Benjamin Delpy did it again. This time his attention was focused on the aged SCCM. Once developed in the late s, it looks back on a turbulent history with some twists and turns. Unfortunately the security behind it looks exactly the same what you would expect and at best can be considered as “rotten” when still using DES to communicate with clients. Read more

The last two days I improved my own architecture and extended everything with a PDF workflow. If you like, you may download my larger blog series from the previous year in one piece as a PDF file and read them offline, a total of + pages of condensed facts: Read more

The foundation of every ISMS is a “living” inventory. In an ideal world, this communicates with the Ansible, Bash or PowerShell scripts within IT Operations. Snipe-IT, which I value and have successfully used for many years, was unknown to c’t up until now. Enjoy the read (in German): “IT-Assets im Griff” in der c’t Ausgabe /. Read more

Everybody with an Internet-faced Microsoft Exchange server, Outlook Web Access (OWA) or Exchange Active Sync (EAS) can consider his or her system as compromised since January. This is reported by security experts like Chris Krebs and news magazines like Golem or Heise. In Germany, the BSI has contacted more than , companies. Read more