Tuesday, September 14, 2010

Computer Security: The NIST Handbook

Posted by Support @ Whaddya.com on Tuesday, September 14, 2010 0 comments

If you are new in Computer Security field and need to learn on how to provide security for your company working environment. I highly recommend you begin reading the Special Publication 800 series e.g. The NIST Handbook.

Special Publication (800 Series)
Special Publications in the 800 series present documents of general interest to the computer security community. The Special Publication 800 series was established in 1990 to provide a separate identity for information technology security publications. This Special Publication 800 series reports on ITL's research, guidelines, and outreach efforts in computer security, and its collaborative activities with industry, government, and academic organizations. (NIST.GOV, 2010)

Cyber War: The Next Threat to National Security and What to Do About ItTo start, read the Special Publication 800-12 An Introduction to Computer Security, and follow-up with other reading materials where your current responsibility fit. For example about Cryptography, read Special Publication 800-21 2nd Edition: Guideline for Implementing Cryptography in Federal Goverment, or SP 800-30 for Risk Management Guide for Information Technology Systems, or SP 800-44 for Guidelines on Securing Public Web Servers, or SP 800-45 for Guidelines on Electronic Mail Security, etc.

The Special Publications 800 Series will give you enough information to start your study and documentation.

References:
An Introduction to Computer Security: The Nist Handbook
Special Publications (800 Series) http://csrc.nist.gov/publications/PubsSPs.html
An Introduction to Computer Security: The NIST Handbook http://csrc.nist.gov/publications/nistpubs/800-12/handbook.pdf
Continue...


Sunday, September 12, 2010

GeoTrust updating Intermediate Certificate Authority (CA)

Posted by Support @ Whaddya.com on Sunday, September 12, 2010 0 comments

Cyber SecurityThis is a follow-up article that I post last week about the Installation of GeoTrust SSL Digital Certificate. After the renewal and successfully installed of digital certificate to one of our web server I thought everything is working just fine. Just like other system administrator, I've used Microsoft Internet Explorer ver7.0, 8.0 and Chrome to test the new SSL digital certificate installation. All returned no error when I browsed the website https://timesheet.king.net as an example.

Then I received emails from other users that connection to the server is untrusted. So I start troubleshooting the issue, and I found out GeoTrust renewed their Intermediate Certificate Authority and additional action is required to fix the issue. Note. You will only see the error if you are using Windows Vista with IE 7.0 or Firefox 3.4.6.

So here's the procedure to update the GeoTrust Intermediate Certificate Authority. Go to your web server and follow this instructions.

  1. Visit www.geotrust.com website, click the Support page.
  2. In Knowledge Center Search, type ar1422, click Search
  3. Complete the two steps on your web server. For this example, we are using Microsoft IIS.
  4. Right click link and save on Download the PKCS#7 CA link, save to your local temp file.
  5. Then proceed to step two, click the For IIS to see the detailed procedures. In here, you need to complete step 2 and 3 to update the Intermediate Certificate Authority
  6. Restart the server or restart the World Wide Web Publishing Service.
  7. Now check your website again, the error is gone.
I hope this help you resolve your GeoTrust "This Connection is Untrusted" web error.
Continue...


Saturday, September 11, 2010

How to uninstall Symantec Antivirus v9.x

Posted by Support @ Whaddya.com on Saturday, September 11, 2010 0 comments

Symantec Endpoint Protection Small Business Edition (1 User)This document describes how to uninstall Symantec AntiVirus Corporate Edition 9.x client from Windows NT/2000/XP or Windows Server 2003 (32-bit) manually.


Solution:
Removing Symantec AntiVirus client manually takes the following four basic steps:
  1. Stop Symantec AntiVirus services
  2. Remove Symantec AntiVirus from the registry
  3. Remove Symantec AntiVirus from the Start menu
  4. Remove Symantec AntiVirus from the hard drive


continue reading:
http://service1.symantec.com/SUPPORT/ent-security.nsf/docid/2004040815592148
Continue...


GoDaddy.com is for sale.

Posted by Support @ Whaddya.com on Saturday, September 11, 2010 1 comments

Domain Name Investing: Make Money Online And Run Your Own Home Business By Buying And Selling Premium Domains In Your Spare Time!Yes GoDaddy is for sale in an auction, and experts expect to sell at least $1B.

"Based in Scottsdale, Ariz., GoDaddy.com is owned by Bob Parsons, who founded the company in 1997 and is its chief executive—a man the company website describes as "not shy to speak his mind." The company is well known for its edgy advertising, including Super Bowl commercials and ads featuring different "Go Daddy Girls," including racing car driver Danica Patrick.

In addition to registering domain names, GoDaddy.com sells e-commerce, security and other services to people and businesses looking to manage their online presence. The company posted revenue between $750 million and $800 million in 2009, according to people familiar with the matter.

Two smaller competitors, Register.com and Network Solutions, have both been in private-equity's hands. Earlier this year, technology-focused buyout firm Vector Capital sold Register.com to another web registration and design provider , Web.com Inc., for $135 million. Network Solutions is owned by General Atlantic Partners." (Online WSJ, 2010)

I personally own hundred of domain names from GoDaddy that I bought though the after market. The domain name business operations is smooth and easy to complete your transaction. Not only domain names, GoDaddy provide hosting, domain auction, resellers, e-commerce, copyrights, SSL, and other related services that you can use for your online business. I am also a GoDaddy reseller (www.Moscom.com) which I use to provide domain name and hosting service to my direct customers.

I hope the domain name business operations will not change and will continue the sweet ride of success.

Reference:
GoDaddy goes to the Auction Block. Retrieved September 11, 2010 from http://online.wsj.com/article/SB10001424052748703597204575484153733196856.html?mod=googlenews_wsj
Continue...


Thursday, September 9, 2010

Buying a Domain Name in forums

Posted by Support @ Whaddya.com on Thursday, September 09, 2010 0 comments

Buying And Selling Domain Names 101: How To Buy And Sell Domain Names For Fun And ProfitsBuying a domain name in various forums is sometimes very tricky. Someone is selling a domain name for example MYIV.COM requesting to post offer or by PM (private message). First interested buyer will post $500, $600 from the second buyer, $700 from the third buyer, and then later on you will see a post from the seller "High Offer $2000 received, BIN $4000". I don't know about you but this is fishy transaction to me, and I stop posting offer. As member of the forum, you are not allowed to question the owner post because "not related to a sale" or "not productive question" or other reasons. This is happening to any domain name forums that you might be part of, well at least one of the forum.

Question to other domain name investors. How do you handle and approach this scenario?
Continue...


Windows Installer Service error

Posted by Support @ Whaddya.com on Thursday, September 09, 2010 0 comments

Inside Windows Installer 4.5A good reference to correct the Windows Installer Service could not be started. The error messages usually appear after failed installation of MSI Package or Disabled Windows Installer Service.

Here are the ways to resolve this error.
http://support.microsoft.com/kb/555175
Continue...


Wednesday, September 8, 2010

Installing GeoTrust SSL Digital Certificate comes with error.

Posted by Support @ Whaddya.com on Wednesday, September 08, 2010 2 comments

I just renewed the SSL digital certificate of one of our web server for another one year. I'm installing and renewing SSL digital certificate for many years but this time I encounter a digital error. So I tried to troubleshoot to learn what's going on, and provide solution to fix this problem.

The renewal of digital certificate is the same process. You go to the server to create a new digital certificate, buy a SSL digital certificate from the vendor e.g. Verisign, GeoTrust, RapidSSL, and other provider, and then submit it. I choosed GeoTrust because it is very reasonable price to maintain a secure tunnel from your client internet browser to the web server.

The process is completed, the web server digital certificate is valid for another year. But I have some users complaining about "The security certificate presented by this website was not issued by a trusted certificate authority." I find out this from my Windows Vista users. I know I can ask them to check with other computer using Windows XP or Windows 7, this will work.

But I have the same users in the past so I digged more to get additional information.

I used the SSL Checker to verify the old and new digital certificates. The two web servers are using GeoTrust certificate, one certificate is not trusted in all web browsers (see the captured image above) and one is correctly listed (see the captured image on the right) in the certificate authority. I also noticed the Issuer changed from Equifax to GeoTrust DV SSL CA.

There are two solutions to resolve this certificate error. The first one is easy, let them use other computer using Windows XP or Windows 7 with IE 7.0 or latest. The second option is to follow the recommendation provided by SSL Shopper.

References:
SSL Checker. Retrieved last Sept. 8, 2010 from http://www.sslshopper.com/ssl-checker.html
SSL Certificate Not Trusted Error. Retrieved last Sept. 8, 2010 from http://www.sslshopper.com/ssl-certificate-not-trusted-error.html
Continue...