Critical Server Patching

With all the news in recent weeks about computer exploits and network vulnerabilities IT Computer support of New York has started a program to assist businesses. Earlier this week we sent out a notice to our current clients offering our patching service. Patching may not seem like that big of deal but the truth is that most businesses are running outdated servers and are in danger. Often the problem companies have with patching is that it can be a tedious procedure and if it works you are protected and don’t know you were ever in danger. The failure in this thinking is that if you are not patched and protected the damage you sustain can be crippling.
Another concern with patching is that it is not uncommon for a patch to react poorly with certain hardware configurations. For this reason it is important to have a backup in place before applying new system patches. If a business has multiple servers this can become a daunting project. ITCSNY hopes to simplify this by assuring that not only are the most current patches installed but that your systems are running with optimum performance.

While all patches are important some receive priority; such as is the case with the recent MS08-067. Prior to the patch, systems running Windows Server 2000, Windows XP and Windows 2003 were in serious danger. Microsoft released the update “out of band” (not on the regular Patch Tuesday) which speaks volumes of the threat the vulnerability posed. While not common this sort of occurrence does happen and if your server is not receiving regular attention then you are easy prey to vulnerabilities.

If you are interested in having ITCSNY handle your critical patching please contact us. ITCSNY also has a service available to install patches on a regular basis. This service schedules the application of critical updates shortly after the patches are issued and we will ensure that all updates are handled smoothly.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department

Microsoft jumping the Gun with Windows 7?

When Windows Vista was released three years ago it was heralded as the second coming of operating systems but instead it was met almost universally with scorn. Since then, however, many people have begun to adapt and even accept Vista as a viable upgrade from windows XP. It’s not surprising that Microsoft was eager to be done with bad publicity but what IS surprising is that now instead of trying to enhance Vista they are eagerly moving on with Windows 7 for a release in 2009.

The oddness of the announcement really stems from the fact that Microsoft has been running PR damage recovery ads for the last few months. After spending the time and money to try to recover from the initial backlash of the launch it seems strange that they would abandon their product. Even more alarming is that those have adapted to Vista will soon find themselves with the problem of upgrading once again.

As I have mentioned before I have been running Windows Vista on my PC for two years now. While some performance issues do exists Vista has received more negative publicity then is really warranted. I bring this up to give perspective to what I’ve seen of Windows 7. Having spent some time with the beta version, Windows 7 feels more like a polished Windows Vista then a truly new operating system. Windows 7 is noticeably faster and there have user interface improvements but overall the core components remain the same. To this end the product seems like it should have been released as a Service Pack instead of a full-fledged release. In this way Windows 7 seems more like a publicity stunt: release last year’s model with all the kinks worked out to negate all past negative publicity. Whether this is the case or not it will be interesting to see if Microsoft can learn from their mistakes when Windows 7 is released late next year.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department

Google Chrome

Chrome Beta 3 arrived recently to the fanfare of Google aficionados but few others. What is Chrome you might ask? Well for the uninitiated its Google’s news web foray; a proprietary internet browser that they had hoped would surpass IE and Firefox in user base. The promise behind Chrome stems primarily from its pedigree. The Google search engine took the world by storm and has grown to become an everyday household term. Google had hoped to do the same for web browsers.

So have they succeeded? Not quite. When the first Chrome Beta was released they held a respectable portion of the market share but since then users have actually dwindled. Currently Google Chrome has now settled into a holding pattern around 0.7 percent browser market share. The biggest problem facing chrome is that there is already a competitor doing what they intend. Within the last five years Firefox has quite literally taken the internet by storm.

As it stands now Chrome is the fastest browser on the market. Chrome is also secure, easy to use and attractive looking. But as for new killer features Chrome has very little to offer. Firefox already has the security, functionality, and higher degree of customization then any other browser on the marketplace. Also, looking at time frame, Firefox overtook Internet Explorer in functionality years ago but did not come close to matching its market share until quite recently. As a secure and reliable platform most people simply don’t see a reason to switch browsers. For this reason it is unlikely that Chrome will make any great leaps in its market share. This is not to say that it is a bad product; just that for most users, there is no reason to upgrade from something that already works.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department

iSCSI SAN: a Beneficial Disruptive Technology

Earlier this year in August IT Computer Support of New York ran an article in our newsletter on the pros and cons of Disruptive Technology. The overall consensus was that while it is important to research a new technology before jumping into a major change it is vital to adapt when the time is right. For the last couple months ITCSNY has been building a greater working partnership with Dell and we believe that it is now that time.

iSCSI SAN technology promises to revolutionize the way network hardware is handled. The Dell EqualLogic virtualized iSCSI SAN is an automated platform that combines easy to use administrative controls with a rapid setup time. Traditional server environments have always been held back by the hardware limitations on the size and versatility of components. If your network server exhausted all of its free space there was little alternative to buying a new piece of hardware and hope to limit downtime.

iSCSI SAN servers offer a liberating alternative to the problems posed by old technology. Whereas traditional servers were stand alone units, iSCSI SAN hardware is modular and easily upgraded. When a company has grown large enough to require a new fileserver upgrading is as simple as purchasing a new iSCSI box and plugging it into your preexisting system. Best of all iSCSI servers are backwards compatible with your current network file servers. The benefit of this is you will be able to keep your network systems up and running while your files are being migrated over to new server environment.

iSCSI SAN technology is poised to disrupt the current hardware hierarchy by offering cheaper more flexible solutions to data storage. All businesses regardless of size can benefit from this disruptive technology. With cheaper hardware, more versatility, and drastically reduced downtime there is no reason NOT to consider an iSCSI solution. If you would to learn more about iSCSI SAN visit our webpage or contact us.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department

MS Critical Security Patch MS08-067

Today Microsoft released a Critical patch for its Server Service Applications. The Microsoft Security Bulletin MS08-067 update resolves a vulnerability in the MS server service. The vulnerability makes it possible for a worm or Trojan to freely gain access to your systems. Microsoft has released this patch today “out of band” (not on the regular Patch Tuesday) which speaks volumes of the threat this vulnerability poses.

It is absolutely crucial that your network administrator or IT department installs the necessary patch as quickly as possible. Un-patched your system will be completely at the mercy of a custom built worm which could take down server, steal private information, or worse. It is also highly advisable that you patch your system from a reputable source, namely Microsoft. There have been isolated reports of people becoming infected by websites promising quick fixes. If in doubt contact your IT department and let them make the necessary updates.

The systems at the highest risk are Windows Server 2000, Windows XP and Windows 2003. Windows Vista requires authorization by default and thus is less vulnerable to a possible attack but should still be checked. If your business runs on any of these operating systems take the steps to patch your systems immediately.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department

Introducing iSCSI and Live Online Support

The last month has been an interesting time here at IT Computer Support of New York. As many of you have probably noticed last month we started revitalizing our web presence with a new look and new functionality. As part of this we have been working to bring all of aspects of our company in line with our new Blue 2.0 Design. The goal of all of this has always been to find new and more efficient ways to serve our customers. Bringing this full circle starting this week we will be introducing two new services for new and existing customers.

ITCSNY has worked closely with Dell over the last couple month to become certified iSCSI SAN providers for the state of New York. iSCSI Server Architecture is unique to traditional server technology in the way that it handles expansion and migration. Traditionally, when it came time for a business to upgrade its servers it meant purchasing a whole new larger filer server. The result of this upgrade was a period of downtime that could last hours or even days as all the necessary files were transferred over to the new hardware. For a large and prosperous company this could mean the loss of thousands of dollars in downtime.

iSCSI SAN servers offer a speedy alternative to this problem. Real world tests conducted by ITCSNY has found that in most cases iSCSI SAN server solutions can be fully set up in 15 minutes. Best of all iSCSI SAN technology is backwards compatible with your current server environment meaning your systems can be upgraded without any downtime. Through shortened downtime, plug and play upgradability, and less expensive hardware; upgrading to an iSCSI server solution can easily save your business 40-70% of your tech bill over the course of 5-7 years. With that kind of savings upgrading to an iSCSI server is a true asset to any business. You can expect a more in-depth analysis of iSCSI Server Architecture in the coming weeks.

The second service IT Computer Support of New York is adding will be directly beneficial to our preexisting customers. ITCSNY has always offered live telephone and onsite support but sometimes a situation arises that is not easily solved over the phone but not dire enough to warrant an onsite visit. As an answer to this ITCSNY has developed the Remote Technical Assistance Web Portal. Through this application our clients can share control of their computer work environments with an ITCSNY Technician who will be able to solve their problems fast and efficiently. Live Remote Support is available to all preexisting clients who have an On-Demand Support contract so there is no additional cost to worry about. If you are interested but do not already have an On-Demand Support contract please contact us here.

These are just the first of many improvements lined up for the coming weeks so check back soon. And as always tell us what you think. We love to learn from your feedback on how to improve our services.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department

Web and Network Safety in a Brave New World

Not so many years ago the bulk of cybercriminal activity was conducted through email. Would be hackers could target huge percentages of the population with little effort and cause mayhem with very little effort. But as businesses and private users became aware of the danger of email exploits these Cybercriminals were forced to relocate their activity elsewhere. Sadly, a world of possibilities was still available to them in the form web based malware.

Web based vulnerabilities can end in disastrous results for businesses. At the start of 2008 it was reported that on average 4 legitimate websites were being tainted with malicious code ever minute. So bad has the problem become that malware creation packages have been found available on many disreputable websites. Because these vulnerabilities can pop up at any number of sources prevention is better than looking for a cure.

Very simple steps can be taken to make sure that your web experience is secure. The easiest way for attackers to compromise your web experience is by finding holes in your web browser platform. It might seem simple but many people still don’t install regular patches for their web browsers. Upgrading your web browser should be your first line of defense against cybercriminals. Second, just like your browser make your antiviral and security software is up to date; many Virus and Trajan families are updated weekly to bypass new security. Next, be aware of what you download and be sure that it is coming from a reputable source. Phantom down loaders are small bits of code placed on a website that once downloaded will give hackers a back door to download other harmful materials and can often be masked to look like other types of files.

Additional concerns extend over to the network side of things. It’s been reported that 2/3rds of security breaches happen internally as opposed to from someone outside the company. Some months ago I was analyzing a client’s website and happened across a file in their base directory that contained all the passwords needed to access their web server. I quickly notified them and the problem was corrected but had an attacker found this information they could have taken down their entire web presence. Other problems can arise from improperly assigned shared folder permissions that allow access to secure files anywhere on the network. All it takes is one disgruntled user to find these files and it could cost your business thousands.

Knowledge and diligence are your best defense against attackers. Keep up to date and keep track of your network settings and you can ensure that your web and network activity remain secure.

- Richard Keene
IT Computer Support of New York
Design and Optimization Department