The bloody McAfee caused another trouble yesterday by rereleasing the new DAT 6682. Our Exchange server transport server stopped working just after updating to the DAT6682. The only thing you can do is to revert the DAT back to 6681 in both ePO master repository and the mail server. The solution can be found at: … Continue reading Issue With DAT 6682 and McAfee Email Products
Category: Security
Certificate Request Tool – DigiCertUtil.exe
I found this great CSR (Certificate Signing Request) tool named DigiCertUtil.exe in Jeff Schertz’s blog. It is a portable execution file, which means you don’t need to install it in your server. With this tool, I was able to simply generate the CSR file for both my Lync Edge server’s external and internal NIC. The … Continue reading Certificate Request Tool – DigiCertUtil.exe
PowerShell: Find Duplicated ePO GUID
McAfee ePO (ePolicy Orchestrator) client may have duplicated GUID when the computer restore to a previous system status or the computer is a clone of another one. I wrote a script to list the computer names with duplicated GUID, so I can target and process them. Remove-Item machines_draft.txt# copy the ePO server logCopy-Item "\\epo-server-name\c$\Program Files\McAfee\ePolicy … Continue reading PowerShell: Find Duplicated ePO GUID
AlienVault: File Integrity Monitor
AlienVault is an OSSIM product. OSSIM stands for Open Source Security Information Management. The installation package can be found here. One of the things that AlienVault can do is to monitor the file integrity. To do that, you have to install ossec agent on the servers that you want to monitor. ossec is an open … Continue reading AlienVault: File Integrity Monitor
PCI DSS: Maintain a Vulnerability Management Program
Requirement 5: Use and regularly update anti-virus software or programs Requirement 6: Develop and maintain secure systems and applications
Jackie Chen's IT Workshop 