Exempting the App means the app will allow to be able to access and share company data
Get-AppLockerFileInformation -Path "C:\Program Files\Windows NT\Accessories\wordpad.exe"
Name : Firefox
Product Name : O=MOZILLA CORPORATION, L=MOUNTAIN VIEW, S=CALIFORNIA, C=US
Publisher : *
File : firefox.exe
Min Verison : *
Max Version : *
Name : Chrome
Product Name : O=GOOGLE LLC, L=MOUNTAIN VIEW, S=CA, C=US
Publisher : *
File : chrome.exe
Min Verison : *
Max Version : *
A SIEM Alert noticed lots of traffic transferring from a computer to IP’s in this range 52.85.43.0/24 ( amazon cloudfront)
Tracing down the app on the computer using Netstat showed this was Chrome.exe
Tracing down the task manager inside of Chrome showed it was this process
Utility: Network Service Looks to be one of the process’ the chrome browser sends and receives network traffic through , But I can’t tell you exactly what , but it is needed !
Recently we started getting errors for our Vcenter address which was a subdomain of our main domain which had a proper certificate for the website. Chrome picked this up and then uses HSTS to make sure all subdomains have a valid cert ( Without an easy option to Bypass )
However to bypass just type either word below when presented with the error
“thisisunsafe” or “badidea“
Google Chrome 61.0.3263 and 62.0.3202.62 are affected, since it also uses Adobe Shockwave Flash version 27.0.0.170
Adobe has released a Beta version, that contains security fix + Shockwave crash fix. http://labs.adobe.com/downloads/flashplayer.html
When clicking on the down arrow in Office 365 to change Reply to all to Reply , for some reason the menu showed at the top of the browser
Clearing Cache did not fix this or Zoom size
Reset Chrome to default settings ( which still keeps Favorite bookmarks but clears plugins ) fixed this
![iLO-3-Image[1]](https://pariswells.com/blog/wp-content/uploads/2016/06/iLO-3-Image1-150x150.jpg)
On trying to get to it in Firefox I was presented with
SSL_ERROR_BAD_MAC_ALERT
On trying to get to it through Chrome I was presented with
This site can’t provide a secure connection
10.0.0.2 uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH
The client and server don't support a common SSL protocol version or cipher suite. This is likely to be caused when the server needs RC4, which is no longer considered secure.We tried through CLI :
load -source http://webserverip/iso/ilo2_229.bin /map1/firmware1
However this was giving us errors for some reason
We found a workaround in Internet Explorer is to disable TLS 1.2 (Tools >
Options > Advanced > UNTICK Use TLS1.2).
After Restarting IE , it logged us into the ilo , however this was not the stop of the problems , upgrading to the latest firmware 1.57 gave us errors
We had to update to 1.28 first , then we could upgrade to the latest , below is a link to someone has all the links to the correct BIN files
HP ProLiant ILO firmware