Signup Login
Try it for FREE!

Categories

Home > security

Windows Server 2012 – New Advanced Features

POSTED ON: November 7, 2012 POSTED BY Irina Tihova

In this article I would like to share the new things in Windows Server 2012 that grabbed my particular attention. It’s not a full list of the new features, which you can find on the Microsoft official site. It’s more like a summary of the more advanced and intriguing new features.
Read the full post

Category: Articles, cloud computing, Network Monitoring, Security, Uncategorized, Windows Servers Monitoring

How to monitor (almost) anything with Monitis M3 – My very personal use case

POSTED ON: September 5, 2012 POSTED BY Dan Fruehauf

free-website-monitoringWelcome M3

Among the many hats I wear, I also wear a DevOps/SysAdmin hat in Lacoon Security.
When I was invited to custom tailor the monitoring solution for Lacoon Security, I didn’t even hesitate and recommended to use Monitis and M3.
Partly because I wrote M3 but mainly because I think it is a really good solution.
Lacoon Security implements a security service for mobile devices, based on the cloud.
Lacoon’s monitoring needs were rather complex, however, nothing Monitis & M3 could not achieve. Here is the proof.
Read the full post

Category: 101 Reasons To Choose Monitis, Apache Monitoring, Application Performance Management, cloud computing, Database Monitoring, Linux Servers Monitoring, Management Scripts, Monitis API, Monitoring Scripts, Network Monitoring, Performance Management, Security, Server Management, Web Server Monitoring, Website Monitoring

First steps in Computer Forensics: Securing your network

POSTED ON: May 17, 2012 POSTED BY Irina Tihova

No matter how secure your infrastructure is, sooner or later you will become a victim of a computer crime. Someone may point a DDoS (Distributed Denial of Service) attack at your services, may sniff your network, or may copy/delete confidential information. You may not even realize such a thing has happened. However, in an organized and secured network, you will be notified at the first signs of an attack. Now what? Your first normal reaction would be to stop the attack with whatever means possible. However, that may not be the best response. If you don’t possess the needed knowledge yourself, it might be a good idea to leave the crime scene as it is and let a computer forensics investigator deal with it. Let’s focus on the steps that the investigator would take. You may choose to take these steps alone but you will most likely not have all the necessary support tools and systems for that.

  1. Document the system – name, date, time, purpose, hardware, software, it all matters.
  2. Collect evidence – all the information about the attack should be securely taken off the target system. This is usually done through specific software that hashes all the information. This way, the information is legitimate and can be used as formal evidence for prosecution. The evidence that is usually collected includes active network connections, processes loaded into memory, and a copy of all the information on the disk with the respective creation, modification, and access values. The collector should be confident about the security of the system used for storage and analysis of the copied evidence. Only after this step, is it beneficial to unplug or shut down the affected system. If the affected system is saving logs on a remote server, copy them as well, they are less likely to be compromised by the attack. In Linux, programs could still be running even after their files have been deleted. You can search for such programs with the command: file /proc/[0-9]*/exe|grep “(deleted)” . If you want to make a copy of this list use: /bin/dd if=/proc/filename/exe of=filename .
  3. Recreate the timeline of the attack – once all the information is copied on a secured workstation, the timeline of the attack can be recreated from the times of creation, modification, and access of all the files. This should be done before anything else, because the other steps can change the original times of the files. The timeline will show the last executed file, the last created/deleted folder, executed
    Read the full post
Category: Security

Nine Steps to Secure your Exchange Server

POSTED ON: April 25, 2012 POSTED BY Irina Tihova

In this article we will list some steps you can take to make sure your Exchange Server is running as securely as possible.

1. Harden the OS

We can’t stress enough how important it is to harden the OS that is hosting the Exchange Server. It might seem obvious to you but, in fact, many IT professionals seem to forget about this first basic step. You can try to harden the OS by yourself, or use some of the tools available out there to help you. The important thing here is to disable all unnecessary services and to patch the server regularly.

2. Run MBSA, SCW, SCM, and EBPA
Read the full post

Category: Security

Nine steps to secure your IIS7 server

POSTED ON: April 13, 2012 POSTED BY Irina Tihova

In this article we will focus on some tips you can use in your environment to secure IIS7 servers and the application they’re hosting.

1. The first step you need to take when securing your web server is to harden the OS that hosts it. If you’re using Windows Server 2008 R2, then the server core installation version will give you just what you need – all the functionality, but with the reduced attack surface. If you’re using the regular version of Windows Server, try to install the IIS role with just the features that you currently need. You can always come back and install more features if you need them. Be aware that you’re just making the attack surface larger when you add features that you don’t use.

2. The use of firewalls can really help you in securing your Web server, especially if it’s an Internet-faced one. The firewall can make sure that the server is receiving only valid packets that it has to service. Firewalls serve as a first point of defense for your server when an outside attacker is trying to perform a malicious activity. With the use of Intrusion Prevention Systems (IPS), you can further secure your organization, and the IIS server in particular. If your organization is not large enough to require a specific hardware Firewall device, you can always take advantage of the Windows Server 2008’s integrated Firewall with advanced Security.
Read the full post

Category: Security, Web Server Monitoring, Windows Servers Monitoring

Trusted by:

trusted by trusted by trusted by trusted by trusted by trusted by trusted by trusted by trusted by trusted by
About Monitis

Monitis GFI is a specialist provider of web and Cloud monitoring services that include website monitoring, site load testing, transaction monitoring, application and database monitoring, Cloud resource monitoring, and server and internal network monitoring within one easy-to-use dashboard. Over 100,000 users worldwide have chosen Monitis as their provider of choice to increase uptime and user experience of their services and products. What makes Monitis' solutions different is that they are fast to deploy, feature-rich in technology and provide a comprehensive single-pane view of on-premise and off-premise infrastructure and applications.

Follow Monitis on Facebook
Follow Monitis on Twitter
Home | Products | Tools | Blog | Support | Company | Plans

All Rights Reserved. Monitis Inc.info@monitis.com