Safety | Blog Bujarra.com

A podcast for IT – How to enable remote work in the company

You have at your disposal the second episode of A Podcast for YOU, where Fede Cinalli and I will give continuity to the first talk we had. Basically because we fall short of expectations, And one thing was that companies could use it and another what has happened this week, that all companies close due to the coronavirus except for the fundamental ones and those that can telework, is your company out? So we have been forced to comment a bit on what options there are and what companies are doing today…

Installing Nakivo Backup & Replication 7.3

Very good to everyone! I'm going to introduce you in a series of posts to a low-cost backup and replication solution called Nakivo Backup & Replication 7.3. In this first document we will look at the installation requirements, deployment methods and install it on a Windows machine!

Monitoring vulnerabilities with Nagios and OpenVAS

Well, Well! Another of the wonders that we can do with Nagios or Centreon is… the possibility of monitoring vulnerabilities in our computers! How great, truth?? We will rely on OpenVAS, We will use the checks we have to centralize them from a single console. We will be able to know how many vulnerabilities our servers put at risk and analyze their evolution with the graphs and of course receive alerts!

Wifi Network Configuration with NPS Server Authentication

In this document we are going to try to explain how to establish a level of security in our wifi network, for controlled and secure equipment access, based on authentication through the users of our Active Directory,

vShield Data Security

Inside the vShield family, we could enable the vShield Data Security service in order to have visibility into the leakage of sensitive information in our company, He will show it to us in some reports, where we can confirm that we have the information correctly secured, being able to evaluate compliance with any regulation in the world.

Microsoft Security Compliance Manager – Hardening our servers

Microsoft Security Compliance Manager 2 is a repository of Microsoft security templates that we can apply to our servers or PCs on our network providing greater security, since these templates are predefined depending on the OS. and the services run by the target machine. The good thing is that we will be able to keep the templates always 'up to date’ through updates that we can download from the console. We will be able to import GPOs, More Baselines… we will be able to edit/duplicate them and to apply them to our environment we will export them.

Using VMware Compliance Checker

The past 19 April, VMware introduced VMware Compliance Checker, a free VMware tool (written in Java) that will help us verify the security of our VMware hosts (ESX or ESXi), recommended as one of the best practices to be carried out in our environment in order to secure or detect problems, obtaining a detailed report of the recommendations to be made on each host.

Encrypting our hard drive with TrueCrypt

TrueCrypt is a great utility that will allow us to encrypt our hard drives, are local, Remote, USB, pen drive, Sd… Thanks to this utility we will avoid any loss of information through theft or loss of our laptop or external media, The decryption form being transparent and fast for our users. Uses different encryption algorithms (AES, Serpent and Twofish or a combination of them). We could even create a hidden partition with a hidden operating system in case we were forced to hand over our password, to give them false information! Can be used on Windows XP/2000/2003/Vista/7, Mac OS X, Linux… Of course it is free! (but not GNU). How to decrypt a password or a file can be used (Keyfile) whatever each one prefers, being able to decrypt the system disk when starting the computer or if we take the disk out and connect it to another computer, if you have TrueCrypt installed it would also be enough. The […]

Microsoft Baseline Security Analyzer 2.1 – MBSA 2.1

Es un analizador de seguridad, por Microsoft. Nos sirve para buscar posibles vulnerabilidades en nuestros sistemas de nuestra red, podemos decir que es como un “Escanercillo de vulnerabilidades by MS”. Lo primero descargarlo de la web de Microsoft (HERE) o desde mi servidor la version 2.0 – HERE. Esta diseñado especificamente para buscar que equipos de nuestra red que no se actualizan los parches de Microsoft y tenemos un SUS o un WSUS en nuestra red, expresamente es para ver de vez en cuando si todos están OK, o si hay algun fallo de seguridad en alguno…