In December of 2010 President Obama signed HR 1722, the Telework Enhancement Act of 2010. Basically this means that every Federal Agency has, now, less than 6 months to come up with a telework strategy for nearly 2 million federal employees. Recent storms in DC have caused sabers to rattle in the last two years [...]
The challenges and benefits of mobile devices in the enterprise. The last 18 months has witnessed a barrage of smart phones and tablets coming onto the market. While these devices score high marks for being “cool” I can honestly say, the INFOSEC pessimist in me says “Malware Vector” and the enterprise solutions person in me [...]
This is my first non-Citrix related post, I don’t plan on making it a habit but someone suggested that I post this in case it is valuable to other INFOSEC types. Let me start off by saying I am not a traditional security guy, I don’t have an abundance of hacking skills, I am not [...]
About four years ago management wanted to know which users were failing their endpoint analysis scans and to what extent we were compliant with endpoint analysis. We spent over $30K on a product called “Clear2View” and it did some rudimentary scans logging for us but the data was not very easy to query even though [...]
Total Information Awareness with your Netscaler/AGEE Harvesting VPN Logs with the Netscaler: When I first heard about Total Information Awareness I was a little concerned. Like a lot of my current team, I am one of those libertarians who really isn’t keen on his personal life being correlated and analyzed and a program that is [...]
Posted in Citrix Access Gateway Enterprise Edition, Citrix SQL Queries, Digital SCIF, Layered Security, Netscaler, Netscaler Syslog, Netscaler VPX, Secure Compartmentalized Information Facility, Security, Sensitive Compartmentalized Information Facility, SSL VPN
|
With the release of the Web Interface 5.3 version from Citrix we now finally have what appears to be seamless SmartCard Access for AGEE customers who want to maintain their current level of ICAProxy without the need to turn on VPN. This is significant because of the looming compliance with HSPD-12 which is being met [...]
A little over six months ago Citrix released the Netscaler VPX virtual appliance and I was immediately thrilled with the potential to create my own virtual lab using XenServer and internal Xen networks on the hypervisor for downstream hosts. What I noticed was that I could locate resources inside a hypervisor’s black network and [...]
Okay, so in this blog posting I want to continue covering a few more views in Edgesight that I like to run ad hoc queries against. Today’s view is called vw_es_archive_application_network_performance. This view provides information network delay, server delay, xenapp server, process name and downstream hosts that your XenApp servers communicate with. I have used this table to [...]
Okay, so no flat files, parsing or kiwi syslogging today. Today I want to talk about Edgesight 5.x. If any of you have attempted to reverse engineer Edgesight yet you have probably noticed that the tables are a lost cause. All of the key data that you will want to try to harvest is located [...]
In 2003 I started steering my career toward Citrix/VMWare/Virtualization and at the time, aside from being laughed at for running this fledgling product called ESX Server 1.51, most of my environment was Windows based. There were plenty of shrink-wrapped tools to let me consolidate my events and the only Unix I had to worry about [...]
