user access Archives

Tech Optimizer

May 10, 2025

Databricks looks to buy database startup Neon for over $1B

Databricks is in advanced talks to acquire Neon, a startup that provides a commercial version of the open-source PostgreSQL database, with the deal valued at over billion. Neon, based in San Francisco, has raised more than million from investors, including Microsoft's M12 fund. Neon’s PostgreSQL version features a serverless architecture, automatic hardware scaling, separate allocation of storage and computing power, and connection pooling to enhance performance. Neon also offers a security tool for user access management and the ability to restore databases to previous states. Databricks' interest in Neon is likely linked to AI applications, as Neon’s database supports vector storage and can launch new database instances in one second. Databricks has previously acquired several startups to enhance its AI capabilities, including Fennel AI, Lilac AI, and MosaicML Inc.

Tech Optimizer

May 6, 2025

Databricks reportedly could acquire serverless database startup Neon for $1B+

Databricks Inc. is in advanced discussions to acquire Neon Inc., a startup specializing in a commercial version of the open-source PostgreSQL database, with the deal anticipated to exceed billion. Neon, based in San Francisco, has raised over 0 million in funding, including contributions from Microsoft's M12 fund. Neon’s PostgreSQL distribution features a serverless architecture that dynamically adjusts hardware resources based on workload demands, allowing for separate provisioning of storage and processing power. It also includes an innovative connection pooling feature to minimize resource drain when establishing network connections. Neon enhances its offering with a cybersecurity tool for granular user access control and the ability to revert databases to previous states in case of data loss. Databricks' interest in Neon may be linked to its suitability for AI applications, as it supports vector storage and can provision new database instances in as little as one second. Databricks has been actively pursuing acquisitions to enhance its AI capabilities, including recent purchases of Fennel AI Inc., Lilac AI Inc., and MosaicML Inc.

Winsage

April 25, 2025

Microsoft’s Patch for Symlink Vulnerability Introduces New Windows Denial-of-Service Flaw

In early April 2025, Microsoft addressed a security vulnerability (CVE-2025-21204) related to symbolic links in the Windows servicing stack, specifically affecting the c:inetpub directory used by Internet Information Services (IIS). The updates created the c:inetpub folder with appropriate permissions to mitigate risks. However, this fix introduced a new denial-of-service (DoS) vulnerability, allowing non-administrative users to create junction points on the c: drive, disrupting the Windows Update mechanism. A command such as "mklink /j c:inetpub c:windowssystem32notepad.exe" could be used to exploit this flaw, preventing systems from receiving future security patches. As of April 25, Microsoft had not released a patch or acknowledged the issue, leaving systems vulnerable and emphasizing the need for monitoring user permissions and manually removing suspicious symlinks.

Winsage

March 31, 2025

You Can Get Windows 11 Pro on Sale for A$23 Right Now

Windows 11 Pro is currently available for a reduced price of A, down from A5, allowing upgrades for two compatible PCs. The activation code introduces features such as Windows Copilot, powered by GPT-4, and includes functionalities like Remote Desktop, BitLocker Device Encryption, Azure AD, Hyper-V, Assigned Access, and Windows Sandbox. Minimum system requirements are 4GB of RAM and 64GB of available storage.

Winsage

March 25, 2025

How To Secure Windows on a Mid-Sized Business Budget

Access provides advice on IT challenges, career transitions, and workplace dynamics. A mid-sized company faced a ransomware scare due to a user opening a malicious attachment but recovered data without paying the ransom. To enhance security in a Windows environment on a limited budget, the following steps are recommended: 1. Evaluate data storage by centralizing it on servers rather than individual workstations to improve security and simplify backups. 2. Implement the principle of Least Privilege Access, limiting user access to only necessary resources to reduce potential damage during attacks. 3. Utilize Microsoft's AppLocker to control which applications can run on Windows desktops, blocking unauthorized software. 4. Set up a ransomware kill switch using a custom PowerShell script to monitor for suspicious activities and trigger defensive actions if ransomware is detected.

Winsage

March 17, 2025

You Can Get Windows 11 Pro on Sale for A$23 Right Now

Windows 11 Pro is currently available for a reduced price of A, down from A6, allowing users to upgrade two compatible PCs. The Pro version includes features such as Remote Desktop, BitLocker Device Encryption, Azure AD, Hyper-V, Assigned Access, and Windows Sandbox. The system requirements for optimal performance are a minimum of 4GB of RAM and 64GB of available storage. This promotional pricing is available on platforms like StackSocial and may change without notice.

Winsage

March 3, 2025

You Can Get Windows 11 Pro on Sale for A$24 Right Now

Windows 11 Pro is currently available for A, reduced from its regular price of A9. The activation code allows upgrades on two compatible PCs and provides access to features such as a revamped user interface and Windows Copilot, which uses an advanced version of GPT-4. Key functionalities of Windows 11 Pro include Remote Desktop, BitLocker Device Encryption, Azure AD integration, Hyper-V for virtual machines, Assigned Access for application restriction, and Windows Sandbox for secure application testing. The system requirements for Windows 11 Pro are a minimum of 4GB of RAM and 64GB of available storage. The offer is available through StackSocial and may change at any moment.

Tech Optimizer

February 28, 2025

How to prevent Windows from installing unauthorised programs

Windows provides tools to enhance security, including the ability to implement a whitelist for applications. Administrators can configure this whitelist using the Local Security Policy tool in Windows Pro and Enterprise versions, or via command prompt in Windows Home. The Applocker feature, available since Windows 10 build 1809, allows for the creation of whitelists and blacklists. Setting up a whitelist involves navigating to Application Control Policies and creating rules for allowed applications, with options to use default rules provided by Microsoft. To set up the Applocker whitelist, users must open Local Security Policy, access AppLocker, and manage executable files through "Executable rules." Administrators can identify applications by file hash or path, with file hash being more secure. The Application Identity service must be activated for Applocker to function, which can be done through the services menu. Unauthorized applications will be blocked, and restarting Windows can resolve any issues with the service. Cyberlock is mentioned as an alternative to Applocker, offering advanced features and requiring a paid license after a trial. Windows also includes Smart App Control to monitor user behavior and restrict installations to verified applications. Kiosk mode can be configured to allow only one application to run, suitable for specific environments. Windows Home users can access the Local Security Policy tool through command prompt integration.

Tech Optimizer

February 15, 2025

Simplify database authentication management with the Amazon Aurora PostgreSQL pg_ad_mapping extension

Authentication is essential for security in enterprise environments, protecting sensitive data and resources from unauthorized access. Kerberos authentication is utilized for Amazon Aurora PostgreSQL-Compatible Edition with AWS Directory Service for Microsoft Active Directory, particularly through the pg_ad_mapping extension, which enhances access control management. Aurora PostgreSQL supports multiple authentication methods, including password authentication, AWS Identity and Access Management (IAM) database authentication, and Kerberos authentication. By default, password authentication is enabled, while IAM and Kerberos can be used independently. Users are assigned specific roles based on the authentication method: rds_iam for IAM, rds_ad for Kerberos, and no specific roles for password authentication. Kerberos authentication integrates with Microsoft Active Directory, allowing centralized authentication and single sign-on (SSO) capabilities. With versions 14.10 and 15.5, Aurora PostgreSQL introduced the pg_ad_mapping extension, which allows administrators to manage access through Active Directory (AD) security groups instead of provisioning individual users. This extension checks AD group memberships upon user login and assigns corresponding database roles, prioritizing roles based on assigned weights. The pg_ad_mapping extension includes functions such as pgadmap_set_mapping to add mappings between AD security groups and database roles, pgadmap_read_mapping to list existing mappings, and pgadmap_reset_mapping to delete or reset mappings. To deploy the solution, a CloudFormation stack is used to create necessary resources, including an AWS Managed Microsoft AD server, an Aurora PostgreSQL database cluster, and a Windows EC2 instance. Users can be added to AD groups, and roles can be mapped to facilitate access management. Security best practices for Aurora PostgreSQL include using IAM policies for resource management, implementing security groups for database access control, utilizing encryption for data protection, and employing Transport Layer Security (TLS) for secure connections. For auditing, the pg_stat_gssapi view can be used to identify authenticated users, and enabling the log_connections parameter will log session establishments, including AD user identities.

AppWizard

February 10, 2025

TikTok Offers Workaround for Android Users To Download the App

TikTok has created Android download kits for TikTok and TikTok Lite to allow users to access the platform despite its absence from US app stores. Users can download the app by visiting TikTok.com/Download, enabling sideloading, which is the installation of apps from outside official app stores. Certain features, like Live streaming and TikTok Shop, are not available. TikTok has not returned to Google Play or the Apple App Store since its removal on January 19 and is implementing security measures for its Android Package Kits. Political concerns about TikTok's ties to China have led to discussions about a potential ban and interest from various figures in acquiring the platform.