jermsmit

Important: Update Your Mozilla Web Browser to Firefox 58.0.1

Mozilla has released an important update for its Firefox web browser to patch a critical vulnerability that could allow remote attackers to execute malicious code on computers running an affected version of the browser.

Affected web browser versions include Firefox 56 (.0, .0.1, .0.2), 57 (.0, .0.1, .0.2, .0.3, .0.4), and 58 (.0). The vulnerability has been addressed in Firefox 58.0.1

Security fix

When using certain non-default security policies on Windows (for example with Windows Defender Exploit Protection or Webroot security products), Firefox 58.0 would fail to load pages (bug 1433065).

Reference link to 58.0 release notes

Known Issues of Security fix

  • Users running Firefox for Windows over a Remote Desktop Connection (RDP) may find that audio playback is disabled due to increased security restrictions.
  • Users running certain screen readers may experience performance issues and are advised to use Firefox ESR until performance issues are resolved in an upcoming future release.

 

According to a security advisory published by Cisco, Firefox 58.0.1 addresses an ‘arbitrary code execution’ flaw that originates due to ‘insufficient sanitization’ of HTML fragments in chrome-privileged documents (browser UI).

 

Hack Details:

Hackers could exploit this vulnerability (CVE-2018-5124) to run arbitrary code on the victim’s computer just by tricking them into accessing a link or ‘opening a file that submits malicious input to the affected software.’

The advisory states.

“A successful exploit could allow the attacker to execute arbitrary code with the privileges of the user. If the user has elevated privileges, the attacker could compromise the system completely,”

This could allow an attacker to install programs, create new accounts with full user rights, and view, change or delete data. However, if the application has been configured to have limited rights the impact is less on the system itself and should only impact the current session logged in.

 

Physical Fitness, Health & Leadership

Over many years I’ve come to learn from others and most importantly myself.  I recognize that leadership abilities have a common foundation made up of confidence, decisiveness, endurance as well as experience.  Another area I recognize are that of Physical Fitness, and Health that pull the aforementioned Leadership qualities together.

 

Team Entrainment 

Studies have shown that Entrainment in the biomusicological sense refers to the synchronization of organisms to an external perceived rhythm, such as music and dance such as foot tapping.

Individuals on a team over time, unconsciously mimic the behavior patterns of one-another and their source of leadership. If a leader is undisciplined or not punctual, their subordinates tend to follow suit. In the same way, a leader who does not make caring for one’s body and health a priority will have team members who will mirror this as well. There is a saying “Lead by Example” This is one that should not be deviated from.

 

Productivity

Fit people are well known to be very productive and driven to complete goals. In addition to having the energy to take on new challenges, in addition to the willfulness to help others.

Some examples are:

  • Richard Branson, Founder of Virgin Group
  • Barack Obama, President of the USA
  • Mark Zuckerberg, CEO Facebook
  • Tim Cook, CEO Apple
  • Oprah Winfrey, Actress

 

Mental Health

Exercise has always been one of the best ways to help manage stress due to its ability to boosts endorphins. According to an article by the Mayo Clinic, exercise also reduces symptoms associated with anxiety and depression while improving sleeping patterns. 

Being in your best physical health will help improve your overall work ability, and this sets the stage for future advancement.

 

Creative Thinking

Being physically active assists in creative thinking. Studies suggest that even moderate levels of exercise increase cognitive abilities which aid in being a better decision maker. This goes the distance when develop business strategies, and “Thinking on one’s feet”.

 

Self Confidence

It’s been said recognized that Self-confidence is the fundamental basis from which leadership grows. Regular exercise boosts self-confidence. A person who regularly exercises possesses the creativity, goal orientation tendencies, mental stamina and productivity levels required to lead others.

A great leader pays attention to health. John F. Kennedy said, “Physical fitness is not only one of the most important keys to a healthy body, it is the basis of dynamic and creative intellectual activity.”

And with that I wish you all the best; current and future leaders alike.

Sources:

 

“A great leader’s unique achievement is a human and social one which stems from his understanding of his fellow workers.”

ISP Redundancy Link Interface Cannot Be Created

While setting up ISP Redundancy on a Check Point cluster I ran into an issue preventing me from proceeding with my configuration.  I was eventually able to resolve this and felt that I would share with you and my future self the steps taken.

 

What is ISP Redundancy

ISP Redundancy enables reliable Internet connectivity by allowing a single or clustered Check Point Security Gateway to connect to the Internet via redundant Internet service provider (ISP) connections. If both links are active, connections pass through one link, or both links, depending on the operating mode. If one of the link fails, new connections are handled by the second link.

 

Configuration Steps

  1. Open the network object properties of the Security Gateway or cluster.
  2. Click Other > ISP Redundancy.
  3. Select Support ISP Redundancy.
  4. Select Load Sharing or Primary/Backup.
  5. Configure Links – Primary and Backup Connections
  6. Set tacking mode for Link failure and recovery
  7. Click OK — This is when I encounter my error

 

Error: Check Point SmartDashboard

At least one of your ISP Links lack a next hop IP Address configuration.
Note: next hop IP Address is also used to automatically monitor the ISP Link^s availability.

Error: Check Point SmartDashboard

ISP Redundancy configuration on clusters requires that the interfaces which lead to your ISPs, have the same names as the corresponding physical interfaces on the cluster^s members.

 

Resolution Steps Taken:

Discovered that the the interfaces in the topology tab did not have the same name on the vip (Virtual IP), so I changed to name so that all interfaces were matching.

After introducing the changes to the interface name of the vip, I retried the setup for ISP Redundancy and the issue resolved.

 

Hyper-V Virtualization: Turning Hyper-V On and Off

I recently started using Hyper-V on my Windows 10 workstation to task advantage of using technologies such as Docker that leverages Hyper-V to run its container images.  I also run VMware Player for running virtual machines.

The following commands make it a simpler task to toggle Hyper-V on and off again.

To Turn Hyper-V off, run the following command then restart your computer:

bcdedit /set hypervisorlaunchtype off

To turn Hyper-V back on, run the following command then restart your computer:

bcdedit /set hypervisorlaunchtype on (or auto start)

 

Note:  Quick method to check the status of Hyper-V – Get-WindowsOptionalFeature -Online -FeatureName *hyper*

Which Active Directory Group Policies are being Applied to your Accounts

Playing a bit of detective, I started reviewing Active Directory Group Policies that had been applied to workstations, in an attempt to resolve a few reported concerns regarding polices being applied successfully.

Using the gpresult command I was able to output all of the polices applied. The command requires the specification of scope to be issued correctly.  Example below:

 

Policies applied to your user account:

gpresult /Scope User /v

 

Policies applied to your Computer:

gpresult /Scope Computer /v

Ref: https://technet.microsoft.com/en-us/library/dn265978(v=ws.11).aspx

Only settings that have been applied to your machine and user account will show up.

 

Oh! And yes there is Graphical Interface for this tool.
You can get to it by executing the following steps below:

Type rsop.msc into the run box , then hit enter

A pop-up dialog will show while querying your system.

Once the console opens you will be able to see which settings have been applied to your PC.