Would you be interested in submitting a guest post on georgemartjr.com or possibly allowing us to submit a post to serverstalk.net ? Maybe you know by now that links are essential
to building a brand online? If you are interested in submitting a post and obtaining a link to serverstalk.net , let me know and we will get it published in a speedy manner to our blog.

Hope to hear from you soon
George

Why we need to follow best practices in development?

Why linux is good for server?

AT&T said Tuesday its network is now live in parts of 12 cities across the United States, with the first mobile 5G device arriving on Friday, December 21. According to an AT&T spokesperson , the company's 5G network is already up and running in parts of the previously promised dozen cities: Atlanta, Charlotte, Dallas, Houston, Indianapolis, Jacksonville, Louisville, Oklahoma City, New Orleans, Raleigh, San Antonio, and Waco. However, the first consumer device that will be able to access that network, Netgear's Nighthawk 5G Mobile Hotspot, will become available just ahead of the Christmas holiday.

The company also revealed that it will be using the name "5G+" for the part of its network that will use millimeter wave spectrum and technologies, and it said the Nighthawk 5G Mobile Hotspot will run on that 5G+ network. [...] AT&T's 5G pricing is also interesting. Like Verizon, AT&T is offering an initial promotion that makes the hardware and 5G service cheap up front, with new pricing set to follow later. Early adopters from the consumer, small business, and business markets will be able to "get the mobile 5G device and wireless data at no cost for at least 90 days," AT&T says, with new pricing beginning in spring 2019. At that point, the Nighthawk 5G Mobile Hotspot will cost $499 outright, with 15GB of 5G service priced at $70 per month, which AT&T calls "comparable" to its current $50 monthly charge for 10GB of 4G data.
( https://venturebeat.com/2018/12/18/att-opens-5g-network-in-12-u-s-cities-announces-pricing-for-first-5g-mobile-device-and-service/)

Amazon may have turned off its Oracle data warehouse in favor of Amazon Web Services database technology, but no one else in their right mind would, Oracle's outspoken co-founder and CTO Larry Ellison says. "We have a huge technology leadership in database over Amazon," Ellison said on a conference call following the release of Oracle's second quarter financial results. "In terms of technology, there is no way that... any normal person would move from an Oracle database to an Amazon database." During last month's AWS re:Invent conference, AWS CTO Werner Vogels gave an in-the-weeds talk explaining why Amazon turned off its Oracle data warehouse. In a clear jab at Oracle, Vogels wrote off the "90's technology" behind most relational databases. Cloud native databases, he said, are the basis of innovation.

The remarks may have gotten under Ellison's skin. Moving from Oracle databases to AWS "is just incredibly expensive and complicated," he said Monday. "And you've got to be willing to give up tons of reliability, tons of security, tons of performance... Nobody, save maybe Jeff Bezos, gave the command, 'I want to get off the Oracle database." Ellison said that Oracle will not only hold onto its 50 percent relational database market share but will expand it, thanks to the combination of Oracle's new Generation 2 Cloud infrastructure and its autonomoius database technology. "You will see rapid migration of Oracle from on-premise to the Oracle public cloud," he said. "Nobody else is going to go through that forced march to go on to the Amazon database."
( https://www.zdnet.com/article/oracles-ellison-no-way-a-normal-person-would-move-to-aws/)

Last week we reported that Windows 10 October 2018 Update is rolling out to more devices if the users manually check for updates. Today, Microsoft has updated the support document to announce that Windows 10 October 2018 Update is now widely available.

The support document says that Windows 10 October 2018 Update will start downloading if the user manually opens the Settings page and tap on ‘Check for updates’ button.

“Rollout Status as of December 17, 2018: Windows 10, version 1809, is now fully available for advanced users who manually select “Check for updates” via Windows Update,” the updated support document reads.

Most of the devices are compatible with Windows 10 October 2018 Update and the new version of the OS is available for a wide variety of configurations. Microsoft has started pushing the update out to more devices as the company is not aware of any other critical issues in Windows 10 version 1809 and the users are also not reporting any new problems.

It’s important to note that the October 2018 Update isn’t always offered automatically on all devices but manually checking for updates from Windows Update now offers Windows 10 version 1809. In most of the cases, you won’t experience any unexpected issues during or after the installation.

If you’re ready for Windows 10 October 2018 Update, you can open the Settings app >Update & Security page and start hitting the Check for updates box. Don’t check for updates if you don’t want to install the October update now. ( https://www.windowslatest.com/2018/12/18/windows-10-october-2018-update-is-now-widely-available/)

Even if you explicitly tell Facebook to not track your location, it says it will still use your IP address to track your location. Aleksandra Korolova has turned off Facebook's access to her location in every way that she can. She has turned off location history in the Facebook app and told her iPhone that she "Never" wants the app to get her location. She doesn't "check-in" to places and doesn't list her current city on her profile.

Despite all this, she constantly sees location-based ads on Facebook. She sees ads targeted at "people who live near Santa Monica" (where she lives) and at "people who live or were recently near Los Angeles" (where she works as an assistant professor at the University of Southern California). When she traveled to Glacier National Park, she saw an ad for activities in Montana, and when she went on a work trip to Cambridge, Massachusetts, she saw an ad for a ceramics school there. Facebook was continuing to track Korolova's location for ads despite her signaling in all the ways that she could that she didn't want Facebook doing that.

[...] "There is no way for people to opt out of using location for ads entirely," said a Facebook spokesperson by email. "We use city and zip level location which we collect from IP addresses and other information such as check-ins and current city from your profile to ensure we are providing people with a good service -- from ensuring they see Facebook in the right language, to making sure that they are shown nearby events and ads for businesses that are local to them."
( https://gizmodo.com/turning-off-facebook-location-tracking-doesnt-stop-it-f-1831149148)

Inside Amazon , the items are known as CRaP , short for "Can't Realize a Profit." Think bottled beverages or snack foods [Editor's note: the link may be paywalled; alternative source] . The products tend to be priced at $15 or less, are sold directly by Amazon, and are heavy or bulky and therefore costly to ship -- characteristics that make for thin or nonexistent margins. Now, as Amazon focuses more on its bottom line in addition to its rapid growth, it is increasingly taking aim at CRaP products, according to major brand executives and people familiar with the company's thinking.

In recent months, it has been eliminating unprofitable items and pressing manufacturers to change their packaging to better sell online, according to brands that sell on Amazon and consultants who work with them. One example: bottled water from Coca-Cola Co. Amazon used to have a $6.99 six-pack of Smartwater as the default order on some of its Dash buttons, a small device that allows for automatic reordering with a single press. But in August, after working with Coca-Cola to change how it ships and sells the water, Amazon notified Dash customers it was changing that default item to a 24-pack for $37.20.

( https://www.wsj.com/articles/amazon-targets-unprofitable-items-with-a-sharper-focus-on-the-bottom-line-11544965201)

End of November 2018 Microsoft released the update KB4467684 for Windows 10 V1607 . Since then, there are more and more reports that this update killed the search in Outlook via Terminal Server.

Update KB4467684 has been released for Windows 10 V1607 on November 27, 2018. Since this version dropped out of mainstream support on April 10, 2018, only Windows 10 Enterprise and Education systems received the update. The same applies to the LTSC version of Windows 10 V1607. I’ve mentioned that within my blog post Patchday Windows 10-Updates (November 27, 2018).

With this update, Microsoft has rolled out numerous fixes for Windows 10 V1607, but has not closed any security gaps. The KB article mentions several known problems with the .NET framework, a hiccup when using end-user-defined characters (EUDC) in Windows functions, or a broken search in Windows Media Player.

There, too, several users confirm this problem in connection with a terminal server. Repairing Outlook or similar approaches do not help – one solution is to uninstall Update KB4467684.

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Windows Search]

“PreventIndexingOutlook”=dword:00000001

A second solution suggested to fix the problem is to disable indexing in Outlook. This should be possible with the above reg file, which is to be imported with administrative privileges.
( https://borncity.com/win/2018/12/17/windows-10-v1607-update-kb4467684-kills-outlook-search-in-terminal-server/)

When we looked at security predictions at this time last year some experts were predicting that we'd see attacks on cryptocurrencies and that we'd continue to see a rise in the scale and profile of attacks.

They've been proved right on both counts over the course of 2018, so what is next year going to have in store? We've canvassed the views of a number of industry figures to find out what they see as the key security issues for 2019.

The end of the password as a prime security measure is something people have talked about for a long time. But are we now reaching a tipping point? After a number of high profile breaches people are finally going to be fed up thinks Adam Kujawa of Malwarebytes Labs "I'm really hoping that we’ll start to see a bigger adoption by large organizations of multi-factor authentication, to make it so that whatever information is stolen it won’t really matter as it will be impossible to log in. Will we see the end of passwords in 2019? No. it's going to take years to roll out across the board, but I am excited to see what companies start doing to address the problem."

The fact that relying on passwords alone is inadvisable is echoed by Jarrod Overson , director of engineering at Shape Security, "Breach disclosures due to credential stuffing attacks have seen a sharp ramp up in 2018 with Macy's, Uber, Dunkin Donuts and HSBC all falling victim. I imagine this is going to be a trend that continues to increase in 2019 because of regulatory requirements, heightened sensitivity, and increasing attacker sophistication."

2018 saw the introduction of GDPR in Europe and the trend towards more regulation is expected to continue. "The enforcement ramifications as a result of General Data Protection Regulation (GDPR) compliance are yet to be seen," says Rod Oancea, director, governance and compliance services at InterVision. "Many businesses are still attempting to cope with how to meet the regulation’s extensive reach and requirements. Expect some fairly large penalties and fines in 2019 to show up in national and international news headlines from GDPR; and while US regulation around privacy has lagged behind historically, high-profile incidents and the resulting public interest has brought the stigma of data breaches to the (very costly) forefront.

In turn, anticipate increased focus on what could have been done to prevent breaches, scrutiny on the effectiveness of data protection and security, and a higher bar for compliance with an ever-evolving number of requirements. As the outright and pervasive costs of non-compliance and breaches continue to grow, many organizations will need to invest in their security and data privacy practices, especially proactively in solution design."

The rise in numbers of IoT devices presents risk too. Raj Samani, chief scientist and fellow at McAfee says, "When you bring connected devices into the home, you need to make sure you enjoy using it in a safe and risk-free way. While these threats can seem scary, people can do a number of things to easily protect their smartphones, and therefore their smart homes, from malware. There's mobile security that warns you about risky apps before you download or use them and it often comes down to simple things such as being savvy with your passwords. If you have the right security in place, there’s no reason to be scared of smartphones or smart homes."

"Hackers are exploiting the woefully inadequate security on smart home devices to build powerful botnets, capable of delivering devastating DDoS attacks. Again, this is something we’re only likely to see more of. As use of the Internet continues to balloon at an exponential rate, we will see both the number of attacks and the fallout caused by them grow in severity," says Sean McGrath, privacy expert and cybersecurity advocate at BestVPN.com.

Panda Labs echoes this view in its annual report, "In 2019 we are likely to see an increase in attacks not just on routers, but on IoT devices in general. There are two main reasons for this: one the one hand, these devices’ default security leaves much to be desired, with default passwords or simply no passwords at all. On the other hand, these devices are more difficult to update, and many users don’t even know how to do so."

Jason Haddix , VP of researcher growth at Bugcrowd sees crowd sourcing as a way of addressing the security skills shortage, "Moving to new technology environments is going to require more skill and education to combat the new vulnerabilities that may appear, as well as increased crowdsourcing to keep pace with the growing attack vectors. We’re also going to see new inroads into different crowdsourced security applications like forensics, threat hunting, and more. The skill shortage is growing at alarming rates so the industry will need to double down on recruitment and education to continue to build out the security community.

Diversity was a big and important topic in 2018 and we'll no doubt see a strong emphasis on and encouraging and building diversity into the security community in 2019. Next year it's going to be about the individual contributors and tracking skill sets. We will eventually get to a point where a security professional can work from anywhere. It's already beginning with many supplementing income or working part time in the crowdsourced security space. We’re already seeing the shift occur -- the train has left the station."
( https://betanews.com/2018/12/17/2019-security-predictions/)