There’s an interesting view of the Google approach to “locked down” security in
The Register this morning:
http://www.theregister.co.uk/2016/04/06/googles_beyondcorp_security_policy/
Regards,
Edmund Cramp
--
One can survive everything, nowadays, except death, and live down everything
except a good reputation. - Oscar Wilde
From: General [mailto:general-boun...@brlug.net] On Behalf Of Mark A. Lappin
Sent: Tuesday, April 05, 2016 4:10 PM
To: general@brlug.net
Subject: Re: [brlug-general] Ransomware - Was: RE: Anybody have a all-in-1 PC
that I can hang from a wall?
might want to add to your list – these might be to detailed but here goes:
- Review of local computer file shares & share permissions vs ntfs
permissions
- Who / what accounts can logon as a service
- Review scheduled tasks and the privilege level those scheduled tasks
run at.
- Who can take ownership of files and objects
- Who can logon locally
- Who can access the computer from the network
- File and registry virtual locations are enabled / cannot be disabled
- Enforce logon hours for non key & non privileged users
- When/where applicable, disable removable media or severely restrict
rights to removable media.
I don’t put glue in USB ports, but most front-side USB ports are
disabled in bios at this point especially on shared computers or quasi-public
locations.
- Disable auto-run
- Check hosts file
- Disable Bluetooth when / where applicable!
- Check for errant bindings and network protocols on primary adapters
- Check network provider order
- Desktops with built in wifi, disable wifi [all in one’s and some
other desktops we’ve bought in the last 2 years have wifi built in]
o If wifi has to be left on, disallow bridged connections!
- Unless absolutely critical, remove / uninstall / disable IIS or if
critical, configure to accept connections only from localhost
- Disable telnet server if not required! […and why is it installed ?!?]
Mark A. Lappin, CCNA, MCITP: Enterprise Administrator
Director of Information Technology
Lee Michaels Fine Jewelry - Corporate Office
5630 Bankers Avenue | Baton Rouge, LA 70808-2609
[O] 225.368.3645 [F] 225.368.3675 [E] ma...@lmfj.com
www.lmfj.com | Facebook | Instagram | The Lee Michaels Story
This communication is privileged and confidential. If you are not the intended
recipient, please notify the sender by reply e-mail and destroy all copies of
this communication.
From: General [mailto:general-boun...@brlug.net] On Behalf Of Dustin Puryear
Sent: Tuesday, April 05, 2016 10:14 AM
To: general@brlug.net
Subject: Re: [brlug-general] Ransomware - Was: RE: Anybody have a all-in-1 PC
that I can hang from a wall?
Clean Domain admins
Clean Enterprise admins
Clean Local admins
Av on every pc
Network level filtering, e.g., watchguard, sonicwall, opendns, whatever
Email filtering
If possible applocker
UAC enabled
That’s a pretty reasonable initial effort.
---
Dustin Puryear, Founder & Technology Strategist
My direct number: 225-304-6402
Main: 225-706-8414 | Fax: 800-613-5731 | www.puryear-it.com
Puryear IT, LLC - We see IT differently.
Baton Rouge IT Support & New Orleans IT Support
Cloud, Windows, Exchange, SQL Server, Linux, UNIX
2014 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2013 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2012 Honoree of the Silicon Bayou 100
From: General [mailto:general-boun...@brlug.net] On Behalf Of Keith Stokes
Sent: Sunday, April 3, 2016 12:52 PM
To: general@brlug.net
Subject: Re: [brlug-general] Ransomware - Was: RE: Anybody have a all-in-1 PC
that I can hang from a wall?
Would you care to share without giving away the store a broad definition of a
locked-down network?
--
Keith Stokes
On Apr 3, 2016, at 12:27 PM, Dustin Puryear <dpury...@puryear-it.com> wrote:
Actually, we have been putting a ton of energy into locking down networks
recently because of ransomware. It’s a pretty serious issue right now.
---
Dustin Puryear, Founder & Technology Strategist
My direct number: 225-304-6402
Main: 225-706-8414 | Fax: 800-613-5731 | www.puryear-it.com
Puryear IT, LLC - We see IT differently.
Baton Rouge IT Support & New Orleans IT Support
Cloud, Windows, Exchange, SQL Server, Linux, UNIX
2014 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2013 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2012 Honoree of the Silicon Bayou 100
From: General [mailto:general-boun...@brlug.net] On Behalf Of Edmund Cramp
Sent: Tuesday, March 29, 2016 2:18 PM
To: general@brlug.net
Subject: Re: [brlug-general] Anybody have a all-in-1 PC that I can hang from a
wall?
I have a friend, but nobody else can see him, he’s lonely so we talk a lot
because it’s my job to cheer him up
Off-topic - I’ve been checking the logs on the mail server today and I’m seeing
80+ infection attempts since midnight, each with an attachment containing a
javascript file (which I kill on site) - a normal week might yield one to two a
day. I suspect cryptoware - Dustin will probably be looking for people to help
recover corporate PC’s in a week to two…
Regards,
Edmund Cramp
--
(if N fails, try N+1)
From: General [mailto:general-boun...@brlug.net] On Behalf Of Keith Stokes
Sent: Tuesday, March 29, 2016 2:06 PM
To: general@brlug.net
Subject: Re: [brlug-general] Anybody have a all-in-1 PC that I can hang from a
wall?
I’m a nerd. I don’t have any friends that aren’t computers or aren’t already
here.
On Mar 29, 2016, at 2:01 PM, Dustin Puryear <dpury...@puryear-it.com> wrote:
Hi all-
We need some new blood on this list I think to get the LUG activity up.
Have your nerd friends join up.
http://www.brlug.net/
---
Dustin Puryear, Founder & Technology Strategist
My direct number: 225-304-6402
Main: 225-706-8414 | Fax: 800-613-5731 | www.puryear-it.com
Puryear IT, LLC - We see IT differently.
Baton Rouge IT Support & New Orleans IT Support
Cloud, Windows, Exchange, SQL Server, Linux, UNIX
2014 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2013 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2012 Honoree of the Silicon Bayou 100
From: General [mailto:general-boun...@brlug.net] On Behalf Of Bret Esquivel
Sent: Friday, March 25, 2016 11:39 AM
To: general@brlug.net
Subject: Re: [brlug-general] Anybody have a all-in-1 PC that I can hang from a
wall?
Make sure you get the new model. The first gen sucks
Sent from my iPhone
On Mar 25, 2016, at 11:31 AM, Dustin Puryear <dpury...@puryear-it.com> wrote:
Whaaaaaat! DID NOT KNOW ABOUT THIS THING.
---
Dustin Puryear, Founder & Technology Strategist
My direct number: 225-304-6402
Main: 225-706-8414 | Fax: 800-613-5731 | www.puryear-it.com
Puryear IT, LLC - We see IT differently.
Baton Rouge IT Support & New Orleans IT Support
Cloud, Windows, Exchange, SQL Server, Linux, UNIX
2014 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2013 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2012 Honoree of the Silicon Bayou 100
From: General [mailto:general-boun...@brlug.net] On Behalf Of Bret Esquivel
Sent: Friday, March 25, 2016 10:54 AM
To: general@brlug.net
Subject: Re: [brlug-general] Anybody have a all-in-1 PC that I can hang from a
wall?
Intel ComputeStick
Sent from my iPhone
On Mar 25, 2016, at 10:18 AM, Edmund Cramp <e...@motion-labs.com> wrote:
Office Depot -
http://www.officedepot.com/a/products/150213/HP-23-r110-All-In-One/ -
From: General [mailto:general-boun...@brlug.net] On Behalf Of Dustin Puryear
Sent: Friday, March 25, 2016 8:39 AM
To: general@brlug.net
Subject: [brlug-general] Anybody have a all-in-1 PC that I can hang from a wall?
Looking for a KPI dashboard on the wall. Needs to be able to run MS Excel so it
needs to run Windows… L
---
Dustin Puryear, Founder & Technology Strategist
My direct number: 225-304-6402
Main: 225-706-8414 | Fax: 800-613-5731 | www.puryear-it.com
Puryear IT, LLC - We see IT differently.
Baton Rouge IT Support & New Orleans IT Support
Cloud, Windows, Exchange, SQL Server, Linux, UNIX
2014 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2013 Honoree of the LSU 100: Fastest Growing Tiger Businesses
2012 Honoree of the Silicon Bayou 100
_______________________________________________
General mailing list
General@brlug.net
http://brlug.net/mailman/listinfo/general_brlug.net
_______________________________________________
General mailing list
General@brlug.net
http://brlug.net/mailman/listinfo/general_brlug.net
_______________________________________________
General mailing list
General@brlug.net
http://brlug.net/mailman/listinfo/general_brlug.net
---
Keith Stokes
_______________________________________________
General mailing list
General@brlug.net
http://brlug.net/mailman/listinfo/general_brlug.net
_______________________________________________
General mailing list
General@brlug.net
http://brlug.net/mailman/listinfo/general_brlug.net
