How to control security issues in a cluster?

Similar Messages

• Thin Client Easy Shell - Display Control - Security Issue

  We're expirementing with the Easy Shell software.  It appears that when you enable the 'Display' option for settings (to allow users to alter resolution settings), the user can use the Address Bar to navigate to other Control Panel items or directly to a file system location (and then execute other programs).  This doesn't occur for other Control Panel applets that don't have an Explorer Address Bar (such as sound). Obviously one can still try to restrict the hell out of Windows Explorer to provide a defense to this, but a selling point of Easy Shell is sandboxing the user without needing to do a million different other configurations. Has anyone come accross this and come up with a method to secure the Address Bar?

  1. Log on to the Thin Client as an Administrator 2. Make sure you disable the EWF which is available in the System tray towards right bottom corner 3. Go to the contol panel of the Thin Client and look for Region and Language 4. Please set the language to French under "Region and Language" 5. Make sure you do all the changes [For Example: Giving access to the User for specific applications...] 6. Please re-install the HP Easy Shell Software and choose the language as French if you get a language prompt 7. Now please launch the HP Easy Shell Software in the Administrator Login itself and turn on the Region & Language 8. Restart the Thin Client and login as a User to check if this is what you are looking for If not please let me know if there is anything specific you are looking for, so I can further research with this regard  Hope this helps, for any further queries reply to the post and feel free to join us again  **Click the White Thumbs Up Button on the right to say Thanks**Make it easier for other people to find solutions by marking a Reply 'Accept as Solution' if it solves your problem. Thank You,K N R KSenior Thin Client Technician - North America Support Although I am an HP employee, I am speaking for myself and not for HP

• How do I to delete inbox mail without opening it , due to security issue.?

  How do I to delete inbox mail without opening it , due to security issue.?

  Right-click the message and select Delete.

• When opening safari i get a message that says major security issue please contact apple immediately suspicious activity might have been detected. what is this and how do i get rid of it so i can use my internet?

  when opening safari i get a message that says major security issue please contact apple immediately suspicious activity might have been detected. what is this and how do i get rid of it so i can use my internet?

  A misleading and malicious popup. Launch Safari with the Shift key held down; if that doesn't work, temporarily disconnect the computer from the Internet.
  (121307)

• How do I address SSL security issue on iPad 1

  This new security issue discovered recently had my wife and I getting busy updating our phones, great now I have a possible bigger issue. How do I address this SSL issue on my iPad 1 running iOS 5.1.1 . So far apple does not seem to be releasing anything for us iPad 1 folks.
  • Does this mean Apple does not care?
  • Are they trying to leverage us into newer iPads?
  • Is there a iOS 5.1.2 in the works?
  • Or does it mean our iPad 1's are not affected by this breach.
  Wish I had the coin to just go out and buy a new iPad but my disabled income does not have room for that, the one I have now was given to me by a very good friend and business owner before I was diagnosed. I use my iPad for virtually everything needing computing power. I really need to figure this out as I do Alot of shopping online.

  Since Apple does not discuss their customers or potential security breaches, I would assume that you are not affected.  My assumption is based solely on the fact that if there were an issue with your device and security, either an update would be made available or an announcement would come from Apple advising you to migrate to a newer device.

• How can I reset the security issues if I have forgotten them

  how can I reset the security issues if I have forgotten them

  http://support.apple.com/kb/HT5312
  If you established a rescue email address, there will be a link on the "Passwords & Security" page of id.apple.com.  Clicking the link will send the reset to your rescue email address (NOTE:  This is not the same address as your Apple ID email)
  If there is no link on the page, then you didn't establish a rescue email address.  Contact AppleCare at 800.694.7466, and ask for account security.  You will need to answer some questions to verify your identity, AND you will need access to a computer to generate a temporary support pin.
  HTH

• How to reactivate my old apple ID that has a security issues?   I can't remember the password of my yahoo that was used to create that apple ID...  any help please?

  how to reactivate an old apple ID that has some security issues?   I can't acces the yahoo that was used to create that account because it was already recycled by yahoo.
  So when I restore my iPad 2, it is asking me for my old apple ID that was no longer working.....
  ANY HELP PLEASE

  Hi marcpople,
  If you have had an Apple ID disabled due to a security issue, you may find the following articles helpful:
  Apple ID: 'This Apple ID has been disabled for security reasons' alert appears
  http://support.apple.com/kb/ts2446
  Apple ID: If you forget your password
  http://support.apple.com/kb/ht5787
  Regards,
  - Brenden

• How can we change the security issues if no backup e-mail address?

  how can we change the security issues if no backup e-mail address? I've tried a lot of time and I really don't know how....

  Contact Apple Support to have your security questions reset:
  ACCOUNT SECURITY CONTACT NUMBERS
  Cheers,
  GB

• Forest trust - security issues and how to avoid

  Hi guys,
  I have few questions.
  1/Planning do Forest trust.We have Forest + Domain functional level at WS 2003 level.
  In case of trust what are the security issues and how to avoid them? Meant something like browsing in AD, possible hacking from new destination etc.
  2/ What in case that the trust will not be possible create because of security reasons (rejected by other company)? What can be an workaround for that? I have idea with resource forest or ADFS? Any other ideas?
  Thanks in advance or for a good link to study about.
  Petr Weiner

  Other than broad general answers it is difficult to answer this from the negative side.  I work in a very large company where we have hundreds of domains with one way trusts in place and I don't believe we have any security issues in place.  With
  the large numbers of domains we can't operate in any other fashion.  We have a user forest and many resource forests.  All of our domains and forests are operated and maintained within the company but if you have domains operated by different departments
  then you can run into issues on who trusts.  Also if you need to have a situation where you need to trust other companies then you start to look at ADFS, you can also use it internally for many applications as well as cloud services.  But as I already
  mentioned you haven't detailed what exactly is going on so it is hard to try and give you a concrete answer.
  Paul Bergson
  MVP - Directory Services
  MCITP: Enterprise Administrator
  MCTS, MCT, MCSE, MCSA, Security, BS CSci
  2012, 2008, Vista, 2003, 2000 (Early Achiever), NT4
  Twitter @pbbergs http://blogs.dirteam.com/blogs/paulbergson
  Please no e-mails, any questions should be posted in the NewsGroup.
  This posting is provided AS IS with no warranties, and confers no rights.

• Can this be safely removed and how without causing other security issues???

  Having repeated problems with FF hanging and/or closing unexpectedly. Problem listed is always "plugin-container.exe has encountered a problem and has to close". Running version 3.6.15. Can this be safely removed and how without causing other security issues???

  Disable the plugin-container for some or all 4 plugins. <br />
  http://kb.mozillazine.org/Plugin-container_and_out-of-process_plugins#Disabling_crash_protection

• HT1725 Message says Apple ID is Disable how do I fix this. I changed my password 4 times already. It's not a security issue  Please help me. Thank you

  Please help me ever since the update every time I try to order an App I get a message saying "Apple ID I'd Disable" I've changed my password 4 times And changed my credit card also I don't think it's a security issue. Thank you

  Hi Melivan!
  I have an article here that can guide you through some steps for dealing with your disabled Apple ID:
  Apple ID: 'This Apple ID has been disabled for security reasons' alert appears
  http://support.apple.com/kb/ts2446
  Thanks for coming to the Apple Support Communities!
  Cheers,
  Braden

• I lost my Security issues,how  i can find  it .-form  china

  sorry  about that,i am not  good at  english,i  want  to buy  something  from the  APP store,then  it  told me press the  security issues.But i have  forgot,and  i can;t  find  where  i  can  ask for help  .please   contact me  soon.  email :[email protected]
  你好，我是来自中国的一位小姑娘。我不擅长英文。今天我充值了1万元进入APP账户，我想购买游戏用的。但是首次购买游戏币，需要输入安全验证答案，可是这个我在注册的时 候已经忘记了，这个怎么办，我急得需要买东西。我在你们网站上没有找到修改安全问题验证的入口。求助。

  that page has changed, I can't find the entrance to modify the secure password authentication
  I tried

• Other web browsers and security issues?

  Since even an Apple KB article recognizes the need for an additional browser and because of Safari's limitations and problems, I'm going to try switching to another browser (most likely OmniWeb and am looking at Firefox, Shira and Opera also though perhaps not as a primary browser) but I'm wondering about their ability to keep on top of any security issues for Mac? (and how do you keep up with security updates?)
  Though perhaps unfounded, at least with Safari, I feel that Apple has a vested interest in keeping on top of security issues (for Safari and Java) and I can readily find out about security updates via software updater.

  Most of the other Mac browsers have their adherents. They are all good browsers (I have 7 browsers installed to test various web sites and for change-of-pace usage). They all have their strengths and they all have their weaknesses. Only iCab and OmniWeb are still shareware, the rest are now or always have been free (Opera just recently stopped charging for its browser).
  I have settled on Firefox as my alternate browser and I use it maybe just a tad more than Safari, but I do switch back and forth between them. The Mozilla foundation is good at getting security updates out when needed. Firefox has a button on the toolbar to check for updates. One nice thing about Firefox is that you can install free extensions which enhance the features available. I have one to supplement tab features, one to control iTunes from Firefox's status bar, one to help me format messages in discussion forums, and one to block ads.
  I prefer OmniWeb for doing intensive research because of the way it handles tabs in its sidebar, showing me which ones I've looked at and which ones I haven't, and giving me great flexibility in rearranging tabs, which are viewable as thumbnails or text names (I have had up to a hundred or so tabs open in OmniWeb.
  Shiira is good and its fast. I have not checked for updates for a while, but the last time I updated there was still a problem with Shiira kicking you out of logged-in sites when you moved from page to page with in web site. This may have been fixed by now - they were aware of the problem back then.
  Camino is a native OS X cousin of Firefox and is also fast, but is not updated as often.
  I would stay away from Mozilla or Netscape unless you need all the additional modules they have and which take up hard disk space. Firefox and Camino represent the browser module of Mozilla/Netscape. Mozilla and Netscape have modules for email, irc chat, newsgroups, and for creating and editing web pages. Netscape is a branded and slightly customized version of Mozilla and is not updated as often.
  Opera is a nice browser and some use it as their main browser, but I have not seen anything that really stands out for me, but that does not mean it is not worth a look.
  I would stay away from abandonware Internet Explorer.
  As for checking for updates, several of them, as with many Mac programs, now have a menu item that allows you to check for updates. Most of them also announce their updates on both VersionTracker and MacUpdate.
  Happy Exploring.

• Security issues in Mavericks 9.04

  I just had a secure scan done on my Mavericks server. The main issues seem to be:
  OpenSSL Running Version Prior to 0.9.8za Upgrade to OpenSSL version 0.9.8za or newer.
  Apache mod_negotiation Multi-Line Filename Upload Vulnerabilities (Upgrade to Apache version 2.3.2 or newer.)
  Given that upgrading these would mean compiling and installing Apache and OpenSSL(which I'm not really keen to do) I'm wondering what experienced admins think of these threats.

  pkmusic wrote:
  Dumb question - so a self-signed SSL cert doesn't use Open SSL?
  Certificates are used with ssh and SSL/TLS and such, yes.  Most of OS X uses Secure Transport for its certificate- and SSL/TLS-related processing, but Apache does not.  Apache is linked against OpenSSL.
  Self-signed certificates lead to a different security issue.  
  An HTTPS site with a self-signed certificate will be considered untrusted by accessing web clients and the web browser will usually issue diagnostics before allowing access to the site or a diagnostic before marking the certificate as trusted, or that you've set up your own certificate chain and installed your own root certificate.  That you're asking this question implies the former; that you're not really running HTTPS with a trusted certificate chain.   Which generally means you can just shut off SSL/TLS.
  As for the original question, here's how the scanner is likely detecting the down-revision versions — if you look at the server details being returned to the client, you'll see some information on Apache and OpenSSL versions embedded in the response:
  $ telnet foo.example.com 80
  Trying 10.1.3.1...
  Connected to foo.example.com
  Escape character is '^]'.
  HEAD / HTTP/1.0
  HTTP/1.1 301 Moved Permanently
  Date: Sun, 20 Jul 2014 14:40:11 GMT
  Server: Apache/2.2.26 (Unix) PHP/5.4.24 mod_ssl/2.2.26 OpenSSL/0.9.8y DAV/2
  Location: http://foo.example.com/
  Cache-Control: max-age=1209600
  Expires: Sun, 03 Aug 2014 14:40:11 GMT
  Connection: close
  Content-Type: text/html; charset=iso-8859-1
  Connection closed by foreign host.
  $
  That won't get fixed without replacing Apache et al or one of the other options, as described in my earlier reply.
  For completeness, some folks will manually configure the server to not return these details.  That'll derail the the vulnerability scanner, certainly.  It might not have the intended result, too, as the remote attackers can simply decide to throw every attack they have at your server — the attackers are not short on CPU cycles and network bandwidth, after all; unintended consequences.
  As for using a self-signed cert and given you probably aren't providing file-level access to other folks, I'd not (personally) be particularly concerned about that vulnerability scan — one of the limitations with using vulnerability scanners is that you then have to go off and figure out if you're actually vulnerable to whatever the scanner is reporting.  It's an issue certainly, but then you'll have to decide if your backups are complete and current and with copies kept off-site, and if your other security practices and password policies and such are also all up to date and secure, and at what else you might risk if the server is breached — if configuring a DMZ for your server might be appropriate, for instance, to isolate the server from the rest of your network should the server be breached.

• Security issues on Audio Stream

  I'm writing a streaming audio player in flex for a client of
  mine. Everything is going fine except for the security issues.
  I'm using computeSpectrum to draw a sound channel
  visualization and that function is one of the one's flash security
  limits without proper use of a crossdomain file.
  Basically its set up on two servers.
  www.clientswebsite.com/somedirectory/AudioPlayer.html is the page
  with my .swf.
  streamstation.clientswebsite.com is a server with shoutcast
  set up. I had my client install IIS on port 80 so now theres a
  crossdomain file at
  streamstation.clientswebsite.com/crossdomain.xml.
  The file is on the up and up:
  <cross-domain-policy>
  <site-control
  permitted-cross-domain-policies="master-only" />
  <allow-access-from domain="*" />
  </cross-domain-policy>
  but for some reason I still get security issues poping up in
  my debug flash player.
  I am not at all a server or hardware guy, I'm a humble flash
  developer and this security issue has me stumped. So, I would
  greatly appreciate any advice you guys have.
  Also, if its relevant, I'm writing this in Actionscript 3.0
  and Flex 3.

  That's avery broad question. Without knowing what apps you run, how you are connected to the internet, whether or not you download pirated stuff or whatever how can anyone give you a definitive answer?