MidnightTech Inc

Windows 10 a great platform that is designed to push marketing to the user of the operating system. If you are into cloud applications for your files, email, calendar, contacts and other things you will find it is built in. These options are nearly impossible to avoid. EG. I can use automated tools to clean a traditional installation turning off privacy features and removing bloat that just records everything you do to the cloud. The process start to finish takes me about 40 minutes per system.

Privacy is mentioned all throughout your experience in the form of legal EULA’s. They are long and hefty written in legal form which is very hard to sit and read. Cloud providers seem to want to own or have rights to everything that you would put on their servers. There is a line that should not be crossed. I am bothered by the possibility that they do look at everything we post. Recently with YouTube for instance, people are having their posts moderated and their channels removed. Doesn’t that re-classify YouTube as a publicist. As such how is their legal standing now?? Is Face Book or Twitter in any better shape? I do not think so.

I have decided not to be so trusting. I performed a test recently to see how to backup cloud content and recover it from Google, Microsoft, Amazon, and Facebook. In all cases the backup archives I received from each source were selectively encrypt-able. As an administrator I am aware that privacy controls may not actually be in place to prevent Social Platform Administrators and their workers from accessing the data. The select-ability of encryption is a small but clear indication. Most systems are designed for users by designers and they enable administration of all things for administrators. I believe that If I can have the option to encrypt or not to encrypt an archive of my data so does a system administrator.

Technical issues still abound. The upgrade of window 10 to build 2004 has caused problems with ESENT (Jet Blue), a database that supports many of the internal components of Windows. Things like updates, file indexing, and some of the GUI controls. When it fails event ID 64, among others, appears in the system logs. The system will run slower and oddly all sounds will be choppy and of bad quality. Microsoft has not provided a patch. The only answer is to use the onboard repair options to see if any of them work. System File Checker, Deployment Image Servicing and Management, System Restore, previous OS rollback, and System Reset. A final option is using a third party software to backup your files, email, programs and windows settings for easy recovery later onto a clean installation. Ease US Todo was first presented to us when we were all moving from windows 7 to windows 10. It actually does a great job migrating the programs that you installed long ago. Sometimes it is hard to come up with the software and or its licensing after such a long period of time.

Conclusion: What I like about Windows 10 build 2004 is the convenience and usability that windows 10 brings. It is a masterful work. I do not like the forced marketing (it takes time to turn that all off), privacy issues (related to cloud hosted applications and data stores), and the buggy nature that is and always will be at the top of my mind every-time I see or hear the word “MICROSOFT”.

Well. Not a lot looks different here. But on the back end of things we have a new operating system, and current versions of IIS 10, sql, mysql, perl, and PHP.

Chip technology is a passive circuit in a card. It waits to be energized by a signal generated by the pinpad or payment device. Similarly this technology applies with the tap and pay. When the circuit is energized it transmits a response with all of your payment information. Criminal hackers will roam around carrying equipment that energizes and retrieves the payment responses into their databases or record files. Then they can duplicate your chip. So get a wallet or purse or pouch that provides radio frequency and electromagnetic shielding to prevent both the energizing of the chip and the transmission of your information.

Keep in mind, these attacks must take place in very closes proximity.

Also it may be a good idea to put your phone in a similar container. While its in there you may not receive data, texts, however you also will not be susceptible to any sort of attack or reconnoitering.

GPS is also affected. A simple lining of tinfoil does the trick if you do not feel like spending a lot of money. But its not ideal. I recommend looking for an affordable option.

Check out these reactions coming from school age children.

I moved my private office to Marion. I am enjoying the new space. Marion appears to have more reliable internet, water, power, roads and is right by the interstate.

Already it has been a busy year with a HP aio, wiring job at a school, and a few smaller calls for printers and of upgrades.

We are here to help whenever you need it.

This year has been big. The attackers are gaining access email accounts and collecting information on what you prefer to look at, purchase, and do. They are not stealing credit card information. Instead, they get a very good idea about who you are, who you email, and what about. Then they deliver a message that is very realistic to trick you into installing their cryptography software. They also send mail out to all of your contacts to begin the process with them.

Way back in 2012 I mentioned this behavior and it falls into a category called social engineering. If you watch the news you will hear mention of several cyber attacks that originate from outside the us.

These attacks are being waged against corporations that have the money to pay the ransom. It is big. Companies end up paying in bitcoin. Normally decryption software is delivered if the demands are met. Would it not be easier however to educate yourself and your employees to prevent such an attack?

Staying on top of security is not good enough these days. Phishing, deceptive online marketing, and social engineering attacks are on the rise. Protect yourselves. Keep all of your devices patched and current, make sure you have antivirus and verify that it is updating. Get a backup routine in place. Review your social network account(s) privacy settings. Run your systems from limited permission accounts. If you would like help please call 618 985-5455 or visit our contact page. We can work remotely and we work all around Southern Illinois. Midnight Tech is here for you. We are helping improve things for our customers every day. Let us help you too.

I spent about 2 hours and easily made my site mobile compliant. A little tweaking is still needed on the menu for the mobile site. I want to spend some time and make that more reactive. This is another big win. I learned that google is now basing some of its search rankings based upon your websites mobile readiness and optimization. If you are unsure about your site give me a call. I would love to help you with your websites if you need it.

I believe everyone would prefer to save their money if at all possible. Rent based services and products are not smart investments. Examples I can think of are Office 365, web hosting, password vaults, antivirus, virtual fax systems, accounting systems… The list goes on. Over time your expense continues to increase.  If at all possible steer clear of rent.  

1. Buy office or convert over to open office. It is free and very similar.  Most of your existing documents still work.  With small touches your doc is the way you had it before.  

2. Talk to your ISP and get a static ip. Then self host your website.

3. Trend, Comodo and panda all have free antivirus products.  Also keep in mind windows 10 is already protected with windows defender out of the box.

4. Fax is necessary?  If not get rid of it.

5. Lots of accounting cloud services are out there these days.  That is a business decision.  For the home buy the software and run it on a computer that has backups.

These seem like common sense ideas.  Those $30/month fees add up over time and multiply per user. Are you really running efficiently?  I hope this helped.

I save people money with the technical service I provide.

1. I stand behind every hour of labor charged.  If there was an issue because of a mistake or your original issue was not addressed completely the labor warranty goes into effect.  It provides you the labor to work on the problem free up to the hours you have paid for during the last month.  

2. I do not charge for failure to deliver.

3. I charge less and will do on site repairs, pickups and deliveries. If you are located over 30 miles from my starting location there is a small $0.55 / mile fee.

4. No bench fee.  I do not charge to look at your system.  I will evaluate it for free and try to convince you to allow me to help. There is no charge if you just take it back.

I want to be the one to help you next time you have a technology question.  Please set up an appointment with me.

1. Leave a message at: 618 985-5455
2. Send an email to patrick_barnes@midnighttech.com
3. Use the contact form at http://www.midnighttech.com.

Please suggest times after 5pm during the week or anytime during weekends and specify your meeting location.  I will add you to my calendar. Then confirm with you that the appointment is good.

I hope this post finds you in a good place.  I look forward to helping and hope to hear from you soon.

Patrick

Did you drop your device and break the screen? We will fix that for you charging only the cost for components and 1 hour of labor. Most phones cost over $400 when you buy them new. Some used are easily close to that figure. The repairs can be done for between $100 – $250 depending on your device because. The price is affected only by the screen components. If you don’t have a warranty please contact us, even if you are not local to southern Illinois. Email us: sales@midnighttech.com. Tell us what device you have, send a picture, and we will get you a firm repair price. If you will be mailing it please include the city and state where you are sending it from so we may estimate the return shipping charges.

We have successfully moved to server 2016 and migrated our website and blog. There are more posts to come.  The mass of silence was due to a busy year and lots of changes. We look forward to a very active 2016. Your questions and comments are requested.

Pay less and get more for your dollar. We guarantee the work for 30 days. We come to your home or business at a time you choose. We look forward to helping you out! Set up an appointment today.

Posted from WordPress for Android

All spam comes from some where.  If you have access to the servers logs you can identify exactly where. If you do not I can set you up so that you do.  The phrase, “Knowing is half the battle”, rings true here.

Of the many subnets below 3 are from the US.  I can get more into US business spam – which isn’t “opposed” by the spam-can act.  Regardless – it is unsolicited and I feel no shame in sharing the information with the public.

The below networks are very broad. But I can assure you blocking mail from them will only help your situation. If you would like details on each network and why let me know.

The actual definition of spam (electronic) by wikipedia:

“Spam is the use of electronic messaging systems to send unsolicited bulk messages indiscriminately. While the most widely recognized form of spam is e-mail spam, the term is applied to similar abuses in other media: instant messaging spam, Usenet newsgroup spam, Web search engine spam, spam in blogs, wiki spam, online classified ads spam, mobile phone messaging spam, Internet forum spam, junk fax transmissions, social networking spam, television advertising and file sharing network spam. It is named for Spam, a luncheon meat, by way of a Monty Python sketch in which Spam is included in almost every dish.

Spamming remains economically viable because advertisers have no operating costs beyond the management of their mailing lists, and it is difficult to hold senders accountable for their mass mailings. Because the barrier to entry is so low, spammers are numerous, and the volume of unsolicited mail has become very high. In the year 2011, the estimated figure for spam messages is around seven trillion. The costs, such as lost productivity and fraud, are borne by the public and by Internet service providers, which have been forced to add extra capacity to cope with the deluge. Spamming has been the subject of legislation in many jurisdictions.^[1]“

My definition is:

Email messages sent as marketing from a company (real or not) that you did not authorize to market to you. The personal messages from people you don’t know are also spam. Most of these are attempts at Phishing. Phishing is any approach used to trick or coerce a person into giving up information they normally would not.  Most times it is personal in nature – a password, ssn, address or something similar.

Required for outgoing mail service:

1. Mail server is domain registered to a static IP address.
2. There is a valid reverse dns record (at the isp) for the mail server.
3. MX records point to your mail server.
4. SPF record you create athorizes your mail server to send mail.
5. Your server is configured to dissallow open relay attacks.
6. Server is not listed on any Block List Provider Services.

Email Marketing Rules.

1. Mail should include a method for users to remove themselves from your mail list and it needs to work.

Does your orgainzation still get a ton of spam?

Mail administrators should consider using SPF in addition to reverse dns lookups and other ip validations. Also employ mail delaying for new “conversations” into your organization. Configure the server to reference block list providers such as cbl.abuseat.org or dnsbl.njabl.org. spammonkey.com has very fast turn around and can identify the type of internet service for the originating IP address.  If it is not a true static set up properly then the mail will be rejected if you use their RBL list.  There are many others. Purchase mail server enabled anti-spam software such as trend micro messaging security. It directs otherwise un-blocked Greyware to the users junk folders cutting down on your work trying to find blocked mail that should have come in. Greyware is spam originates from a mail server that appears to meet all of the requirements for a valid outgoing mail server. However, the messages you recieve are unsolicited. Which ever solution you choose make sure of the following.

• There is temporary storage of blocked mail.
• It is possible to create reports on blocked messages.
• It provides message recovery options for blocked mail.
• White Lists for keywords, domains, email addresses and IP locations to guarantee delivery from known locations (with badly configured mail services!).
• Black Lists for keywords, domains, email addresses and IP locations to filter out previously seen examples of spam.

So you ask – how the heck did they get my email address.  I never shared it…  Some hackers actually poll the mail server via telnet with hidden commands to the mail sevice. If you have a lot of unsecured mail traffic going to your server they could packet sniff you without too much effort.

Have a look at the image below.  This is grey ware.  The sending server of this spam passes spf, and appears to be valid.  My user tried to unsubscribe but it still keeps coming in.  So I have looked up the ip and found it inside the US.

My options are to block the IP (prefereably at my servers firewall), filter the keywords in the subject, and add the domain to a black list.

I like to go one step further. If I see that the mail originated outside the country I use subnet blocking which blocks that entire network. I prefer to do this using the CIDR notation. Subnet blocking covers millions of addresses all in one shot. This network is stateside so I did not block it.

What about webmail (gmail or hotmail)?

From a  personal standpoint, say with gmail or windows live, use strict mail filtering allowing only mail from your contact list to email you. Then monitor the junk folder for everything else. Skim the junk folder for important items. If you find something move it to the inbox and add the sender to your contact list. When your done empty the junk folder.

If you are tech savvy use an anti-spam proxy to go between your mail client and your mail provider. You configure your mail provider to allow pop and smtp mail access.  Then you configure the proxy to check the mail for you. Finally set your mail client to check the proxy. Let it do the work. If a bad peice comes through you send it back to the proxy “spam” address to report the situation. It takes care of that problem. If a good email gets blocked you might look at the reports and recover it. Then reclassify the message to the white list.

With spam there is no magic cure. You can spend thousands on spam prevention. But dont.  Be smart and vigillant.

Midnightech.

Now can you guess who we are going to be partnering with in the very near future to provide you with the most affordable, best performing antivirus solution?