Tag Archive for Windows

| May 17, 2013
Comments Off on Is Windows an Olds?

Is Windows an Olds?

Is Windows an Olds?Do you remember Oldsmobile? The BusinessInsider documented what I have sensed for a while. Windows is playing less of a role at Microsoft (MSFT). When was the last time something came out of the Windows camp that fired us up? BI notes that for a long time, Microsoft was a company whose success or failure was built around Windows. While Windows is still the heart and soul of Microsoft, it’s becoming a smaller part of its earnings.

This chart from BI shows Windows operating income as a percentage of its overall operating income versus its overall operating income. The total operating income is slowly growing, while the Windows percentage of the total is slowly decreasing.

MSFT Windows total operating income

rb-
I have covered the angst over MSFT’s profitability for a while here and here. There are those that think Redmond is a long-term play as a leader in the cloud market. I don’t see it. Calling MSFT a good play in the cloud is like asking General Motors to make money on building roads and not cars. MSFT’s latest products (Vista, Win8) are as memorable as the Olds Calias or the Achieva.

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , ,
| May 14, 2013
Comments Off on Did You Wipe Your Tablet?

Did You Wipe Your Tablet?

Did You Wipe Your Tablet?Techno prognostication firm IDC says (I think they are right on this one) that worldwide sales of tablets will surpass desktop PCs and laptops by the end of 2014. This will result in a boomlet in the second-hand tablet market and a recent article on Infosecurity says that in response, firms will need to start data wipe their old tablets just as thoroughly as old hard disks to protect their data.

take responsibility for removing dataThe company is responsible for any company data held on the mobile device; no matter the flavor of BYOD practiced so it is the company that must take responsibility for removing data from the device before disposal. The Infosecurity article says that ensuring that mobile device solid-state memory is completely clean is technically difficult.

Solid-state memory

The article highlights BlackBelt, which has just enhanced its data wiping product to include Apple (AAPL) and Google (GOOG) Android tablets explained the difficulty to the author. “Solid-state memory uses a technique called wear leveling to maximize the life expectancy of the memory chips.” BlackBelt’s business development manager Ken Garner told Infosecurity,It works by spreading the binary information (0s and 1s) randomly across all the memory cells in the chip. This means that unlike on spinning disk memory, the location of the data on the user interface bears no relation to where it is stored on the drive, making traditional forms of deletion ineffective.

end users can't data wipe their mobile devicesBlackBelt says end-users can’t data wipe their phones, “it isn’t possible for an individual to perform a full removal of personal data from any smartphone or tablet using a device’s in-built factory reset or by re-flashing the operating system.” the vendor explains to Help Desk Security that wear leveling will, “over-rule instructions to permanently overwrite old data.

Solid-state memory wear leveling

Because of ‘wear leveling, neither remote wipes nor factory resets are guaranteed to remove all the data from solid-state memory. The blog points out that a low-cost product called Wondershare, can recover data from solid-state memory. Mr. Garner claims the software, “recovers just about everything after either a factory reset or a local (phone operating system) delete.

Many data wiping solutions don’t work on solid state memoryWhen a tablet is retired it is incumbent on the company to make sure that all data held on the device is adequately deleted. One problem, says Garner, is that “Many data wiping solutions, more often than not, have been “…re-purposed from data wiping solutions for traditional hard disk drives,” and that simply doesn’t work on solid-state memory.

Three-stage process to wipe SSM

DataWipe, uses a three-stage process: first writing 0s in every memory cell, secondly writing 1s in every cell, and thirdly writing random 0s and 1s across every memory cell. The result, he claims, is guaranteed data erasure that can also provide audit, compliance, and reporting data in an industry-standard XML format that is easily exchanged with all the major DLP, SIEM, policy management, and mobile device management solutions solving both the technical difficulties around tablet recycling.

difficulties around tablet recyclingWiping data from a PC or a first-generation Apple iPad that is being retired is important because of the enormous amount of data they can store. This makes the proper destruction of that data on the device essential before it leaves the organization. Unfortunately, IT asset disposition firm Retire-IT sees that many firms simply swap the devices with new ones or merely format the drives without securely wiping the data. The Columbus, OH-based firm says this leaves organizations vulnerable.  Kyle Marks, CEO of Retire-IT told Help Net Security that:

99% of problems happen before a disposal vendor touches equipment. No vendor can destroy data if they don’t receive an asset, which is why we strongly encourage clients to destroy data before any move. Better safe than sorry. Of course, disposal vendors should destroy data (again) regardless

Retire-IT looked at tracking data from 1,072 corporate disposal projects encompassing 233 different companies and reported some shocking figures:

  • 4 out of 5 projects (81.5%) had at least one missing asset.
  • 1 out of 8 (11.6%) had a negative variance. The devil is in the details, but nobody looks very closely.
  • Only 79% of the serial numbers were matched with subjective matching.
  • Without subjective matching, only 58% of serial numbers were matched.

Sanitize IT equipment

Help Net Security offers some suggestions to help sanitize IT equipment:

Computers – Derik Boot and Nuke Linux Live CD for full disk wiping. It supports many types of wiping, including the DoD 5220.22-M method with 3 passes.

sanitize IT equipmentStarting with Windows Vista (and Windows 2008 Server), the Microsoft OS overwrites the contents of each sector when you do a Slow Format on your media. They recommend Microsoft’s SDelete for wiping files on Windows.

For Apple OS X there’s the Disk Utility.

On Linux use the “wipe”, “srm” or “shred” commands to securely sanitize files on most distributions.

Printers and copiers – Consult the manual to find out how to clear the memory or use third-party software to wipe the hard drive. Which I covered here

Mobile devices – Wired recommends a hammer and don’t forget to remove the SIM card.

Related articles
  • BYOD: Preventing Breaches Can Be A Challenge (healthsecuritysolutions.com)

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , ,
| May 7, 2013
Comments Off on Which SkyDrive is Right For You?

Which SkyDrive is Right For You?

Updated February 19, 2014 – To add to the SkyDrive confusion, Microsoft has been forced to re-brand its storage service from SkyDrive to OneDrive following a trademark dispute with a British pay-TV provider BSkyB.

Which SkyDrive is Right For You?Jonathan Hassell who runs 82 Ventures, a consulting firm based out of Charlotte, NC tries to clear up confusion about exactly which Skydrive is right for you. He explains for CIO.com that the Microsoft (MSFTbranding machine confuses perfectly good and functional software with names that are impossible to parse. In the article, he tries to define exactly what each service is and what its limitations are.

SkyDrive Pro

SkyDrive logoSkyDrive Pro – is a business storage space for individual users. The author says SkyDrive Pro is a feature and capability that comes from a SharePoint Server 2013 Enterprise license—a license that you can buy either to run on servers in your own data center premises or access through a subscription to Office 365 on a monthly or annual basis.

SkyDrive Pro is available in the data center or the cloud and functions the same either you run it. The article stresses the key part to remember is that it is a function of SharePoint and nothing else. It has absolutely no relationship to the free service of a very similar name that’s discussed below. The blog presents several key points to remember when thinking about SkyDrive Pro:

  • Microsoft logoSkyDrive Pro is essentially a replacement for the old My Site feature that was available within SharePoint 2010 and 2013. It’s a place for users to store files they might want to share with others in the future. For instance, you might be working on a budget spreadsheet that needs constant updating, so you could save a copy to your SkyDrive Pro location and invite other users to read, view, and update that copy on their own.
  • With SkyDrive Pro on Office 365, each user gets 7 GB of space that is not counted against the overall SharePoint storage quota that is part of the plan you pay for. For SharePoint Server 2013 on-premises installations, administrators can configure the SkyDrive Pro space quota on an individual basis. While you can buy add-on space to pool more available gigabytes for your overall SharePoint sites and workspaces on Office 365, you can’t buy more storage to extend SkyDrive Pro spaces.
  • There is a SkyDrive Pro client application, but at this point, it’s available only as part of the Office 2013 suite. If you don’t have an Office 2013 license, you’re forced to use SkyDrive Pro through the browser just like most of your interactions with other parts of the SharePoint product.
  • The SkyDrive Pro client application behaves like the old SharePoint Workspace client application. It synchronizes the online content with an offline cache so you can still access files, documents, and other objects from the site just like you were online, even if you are stuck without a connection somewhere.
  • SkyDrive Pro works only for Windows and Web browsers. There are no native client applications for other operating systems.

The CIO.com article states that SkyDrive Pro is definitely not a free-for-all when it comes to data storage. Microsoft has imposed the following limitations:

  • Software for rentIn your SkyDrive Pro library, you can synchronize up to 20,000 items, including folders and files;
  • No single file can be greater than 250 MB in size;
  • You can download files up to 2 GB from your library.

If you’re running Office 2013 you can remove the hooks within Windows Explorer that expose the space. Just issue the following command at the elevated administrative command prompt:

regsvr32 /u %programfiles%MicrosoftOfficeGROOVEEX.DLL

SkyDrive

SkyDrive, referred to by Mr. Hassell as SkyDrive Free to prevent confusion, is a consumer service provided by Microsoft that works a lot like Dropbox. It provides up to 7 GB of free cloud storage where users can upload files that are then accessible from either a Web browser or any Internet-connected device where the right client-side extensions are installed. The article notes that consumers can part with some money for even more space above what’s allowed on the free tier.

These client extensions are available for the Windows desktop, through the Windows Store (for Windows 8 and Windows RT devices), for the Windows Phone, and on Apple (AAPL) iOS, Google (GOOG) Android, and Mac OS devices.

Cloud storageTo make things even more confusing, according to the author, users who subscribe to Office 365 Home Premium plans get an extra 20 GB of SkyDrive free storage space. Office 365 Home Premium, despite being an Office 365 product/service, has nothing to do with SkyDrive Pro. This extra SkyDrive Free space is not granted to any other Office 365 subscription plan—and there’s currently no way to increase the SkyDrive Pro space on Office 365 beyond the 7 GB quota. The blog offers a few takeaways when thinking about SkyDrive Free:

  • There’s no corporate control over what’s stored on SkyDrive Free. Other than preventing the client extensions from being installed on corporate-owned devices and blocking access to skydrive.com from your Internet connection, there’s no other way IT can control what a user stores on SkyDrive Free.
  • In Office 2013, SkyDrive Free is the default location where users are prompted to save documents and other objects. SkyDrive Pro spaces are not the default.
  • SkyDrive Free has absolutely nothing to do with SharePoint, won’t work with either SharePoint Workspace 2010 or SkyDrive Pro client applications, and can be used by shops that have no link to SharePoint whatsoever, even all-Mac shops with no Windows machines at all.
  • Finally, SkyDrive Free does not support advanced functionality such as document versioning, file alerts, quick preview, and deeper Office client integration. That’s all exclusively reserved for SkyDrive Pro spaces.

SaaSMr. Hassell concludes that the idea behind both SkyDrive services is the same—a place to store documents, files, and other things so they’re available from multiple places. But SkyDrive Pro is clearly oriented at businesses and provides enterprise features that are useful for collaboration, while SkyDrive Free is a consumer service available to anyone, for free, across different platforms.

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.
Category: Uncategorized | Tags: , , , , , , , , ,
| April 25, 2013
Comments Off on Microsoft Ending Windows XP & Office 2003 Support

Microsoft Ending Windows XP & Office 2003 Support

Microsoft Ending Windows XP & Office 2003 SupportTwo of Microsoft’s (MSFT) flagship services are going to no longer have any support as of April 8th, 2014: Windows XP and Office 2003. Microsoft is warning suggesting that companies who have not migrated from Windows XP and Office 2003 start the process soon. MSFT released the OS more than a decade ago (October 2001 to be precise).

Microsoft Windows 7 logoOn their blog, Naked Security, Sophos says that Windows XP still holds a 39% market share on the desktop. What if you are still using XP or Office 2003? Microsoft simply says it means you should “take action.” There will no longer be any security updates or assisted support options, online or otherwise, through Microsoft.

The lack of any security updates means there will be “unchecked security and compliance risks” as well as a lack of support and updates that keep the software compatible with the newest technologies.

Sophos logoSophos speculates that one of the security implications of the bad guys holding onto new Windows XP exploits until MSFT stops patching XP. There’s certainly the potential for a lot of havoc if 39% of the PCs get infected by new internet-propagating worms that target Windows XP systems. Even an increase in Internet Explorer 8 browser exploits that could open the doors wide for all kinds of malware infections.

It can take up to 18 months for the average medium to large business to install new programs, roll out all the updates, and import all customer data. Firms may need to upgrade their PCs and retrain their staff to use newer, more dependable Microsoft products.

MalwareMicrosoft says this move comes after they introduced their Support Lifecycle policy in 2002. All of Microsoft’s products get 10 years of support – 5 Mainstream and 5 Extended – and once those ten years are up, the company encourages all users to move on to more recent products that will often fit the needs of an individual and a company more closely.

rb-

state mandated testingIn my world, we have started to migrate off of XP to Win7, due to state-mandated testing requirements. Does anyone else see the irony in the fact that the Gates Foundation is a backer of large-scale multi-state standardized online testing that forces school districts in 22 states to migrate off of WinXP, a known entity that most people have long gotten their ROI out of the perpetual licenses to a new OS Win7 (Win8 HA) that they are pushing as a subscription?

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , ,
| August 23, 2012
One comment

Privacy on IPv6 Networks

Privacy on IPv6 Networks

Internet service providers, websites, and equipment vendors around the globe took part in the World IPv6 launch in June, Internet companies including AT&T (T), Cisco (CSCO), Comcast (CMCSA), Facebook (FB), Google (GOOG), Microsoft (MSFT), Verizon Wireless (VZ), and Yahoo (YHOO) decided to permanently turn on IPv6. A small fraction of Internet users and devices have started communicating via IPv6 networks, with more and more transitioning to the new protocol over the coming months and years. There are security and privacy implications in the switch to IPv6.

IPv6All kinds of devices will get new IPv6 numbers as the addressing format grows. The IPv6 addresses for these networked devices can be generated in a number of different ways and the choice of how they are created has potentially wide-reaching effects for security and privacy Center for Democracy & Technology explains. One of the original methods for assigning new addresses involved using a unique device identifier (known as a MAC address) as the suffix of the IPv6 address. This method creates a permanent, unique address for a device, potentially allowing any server that the device communicates with to indefinitely track the user.

IPv6 designers soon realized the potential security and privacy problems of MAC-based addresses; as a result, they created an alternate method known as “privacy extensions” or “privacy addresses” the article reports. The privacy extensions use a randomly generated number instead of a MAC address. In order to protect privacy on an IPv6 network, the random number is unrelated to any device identifier and in practice lasts no more than a week (and often much less time), ensuring that the user’s IP address cannot be used for long-term user tracking.

SmartphoneIt is up to operating system vendors to choose which IP address assignment method will be the default on their devices. The author says that some vendors have made good choices, particularly within the last year. Microsoft has long led the charge on IPv6 privacy, with privacy extensions on by default in all versions of Microsoft Windows since the release of Windows XP nearly a decade ago. Apple followed suit last year, with privacy extensions activated by default in all versions of Mac OS X since 10.7 (Lion) and with the release of iOS 4.3 for iPhone and iPad. Google did likewise in its Android 4.0 release last year.

The CDT says that as long as Internet users choose to upgrade their operating systems to the latest versions, they should be protected against perpetual security and privacy threats from IPv6 network address tracking.

rb-

mobile OS's send private information about their users to the networHowever, I wrote about reports from H.Security that mobile operating systems do not protect security or privacy on IPv6 networks. The report says mobile OSs send private information about their users to the network. The H.Security article says this is not a flaw in IPv6, rather it is lazy programming in some cases. The article points out that neither Apple’s iOS nor Android devices have the option to enable Privacy Extensions or the option to disable IPv6. apparently, the only thing smartphones need is a control option in the user interface to protect mobile OS users’ privacy and security on an IPv6 network.

Related articles
  • Romania Has the Fastest IPv6 Adoption Rate (maindevice.com)

 

Ralph Bach has been in IT long enough to know better and has blogged from his Bach Seat about IT, careers, and anything else that catches his attention since 2005. You can follow him on LinkedInFacebook, and Twitter. Email the Bach Seat here.

Category: Uncategorized | Tags: , , , , , , , , , , , , , ,
« Older Entries   Recent Entries »