Tag Archives: versions

Top 5 ERP software for small businesses

As ERP software providers have created cloud-based versions of their products, they’ve opened up these capabilities to small businesses.

The per-user, per-month pricing model makes ERP software more accessible to small businesses, and running it in the cloud means that they don’t need to invest in servers or IT staff to deploy, manage and troubleshoot it.

ERP software is ideal for small businesses that have outgrown their spreadsheets, paper-based systems or general small business accounting software. These software systems are now more widely available to businesses that had outgrown spreadsheets or small business accounting software and are looking for something that could better handle accounting, customer relationship management and other business functions.

There’s no hard-and-fast rule as to when small businesses should switch to ERP software. But if they’re struggling with a lot of manual tasks, want to get a better picture of the financial health of their business and take advantage of analytics, it might be time to start evaluating different vendors. Some other indicators that it’s time to look at ERP software include spending too much time trying to integrate other software packages to get a full picture of inventory, supply chain and customers, as well as difficulty meeting customer demands.

Here are the top five ERP software choices for small businesses:

OnCloudERP

Aimed squarely at small businesses in the distribution, wholesale, retail and services sector, OnCloud ERP is a fully cloud-based ERP software product. The OnCloud ERP suite of applications includes the expected accounting modules for real-time information on cash flow, as well as sales, inventory, purchase order and receipt tracking, inventory management and production planning. Add-on modules provide the ability to manage payroll, track and maintain assets, leverage CRM functions like lead tracking and manage projects.

One of the most attractive features for small businesses is that companies can implement OnCloud ERP without an IT department and uses a single platform for all the ERP functions. The software also offers mobile device and remote access capabilities.

OnCloud ERP offers a free trial for 14 days. Pricing starts at $10 per user per month for the “StartUp” plan, with a minimum of five users.

Microsoft Dynamics Business Central

While Microsoft Dynamics 365 is geared toward larger businesses, Microsoft offers a Business Central application for small businesses. This product includes financials, supply chain management, customer service and project management in one product.

The analytics capabilities in Business Central include the ability to connect data across accounting, sales, purchasing, inventory and customer transactions, then run reports in real-time using business intelligence dashboards. The product also enables users to access data modeling and analysis to create financial forecasts.

Because it’s a Microsoft product, users can integrate the product with Excel, Word, Outlook and Azure. Microsoft also offers pre-built add-on products like Continia Document Capture 365 for recognizing documents and approving invoices and Jet Reports to create financial reports inside Excel.

The pricing model is a per-user, per-month fee, based on whether the company chooses a basic or premium version. Microsoft delivers Business Central entirely in the cloud, and the vendor also offers a mobile application for remote access.

Oracle NetSuite

While Oracle markets NetSuite as ideal for businesses of any size, where NetSuite really shines is with smaller businesses. It’s an all-in-one software suite that includes financials, customer service and e-commerce capabilities, so small business owners don’t have to figure out how to use APIs to connect different software packages. NetSuite also packages analytics in with its ERP software to provide insight into how the business is performing, using key performance indicators.

NetSuite is delivered entirely in the cloud, on the NetSuite Cloud Platform. This enables organizations to add other applications and modules — such as SuitePeople, its human capital management system — to the software. The product is billed as good for manufacturing, media and publishing, nonprofit, retail, services, advertising, distribution and wholesale and software industries.

Potential users must contact NetSuite for pricing information.

Sage Intacct

The focus of Sage Intacct is finance and accounting, and Sage bills it as being “built for finance by finance.” Some of the features it offers includes the ability to automate complex processes, analyze data, create structured transactions and approvals, and manage multiple currencies and locations. It also provides the ability to track multiple accounts in real-time.

For companies that want to extend Sage Intacct beyond core financial functions, the software offers modules for fixed assets, inventory management, and time and expense management, among others. It also offers web services in the form of APIs to integrate with other software systems, as well as a built-in Salesforce integration.

Sage Intacct is priced on a quote basis and is cloud-based.

SAP Business One

As SAP’s ERP product for small businesses, SAP Business One is a single suite that includes financial management, sales and customer management, purchasing and inventory control, and analytics and reporting capabilities. It also includes a mobile access module so that users can check inventory, manage sales and service, and complete approvals from iOS or Android devices.

Companies can customize SAP Business One for their industries, including consumer products, manufacturing, retail, wholesale distribution and professional services. The can also customize the software using application extensions from SAP partners, create web applications that run on desktops or mobile devices, and use self-service options within SAP Business One to create additional fields, tables and forms.

Unlike a lot of other small business ERP products, companies can implement SAP Business One on premises. It’s also delivered in a cloud-based model, priced on a per-user, per-month basis. It’s sold exclusively through SAP partners.

ERP selection advice

Before beginning the ERP software evaluation process, small business leaders need to first identify the business problems they’re trying to solve. They will also want to audit their existing processes to see if the ERP system they’re considering has these processes built in or will let them create workflows.

As small businesses begin the evaluation process, it’s important to keep in mind what the company actually needs and what it can support. Most of these systems will let companies add users as needed, as well as extend capabilities using APIs. These top five ERP software for small business have features that go beyond basic accounting and let small businesses compete with larger companies, using tools that previously were not affordable.

Go to Original Article
Author:

IT pros debate upstream vs. packaged Kubernetes implementations

Packaged versions of Kubernetes promise ease of use for the finicky container orchestration platform, but some enterprises will stick with a DIY approach to Kubernetes implementation.

Red Hat, Docker, Heptio, Mesosphere, Rancher, Platform9, Pivotal, Google, Microsoft, IBM and Cisco are among the many enterprise vendors seeking to cash in on the container craze with prepackaged Kubernetes implementations for private and hybrid clouds. Some of these products — such Red Hat’s OpenShift Container Platform, Docker Enterprise Edition and Rancher’s eponymous platform — offer their own distribution of the container orchestration software, and most add their own enterprise security and management features on top of upstream Kubernetes code.

However, some enterprise IT shops still prefer to download Kubernetes source code from GitHub and leave out IT vendor middlemen.

“We’re seeing a lot of companies go with [upstream] Kubernetes over Docker [Enterprise Edition] and [Red Hat] OpenShift,” said Damith Karunaratne, director of client solutions for Indellient Inc., an IT consulting firm in Oakville, Ont. “Those platforms may help with management out of the gate, but software license costs are always a consideration, and companies are confident in their technical teams’ expertise.”

The case for pure upstream Kubernetes

One such company is Rosetta Stone, which has used Docker containers in its DevOps process for years, but has yet to put a container orchestration tool into production. In August 2017, the company considered Kubernetes overkill for its applications and evaluated Docker swarm mode as a simpler approach to container orchestration.

Fast-forward a year, however, and the global education software company plans to introduce upstream Kubernetes into production due to its popularity and ubiquity as the container orchestration standard in the industry.

Concerns about Kubernetes management complexity are outdated, given how the latest versions of the tool smooth out management kinks and require less customization for enterprise security features, said Kevin Burnett, DevOps lead for Rosetta Stone in Arlington, Va.

“We’re a late adopter, but we have the benefit of more maturity in the platform,” Burnett said. “We also wanted to avoid [licensing] costs, and we already have servers. Eventually, we may embrace a cloud service like Google Kubernetes Engine more fully, but not yet.”

Burnett said his team prefers to hand-roll its own configurations of open source tools, and it doesn’t want to use features from a third-party vendor’s Kubernetes implementation that may hinder cloud portability in the future.

Other enterprise IT shops are concerned that third-party Kubernetes implementations — particularly those that rely on a vendor’s own distribution of Kubernetes, such as Red Hat’s OpenShift — will be easier to install initially, but could worsen management complexity in the long run.

“Container sprawl combined with a forked Kubernetes runtime in the hands of traditional IT ops is a management nightmare,” said a DevOps transformation leader at an insurance company who spoke on condition of anonymity, because he’s not authorized to publicly discuss the company’s product evaluation process.

His company is considering OpenShift because of an existing relationship with the vendor, but adding a new layer of orchestration and managing multiple control planes for VMs and containers would also be difficult, the DevOps leader predicted, particularly when it comes to IT ops processes such as security patching.

“Why invite that mess when you already have your hands full with a number of packaged containers that you’re going to have to develop security patching processes for?” he said.

Vendors’ Kubernetes implementations offer stability, support

Fork is a fighting word in the open source world, and most vendors say their Kubernetes implementations don’t diverge from pure Kubernetes code. And early adopters of vendors’ Kubernetes implementations said enterprise support and security features are the top priorities as they roll out container orchestration tools, rather than conformance with upstream code, per se.

Amadeus, a global travel technology company, is an early adopter of Red Hat OpenShift. As such, Dietmar Fauser, vice president of core platforms and middleware at Amadeus, said he doesn’t worry about security patching or forked Kubernetes from Red Hat. While Red Hat could theoretically choose to deviate from, or fork, upstream Kubernetes, it hasn’t done so, and Fauser said he doubts the vendor ever will.

Meanwhile, Amadeus is on the cusp of multi-cloud container portability, with instances of OpenShift on Microsoft Azure, Google and AWS public clouds in addition to its on-premises data centers. Fauser said he expects the multi-cloud deployment process will go smoothly under OpenShift.

Multi-tenancy support and a DevOps platform on top of Kubernetes were what made us want to go with third-party vendors.
Surya Suravarapuassistant vice president of product development, Change Healthcare

“Red Hat is very good at maintaining open source software distributions, patching is consistent and easy to maintain, and I trust them to maintain a portable version of Kubernetes,” Fauser said. “Some upstream Kubernetes APIs come and go, but Red Hat’s approach offers stability.”

Docker containers and Kubernetes are de facto standards that span container environments and provide portability, regardless of which vendor’s Kubernetes implementation is in place, said Surya Suravarapu, assistant vice president of product development for Change Healthcare, a healthcare information technology company in Nashville, Tenn., that spun out of McKesson in March 2017.

Suravarapu declined to specify which vendor’s container orchestration tools the company uses, but said Change Healthcare uses multiple third-party Kubernetes tools and plans to put containers into production this quarter.

“Multi-tenancy support and a DevOps platform on top of Kubernetes were what made us want to go with third-party vendors,” Suravarapu said. “The focus is on productivity improvements for our IT teams, where built-in tooling converts code to container images with the click of a button or one CLI [command-line interface] line, and compliance and security policies are available to all product teams.”

A standard way to manage containers in Kubernetes offers enough consistency between environments to improve operational efficiency, while portability between on-premises, public cloud and customer environments is a longer-term goal, Suravarapu said.

“We’re a healthcare IT company,” he added. “We can’t just go with a raw tool without 24/7 enterprise-level support.”

Still, Amadeus’s Fauser acknowledged there’s risk to trust one vendor’s Kubernetes implementation, especially when that implementation is one of the more popular market options.

“Red Hat wants to own the whole ecosystem, so there’s the danger that they could limit other companies’ access to providing plug-ins for their platform,” he said.

That hasn’t happened, but the risk exists, Fauser said.

Apple iOS 12 USB Restricted Mode to foil thieves, law enforcement

A security feature that had popped up in beta versions of Apple’s iOS software appears to be coming in earnest as part of iOS 12, and it will protect devices against anyone trying to unlock them via USB.

USB Restricted Mode is described in the iOS 12 settings as the option to enable or deny the ability to “unlock [an] iPhone to allow USB accessories to connect when it has been more than an hour since your iPhone was locked.” In practice, this means a device will require a passcode unlock in order to connect any Lightning-to-USB accessory after the one-hour time limit has passed.

Apple didn’t mention USB Restricted Mode during the keynote at its Worldwide Developers Conference on Monday, but developers saw it in the iOS 12 preview, which was released that same day. The setting is on by default and covers any type of security on an iOS device — Touch ID, Face ID and passcode.

Experts noted USB Restricted Mode will protect users’ data if a device is stolen, but it will also deny law enforcement from using unlocking services from companies like GrayKey and Cellebrite — the latter of which was rumored to have helped the FBI unlock the San Bernardino, Calif., shooter’s iPhone.

Earlier tests of USB Restricted Mode had allowed for a one-week time limit, spurring GrayKey to reportedly alert customers of this feature when it surfaced in the iOS 11.3 beta, according to internal email messages obtained by Motherboard. A one-hour time limit could effectively make it impossible for customers to get the device to a company like GrayKey in time to gain brute-force access.

Rusty Carter, vice president of product management at Arxan, based in San Francisco, said USB Restricted Mode “is really about increasing the security of the device.”

If the device is vulnerable to brute-force attacks via wired connection, other security features, like being able to wipe the device after 10 unsuccessful authentication attempts, are rendered useless.
Rusty Cartervice president of product management at Arxan

“If the device is vulnerable to brute-force attacks via wired connection, other security features, like being able to wipe the device after 10 unsuccessful authentication attempts, are rendered useless … they are effectively a false sense of security,” Carter wrote via email. “Effectively, any data is vulnerable, unless the individual app developer has done the right thing both to secure and encrypt user data and require more than stored credentials or identity to access the data with their app, which is rarely the case today.”

John Callahan, CTO of Veridium, based in Quincy, Mass., said, as a developer, his initial reaction to USB Restricted Mode was, “Great, now I’ll have to unlock the phone every time I go to debug a mobile app with Xcode.” But he later realized it could have protected a lot of stolen devices if it had been implemented in an earlier version of iOS.

“USB Restricted Mode in iOS 12 a big win for users, because we are keeping more personally identifiable information on our mobile devices, including healthcare, identification and biometric data. Our phones have become our digital wallets, and we expect a maximum level of privacy and convenience,” Callahan wrote via email. “Android devices, ironically seen as less secure, have long required unlocking when connected in USB Debug mode. In many ways, Apple is playing catch-up with respect to physical device security.”

Wanted – Dell XPS 9350 or 9550

Must be 1080p versions with at least 8GB RAM and 256GB SSD, looking to pay around

£450 – £500 for a 9350
£600 – £650 for a 9550

Must be in excellent condition with no dead pixels.

Thanks,

Location: Nottingham

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

Apache Struts vulnerability affects versions since 2008

A security researcher discovered an Apache Struts vulnerability that affects versions of the web application development framework going back to 2008.

Man Yue Mo, researcher at the open source software project LGTM.com run by software analytics firm Semmle, Inc., headquartered in San Francisco, disclosed the remotely executable Apache Struts vulnerability, which he said was “a result of unsafe deserialization in Java” and could lead to arbitrary code execution. Mo originally disclosed the issue to Apache on July 17, 2017.  

Mo publicly disclosed the Apache Struts vulnerability on Sept. 5 and the Apache Struts group released patches the same day, but by the morning of Sept. 6 Mo updated his post because “multiple working exploits [were] observed on various places on the internet.”

“I verified that it was a genuine remote code execution [RCE] vulnerability before reporting it to the Struts security team. They have been very quick and responsive in working out a solution even though it is a fairly non-trivial task that requires API changes,” Mo wrote in a blog post. “Due to the severity of this finding I will not disclose more details at this stage. Rather, I will update this blog post in a couple of weeks’ time with more information.”

Mo’s discovery is the latest in string of serious Apache Struts vulnerabilities that have been disclosed recently. In March, for example, an RCE vulnerability was patched after being actively exploited by attackers.

Boris Chen, vice president of engineering and co-founder of tCell, Inc., a web applications security company headquartered in San Francisco, said “serialization exploits resulting in RCE are one of the most serious yet underreported vulnerabilities that applications face today, and it doesn’t seem to be waning. For Apache Struts alone, this is the fourth RCE vulnerability this year.”

The newly discovered Apache Struts vulnerability is a stark reminder that while websites represent the front-line for most organizations, they can also become the front door for attackers.
Brian Robisonsenior director of security technology, Cylance Inc.

Michael Patterson, CEO of Plixer International, Inc., a network traffic analysis company based in Kennebunk, Me., said that this Apache Struts vulnerability “is a significant finding given that the majority of our largest companies are using Apache Struts.”  

“Although a patch for the vulnerability has since been released, given that many companies don’t stay on top of patches, there still could be plenty of time for malicious code writers to exploit it,” Patterson told SearchSecurity. “Most organizations are aware that there is absolutely no way to prevent being compromised.”

Brian Robison, senior director of security technology at Cylance Inc., said attacks like this are not new but should be a wake-up call.

“The newly discovered Apache Struts vulnerability is a stark reminder that while websites represent the front-line for most organizations, they can also become the front door for attackers. Many organizations develop layers of security to protect their public facing websites, but in some cases, those layers can’t stop something that looks like normal behavior,” Robinson told SearchSecurity. “No matter whether someone is using Apache, IIS or any other web server, it is critical that they keep up with patches and security feeds. A web server that is left idle while the company focuses on building the content can quickly become ground-zero for a wide spread attack.”

Wanted – Older Razer Naga 2012 mouse

Hi all I am after one of the older 2012 versions of the Razer Naga (NOT current 2014 ) Either the blue or green or the Molten edition. Must be in full working order and preferably in excellent condition. Maybe someone bought one and tried it etc and put it back in its box. Anyway state your prices and pictures would be helpful for condition and knowing its the right kind. Cheers EDIT only usb versions pls not wireless

Location: Stoke

______________________________________________________
This message is automatically inserted in all classifieds forum threads.
By replying to this thread you agree to abide by the trading rules detailed here.
Please be advised, all buyers and sellers should satisfy themselves that the other party is genuine by providing the following via private conversation to each other after negotiations are complete and prior to dispatching goods and making payment:

  • Landline telephone number. Make a call to check out the area code and number are correct, too
  • Name and address including postcode
  • Valid e-mail address

DO NOT proceed with a deal until you are completely satisfied with all details being correct. It’s in your best interest to check out these details yourself.

Last edited: Aug 13, 2017