It has been quite a bit since I’ve posted to my IT Buki blog. Life has been pretty hectic and lots of changes have happened in my life over the past year. One of those changes is that I have started working on my Ed. D. through the University of the Cumberlands. The class I am taking this summer is all about Educational Technology. Each week, I will be sharing my thoughts and reactions to the class through my blog here. I hope you enjoy reading about it.
Let me know what you think.
In my time in IT I have seen many server rooms. I have been in large, white room, raised floor data centers. I have also been in closets under the stairs. No matter what type of server room it is critical to keep it clean. I bring this up because it seems to be one of the things that gets overlooked the most.
Primarily, it is a safety issue. Server rails, old servers and network cables left on he floor can be a serious trip hazard. More than once have I been carrying something into a server room and tripped over something. Fortunately I haven’t suffered serious injury, but if I had it would have become a workman’s compensation issue.
Manuals and miscellaneous stuff lying on and around server room equipment can block proper airflow which can reduce the performance and life of the equipment.
Cardboard shipping boxes and manuals can feed a fire should there be some type of failure that causes a spark or flame.
Small hardware items set on top of equipment have the potential to fall into a server during maintenance and the short circuit when power is applied.
Dust destroys data and reduces airflow. It will reduce the life of your equipment.
Keep cables organized and color coded. It can save significant time and therefore significant consulting dollars while adding or replacing network equipment.
Keep those server rooms (closets, hobbit holes, etc.) clean and you will be doing yourself a huge favor.
When it comes to MS Patches (or most any for that matter) I usually recommend waiting to apply them. If you have a test environment, you should test the patches there and then run any test cases you have to make sure they don’t have a negative impact. If you don’t have a test environment, I would suggest waiting till the following month to apply anything other than highly critical security patches for released exploits.
Let the rest of the world be your test environment.
Ubisoft announced that they have had a data breach and recommending that their users change their passwords. Data breaches are not that uncommon. While cybercriminals tend to target large companies or companies they know have financial data, it doesn’t mean that everyone else shouldn’t take a second look at their internet security. There are a few things that are relatively easy to do and can save you from the random script kiddie wrecking your systems.
Make sure you have a firewall in place, with updated operating system and patches. I’m finding that more businesses these days have firewalls in place. However, I find that many of them haven’t been updated since they were configured 2 or 3 or 4 or… years ago. It is imperative that firewall OS be updated and patched to address new security vulnerabilities.
Make sure someone hasn’t opened up the firewall settings for some reason and then not closed it down. All too often I look at the firewall rules in a business and I see an “Any–Any” rule that someone used to either test something or because they couldn’t get the firewall rules configured correctly. Having a firewall with an active Any–Any rule nearly completely defeats the value of having the firewall in the first place.
Clean up old rules that are no longer needed. Many times I find rules for servers or services that clients once had long ago, but don’t have anymore. Leaving these open just adds to your “attack surface.” This refers to the open areas of your firewall that are potential entry points for non-authorized users (aka: criminals).
Finally, check to make sure you haven’t setup servers or systems that bypass your well designed and maintained firewall. I also see times where someone has connected a server directly to the internet because they didn’t have time to be bothered with getting the security worked out, or something went wrong and they moved it as a ‘temporary’ situation that never got remediated.
These are just a few easy things to check when it comes to your internet security. There are many more items that are very important, which is why you should check those entry points often. Be careful, it’s a dangerous world out there.
Very interesting article at Tech Republic about 4G wireless and traditional hard wire networking.
For companies really serious about staying connected during and after a large scale disaster or outage, using a 4G wireless network as a backup to failover to may be a very valuable business decision.
Read the article at http://www.techrepublic.com/blog/networking/getting-the-most-from-4g-and-wireline-networks/6723
I am beginning the great adventure of becoming an independent technology consultant. This is both an exciting and terrifying time. The not fun parts of setting up my new business kept me busy this past week.
Since I am the only one in the company, I decided to start off as a Sole Proprietor. I had several people ask me about incorporating. First off, it takes several weeks to get a corporation setup and recognized. I need to start getting work right away. It is also a significant amount of paperwork involved on an ongoing basis. The limited protection afforded to me would be easily pierced should something legal wise happen.
I purchased General Liability insurance and Workman’s Compensation insurance through a company called Techinsurance. It was a bit expensive (about $1,100 annually) but I think it will provide me better protection than the thin corporate veil with just me behind it. I would recommend this service. They were very helpful.
I had to register with the County Clerk to do business under an assumed name. This was a nominal fee of $13. This is needed in order to open a bank account for the business, which was my next step. I opened my account through PNC Bank. I have done my personal banking with them for years and have been very happy with their service. The person I worked with at the branch was very helpful. They have some really good deals on business banking, including Merchant Services with credit card rates that are actually better than Intuit.
I spent the weekend working on a standard Managed Services Agreement contract as well as a standard Statement of Work template. The MSA is VERY important and cannot be stressed enough. It is the real protection on your day to day work for the business. It is all very dry legal speak, but take the time to research it and work it out. If you can’t make heads or tails of it, this is a good time to invest some money or barter some services to get some help from a lawyer. Indemnification clause is highly important.
I still need to get my business licenses for the county and city in which I reside, as well as file paperwork for a home based business. This is required where I live and has certain restrictions.
I will keep you updated on how the process goes as well as post about regular IT stuff.
Go forth and do good works!
When working with document ‘templates’ from fellow employees, be sure to read them thoroughly before delivering them to the customer. The following words once appeared on a proposal that was handed to a potential customer.
“…<Customer Company> provides goods and services to persons of all ages, ranging from wheelchairs with integrated bedpans for incontinent invalids to brightly colored freeze dried unicorn poop for spoiled brats.”
Spent the past two days installing our new vCenter server along with SSO and some other features. Let me say that this is full of gotchas and pitfalls. Seems like it should be straight forward when you put the DVD in the drive, but think again.
I will take some time over the next couple of days to talk about some of the particulars. Stay tuned.
MS Exchange Team Released: v18.9 of the Exchange 2010 Mailbox Server Role Requirements Calculator
There is a MS article about troubleshooting Lync connectivity issues http://support.microsoft.com/kb/2386655
The article includes links to websites that have a VERY nice online utility that will actively connect to a Lync conference id and test a multitude of dimensions including jitter, ping loss, and upload/download speed.
The negative is that it requires Java. Still worth trying.