WOBURN, MA– September 19, 2011 – Axceler,the leader in Microsoft SharePoint governance software, today launched a program to help the SharePoint community develop a set of best practices for SharePoint governance. Axceler will kick off this initiative by conducting a survey of SharePoint managers starting in Q4. The survey, which will be administered to organizations of all sizes and in a wide range of industries, will help determine existing levels of SharePoint governance planning, as well as the challenges of preventing exploitation of governance policies.
security
Axceler Will Address Largest Ever D.C.-Area SharePoint Event
WASHINGTON, D.C. –Axceler, the leader in Microsoft SharePoint administration and migration, will share its expertise in SharePoint governance, security and management for government and other public agencies as lead sponsor of the first “SharePoint Saturday The Conference ” (www.spstc.org) in the Washington, D.C.
eSignature Approval for Electronic Documents
As environmental and financial pressures are increasing day by day, enterprises are looking out for a long term solution which includes cost-cutting methods and ideas. The best way is to save money and reduce impact on the environment is to use the paperless technology. Nowadays enterprises are being driven to minimize their reliance on paperwork.
Axceler SharePoint Governance Products Now Available On GSA Schedule 70
WOBURN, MA – June 13, 2011 – Axceler, the leader in Microsoft SharePoint administrationand migrationsoftware, today announced its continued expansion into the federal government market through its partnership with IT Federal Salesand the addition of Axceler products to its General Services Administration (GSA) schedule (under contract #GSA is GS-35F-0494T). Now, government agencies can significantly improve their SharePoint security and governanceby using Axceler’s ControlPointor migrate their old deployments to the latest SharePoint version using DavinciMigrator for SharePoint 2010.
SharePoint users are increasingly putting sensitive, highly regulated data in the collaboration platform without considering the security implications. In addition, the native management tools in some versions of SharePoint are difficult to use for some types of deployments. Nowhere is this more important than in the government space, with strict regulatory requirements, big defense initiatives, and evolving security threats. The recent appearance of sites like “Wikileaks” that exploit security breaches demonstrates how important SharePoint security is to government agencies.
To fill this gap, many government organizations turn to Axceler’s ControlPoint, the award-winning SharePoint governance and administration product. The latest release 4.2 of ControlPoint, the award-winning administration product for SharePoint, offers interactive and powerful analysis and reporting, expanded SharePoint policy enforcementcapabilities for better SharePoint governance, and new permission and security features. Now, through the partnership with IT Federal Sales, all Axceler products including ControlPoint are accessible on the GSA Schedule.
“ControlPoint, a leader in SharePoint administration and control, will definitely enhance any SharePoint installation,” said Paul Cino, President of IT Federal Sales. “Our clients, especially in DOD, are looking for this solution. We’re excited to add Axceler products to our growing list of unique products available to US Government buyers.”
"We’re pleased to make Microsoft SharePoint solutions, and our firm's unique professional, training and maintenance services, available through the GSA program,” said Michael Alden, President and CEO, Axceler. “Being accessible on the GSA Schedule 70 reduces the procurement challenges our government clients face, and gives them the ability to resolve critical SharePoint security challenges quickly, efficiently and economically. This reflects our long history of successful collaboration with government entities."
WordPress 3.1.3 brings security fixes and enhancements
WordPress 3.1.3 was made available to the public yesterday. This release is not only a security update for all previous versions but also offers some new features.
WordPress 3.1.3 contains the following security fixes and enhancements:
- Various security hardening.
- Taxonomy query hardening.
- Prevents sniffing out user names of non-authors by using canonical redirects.
- Media security fixes.
- Improved file upload security on hosts with dangerous security settings.
- Cleans up old WordPress import files if the import does not finish.
- Introduces “clickjacking” protection in modern browsers on admin and login pages.
For details, feel free to check out the change log. Download WordPress 3.1.3 or update automatically from the Dashboard → Updates menu in your site’s admin area.
Also, you may be curious enough and want to take a look at the original release announcement that not only talks about WordPress 3.1.3 but also talks about the availability of WordPress 3.2 Beta 2. We'll talk more about WordPress 3.2 later.
Thales and Imprivata Partner to Deliver Highest Level of Cryptographic Security in SSO Market
Thales HSM Integration Enables Out-of-the-Box FIPS Compliance for Imprivata OneSign® Customers
Axceler Posts 2.5 Times Growth on Record 2010 Results
WOBURN, MA– Axceler,the leader in Microsoft SharePoint administrationand migrationsoftware, today announced record financial results for 2010 including 145 percent growth, more than doubling its year-over-year SharePoint management product revenues. Demand for Axceler’s ControlPoint, the award-winning administration product for SharePoint, rose dramatically in 2010 as enterprises increasingly chose SharePoint as their collaboration platform. Privately-held Axceler, which spun off from Percussion Software in 2007, continues to be profitable.
Adding to the company’s explosive growth was the addition of many new corporate customers during 2010, building on the continued demand around SharePoint governance and policy management. New enterprise customers in 2010 included organizations such as Biogen, Krispy Kreme, Bristol-Myers Squibb, HP, Harvard Business School, Sanford Health, Cleveland Clinic, Financial Partners, University of New Hampshire, Texas Instruments, Vonage, and Yale Law School. Axceler also continued to broaden its global market penetration with new European clients including Royal Bank of Scotland, AstraZeneca, Siemens and Credit Suisse.
Bitrix Releases World’s First Website Management System With Built-in Web Anti-Virus
ALEXANDRIA, VA. – Bitrix, Inc. (www.bitrixsoft.com), a technology trendsetter in web-based business communications, announces the availability of Bitrix® Site Manager 9.0 - a new incarnation of the company’s flagship website management solution designed specifically for small and medium-sized businesses.
Compliance, Security, and Cost-efficient Management: ECM Rises to the Challenge
The combination of a weak economy - causing many to streamline operations to keep afloat - and increasing regulatory demands made business challenging for many in 2009. Those that emerged from the rubble of crumbling profits, hoping to resurrect their bottom line and succeed in this decade are working harder than ever, often with fewer resources. Although the economy will eventually improve, the regulatory scene is becoming more demanding, placing greater burdens on business. Only those that make wise use of limited resources will survive.
Despite recent unpredictability in government, business, and the economy, one thing is unchanged: compliance, security, and cost-efficient management remain the focus of many businesses. Named in multiple industries as the top three drivers for enterprise content management (ECM), they are more closely intertwined than ever:
- Cost efficiency is only possible in today’s litigious economy with an integrated, efficient compliance management program that mitigates risk and avoids costly penalties. In a paper or mixed media environment, it’s nearly impossible to achieve.
- Compliance is only achievable with stringent internal controls and an overseeing force to manage document security, governing access to information and how it is used. Entrusting oversight to fallible humans alone means there will always be mistakes. Zero tolerance is on the rise; penalties for non-compliance can be financially devastating.
- Security is only manageable in information-intensive businesses when you have the tools to pull all of your information together so it can be controlled, centrally and consistently. Even with a full complement of employees, it’s challenging. In a paper-based environment, it’s impossible.
The solution? ECM.
Qualys: Open Source Web Apps Called Often Insecure
PCWorld: "Seventy-seven percent of sites running the blogging tool Movable Type showed critical vulnerabilities, somewhat better than the 91 percent of sites using the Joomla! content management system, the 95 percent running Mediawiki, and the 78 percent using phpMyAdmin database management software."
Denial of Service on an Apache server
Last week was a very frustrating time for me. For whatever reason, an unusually number of botnets decided to zero in on my Drupal site and created what I call an unintentional Denial of Service attack (DOS). The attack was actually from spambots looking looking for script vulnerabilities found mainly in older versions of e107 and WordPress. Since the target of these spambots were non-Drupal pages, my Drupal site responded by delivering an unusually large number of "page not found" and "access denied" error pages. Eventually, these requests from a multitude of IPs were too many for my server to handle and for all intents and purposes the botnet attack caused a distributed denial of service that prevented me and my users from accessing the site.
These type of attacks on Drupal sites are nothing new and have been observed and discussed at great length at Drupal.org. However, my search at Drupal.org as well as Google didn't really find a solution that completely addressed my problem. Trying to prevent a DDoS attack isn't easy to begin with and at first the answers alluded me.
I originally looked at Drupal for the solution to my problems. While I've used Mollom for months, Mollom is designed to fight off comment spam while the bots attacking my sight were looking for script vulnerabilities that didn't exist. So with Mollom being the wrong tool to fight off this kind of attack, I decided to take a look at the Drupal contributed model Bad Behavior. Bad Behavior is a set of PHP scripts which prevents spambots from accessing your site by analyzing their actual HTTP requests and comparing them to profiles from known spambots then blocks such access and logs their attempts. I actually installed an "unofficial" version of the Bad Behavior module which packages the Bad Behavior 2.1 scripts and utilizes services from Project Honey Pot.
As I had already suspected, looking for Drupal to solve this botnet attack wasn't the answer. Pretty much all Bad Behavior did for me was to take the time Drupal was spending delivering "page not found" error pages and use it to deliver "access denied" error pages. My Drupal site is likely safer with the Bad Behavior module installed, but it was the wrong tool to help me reduce the botnets from overtaxing Drupal running on my server. Ideally, you would like to prevent the attacks ever reaching your server by taking a look at such things as the firewall, router, and switches. However, since I didn't have access to the hardware, I decided it was time to look at my Apache configuration.
Confident Technologies, Inc. Delivers Image-Based CAPTCHA
Unique, Image-Based CAPTCHA Decreases Website and Transaction Abandonment, Increases Security and Conversion Rates
Crafting a social media policy
Computerworld: "The main purpose of implementing a social networking policy is to identify proper usage and behavior for social networking applications. Remember, the overall goal is to protect the rights and privacy of all employees and the integrity and reputation of the company."
Bitrix: Web Security Within Reach
Bitrix publishes guidelines for minimizing risks associated with hostile web environments when deploying websites and intranet portals
Are Your Electronic Documents Secure? Manager’s Checklist for Evaluating Your EDM System’s Security
Since business documents and their content drive the decisions and record the transactions that take place in every business, it’s critical for managers and their workers to ensure they’re secure. In an age where digital file management is increasingly necessary for a business to operate efficiently and remain competitive, it’s understandable the topic is receiving renewed attention, especially with several high-profile security breaches that should never have happened. Rest assured electronic document management (EDM) is far more secure than managing paper-based documents – but only when you have a flexible, rules-based system that provides the levels of security you need. Robust options and flexibility must be matched by administrative simplicity, so that your systems administrators can use it confidently.
Managing an EDM solution bears similarities to driving a car. When you climb into the driver’s seat, your dashboard displays the choices you need to make and the information you need to drive. You can choose multiple speeds and directions; change the air temperature using a few levers or buttons; or manipulate controls to play your favorite music. If the gear shift didn’t display reverse, the air only blew cold, or the music only off ered a loud bass sound, driving would be frustrating. If you had to fiddle with the labyrinth of wires under the hood every time to get the desired results, you would drive only when necessary, and might abandon your car altogether. Fortunately, although the mechanics are complex, driving is made easy through a system of clear and appropriate choices. So it must be with your EDM system’s security.
Pages
