ALI Blog

Executive and Technical Blogs

  • Home
    Home This is where you can find all the blog posts throughout the site.
  • Categories
    Categories Displays a list of categories from this blog.
  • Login
    Login Login form

ALI-Inc

ALI-Inc has not set their biography yet

Posted by on in Technical

Brice R. Stevens, ALI Help Desk Support

Have you encountered a problem with your Outlook Web Access not working after a recent update to Microsoft Exchange? Our Help Desk has a tech tip on how to solve this common issue.

Starting this fall, Windows Server 2012 R2 Data Center edition pricing is going to rise by 28% more than previous version.  So the question is, are the extra features worth it?
 
Hits: 13787

Posted by on in Technical

VMware has recently announced the end of life for vSphere ESX hypervisor 4.X (more info).  What does this mean for you?

Posted by on in Technical

If you find Windows7 workstations not mapping all the network drives on login, here's some help:

Hits: 11392

Posted by on in Technical

GroupWise 8 & 7 users should check their security patches RIGHT AWAY! 
The GroupWise Internet Agent (GWIA) has a vulnerability.

If you need assistance with resolving this GWIA issue, please do not hesitate to contact our TAC.


 

Security Vulnerability - GroupWise 8 Internet Agent TZID (VCALENDAR) Variable Parsing

This document (7007638) is provided subject to the disclaimer at the end of this document.

Environment

Novell GroupWise 8
Novell GroupWise 8 Internet Agent
 Affected versions: GroupWise 8.0x, 8.01x, 8.02, 8.02HP1
Previous versions (such as GroupWise 7.x) of GroupWise are likely also vulnerable but are no longer supported. Customers on earlier versions of GroupWise should, at a minimum, upgrade their GWIAs and associated Domains to version 8.02HP2 in order to secure their system.

Situation

The GroupWise Internet Agent (GWIA) has a vulnerability in the way that it parses the TZID variable within a received VCALENDAR message, which could potentially allow an unauthenticated remote attacker to execute arbitrary code on vulnerable installations of GWIA.  This vulnerability affects GWIA running on all supported server OS platforms (Windows, SuSE Linux, & NetWare).
 
This vulnerability was discovered and reported by Anonymous working with TippingPoint's Zero Day Initiative (http://www.zerodayinitiative.com), ZDI-CAN-967
 
Novell bug 657818, CVE-2010-4325

Resolution

To resolve this security issue, update GWIA to version 8.02 Hot Patch 2 (or later).

Bug Number

657818

Document

Document ID: 7007638
Creation Date: 01-21-2011
Modified Date: 01-28-2011
Novell Product: GroupWise

Disclaimer

The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.

Contributed by: Cam Cole

To stay competitive, small businesses must make the most of current technology.

Problems Are:

  • It can be expensive
  • Time consuming
  • Inefficient to maintain a full-time IT department like larger companies.

A true Professional Technology Services Provider offers

  • on-demand talent
  • depth of experience
  • deep resources
  • predictable expenses

Here are the top 5 benefits you’ll see by using a Technology Services Provider:

Benefit #1: Stay Focused on Core Business Functions:

Business owners are happiest doing what they do best, running their small business. Researching solutions and fixing IT-related problems not only distracts them from their business but is extremely inefficient especially for non-IT professionals. Further it can tie up internal staff from revenue-generating functions and the business of doing business.

Benefit #2: Reduce Costs & Control IT Expenses

By utilizing a Professional Technology Services Provider a typical Small Business will spend 25% to 50% less than the cost of even one mid-level IT professional. Also by taking in consideration recruiting, training, vacation, sick days, turnover and other management issues out of the equation to see even more savings.

Due to a single focus on IT, technology services providers are able to achieve greater efficiencies and savings by consolidating purchasing power and vendor special pricing programs, providing access to deep and broad knowledge bases and by using developed best practices which means tasks are completed more efficiently than small businesses can do on their own. This means real cost savings– both in time and money.

Costs are budgeted, predictable, and controlled.

Benefit #3: Access Greater Support & Specialized Talent

Even a few minutes of systems downtime carry enormous business costs. Maximizing uptime must be a high priority. Small businesses can no longer afford issues with internet connectivity, email communications, corrupt data or systems failure - the cost of reacting to these events is just too high. Professional technology services providers offer planned, measured approaches to pro-active systems maintenance, security, backup and disaster recovery.

Small businesses cannot cost effectively achieve the scale and flexibility to properly support their technology environments. Even a very experienced and dedicated IT employee has limits to skills and avenues for help. Professional technology services providers offer access to teams of IT specialists that deliver the cross-sectional IT knowledge needed to provide both on-going and critical support for small business networks.

Benefit #4: Help Employees Innovate and Stay Productive; Attract & Retain Employees

Communication, collaboration, and knowledge sharing allows employees to innovate. These capabilities are delivered through a multitude of technologies including file servers, central databases, broadband connectivity, mobile platforms, email communications, and many others. However, true productivity and business benefit can only be realized when this complex technology is properly planned, implemented and maintained. The best practices and comprehensive experiences around planning, implementing and maintaining such systems allow technology services providers to successfully deliver these productivity improvements.

Employees want to work in an environment where their computers are up and running. Employees want to be competitive with their rivals and they want the technology tools that really help them deliver. Potential new talent will weigh your company’s technology prowess. Utilizing a professional technology services provider allows small businesses to meet these expectations and increases the ability to attract and retain employees.

Benefit #5: Get A Technology Edge Over Competitors

Don’t just level the playing field, take advantage of new technologies for a competitive advantage. Technology services providers keep up with the latest solutions through ongoing training and real-world experience. They know how to implement the latest hardware, software, and network applications available. Just as important: they know which technologies are not worth the investment.

Want to know more? Visit our information center on ALI's Managed IT Services, or contact Cam Cole at (434) 386-4274

Tuesday, Microsoft released an out-of-band security update to address the .LNK vulnerability described in Microsoft Security Advisory 2286198. Microsoft Security Bulletin MS10-046 addresses one vulnerability in Windows, has a maximum severity rating of Critical, and an Exploitability Index rating of 1. The security vulnerability affects all supported editions of Windows including Windows XP, Windows Vista, Windows 7, Windows Server 2008 and Windows Server 2008 R2.

It is recommended that customers deploy the update as soon as possible to help protect their computers from criminal attacks. The security update protects against attempts to exploit the vulnerability by several malware families.

IT professionals may also want to view the out-of-band bulletin release overview webcast with Christopher Budd, senior security response communications manager, Microsoft, for a quick synopsis of the highest risk and impact scenarios. More information on the webcast can be found on the Microsoft Security Response Center (MSRC) blog.

If you have any questions, please do not hesitate to contact our Technical Assistance Help Desk at (540) 443-3398.