Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.




497 posts

Ultimate Geek
+1 received by user: 31


Topic # 198890 27-Jul-2016 11:06
Send private message

I use Teamviewer (TV) at my office to manage and control family PCs and my personal homeserver. I'm not an IT professional just a hack.

 

At my work, a couple days ago our email went down. This happens probably every 2 months. Sometimes we fail to receive/send emails overnight or for the duration of a full work day we can't send or received email. Internet was still working so the server was still issuing IP addresses etc etc.

 

I should preface this by saying I don't think our IT guy is very on to it, he's a friend of the business owner.

 

The IT guy, logged into our server remotely and said there were no problems with the server, but there appeared problems with the network which he couldn't fix or diagnose.

 

Last night he did a server restore from a backup taken the night before the email problem. As a result we lost 24 hours of emails.

 

Apparently blame is being directed towards my Teamviewer app. I was told that my PC was open to the world prior to the email outage.

 

Office PCs don't have any direct access to the server. There is a data storage of office files that are locally networked, but not the actually server files (or email files).

 

I'm fine to not have teamviewer access from my PC if it is an at risk app. I can just do anything from my phone or start bringing in my own laptop to work.

 

I've advocated that we get independent professional support for over a year, so I am very biased but I just think that this Teamviewer exploit thing is full of BS.

 

Your thoughts and experience?

 

 


View this topic in a long page with up to 500 replies per page Create new topic
 1 | 2
2463 posts

Uber Geek
+1 received by user: 735

Trusted
Lifetime subscriber

  Reply # 1599426 27-Jul-2016 11:14
Send private message

 Wow.  You are absolutely right...  the company needs a new IT Guy.  (Disclaimer - I am one)  Frequent email outages plus ditching 24 hours email history would make any of our clients throw their toys out of the cot, and rightly so.  The email sending issue should have been easily resolvable for anyone with reasonable business email troubleshooting experience.

 

Personally I think TeamViewer is not ideal, however there are no security flaws that I am aware of other than it being an easy target for someone to TRY and gain access to.  The most common issues are computer passwords being re-used...  for example LinkedIn was hacked and passwords were swiped.  There are criminal gangs trying the linkedin logins on all sorts of web sites to take advantage of our human nature reusing passwords on different web sites.

 

Good luck.





"4 wheels move the body.  2 wheels move the soul."

“Don't believe anything you read on the net. Except this. Well, including this, I suppose.” Douglas Adams

2463 posts

Uber Geek
+1 received by user: 735

Trusted
Lifetime subscriber

  Reply # 1599428 27-Jul-2016 11:18
4 people support this post
Send private message

Turn on 2FA for Teamviewer.  Immediately. 





"4 wheels move the body.  2 wheels move the soul."

“Don't believe anything you read on the net. Except this. Well, including this, I suppose.” Douglas Adams

 
 
 
 


3501 posts

Uber Geek
+1 received by user: 1967

Trusted
Lifetime subscriber

  Reply # 1599479 27-Jul-2016 13:06
Send private message

Teamviewer is not inherently insecure, but you should be using a strong password and 2FA.





Information wants to be free. The Net interprets censorship as damage and routes around it.


30 posts

Geek
+1 received by user: 1


  Reply # 1599480 27-Jul-2016 13:07
Send private message

Just last month some did not have full confidence in Teamviewer.

 

https://yro.slashdot.org/story/16/06/04/1325221/teamviewer-denies-being-hacked-blames-users-introduces-new-security-measures

 

https://news.slashdot.org/story/16/06/01/2130259/teamviewer-servers-go-down-users-believe-they-are-hacked

 


Awesome
4813 posts

Uber Geek
+1 received by user: 1062

Trusted
Subscriber

  Reply # 1599501 27-Jul-2016 13:54
2 people support this post
Send private message

Team Viewer aside - the email problems you describe should just not be acceptable when there are many good, cheap, secure, reliable and easy(ish) to implement solutions that would solve your problems.

 

I can not think of any technical reason why Team Viewer would be able to have any effect on your email connectivity or deliverability outside of a) some seriously weird network or firewall configurations (or mis-configurations) or b) Unauthorised access into your internal network via an insecure Team Viewer instance that has compromised something.

 

If a) You need a new IT guy and fast (I'm going say you need this anyway on the basis of your email setup regardless of what is causing the problem)

 

If b) This is a bigger (security) issue and you need to fix it immediately and assess for any further impacts (what else have they managed to access in the mean time). If you are going to continue to use Team Viewer, your need at minimum a unique password and 2 factor auth turned off. This goes for anything these days really.





Twitter: ajobbins


18735 posts

Uber Geek
+1 received by user: 5371

Trusted
Lifetime subscriber

  Reply # 1599510 27-Jul-2016 14:11
2 people support this post
Send private message

I entirely agree with everything everyone else has said. In this forum alone I've read two entirely cringeworthy but eerily similar stories in the past 3 minutes. 

 

You need to get someone CONSIDERABLY better. If I behaved this way with my clients, I would expect to be sued from existence posthaste. 

 

In 20 years of providing support, I've never yet had to restore a system in a way that lost a days worth of emails.

 

Obviously, details are pretty scarce, but I'd be worried.

 

 


3501 posts

Uber Geek
+1 received by user: 1967

Trusted
Lifetime subscriber

  Reply # 1599513 27-Jul-2016 14:14
One person supports this post
Send private message

And noone managed to produce any evidence of an actual Teamviewer hack or a 2FA failure, so I'm inclined to believe Teamviewer. Certainly my credentials wern't compromised and I wasn't even using 2FA (unique login email and password per site folks.. always...)

 

 

 

 





Information wants to be free. The Net interprets censorship as damage and routes around it.


14447 posts

Uber Geek
+1 received by user: 1898


  Reply # 1599523 27-Jul-2016 14:31
One person supports this post
Send private message

Aren't your emails backed up in the cloud or via another system in real time? If you are only doing daily backups, then you always have the risk of losing a days worth of emails.


1496 posts

Uber Geek
+1 received by user: 191

Trusted

  Reply # 1599614 27-Jul-2016 16:26
One person supports this post
Send private message

kama: Just last month some did not have full confidence in Teamviewer. https://yro.slashdot.org/story/16/06/04/1325221/teamviewer-denies-being-hacked-blames-users-introduces-new-security-measures https://news.slashdot.org/story/16/06/01/2130259/teamviewer-servers-go-down-users-believe-they-are-hacked

 

Wasn't this proven to not be a problem with Teamviewer itself? That was the last I read of it.


547 posts

Ultimate Geek
+1 received by user: 106


  Reply # 1599646 27-Jul-2016 18:10
One person supports this post
Send private message

I use Team viewed on a professional IT basis, I don't have any concerns but have a very strong, unique password for each site, and two factor on my account

I agree with everyone else that you should secure your account with a strong password, and also agree that if i lost a days worth of emails I would probably be lynched by my clients.

It fsound like you may use exchange and it is hitting what is called the back pressure limit where the free space on your server falls below a predetermined amount. But hard to say without more details

Clint

547 posts

Ultimate Geek
+1 received by user: 106


  Reply # 1599647 27-Jul-2016 18:13
One person supports this post
Send private message

tchart:

kama: Just last month some did not have full confidence in Teamviewer. https://yro.slashdot.org/story/16/06/04/1325221/teamviewer-denies-being-hacked-blames-users-introduces-new-security-measures https://news.slashdot.org/story/16/06/01/2130259/teamviewer-servers-go-down-users-believe-they-are-hacked


Wasn't this proven to not be a problem with Teamviewer itself? That was the last I read of it.



Not proven, but I believe most think that it is more likely that weak and reused passwords were to blame rather than a total fail of teamviewer



497 posts

Ultimate Geek
+1 received by user: 31


  Reply # 1599763 27-Jul-2016 22:12
Send private message

Thanks for all the input, if I had any influence we would be using a professional, dedicated IT professional ages ago.

 

The office lost a day of productivity yesterday as not only were emails down, but for some reason our networked printers/scanner were also down. Internet was still up however. I can't recall if the network shared documents were accessible. Several staff went home as at a certain point no more work could be done. 

 

We had an issue a few months ago when our emails went down again because our server spam folder was too full so the server stopped being able to receive emails (this is what we were told at the time).

 

I asked the IT guy last week when he came into the office after hours whether or not he was planning to upgrade our PCs to windows 10 before the 29th, he just said we would be sticking with Windows 7.

 

Again I am no IT expert, but I feel as if the office is seriously suffering from a lack of professional and timely support. I'd really like for an independent IT expert to come and do an IT audit, but don't see my boss is at all interested. I have more horror stories to tell regarding our server setup, but I'll just end this thread here as I don't think anything will ever change unfortunately.

 

 

 

 


Murray River
4315 posts

Uber Geek
+1 received by user: 1269

Trusted
Subscriber

  Reply # 1599781 27-Jul-2016 22:32
One person supports this post
Send private message

Sounds like my Mrs' workplace. Their outsourced "IT experts", who were a friend of the old boss, left a server with a root password that was basically "admin/admin" and they got crypto'd. So the guy was going to HN, or something of that equivalent, to get a new NAS to "solve the problem".

 

I didn't bother asking if he was buying a NAS or a WD MyBook.

 

I did LMFAO though.


BDFL - Memuneh
61762 posts

Uber Geek
+1 received by user: 12424

Administrator
Trusted
Geekzone
Lifetime subscriber

  Reply # 1599785 27-Jul-2016 22:43
Send private message

TeamViewer is as good as it gets. There are suspicions that the whole TeamViewer hack a few months back were actually reused passwords on a lot of 160 million leaked LinkedIn passwords. If those users didn't reuse password or had 2FA enable then things would be a lot safer.





2515 posts

Uber Geek
+1 received by user: 541
Inactive user


  Reply # 1599960 28-Jul-2016 06:57
Send private message

clinty: I use Team viewed on a professional IT basis, I don't have any concerns but have a very strong, unique password for each site, and two factor on my account

I agree with everyone else that you should secure your account with a strong password, and also agree that if i lost a days worth of emails I would probably be lynched by my clients.

It fsound like you may use exchange and it is hitting what is called the back pressure limit where the free space on your server falls below a predetermined amount. But hard to say without more details

Clint

 

I also use Team Viewer in a professional environment and have never heard of or had any clients show concern over it, in fact a few of the tighter clients only allow connection via Team Viewer.


 1 | 2
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.