[월:] 2021년 04월

다중 계정 AWS 환경 설정을 위한 AWS Control Tower – 서울 리전 출시

2021-04-14 KENNETH 0

다중 계정 AWS 환경 설정을 위한 AWS Control Tower – 서울 리전 출시 다중 계정 AWS 환경을 설정하고 관리하는 가장 쉬운 방법을 제공하는 AWS Control Tower 서비스가 서울 리전에 출시되었습니다. AWS Control Tower는 안전하고 이상적으로 설계된 다중 계정 AWS 환경인 기준 환경, 즉 랜딩 영역의 설정을 자동화합니다. 랜딩 영역은 보안, 운영 및 규정 준수 규칙을 통해 AWS 워크로드를 더 쉽게 관리하게 해 주는 안전한 환경을 조성하기 위해 수많은 엔터프라이즈 고객이 구축한 모범 사례를 바탕으로 구성할 수 있습니다. 기존에 서울 리전에서는 Control Tower 대신 AWS Landing Zone이라는 별도 솔루션을 제공했습니다. 기존 AWS Landing Zone 솔루션은 계속 지원은 하지만, 향후 추가 기능을 제공하지 않습니다. 앞으로는 AWS Control Tower를 사용하시길 권장합니다. AWS Control Tower에는 다음과 같은 주요 기능을 바로 사용해 볼 수 있습니다. 계정 팩토리 계정 팩토리는 사내에서 사용할 새로운 AWS 계정 생성을 자동화합니다. 기존에 사전 승인된 계정 구성 템플릿으로 표준화된 계정을 만드는데 [ more… ]

No Image

Releasing Windows 10 Build 19043.928 (21H1) to Beta & Release Preview Channels

2021-04-14 KENNETH 0

Releasing Windows 10 Build 19043.928 (21H1) to Beta & Release Preview Channels Hello Windows Insiders, today we’re releasing 21H1 Build 19043.928 (KB5001330) the Beta Channel for those Insiders who are on 21H1 (Click here for the 21H1 announcement). This update is also available for commercial devices in the Release Preview Channel on 21H1 as mentioned here in this blog post. This security update includes quality improvements. Key changes include: We fixed an issue in which a principal in a trusted MIT realm fails to obtain a Kerberos service ticket from Active Directory domain controllers (DC). This occurs on devices that installed Windows Updates that contain CVE-2020-17049 protections and configured PerfromTicketSignature to 1 or higher. These updates were released between November 10, 2020 and December 8, 2020. Ticket acquisition also fails with the error, “KRB_GENERIC_ERROR”, if callers submit a PAC-less Ticket [ more… ]

No Image

USN-4906-1: Nettle vulnerability

2021-04-14 KENNETH 0

USN-4906-1: Nettle vulnerability It was discovered that Nettle incorrectly handled signature verification. A remote attacker could use this issue to cause Nettle to crash, resulting in a denial of service, or possibly force invalid signatures. Source: USN-4906-1: Nettle vulnerability

No Image

USN-4904-1: Linux kernel vulnerabilities

2021-04-13 KENNETH 0

USN-4904-1: Linux kernel vulnerabilities Ben Harris discovered that the Linux kernel would strip extended privilege attributes of files when performing a failed unprivileged system call. A local attacker could use this to cause a denial of service. (CVE-2015-1350) Andrey Konovalov discovered that the video4linux driver for Hauppauge HD PVR USB devices in the Linux kernel did not properly handle some error conditions. A physically proximate attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. (CVE-2017-16644) It was discovered that the timer stats implementation in the Linux kernel allowed the discovery of a real PID value while inside a PID namespace. A local attacker could use this to expose sensitive information. (CVE-2017-5967) Wen Xu discovered that the xfs file system implementation in the Linux kernel did not properly validate the number of extents [ more… ]

No Image

USN-4905-1: X.Org X Server vulnerability

2021-04-13 KENNETH 0

USN-4905-1: X.Org X Server vulnerability Jan-Niklas Sohn discovered that the X.Org X Server incorrectly handled certain lengths of XInput extension ChangeFeedbackControl requests. An attacker could use this issue to cause the server to crash, resulting in a denial of service, or possibly execute arbitrary code. Source: USN-4905-1: X.Org X Server vulnerability