 |
 |
We just did finish our first look at the new MVSION Client when already a new Release came out the last days. https://kc.mcafee.com/corporate/index?page=content&id=SNS1746 This report reflects version 18.10.2.2. Main reason business drivers for the MVSION version for us are: AMSI integration and usage of Windows Defender as base pattern scanner (You can only scan malware […]
Exchange: Setting SMTP max mail sizes in mail flow Default size is 10MB and that is just how it should be. Even if freeware mail provider has, 50MB Limits. It is not a law but its historical SMTP/RFC value from and people have lived with it for 15 years. Then some nerd put it up […]
McAfee EPO Server SQL Server Performance tips This is based on McAfee Information for their McAfee EPO DB running under SQL 2005/2008R2/2012 upwards The EPO Database itself should be: Autoshrink = False Auto Close = False Auto update Statistics = True Auto shrink and auto close are database options that should be set to false. […]
SOPHOS UTM 9.4 VMware on ESXi does not start after crash of ESX or Storage File system inconsistency – cannot run fsck The console hangs at Press F2 with white Screen you can’t logon or ping the machine You can’t connect with SSH You can’t acces the machine on port 4444 You DID not move […]
Mcafee EPO Server 5.3.3 seems to have problems on some older OS like 2008R2 regarding TLS ciphers (We did not see this in 2012R2 to date with our customers). The A-Z sort order of those is the source. This had such an impact that Mcafee did release this info to all customer with SNS-Alert. This […]
It’s improtant to understand that the McAfee Agent itself DOES OPEN all needed OS Windows Firewall Ports for you automatic. You can see those under “macmnsvc”. But it’s Important to keep track of physical Firewall Ports and if you separate Clients or Server from the EPO with a Perimeter Firewall or VLAN-Firewall. McAfee Agent: This […]
12.05.2017 Urgent Release FRIDAY, Wana Decrypt0r | Wana Decryptor | WanaDecryptor@.exe https://kc.mcafee.com/corporate/index?page=content&id=KB89335 EXTRADAT: https://kc.mcafee.com/resources/sites/MCAFEE/content/live/CORP_KNOWLEDGEBASE/890 00/KB89335/en_US/EXTRA.zip EXTRA.zip McAfee is aware that several customers are impacted by a new ransomware. Ransom-WannaCry (also known as WannaCry, WCry, WanaCrypt and WanaCrypt0r) is encrypting files with the .wnry, .wcry, .wncry, and .wncryt extensions. Encryption is occurring on the local […]
Problem: Mcafee Security for Exchange 8.5 Patch 1 Update fails on 2010 SP3 CAS with HUB roll Product: McAfee Security for Microsoft Exchange — Error 1920.Service MSExchangeIS (MSExchangeIS) failed to start. Verify that you have sufficient privileges to start system services. Migration Groupshield Mcafee Security for Exchange 8.6 to Patch 1 We first thought this was related […]
5 Microsoft Patches take out Mcafee DLP copy handler function. Device control (USB) black is not affected. Environment McAfee Data Loss Prevention Endpoint (DLP Endpoint) software earlier than 9.3.425 (DLP Endpoint 9.3 Patch 4 HF25) Microsoft Windows 7 64-bit (32-bit is not affected.) Problem Several applications fail to start after you install Microsoft Patch MS15-038 or […]
Mcafee EPO prevent exe RUNNING FROM %appdata% folders with an Access protection Policy How to protect from most 0day Flash Exploits and malware like Ransom Cryptowall in summer 2015. You simply can’t keep up with patching even with deployment or Management solutions in place. Now you should have an IPS Filter like Fortigate with Fortiguard. […]
Mcafee Security für Exchange Mcafee hat eine stabile Virenschutz Version für Exchange 2010 heraus gebracht. Wir hatten bei Exchange 2007 einige Kunden welche zu Trend gewechselt haben weil Groupshield 7.X nicht sauber lief. Die aktuellen Version 8.5 von Mcafee Security für Exchange scheint aber zumindest auf Exchange 2010 wieder sauber zu gehen. Bei 2013 würde […]
http://www.mcafee.com/us/downloads/free-tools/getsusp.aspx http://www.mcafee.com/us/downloads/free-tools/index.aspx http://www.mcafee.com/uk/downloads/free-tools/how-to-use-getsusp.aspx Bei Virenbefall würde ich auf einzelnen Clients ab sofort das Tool mcafee GETSUSP laufen lassen. Dies zusätzlich zum VSE. GETSUSP Macht Scan auf GTI-basis (Cloud DB von Mcafee Online) (Manuell kann man auch Binaries uploaden um diese zu analysieren) Aktiviert (Nicht installiert) eine HIPS (IPS) Firewall welche den Netzwerk traffic überwacht wenn […]
Mcafee DLP 9.3 missing option Removable Storage Protection in Agent Configuration. Problem: You are unable to choose “Removable Storage Protection” as 4th option in Agent Configuration on the new DLP9.3 Migration from: Existing EPO 4.6 and 9.1 Under Agent Configuration i can choose “Removable Storage Protection” as 4th option NEW EPO 5.11 and 9.3.400.23 […]
https://technet.microsoft.com/en-us/sysinternals/bb963902.aspx Mark Russinovich and Bryce Cogswell have released a new Version of their Autoruns tool. You can now check every Executable that resides in services, Autostart, RUNOCNE and other registry keys automatic with just one mouseclick on Virustotal. The Executable is then checked against a total of 50 virus search engines. This is asbolute great […]
With the Website crt.sh you can search what Google and other API providers know about a DOMAIN related to issue Certificates. You can Wildcard search for a Domain you want to get a quick overview of the Certificates they used. (If the customer or internal IT does not know even know they have Certs as […]