitors that Microsoft is targeting: Google, IBM, Oracle and VMware. He ended his presentation by returning to the cloud. "Our client software that connects to the cloud and the better our cloud software is the more value that will drive to our on premises client software, and we're going to continue to push on that in a very profound way," he said. What that really means: For enterprises, Microsoft is attempting to extend its Office, Windows, Windows Server application stack to cloud services. If businesses buy into Microsoft's cloud, they get the integrated benefits. It's not an open stack. Turner talked about the future, which is exactly the right approach. As I asserted yesterday, today is about tomorrow -- Microsoft conveying what it will accomplish in the near future rather than what financially happened in the past. Copyright Betanews, Inc. 2010 Acme Packet launches "Powered by" program Remember when 'Intel Inside' was the easy way to know if a computer was going to be fast enough for your needs? Well what if your network element had a stamp to let you know that you were going to get the right session border control (SBC) elements with whatever device you were picking up? Acme Packet has come up with a variation on this idea to get their Net-Net SBC into the hands of customers everywhere: make it easy to embed the Net-Net OS-E SBC into network elements at the enterprise border and let IP communication solution providers stamp a "Powered by AcmePacket" label on the side. The new initiative truly expands the territory of Acme Packet's SBC solutions, putting them in the hands of SMBs and small contact centers. In addition, the program enables IP communications infrastructure providers to embed SBC software in a wide range of hardware platforms such as IP PBXs, unified communications (UC) servers, multiservice business gateways, firewalls and routers, allowing for an SBC solution that occupies a smaller footprint on the customer premise. For more details: Related news: Cloud Expo Sponsor Compuware Named a ?Value Leader? by EMA Compuware Corporation on Wednesday announced that Enterprise Management
Associates (EMA) has named Compuware a “Value Leader” and
recognized as the industry’s best Business Service Management
(BSM) solution in the “EMA BSM Service Impact Radar Report.”
The report evaluated 14 BSM vendors on vendor strength (architecture,
integration functionality), cost efficiency (ease of administration,
deployment, customer support, cost advantage) and product strength. A
complimentary copy of the report can be viewed at: http://bit.ly/c1hTMK . Value leaders are among the BSM Service Impact elite who have achieved
the highest product scores around cost, deployability, architecture and
functionality. They also have relatively quick time-to-value with strong
contributive BSM Service Impact benefits. According to the report:
“Compuware’s strengths in overall Service Impact monitoring
are industry leading—in part because of its native strengths in
flow-based views of complex applications/infrastructures, its leadership
in User Experience Management and its recent acquisition of Gomez for
superior support of mobile environments and transaction performance from
outside the firewall.” soa.sys-con.com |
7/22/10 1:30 AM
Who will trust open source security from the government The Open Information Security Foundation, headed by Mark Jonkman of
Emerging Threats and Victor Julien of the Vuurmuur firewall project, are
offering an intrusion detection and prevention engine with
multi-threading automatic protocol detection for a wide variety of protocols.
www.zdnet.com |
7/21/10 1:47 PM
Microsoft releases beta of latest free anti-malware service Security Essentials on Microsoft Connect today , includes a number of new features: a new
protection engine and network inspection system, integration with
Windows Firewall, and integration with Internet Explorer for web...
story.venezuelastar.com |
7/20/10 8:33 PM
Microsoft releases beta of latest free anti-malware service Security Essentials Today, Microsoft has released the next version of Microsoft Security Essentials in beta. The free anti-malware service was first debuted in 2009 after Microsoft discontinued Windows Live OneCare. The beta, available on Microsoft Connect today, includes a number of new features: a new protection engine and network inspection system, integration with Windows Firewall, and integration with Internet Explorer for web-based malware protection. This is a limited beta, available in English in the US and Israel, and is available to genuine Windows users on a first-come first-serve basis until it reaches the maximum number of participants. To download the beta, visit Microsoft Connect, and fill out the beta registration info. Copyright Betanews, Inc. 2010 Science and Meditation The June issue of the scholarly journal Psychlogical Science has an article titled "Intensive Meditation Training Improves Perceptual Discrimination and Sustained Attention" by Katherine A. MacLean and 12 other people. The article itself is behind a subscription firewall, but the gist of it is that researchers decided Buddhist meditation increases attention span. ... buddhism.about.com | 7/20/10 5:33 PM Firewalls for bad websites Meet the Bissessars: Prime Minister Kamla Persad-Bissessar and her
husband Dr Gregory Bissessar greet supporters at a People's Partnership
local gover...
story.trinidadtimes.com |
7/20/10 1:00 PM
China happy with Google's latest tweaks, saga appears at an end  China happy with Google's latest tweaks, saga appears at an end originally appeared on Engadget on Tue, 20 Jul 2010 03:30:00 EDT. Please see our terms for use of feeds. Permalink | Reuters | Email this | Comments www.engadget.com |
7/20/10 8:30 AM
Laptops will have firewalls to protect kids Prime Minister Kamla Persad-Bissessar has assured citizens that
firewalls will be placed on every laptop given to SEA students to
prevent them from accessing negative Web sites. Speaking at a politica...
story.trinidadtimes.com |
7/20/10 3:16 AM
Increasing holes in the Great Firewall of China There are now 420 million Internet users in China, up 36 million in the
past six months alone.
www.canada.com |
7/16/10 7:48 PM
The Aquarium: Friday Tips #5: SailFin CAFE, Drupal 6 on GlassFish 3, Websockets with GlassFish, ... Here are some tips that have been recently published on Java EE 6 & GlassFish: blogs.sun.com | 7/16/10 7:00 PM Security vs. Social Media: How to Keep Your Customers on the Winning Side Without a doubt, social networking and other Web applications have
experienced an exponential upwards spike in recent years, and
subsequently users are becoming more proficient about masking their use
in the workplace. As employees engage in tricks that include using
company laptops for recreational home use to deploying proxy servers to
mask their use within the organization's firewall, IT administrators are
steadily losing visibility and control. www.crn.com | 7/15/10 3:53 PM Planet Eclipse: Alex Blewitt: Eclipse CVS checkout behind a firewall and proxy I discovered today that it is now possible to do anonymous checkouts of Eclipse projects behind a firewall. There has been (for a long time) a CVS server running on proxy.eclipse.org on port 80 (for anonymous access) and port 443 (for committer access). However, the anonymous access only works if you have only a firewall (i.e. which lets any traffic through on port 80). Most large organisations however don't employ only a firewall - they also have an HTTP proxy sitting in the middle. The problem is that the HTTP proxy only knows how to speak HTTP, and gets confused when network clients start declaring their affections. HTTPS isn't so encumbered, however; what happens is that the client sends a HTTP Connect message, and thereafter all the bits are opaque to the proxy. But also, most HTTPS proxies will only permit CONNECT calls through to port 443; which is why the committee proxy works. Fortunately, those nice people at Eclipse have set up a second box, pebbles.eclipse.org, which runs an anonymous CVS client on port 443. This means if you use "pebbles.eclipse.org" as the host, /cvsroot/eclipse (etc) as the CVSRoot, pserver as the method, anonymous as the user, and change the port to 443, and Bam! Bam! You can checkout code from behind the firewall. I don't know how long it's been in place - I know I've wanted it for a while - but thanks to the Eclipse Webmasters I can now checkout from CVS. At least I'll get some use out of it before everyone migrates to Git ...  Juniper Networks Protects Customers From New Microsoft Vulnerabilities Disclosed Today JNPR ) today confirmed its Intrusion Detection and Prevention (IDP)
security systems and Integrated Security Gateway (ISG) firewall/virtual
private network (VPN) systems with IDP offer protection for ...
story.venezuelastar.com |
7/13/10 9:40 PM
Why Former Loudcloud CEO Ben Horowitz Invested In Cloud Identity Startup Okta  Long before he was part of the powerful investing duo behind venture
fund Andreessen Horowitz , Ben Horowitz was a co-founder and CEO of Opsware (previously known as Loudcloud) a pioneer for cloud computing
companies (Opsware was eventually
sold to HP in 2007 for $1.6 billion). He's considered an expert in the cloud so his
first investment in a cloud computing startup is something to pay attention to. Okta, which received $750,000 in funding from Andreessen Horowitz last fall, is a cloud application
management service. Okta's platform allows companies to have control of
their users, applications, and data both in the cloud and behind the
firewall. techcrunch.com |
7/13/10 8:32 PM
Apple's Got a Fix for Those FaceTime Firewall Issues Hey, there. There's no need to worry. That firewall won't keep you from FaceTiming with the love of your life. www.topix.net | 7/13/10 6:15 AM Planet Eclipse: Martin Fluegge: It's dawning It has been a year since I announce that 0.1 is released. At this time
Dawn based on an own small model repository and provided real-time
shared editing for GMF diagrams - on a basic level. Dawn 0.1 came with a flexible communication mechanism which allowed switching the underlying transport protocol (at this time SOAP and RMI were implemented) at runtime. With an HTTP-based protocol in the background Dawn was (nearly) immune to firewall restriction. Dawn was also able to detect and visualize conflicts and to clear those on selected diagram elements. To avoid conflicts the user was able to lock certain parts of the diagram exclusively. As you might guess, this feature certainly needs some sort of a user management in the back end. This user management allowed to set access rights for every user and to control the rights for every diagram (read, write, modify). System administrators could grant/revoke these rights using a web-bainterface sed interface. This interface came along with a simple portal to view the GMF diagrams and their changes in real-time in a browser. Dawn 0.1 even provided some basic editing functionality from within the web-browser. But Dawn 0.1 also had some drawbacks. The performance on bigger models was rather poor. Also the design was far from being perfect. It was also clear that maintaining an own model repository in competition to CDO would be a hard job as single committer. Not that I do not like challenges, but this one was a bit out of my scope ;) This led to the idea to re-implement Dawn on CDO. So, I became a CDO committer ... and got sidetracked a bit learning all the new stuff. It took a while since a found time to look at Dawn again, but here we are one year later and I am proud to announce that Dawn 0.2 is out now. Now, Dawn is based on CDO and is treated as one of its sub components. So you can receive it from the Helios update site or the latest CDO builds . As a gift for its 0.2nd birthday, Dawn got its own brand new logo. Here it is: I addition a new wiki page will serve as entry point for every information around Dawn. If you are interested in Dawn have a look at the getting started section. Or, if you want to generate generate your own client fragment for your GMF editor, visit this tutorial . There are some features which are not yet re-implemented (e.g the web viewer, locking or authentification). If are you are interested in these features track the features page or the related bugzillas. Dawn will not be limited to GMF. In fact it is going to provide collaborative access to every UI which has an underlying EMF model und thus can be stored in a CDO repository. I leave it up to you to image what this could include ;) mftech.org | 7/11/10 11:25 AM Delays to Australian firewall The Australian government is conducting an independent review of websites due to be blocked by its controversial internet filter. www.topix.net | 7/10/10 10:33 AM Delays to Australian firewall The Australian government is conducting an independent review of websites due to be blocked by its controversial internet filter. www.topix.net | 7/9/10 10:19 PM Delays to Australian firewall The Australian government has announced an independent review of the
rules behind its controversial internet filter.
news.bbc.co.uk |
7/9/10 4:17 PM
Delays to Australian firewall The Australian government has announced an independent review of the
rules behind its controversial internet filter.
news.bbc.co.uk |
7/9/10 4:17 PM
The Other Side of Security The Denver edition of Security BSides took place a few weeks ago in a garage turned art gallery on the far end of Denver's emerging Santa Fe Arts District, right on the border between historic working-class neighborhoods and a rambling wasteland of building supply warehouses. The nearly all-male crowd, dressed in jeans and black t-shirts or IT casual, started the morning with bagels and copious amounts of strong, dark Daz Bog coffee while discussing other computer security and hacking conferences they'd been to, or were planning to attend. Two full kegs from local favorite Breckenridge Brewery arrived shortly after noon. BSides started last year as an alternative alongside DEFCON, RSA, and other big security events, and follows the loose "un-conference" model popularized by BarCamps a few years ago. As one of the BSides regulars explained, "this isn't some square-ass, like, sit around, don't talk to people thing." The presentation I enjoyed most was "Top 10 Ways IT is Enabling Cybercrime," presented by Daniel J. Molina from Kaspersky Labs. He described how quickly threats are evolving, how many new threats are appearing every day, and explained that the targets aren't always who you'd expect. "I don't have cool stuff," many companies think, "I don't need to protect it." To the bad guys, money is cool stuff. Private information is cool stuff. Contact lists are cool stuff. We all have that stuff. Most security programs are still based on the idea that data stays in the physical data center. Your iPhone or your boss's Blackberry proves that's not true. The data on your device is, in most cases, worth far more than the device itself. Insurance doesn't cover that. Corporate firewalls don't surround it. To users, as soon as they leave the building (maybe sooner), that laptop or other device is treated as a personal computer, and they engage in risky behavior. As we move to devices we don't control, software-as-a-service we don't control, social networks we don't control, on and on and on, we allow insecurities we can't control (and most likely can't even detect) into our mission-critical business processes. Another mistake he talked about is that the security industry overall focuses too much on protection, and not enough on detection or response. So we may not notice when the protection fails; if we do, we may not know what to do about it. We also leave information security as an IT responsibility, forgetting that the data as a whole belongs to the business as a whole—and for many companies, without the data, there is no business. And finally: settling for compliance. Much like CAN-SPAM, the regulations on data protection are the minimum standard. It's what you have to do to avoid going to jail, to keep the auditor off your back, to cover your (ahem) continued employment. Compliance isn't enough to actually keep you secure, because even at their best the lawmakers can only write regulations for attacks they've already been told about. Compliance with regulations is the starting point, not the end goal. As an audience-member asked earlier in the day: how do you address the disconnect between the actual law or policy, the decision-makers, and reality? As you can tell, much of this was intended for an enterprise IT crowd. My background is with ISPs and consumer internet services, so it was interesting to hear the differences and similarities in attitudes and approach. That question about laws, decision-makers, and policy certainly resonates when pondering email, spam, privacy, or email marketing. There are so many security conferences these days that it's hard to figure out which are worth attending, which are even worth paying attention to. Security BSides is new, it's an upstart, the organizers are clearly learning how to run an event—but it's real, almost gritty. The speakers and attendees are people who do things, who know things. They live in the same world as Charles Stross's fictional Bob Howard, though he also has worse things to deal with. When they tell us to be afraid it's because they've seen what's actually happening out there, not just because they have something to sell. So this, in my mind, is one event series to keep an eye on. If you'll be attending DEFCON later this month, BSides has two days planned in Las Vegas immediately beforehand. They also have meetings planned this year in Kansas City, Atlanta, Dallas, and Ottawa. This article was originally published by Return Path. Written by J.D. Falk, Director of Product Strategy at Return Path www.circleid.com | 7/8/10 8:30 PM How Western companies can help crack China's Great Firewall THEY WERE bold words. " We have decided we are no longer willing to
continue censoring our results on Google.cn ," a spokesman for
Google blogged on Jan. 12. "We recognize that this may well mean
having to shut down Google.cn, and potentially our offices in
China." Google followed these words with... McAfee puts security in the cloud McAfee sees these features as tops:
From the press release:
Read release: [BusinessWire]
Full Story » | Written by JG Mason for Gadgetell. | Comment on this Article » Lock Down Your Browser for Secure Web Surfing Web browsers are the key to the Internet. Without them the Internet is
an impenetrable black box. Browsers may be among the most commonly used applications, but they also offer the greatest number of attack options for dangerous content on the net. To keep viruses, worms and other malware away from your computer when surfing, it's crucial to configure your browser for security. The firewall on a DSL router is a good first step for protecting the computer during surfing, says Marco Rinne from the computer portal chip.de. But that doesn't hold true if your browser is out of date: "Internet Explorer 6 and 7 or Firefox 2 no longer satisfy current security standards," he says. For optimal protection, he therefore urges users to keep their browsers updated. There are numerous security tools already present in Firefox and Internet Explorer. The pop-up blocker, for example, prevents more than just annoying ads. It also throttles other windows that can be used to sneak malicious software onto PCs. Phishing filters protect personal data against theft. Firefox offers additional configuration options under the Settings item in the Security tab of the Options dialog box: this includes the ability to block risky or forged Web sites. It's also a good idea to prohibit Web sites from installing add-ons on their own. Similar settings are possible under Internet Explorer in the Security tab of the Internet Options dialog box, accessible from the Tools menu. Computer owners should also activate all options for warning against attacks, advises Markus Linnemann, managing director of the Institute for Internet Security (ifis) at the Polytechnic University of Gelsenkirchen in Germany. This applies in particular to warnings about suspicious content to be displayed using ActiveX, Flash, or JavaScript. Yet the warning mechanism on most browsers alone isn't usually enough, Linnemann says. Those who wish to be especially... www.cio-today.com | 6/29/10 3:32 PM 6to4: Easing the IPv6 transition With the exhaustion of IPv4 address space looming sometime in 2012;
probably earlier rather than later, it makes sense to ease on into IPv6
land. Without straying into tunnel broking and endpoint
shenanigans 6to4 is a method of wrapping up IPv6 inside of IPv4. (note
that MySQL does not currently support IPv6 itself – but what
we’re discussing here is about externally facing systems, like
your web/application servers) 6to4 performs three functions: Allocates
an IPv6 address block to any host/network that has a global IPv4
address. Wraps up IPv6 packets inside IPv4 packets for transmission over
IPv4 using 6in4 (traffic is sent over IPv4 inside IPv4 packets
whose IP headers have the IP protocol number set to
41; IPv6-in-IPv4. ) 6to4 makes use of IP protocol 41 too,
but instead of static endpoints, the endpoint IPv4 address is sourced
from IPv6 addresses within the IPv6 packet header. Routes traffic
between 6to4 and “native” IPv6 networks. As such its pretty
easy to implement, especially on our good friend Debian (and its better
looking cousin Ubuntu). I am going to step through setting up a Debian
host at Linode. Step 1 Check your Kernel Now, the first caveat is
that you must be running a 2.6.20+ kernel (At the time of writing the
latest linode kernel for Debian was : 2.6 Paravirt
(2.6.34-x86_64-linode)). The default ‘Etch’ release
kernel (2.6.18) supports IPv6 but woefully implements IPv6 stateful
connection tracking, which is just not good enough for a decent
firewall. If you have a look under your Linode Configuration Profile you
can see what Kernel you are running, and change it to one that is
supported; obviously a reboot would be in order if you change it. The
linode kernels have IPV6 support compiled in. Step 2 Calculate your new
IPv6 address Any IPv6 address that begins with the 2002::/16 prefix is
known as a 6to4 address, as opposed to a native IPv6 address which does
not use that prefix. The Internet Assigned Numbers Authority (IANA:
www.iana.org) has set aside this address space just for 6to4. IPv6
addresses are assigned based upon your IPv4 address; for instance,
74.207.254.16 would become 2002:4acf:fe10::/48 We need some tools
to help us calculate our IPV6 address, luckily there is a package for
this $ sudo apt-get ipv6calc Now its a matter of plugging in your IPv4
address into ipv6calc to determine your reserved IPv6 address range. $
ipv6calc -q --action conv6to4 --in ipv4 74.207.254.16 --out ipv6 and
voila your IPv6 address range appears: 2002:4acf:fe10:: (/48) You get
given an address range with a prefix length of 48 bits, which leaves
room for a 16-bit subnet field and a 64 bit host address within the
subnet. Step 3 Update your interface configuration You now need to edit
your network configuration file /etc/network/interfaces file auto
tun6to4 iface tun6to4 inet6 v4tunnel address 2002:4acf:fe10::1 netmask
16 gateway ::192.88.99.1 endpoint any local 74.207.254.16 #fits address
auto tun6to4 # make sure this interface comes up on boot iface tun6to4
inet6 v4tunnel address 2002:4acf:fe10::1 #first host in this address
range netmask 16 gateway ::192.88.99.1 #special anycast address for
6to4 (2002:c058:6301::) endpoint any local 74.207.254.16 mtu 1472
ttl 255 Restart your interfaces: $sudo /etc/init.d/networking restart
Step 4 Update IPv6 Firewall script/rules Now it’s fairly important
(read as critical) to firewall IPv6 stuff as it is with IPv4. Here is a
small sample of a firewall that will at the very least not leave you
hanging in the breeze. Needless to say you can add your own rules and
make this as complex as you need. # Initialize all the chains by
removing all the rules iptables --flush iptables -t nat --flush iptables
-t mangle --flush ip6tables --flush ip6tables -t mangle --flush # The
loopback interface should accept all traffic iptables -A INPUT -i
lo -j ACCEPT iptables -A OUTPUT -o lo -j ACCEPT ip6tables -A INPUT -i lo
-j ACCEPT ip6tables -A OUTPUT -o lo -j ACCEPT #Allow IPV6 packets to
come over the tunnel iptables -A INPUT -p ipv6 -i eth0 -j ACCEPT
iptables -A OUTPUT -p ipv6 -o eth0 -j ACCEPT # Allow outbound DNS
queries from the FW and the replies too iptables -A OUTPUT -p udp -o
eth0 --dport 53 --sport 1024:65535 -j ACCEPT iptables -A INPUT -p udp -i
eth0 --sport 53 --dport 1024:65535 -j ACCEPT ip6tables -A OUTPUT
-p udp -o tun6to4 --dport 53 --sport 1024:65535 -j ACCEPT ip6tables -A
INPUT -p udp -i tun6to4 --sport 53 --dport 1024:65535 -j ACCEPT #
Accept and reply to ICMP ping iptables -A OUTPUT -p icmp --icmp-type
echo-request -j ACCEPT iptables -A OUTPUT -p icmp --icmp-type echo-reply
-j ACCEPT iptables -A INPUT -p icmp --icmp-type echo-request -j ACCEPT
iptables -A INPUT -p icmp --icmp-type echo-reply -j ACCEPT #
IMPORTANT!!!! Allow all icmpv6 because they make IPV6 work ip6tables -A
OUTPUT -p icmpv6 -j ACCEPT ip6tables -A INPUT -p icmpv6 -j ACCEPT #
Allow previously established connections iptables -A OUTPUT -o eth0 -m
state --state ESTABLISHED,RELATED -j ACCEPT ip6tables -A OUTPUT -o
tun6to4 -m state --state ESTABLISHED,RELATED -j ACCEPT # Allow port 80
(www) and 51515 (SSH) connections to the firewall iptables -A INPUT -p
tcp -i eth0 --dport 51515 --sport 1024:65535 -m state --state NEW -j
ACCEPT iptables -A INPUT -p tcp -i eth0 --dport 443 --sport 1024:65535
-m state --state NEW -j ACCEPT iptables -A INPUT -p tcp -i eth0 --dport
80 --sport 1024:65535 -m state --state NEW -j ACCEPT ip6tables -A INPUT
-p tcp -i tun6to4 --dport 51515 --sport 1024:65535 -m state --state NEW
-j ACCEPT ip6tables -A INPUT -p tcp -i tun6to4 --dport 443 --sport
1024:65535 -m state --state NEW -j ACCEPT ip6tables -A INPUT -p tcp -i
tun6to4 --dport 80 --sport 1024:65535 -m state --state NEW -j ACCEPT #
Allow port 80 (www) and 443 (https) connections from the firewall
iptables -A OUTPUT -j ACCEPT -m state --state NEW,ESTABLISHED,RELATED -o
eth0 -p tcp -m multiport --dport 51515,80,443 -m multiport --sport
1024:65535 ip6tables -A OUTPUT -j ACCEPT -m state --state
NEW,ESTABLISHED,RELATED -o tun6to4 -p tcp -m multiport --dport
51515,80,443 -m multiport --sport 1024:65535 # Allow previously
established connections iptables -A INPUT -j ACCEPT -m state --state
ESTABLISHED,RELATED -i eth0 -p tcp ip6tables -A INPUT -j ACCEPT -m state
--state ESTABLISHED,RELATED -i tun6to4 -p tcp # The policy should be to
drop it iptables -A INPUT -j DROP iptables -A OUTPUT -j DROP iptables -A
FORWARD -j DROP ip6tables -A INPUT -j DROP ip6tables -A OUTPUT -j DROP
ip6tables -A FORWARD -j DROP I usually create a directory called
/etc/iptables (owner root:root / permissions 750) and drop
firewall up and down scripts in there. Then it is a simple
matter of adding the following scripts to the bottom of your eth0
interface definition stanza in /etc/network/interfaces to invoke them on
boot or whenever: pre-up /etc/iptables/firewall_up.sh post-down
/etc/iptables/firewall_down.sh pre-up /etc/iptables/firewall_up.sh
post-down /etc/iptables/firewall_down.sh IMPORTANT: Just a quick note
don’t block icmpv6 because it is the glue that holds IPv6
together. Step 5 Setup Forward DNS I am not going to over explain this
one because everyone has an opinion on how to setup DNS but in essence
you need to add a line like this to your zone file. There are plenty
articles outlining this stuff. hyosine AAAA 2002:4acf:fe10::1 Step 6
Setup Reverse DNS You now need to setup reverse DNS for your
address, so using our example of 2002:4acf:fe10 you will have to
configure the zone
of ”0.0.0.0.0.1.e.f.f.c.a.4.2.0.0.2.ip6.arpa” in your
name servers. The zone should have PTR records for your hosts just
like an in-addr.arpa zone for IPv4, but with hex digits of the IPv6
address backwards, separated by dots. Using our example, the 6to4 host
will have a ::1 suffix, so a reverse DNS record looks like:
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.1.e.f.f.c.a.4.2.0.0.2.ip6.arpa.
PTR hyosine.openquery.com. You will need to register this zone and its
servers with the 6to4 reverse zone authority. eg https://6to4.nro.net/
Step 7 Test The ping6 utility is probably best to test whether
your host is now working. It’s probably best to try the IPv6
address first: $ ping6 2002:4acf:fe10::1 PING
2002:4acf:fe10::1(2002:4acf:fe10::1) 56 data bytes 64 bytes
from 2002:4acf:fe10::1: icmp_seq=1 ttl=60 time=1.59 ms 64
bytes from 2002:4acf:fe10::1: icmp_seq=2 ttl=60 time=1.42 ms
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0 PTR 6to4.example.com. With that record
inside the above zone, the full record would be Now you can try with the
DNS name you just setup.
1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.7.c.2.0.8.a.0.c.2.0.0.2.ip6.arpa.
PTR 6to4.example.com. $ ping6 hyosine.cloudcaster.com PING
hyosine.cloudcaster.com(2002:4acf:fe10::1) 56 data bytes 64 bytes from
2002:4acf:fe10::1: icmp_seq=1 ttl=60 time=1.41 ms 64 bytes from
2002:4acf:fe10::1: icmp_seq=2 ttl=60 time=1.34 ms $ ping6
hyosine.cloudcaster.com PING hyosine.cloudcaster.com(2002:4acf:fe10::1)
56 data bytes 64 bytes from 2002:4acf:fe10::1: icmp_seq=1 ttl=60
time=1.41 ms 64 bytes from 2002:4acf:fe10::1: icmp_seq=2 ttl=60
time=1.34 ms Lastly, you need to register this zone and its servers with
the 6to4 reverse zone authority. Note that when you visit that site,
you’ll get an SSL certificate warning. This is normal. You need to
visit this site using IPv6 from the actual 6to4 zone you’re trying
to register. Follow the form to set up the nameservers for the zone and
that’s it!
openquery.com |
6/29/10 1:48 AM
Tackling Cyber Security: Should We Trust the Libertarians? Part 2 A couple of months ago, I wrote a post posing the question of whether or not more government regulation is required in order to secure the Internet. On the one hand, anonymity is viewed in the west as a forum for freedom of speech. The anonymity of the Internet allows dissidents to speak up against unpopular governments. However, the anonymity afforded by the Internet is not so much by design as it is byproduct of its original designers not seeing how widespread it would eventually become. The subject line of my post poses the question of whether or not we need more government regulation of the Internet, and what that regulation would actually entail. The libertarian position is essentially one that says less government interference (or action) in our lives is the optimal solution. While there is a proper role for government—such as military, police and courts (protection of private property and personal rights), when it overstretches that boundary it invariably leads to bad things: clamp down on the rights of its own citizenry, and inefficient bureaucracy that drives up the costs for everyone. If left to itself, private enterprise will step in and fix the problem by coming up with innovative solutions because of the profit motive. By providing something of value both sides win: private enterprise makes money, and citizens have a problem solved; all of this without government intervention. In the United States, and some other countries, capitalism is seen as the solution to many of society's problems and government interference/regulation is seen as a barrier. But capitalism is also viewed as not being enough to deal with the reality of every day life. Even today, with BP's oil spill in the Gulf of Mexico in Louisiana, there are politicians on both side of the aisle claiming opposite things: more government regulation is needed to prevent future disasters vs current government regulation caused this disaster (since beachgoers don't want to see oil derricks, legislation has been passed to force companies to drill in deeper water which is a far more risky endeavor). The market solution has merit if there are market driven opportunities. On his blog The Gates Notes, former Microsoft Chairman Bill Gates has a few FAQ's about what his foundation is doing to combat the problems of world health issues. One question he received is the following:
In other words, according to Gates, market solutions work when there is potential for profit. His foundation focuses on things where the profit potential isn't there and that's how they allocate resources. It truly is a charitable foundation that picks and chooses its causes carefully. Thus, while the libertarians do have a point that private enterprise can deliver solutions in a more timely, productive and efficient manner than government, the flip side is that private enterprise won't step up where no such profit motive/potential exists… nor should they. But if they don't and there is still a need, who steps in? Clearly, private charity can fill that void. The question that divides some people is whether government can step up and fill the rest, or even part of the rest, of it. In the world of cyber security, there are those that believe that the Internet is too wide open to secure and that unless we start to clamp down by tracking identity, we will forever be vulnerable to cyber attacks and at the mercy of hackers. This inherent vulnerability in DNS needs to be reworked. Because only government has the authority and resources to enforce standards of security protocol, government needs to step up and take the lead action in this. Private enterprise can only take things so far when it comes to Internet security (which is true). We will never achieve the amount of security we need while the current infrastructure is as it is—and for that we need stronger regulation. It is only a matter of time before we are hit with a series of cyber attacks so strong that the nation is paralyzed (or functionality strongly impeded) and so we must take preventative action now. The free market is not good enough in this case handle the problem. The libertarian position puts the above argument in context. The cyber threat, while real, is exaggerated. There is nobody actually out there in real life who is trying to steal our secrets. Yes, hackers are going after the Department of Defense's secrets, but they are being repelled with firewalls and counter threats. Howard Schmidt, the new cyber czar for the Obama administration, admits "there is no cyber war." The real problem is online crime and espionage. For that, we need to enforce our existing laws and provide better monitoring tools, but we don't need to re-engineer the Internet to track identity. The real reason that people claim we need to do something like this is the financial motive: if the government believes that we are in trouble, they will pay a lot of money to private enterprise to help fix the problem. Since fear is a good motivator, they need to exaggerate the nature of the claims in order to convince government to take action. Not only that, tracking identity gives those in power a good way of maintaining that power. So who's right? Are we only a few ticks away from a cyber time bomb going off? Or does the emperor really have no clothes? Written by Terry Zink, Program Manager www.circleid.com | 6/28/10 7:48 PM Windows 7 Firewall Review Of all the firewall versions Microsoft has come out with till now, Windows 7 Firewall review is the best so far. www.topix.net | 6/28/10 3:52 PM Structure 2010: Is There a Hybrid Cloud in Your Future? There are public clouds like Amazon's EC2, and private clouds run by many large institutions that exist behind firewalls, but some networking and storage experts believe that the big opportunity for infrastructure companies and service providers in the future will be in finding ways of blending the private and public, or creating bridges between ... www.topix.net | 6/25/10 9:15 AM Sure-fire MySQL Install on Windows Due to firewalls, virus scans, corporate security restrictions, or just
plain bad luck; there are times when MySQL just won’t install on a
specific Windows server. Here’s a sure-fire install method.
Relax, I won’t have you run the msi installer again. The
first step is to remove directories from your previous install attempts.
Uninstall from the control panel. Manually, rename or delete
“C:\Program Files\MySQL\MySQL Server 5.1″. Next,
delete (or rename) the data directory. Warning! If you have
previously entered data into MySQL, deleting the data directory will
delete data. The directory is located at “C:\Documents and
Settings\All Users\Application Data\MySQL\MySQL Server 5.1\data”.
You may need to unhide the data directory. Let’s get
started. #1. Download the no-install MySQL Version for Windows.
Choose either “Windows (x86, 32-bit) ZIP Archive” or
“Windows (x86, 64-bit) ZIP Archive” based on whether your
system is 64 or 32-bit . #2. Unzip the files to “C:\Program
Files\MySQL\MySQL Server 5.1″. #3. Use notepad or wordpad to
create a my.ini file and save the file in the MySQL directory,
“C:\Program Files\MySQL\MySQL Server 5.1″ Be careful
that notepad doesn’t add a default “.txt” extension to
the my.ini file ( http://support.microsoft.com/kb/253688 ) Add the
following following to your my.ini file and save. [mysqld] ##update
basedir if you move the install location basedir="C:/Program
Files/MySQL/MySQL Server 5.1" ##update datadir if you move the
data directory datadir="C:/Program Files/MySQL/MySQL Server
5.1/data" ## increase to 40% of RAM if using MyISAM
key_buffer_size=32MB ## increase to 80% of available RAM for production
usage innodb_buffer_pool_size = 128MB ## may want to increase if write
intensive innodb_log_file_size = 64MB innodb_log_buffer_size=8MB
table_cache=1024 thread_cache=16 query_cache_size=32M Note the basedir
and the datadir variables. If you wish to install in a different
location or put the data in a different location, update these values
accordingly. #3. Create and start the service. Open a
command prompt, and enter the following: "C:\Program
Files\MySQL\MySQL Server 5.1\bin\mysqld" --install
"MySQL 5.1" --defaults-file="C:\Program Files\MySQL\MySQL
Server 5.1\my.ini" This installs the server. To start the
service, type net start "MySQL 5.1" or start the service
from the control panel. You should be up and running. If not,
check your err log in “C:\Program Files\MySQL\MySQL Server
5.1\Data” #4. Connect from your client application and
update your user accounts. By default, there are 3 accounts:
root@localhost, root@127.0.0.1 and an anonymous account. The following
commands log in with the mysql command-line client, remove the anonymous
account and set the password for the root accounts. At a command prompt,
enter the following: "c:\program files\mysql\mysql 5.1
server\bin\mysql" -uroot This will log you into MySQL and you
should have a mysql command prompt like mysql> Here are the commands
to delete your anonymous account and set passwords for your two root
accounts. When setting the password, substitute your desired
password for “mypassword”. mysql> DROP USER
""@localhost; mysql> Set PASSWORD FOR
"root"@"localhost" =
password("mypassword"); mysql> Set PASSWORD FOR
"root"@"127.0.0.1" =
password("mypassword"); mysql> flush privileges; mysql>
exit Feel free to post any questions/comments or issues to the comment
section of this blog. For more comprehensive instructions see http://dev.mysql.com/doc/refman/5.1/en/windows-install-archive.html
lstigile.wordpress.com |
6/24/10 11:07 PM
Cisco Beefs Up Mobile Device Security With Updated Firewall Tools The networking giant seeks to bring more of its customers’ mobile
devices under its Secure Borderless Network Architecture, and updates
Cisco ASA and Security Manager. www.crn.com | 6/24/10 11:02 PM Australian Government Proposes ISPs Force Customers to Use Antivirus and Firewall Josh Taylor reporting in ZDNet.com.au: Committee chair Belinda Neal said in her introduction to the 262-page report titled "Hackers, Fraudsters and Botnets: Tackling the Problem of Cyber Crime" that due to the exponential growth of malware and other forms of cybercrime in recent years, "the expectation that end users should or can bear the sole responsibility for their own personal online security is no longer a tenable proposition"… Read full story: ZDNet www.circleid.com | 6/22/10 6:58 PM Marketwatch: Threats Create Opportunities A decade ago, a company looking to secure its computer systems would have purchased antivirus software, a firewall, and perhaps an intrusion detection system. Today, the growing variety of attacks has given rise to nearly 70 different security niches, including markets for firewalls that specifically protect Web-based applications and for systems that prevent data loss across an enterprise. Meanwhile, each submarket is getting increasingly complex. In 2009 one of the biggest security companies, Symantec, generated 2.9 million separate signatures, or digital patterns associated with malicious software--an increase of 71 percent over the previous year. www.technologyreview.com | 6/22/10 5:00 AM CVE-2010-1637 The Mail Fetch plugin in SquirrelMail 1.4.20 and earlier allows remote
authenticated users to bypass firewall restrictions and use SquirrelMail
as a proxy to scan internal networks via a modified POP3 port number.
web.nvd.nist.gov |
6/22/10 1:00 AM
CVE-2010-1638 The IMP plugin in Horde allows remote attackers to bypass firewall
restrictions and use Horde as a proxy to scan internal networks via a
crafted request to an unspecified test script. NOTE: this is only a
vulnerability when the administrator does not follow recommendations in
the product's installation documentation.
web.nvd.nist.gov |
6/22/10 1:00 AM
A parallel universe What happens when you mention Open Office and Firewall in once sentence,
in public ? People start actually building it (French Article) Then
add to that list that there's also people out there that think that
running MySQL over NFS is providing them High Availability, or that
using DNS Round Robin will provide them a scalable setup, So yes ..
apparently there is indeed a parallel universe out there. And no .. I
don't want to see Webmin in any Appliance .. that is a joke..., or
rather a rant .. Technorati Tags: firewall open source openoffice
presentation weridows zarafa zarafacamp zarafasummercamp Share with
Shareomatic! Trackback URL for this post: http://www.krisbuytaert.be/blog/trackback/1013
www.krisbuytaert.be |
6/21/10 8:19 PM
NBC Affiliates Will File Letter June 21st Supporting Comcast-NBCU Like, duh. But Broadcasting & Cable claims that NBC affiliates
association board chairman Brian Lawlor and past chairman Michael
Fiorile engaged Comcast COO Steve Burke and others at the Philadelphia
headquarters in some "tough negotiating" over key points and
protections on broadcast vs cable issues. "The affiliates wanted
assurances that Comcast would remain committed to over the air
television, and would keep the same amount of sports programming on NBC
and not shift it to cable," B&C says. "The affiliates also
wanted what one insider termed a 'firewall' between retransmission
consent negotiations and affiliate renewals if and when Comcast takes
over." [...]
www.deadline.com |
6/18/10 8:25 PM
Businesses Confront the Cloud Security Threat As chief information officer of the 1,800-bed Orlando Health System,
Rick Schooler needs to house 180 terabytes of medical images. That's
more than three times the print holdings of the Library of Congress.
"Within three years we'll be at 300 terabytes or more,"
Schooler says. That's a costly challenge. Storage gear isn't cheap and has to be kept cool by expensive air-conditioning. To keep expenses in check, Schooler has begun turning over online backup storage to Internet security provider Symantec. He says the pilot program may help him slash his storage budget -- currently at "hundreds of thousands of dollars" -- by 20 percent to 25 percent. Orlando joins a growing number of businesses embracing what's known as cloud computing, where tasks such as storage and database management are handled off-site and delivered via the Internet by companies including Amazon.com, Microsoft and Google. Cloud computing is gaining wider acceptance: Sales of cloud-based applications are growing five times faster than those of traditional applications, according to Goldman Sachs and Piper Jaffray. "The cloud is as profound an impact on what technology will look like in 20 years as the PC," says Walter C. Price, Managing Director at RCM Capital Management, which owns 583,000 shares of Salesforce.com and 1.1 million shares of SuccessFactors according to Bloomberg Data. Both companies specialize in selling hosted software-as-service applications. Security Is the Top Cloud Concern Even so, many companies remain skittish about entrusting important tasks to third parties. "It's a very attractive model, but there will be challenges," Hewlett-Packard Chief Executive Officer Mark Hurd said in a speech in Orlando in October. "It's unlikely we'd put anything outside the firewall that's material in nature that we couldn't 100 percent secure." In a recent survey of small business owners conducted for Bloomberg Businessweek.com by the professional social networking site LinkedIn, three-fourths of the... www.cio-today.com | 6/18/10 3:34 PM First Drive: 2010 Lamborghini Gallardo LP 570-4 Superleggera stupefies our senses Filed under: Coupe, Performance, Lamborghini, First Drive, Racing  2010 Lamborghini Gallardo LP570-4 Superleggera - Click
above for high-res image gallery The explosive burble from the V10's exhaust coming off the back straight seems powerful enough to vaporize insects in mid-air. The Howitzer-like concussions shock through the firewall and slam into our spines an instant before the combustive dissonance has time to reverberate off the outside wall and into our eardrums. The menacing acoustics force the other cars on the circuit to back off, while trackside spectators crane their necks to look up and cheer as the Lamborghini rockets by. We're at California Speedway attending the "The Ultimate Lamborghini Experience." This annual event allows owners to play with their exotics in a controlled environment free of driving citations and other pesky... um, slow cars. Since we don't own an Italian exotic, we have to thank Lamborghini of Beverly Hills for graciously bringing along the automaker's latest and greatest. In this case, it's the Gallardo LP 570-4 Superleggera . Photos by Drew Phillips / Copyright (C)2010 Weblogs, Inc. Continue reading First Drive: 2010 Lamborghini Gallardo LP 570-4 Superleggera stupefies our senses First Drive: 2010 Lamborghini Gallardo LP 570-4 Superleggera stupefies our senses originally appeared on Autoblog on Thu, 17 Jun 2010 11:55:00 EST. Please see our terms for use of feeds. Permalink | Email this | Comments www.autoblog.com | 6/17/10 5:55 PM Sitrof and Content Circles Offer Peer-to-Peer Doc Exchange CVE-2010-2305 Buffer overflow in an ActiveX control in SSHelper.dll for Symantec
Sygate Personal Firewall 5.6 build 2808 allows remote attackers to
execute arbitrary code via a long third argument to the SetRegString method.
web.nvd.nist.gov |
6/16/10 1:00 AM
Cloud Expo Silicon Valley: Analytics for Enterprises Using Private Cloud It is widely accepted that large enterprises will start cloud deployment
via "private cloud" – that is to say, inside their
firewall. But what kind of early applications will these be? Imagine
you are the head of manufacturing at a Fortune 500 company running an
Oracle Manufacturing application and multiple other source systems. You
need to know critical production information instantly, several times a
day. And you are moving around constantly. You have an iPad and just a
touch gives you those critical nuggets of information. This is advanced
analytics using the private cloud. Another example is Project
Management, where many moving parts are involved. Again, using
touchscreen devices like the iPad you can visualize all aspects of the
projects at any instant and anywhere. java.sys-con.com |
6/16/10 12:45 AM
|
McAfee
announced today a cloud-based service for protecting users and
providing robust reporting and protection against web-borne
threats. McAfee is touting the software as a service, aimed at
protecting both those behind a firewall as well as remote workers
outside it. McAfee is pitching the service with 5 key benefits
aimed at making this a must-have service.
