To each his own.
-----Original Message----- From: Ken Schaefer [mailto:k...@adopenstatic.com] Sent: Tuesday, June 08, 2010 11:03 AM To: NT System Admin Issues Subject: RE: Nested VBS in logon scripts OK - if no one should be running all those other apps, and they can't authenticate, then what do you care? Plenty of organisations have edge proxies and no one (that I know of) has such a kludgey solution. As for deployment to 2000 machines, many organisations also have that problem solved (you could even to it via a startup script! Or GPOs! Or many, many alternatives) I'm not sure what other "can of worms" issues there are... Cheers Ken -----Original Message----- From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Tuesday, 8 June 2010 10:58 PM To: NT System Admin Issues Subject: RE: Nested VBS in logon scripts No one *should* be running a file sharing app. The point of the filter is to ensure that they're not. The system isn't just a web filter--it filters all sorts of protocols, does bandwidth throttling, and so on. So NTLM can't be counted on as the only authentication method. They threw around the idea of having a service, but that's not a panacea; it potentially opens a new can of worms. It's a lot easier to toss up a login script than to deploy a service to over 2,000 computers--then possibly patch that service as necessary, deal with possible problems that may arise from OS patches, and so on. -----Original Message----- From: Ken Schaefer [mailto:k...@adopenstatic.com] Sent: Tuesday, June 08, 2010 10:51 AM To: NT System Admin Issues Subject: RE: Nested VBS in logon scripts These are first graders, who need to access the internet. Why are they running a file sharing app that needs access to the internet?!? As Ben mentions, every browser under the sun that has more than 0.1% market share supports proxy authentication. Most support this transparently if the authentication mechanism is secure (Kerberos, some allow NTLM, some Digest). Most applications that use HTTP also support this. If your vendor really needs this functionality, get them to write a service. It's quite simple in .NET (for example), and far more robust than a .vbs. Frankly, it sounds like your vendor sucks. Cheers Ken -----Original Message----- From: John Hornbuckle [mailto:john.hornbuc...@taylor.k12.fl.us] Sent: Tuesday, 8 June 2010 10:13 PM To: NT System Admin Issues Subject: RE: Nested VBS in logon scripts Plus, I don't want users to be able to provide credentials other than the ones they used to log into a computer. -----Original Message----- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, June 08, 2010 10:10 AM To: NT System Admin Issues Subject: RE: Nested VBS in logon scripts No offense just pointing out, his/my enviroment makes that unworkable. We are talking 1st graders here that can barley spell their own name let alone remember their password. They are just learning the basics of point and click at this point. -----Original Message----- From: Ben Scott [mailto:mailvor...@gmail.com] So the client software prompts for the user's password, the user enters their Windows logon credentials, the filter checks those against AD. ..... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ NOTICE: Florida has a broad public records law. Most written communications to or from this entity are public records that will be disclosed to the public and the media upon request. E-mail communications may be subject to public disclosure. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
