Disabling SSL 2.0 for PCI compliance

 

I have been asked recently to undertake some security improvements for an Insurance Company, one of these requirements is to disable SSL 2.0 – details on how to do this are below:

http://support.microsoft.com/kb/187498 – this article contains a fix it for me button, so you don’t have to run through the following procedure, but I like to know what is happening with my servers.

The instructions are pretty easy to do.

1.Click Start, click Run, type regedt32 or type regedit, and then click OK.

2.In Registry Editor, locate the following registry key:
HKey_Local_Machine\System\CurrentControlSet\Control\SecurityProviders \SCHANNEL\Protocols\PCT 1.0\Server

3.On the Edit menu, click Add Value.

4.In the Data Type list, click DWORD.

5.In the Value Name box, type Enabled, and then click OK.
Note If this value is present, double-click the value to edit its current value.

6.Type 00000000 in Binary Editor to set the value of the new key equal to “0”.

7.Click OK. Restart the computer.

Do the same for SSL 2.0

Now keep in mind that while this will make the server PCI worthy, I don’t see it as a specific line item on this checklist – https://www.pcisecuritystandards.org/pdfs/pci_dss_v1-1.pdf

It’s specifically mentioned in the Approved Scanning Vendors document, so it is more than just best practice: www.pcisecuritystandards.org/…/pci_dss_technical_and_operational_requirements_for_approved_scanning_vendors_ASVs_v1-1.pdf

A component must be considered non-compliant if the installed SSL version is limited to Version 2.0, or older. SSL must be a more recent version than 2.0

Advertisements

USB/DVD Bootable AntiVirus Tool: Microsoft Standalone System Sweeper Beta

Microsoft Standalone System Sweeper Beta, a recovery tool that can help you start an infected PC and perform an offline scan to help identify and remove rootkits and other advanced malware. In addition, Microsoft Standalone System Sweeper Beta can be used if you cannot install or start an antivirus solution on your PC, or if the installed solution can’t detect or remove malware on your PC.

Microsoft Standalone System Sweeper Beta is not a replacement for a full antivirus solution providing ongoing protection; it is meant to be used in situations where you cannot start your PC due to a virus or other malware infection. For no-cost, real-time protection that helps guard your home or small business PCs against viruses, spyware, and other malicious software, download Microsoft Security Essentials*.

To get started, please make sure that you have a blank CD, DVD, or USB drive with at least 250 MB of space. Next, download and run the tool – the tool will help you to create the bootable media required to run the software on your PC.

Download @> Microsoft Standalone System Sweeper Beta | Microsoft Connect

Microsoft Exchange Online (Office 365) Central Outlook PST Network Discovery, Import, and Upload

Microsoft Exchange PST Capture allows you to search for PST files on computers in your organization and then import those files to mailboxes in your organization. PST Capture works with both on-premises Exchange servers and Exchange Online.

This topic provides an overview of PST Capture. For details about how to install PST Capture, see Install PST Capture.

PST Capture Architecture

PST Capture is comprised of the following components:

  • PST Capture Central Service At the heart of PST Capture is the PST Capture Central Service. The Central Service maintains the list of all PST files found in your organization and manages the data as it’s moved to the Exchange servers or Exchange Online.
  • PST Capture Agent Discovery of the PST files is performed by PST Capture agents that are installed on computers in your organization. The agents also send the PST files they find to the host computer when an import operation is started on the PST Capture Console.
  • PST Capture Console The PST Capture Console is the interface you use to configure PST searches, specify the target mailboxes for PST files, and track the status of PST import operations and reports. You can also use the console to import PST files stored on network attached storage (NAS) devices, on which you can’t install PST agents.

For optimal operation, you should install the PST Capture Central Service and the PST Capture Console on a dedicated computer, known as the PST Capture host computer.

Communication between the PST Capture Central Service and the PST Capture agents is achieved through a polling mechanism. Each minute, all PST Capture agents poll the Central Service for configuration updates and any pending tasks by default. If necessary, you can change this polling frequency (for details, see (Configure PST Capture Settings). When a PST Capture agent contacts the Central Service, it receives any pending actions, such as a PST search or import operation. The PST Capture Agent then sends status updates from previous actions to the Central Service.

PST Search and PST Import Operations

When you configure and run a PST search from the PST Capture Console, a new PST search action is queued for the PST agents that are installed on the computers included in the search. These agents scan the local computers on which they are installed for PST files and then return the list of PST files that were located to the Central Service. For detailed steps about how to perform a PST search, see Search for PSTs Using PST Capture.

When you configure and run an import operation, a new import action is queued for the PST agents that are installed on the computers where the PST files reside. These agents transmit the PST files to the Central Service. The Central Service then logs on to the destination mailboxes and imports the data. For detailed steps about how to import PSTs, see Import PSTs using PST Capture.

Read the rest @> http://technet.microsoft.com/en-us/library/hh781036.aspx
Download @> http://go.microsoft.com/fwlink/?LinkId=239667

Have you transitioned from BPOS to Office 365 ??

The Microsoft Operations CPE Research team would like to interview customers who have transitioned from BPOS to Office 365. There’s no need to come in to our offices – we will conduct the interview by phone and live meeting. All you need is a phone (or computer headset), a PC, and a high-speed internet connection. During the interview we will share our screens with each other and record our discussion.Customers who are selected for this 1-hour interview will receive a $100 gift card as a thank you from Microsoft for your invaluable feedback. To volunteer, please complete this survey. If you qualify we will contact you to schedule the call as early as next week and no later than July 1st, 2012.

Survey link:http://opscpe.survey.msn.com/project/ddb/opensurvey.aspx?lid=6

The Microsoft Outlook Configuration Analyser Tool

The Outlook Configuration Analyser Tool (OCAT) provides a quick and easy method to analyze your Microsoft Office Outlook profile for common configurations that may cause problems in Outlook. This can be very useful for busy Help Desk personnel when end-users call for help with Outlook or when you want to identify possible issues with Outlook proactively.

The Outlook Configuration Analyser Tool provides a detailed report of your current Outlook profile. This report includes many parameters about your profile, and it highlights any known problems that are found in your profile. For any problems that are listed in the report, you are provided a link to a Microsoft Knowledge Base (KB) article that describes a possible fix for the problem. If you are a Help Desk professional, you can also export the report to a file. Then, the report can be viewed in the Outlook Configuration Analyzer Tool on another client computer where the tool is installed.

Download @> http://www.microsoft.com/download/en/details.aspx?id=28806

New Changes to the Lync Online Control Panel from January 2012 Office 365 Release (Recording, Auto Updating Sign-On ID, Privacy Controls)

 

The Lync Online Control Panel now lets you configure the following Lync Online settings for your entire organization:

  • Call and conference recording of meetings and phone calls
  • Mobile phone notifications for Lync Mobile users on Lync 2010 for Windows Phone, Lync 2010 for iPhone, or Lync 2010 for iPad
  • Presence privacy mode, which gives users greater control over who can see their online presence

In addition, and thanks in part to your suggestions and feedback, the Lync Online Control Panel has a new organization, and includes the ability to search, sort, and filter your list of Lync Online users.

Finally, we’ve added an important fix to resolve a previous issue. Now, when you change an Office 365 user ID, the Lync sign-in address is also updated. This means you no longer need to contact Microsoft Support to change someone’s user ID.

For details about the changes to the Lync Online Control Panel, see the online help for Enterprises or Professionals and Small Businesses.

 

Additional Information
  • Presence privacy mode allows organizations to specify whether a user’s presence is displayed to all users, or only those on a user’s contact list. See the online help for Enterprises or Professionals and Small Businesses.
  • Filtering and search options in the Lync Online Control Panel give administrators a way to look at a subset of users by searching on their name or phone number and also to filter users based on the features available to them. See the online help for Enterprises or Professionals and Small Businesses.

Read more new Office 365 January 20102 features enabled for Enterprise Plans @> http://onlinehelp.microsoft.com/en-us/office365-enterprises/hh831842.aspx

Manual Uninstall of SQL 2005 (32 / 64bit) Server or Express (including Reporting Services)

 

Uninstalling SQL 2005 Manually

First, here are the recommended steps to manually uninstall SQL 2005:

http://support.microsoft.com/kb/909967

If that doesn’t work, this is how you can manually uninstall all versions of SQL 2005 so that SQL can be reinstalled: .

Note – This method will delete all databases and configuration, you must have a backup of your existing SQL databases (which this uninstall will delete) before proceeding.

  1. Uninstall all SQL components possible in Add/Remove Programs (including the SQL client and VSS writer)
  2. Stop all SQL Services and configure them to disabled using Start > SQL Configuration Manager
  3. Delete the following registry to get rid of the services. If you have multiple instance installed, it will be Keyname$Instance (i.e. MSSQLServer$OFFICESERVERS)
    1. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSSQLServer
    2. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SQLServerAgent
    3. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSSQLServerADHelper
    4. HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ReportServer
    5. Verify that the services do not exist in the SQL Configuration Manager.
  4. Delete the SQL Configuration in the registry
    1. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSSQLServer
    2. HKEY_LOCAL_MACHINE\Software\Microsoft\Microsoft SQL Server
    3. Note – if you installed a 32 bit version of SQL on 64 bit version of Windows, you will need to also delete them from the 32 bit registry node that is redirected. More Info MS 896459.
      * HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432node\Microsoft\MSSQLServer
      * HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432node\Microsoft\Microsoft SQL Server
  5. Delete the SQL Program files – Note this will also delete the existing databases on the system that must be restored from backup.
    1. Delete the directory: C:\Program Files\Microsoft SQL Server
      Note – if you installed a 32 bit version of SQL on 64 bit version of Windows, you will need to also delete them from the 32 bit program files:
      C:\Program Files (x86)\Microsoft SQL Server
    2. You might need to reboot to close all files before you can delete the directory.

Now you can reinstall a clean 32 bit or 64 bit SQL without errors.

List All SharePoint 2010 PowerShell Commands

 

In order to master SharePoint 2010, you will have to get comfortable utilizing PowerShell (aka SharePoint 2010 Management Shell). There are so many commands (or command-lets as they are called) that interact with SharePoint that it makes it nearly impossible to remember them all. Use this PowerShell command to output a list of all cmdlets that are found within the SharePoint 2010 namespace:

Get-Command –PSSnapin “Microsoft.SharePoint.PowerShell” | format-table name > C:\SP2010_PowerShell_Commands.txt

If you would like a little more detail, then try this one:

Get-Command –PSSnapin “Microsoft.SharePoint.PowerShell” | select name, definition | format-list > C:\SP2010_PowerShell_Commands.txt

Note: You may also type gcm as the alias for Get-Command.