AANDCP IT Solutions

Author: Andrew Preece

  • Wake-on-LAN via FortiGate

    So, I was working with a customer to troubleshoot an issue with a Windows client PC connected to a network at a site that is largely unattended. They have been using the PC remotely via a VPN and Remote Desktop (no dodgy RDP port forwarding here!) and it had been working fine previously. I attended…

  • FortiOS v7.0 Vulnerability

    There is a critical security vulnerability in FortiOS v7.0 and FortiProxy v7.0 and v7.2 as detailed here: https://www.fortiguard.com/psirt/FG-IR-24-535 You should consider applying the mitigations as per Fortinet’s advice if you are unable to install the latest patch that resolves this issue, but patching would be the recommended approach. It is also worth checking the IOC…

  • macOS Sequoia 15.2 now available

    The latest release of macOS Sequoia is now available for updating your devices. Details about the security vulnerabilities resolved in this update can be found here: https://support.apple.com/en-us/121839

  • macOS Monterey 12.3 is now available

    The latest release of macOS Monterey is now available for download. Release notes can be found here: https://developer.apple.com/documentation/macos-release-notes/macos-12_3-release-notes

  • macOS Catalina is Coming

    While there is still no official release date for Catalina, macOS 10.15 is coming soon. There are plenty of new features and enhancements included in Catalina; for more information, check out Apple page: https://www.apple.com/macos/catalina/features/ However, there are also some significant changes coming, including the end of 32-bit applications, and support for 32-bit applications. This has…

  • Firewall Deployments for Small Business

    Over the past year, we have been working with a number of small businesses around Tasmania rolling out improved internet security solutions using Fortinet’s FortiGate next-generation firewall appliances (NGFW). The FortiGate suite of hardware firewall solutions utilises purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance including…

  • LaCie 2Big Network 2 Data Recovery – An Update

    So, after working on the LaCie recovery nearly 4 years, I quickly jotted up some notes in case anyone else ran into the same troubles I did. Well… I am happy (or sad) to say they did… an anonymous web tech nerd emailed me over the weekend, thanking me for the original article and offering…

  • Removing Adobe AIR properly from macOS

    I have been doing a bunch of FortiGate deployments and finally decided to enroll my instance of FortiClient on my daily driver to my firewall at home. Upon doing so, I did a vulnerability scan just out of interest. The only issue identified was Adobe AIR. Now, like most people, I haven’t been using Adobe…

  • IKEv2 VPN on macOS and iOS

    I have been working on an improved and more stable VPN option for macOS users since the demise of PPtP. My personal preference is for an improved firewall experience using UTM appliances like FortiGate and then leveraging SSLVPN, as it seems to work from a large majority of locations and internet connection types. However, the…

  • MacRansom: ransomware as a service

    From Fortinet’s recent blog post: Many Mac OS users might assume that their computer is exempt from things like ransomware attacks and think that their system is somehow essentially “secure.” It is true that it’s less likely for a Mac OS user to be attacked or infected by malware than a Windows user, but this has nothing to…

  • Deployment of WiFi at a Residential College

    AANDCP IT Solutions was engaged by a local residential college  to assist them in developing a set of requirements for a campus-wide deployment of WiFi to upgrade the IT experience for more than 200 residents and staff living and working on campus. We scoped the requirements, worked with the local IT industry to solicit responses, helped…

  • WordPress Brute Force Amplification Attacks Against XMLRPC

    Brute Force attacks are one of the oldest and most common types of attacks that we still see on the Internet today. If you have a server online, it’s most likely being hit right now. It could be via protocols like SSH or FTP, and if it’s a web server, via web-based brute force attempts…

  • Google is changing… mobile-friendly sites

    Mobility is king… and Google is changing along with the way we use the web. http://www.huffingtonpost.com/2015/04/17/google-search-update_n_7085642.html It’s probably the most significant change that Google Inc. has ever made to its mobile search rankings, according to Matt McGee, editor-in-chief for Search Engine Land, a trade publication that follows every tweak that the company makes to its…

  • Synology DSM 5.1 Update 3 is now available

    The latest version of DSM, Synology’s amazing web-based NAS OS is now available for download using automatic update (if you have enabled) or from their site. The security update notes can be found here: https://www.synology.com/en-us/support/security/SAMBA This update includes the fix for the recently discovered SAMBA vulnerability, as well as previous fixes for GHOST, and number of…

  • MikroTik Certifications

    I have just completed a week long course with Tridigital and DuxTel on MikroTik routers, and have now completed the MTCNA and MTCRE certifications. #1407NA348 #1407RE077