Re: 2008 R2 DHCP / MAC Address Filtering / mass import of MAC ID's

[Devin Meade]

Cool, thanks for the feedback.  It makes more sense to do it at the switch
anyway.  We can do this with our Dell Powerconnect 6248 switches.

On Wed, Jan 4, 2012 at 5:49 PM, Steve Kradel  wrote:

> Can this be scripted through netsh ... add reservedip?
> http://technet.microsoft.com/en-us/library/cc787375(WS.10).aspx
>
> At any rate, you should do MAC-based filtering at the router or
> managed switch, if your intent is to keep unauthorized devices from
> pestering the network, set up a guest network, etc..
>
> --Steve
>
> On Wed, Jan 4, 2012 at 6:17 PM, Devin Meade  wrote:
> > No requirement, just curious cuz I see this option.  I have this disabled
> > for now.
> >
> >
> > On Wed, Jan 4, 2012 at 4:55 PM, Don Ely  wrote:
> >>
> >> "requirement OR need"
> >>
> >>
> >> On Wed, Jan 4, 2012 at 2:55 PM, Don Ely  wrote:
> >>>
> >>> I'll bite...  What's the requirement for need for doing this?
> >>>
> >>>
> >>> On Wed, Jan 4, 2012 at 2:49 PM, Devin Meade 
> >>> wrote:
> >>>>
> >>>> So I am finally replacing our 2003 DHCP servers with 2008 R2.  I see
> the
> >>>> option to allow only those MAC ID's that we know about.  We have a
> small
> >>>> network, and I am reviewing the current leases.  Our IT dept knows
> about
> >>>> each device (whoo hoo) that is currently leased.  I would *like* to
> enable
> >>>> this option and import each MAC address into each DHCP server.  Is
> there an
> >>>> import option?  I can right click a current lease and add to the deny
> or
> >>>> allow filter, but I would like an import of some sort.
> >>>>
> >>>> For servers prior to 2008R2 there is a separate download
> >>>> "MacFilterCallout.dll" and "SetupDHCPMacFilter.rtf".  This installs to
> >>>> %SystemRoot%\system32 and has some import functions, but I don't see
> it in
> >>>> my 2008R2 server.  I know you can spoof a MAC ID, we do have a company
> >>>> policy to use our WiFi outside of our network, but this reduces our
> attack
> >>>> surface (salesmen and who-knows-what's on their laptops etc...)
> >>>>
> >>>> Anyone using MAC ID filtering on 2008 R2 DHCP?  If so, how do you
> handle
> >>>> mulitple servers and mass import of the mac addresses?
> >>>>
> >>>> Thanks all,
> >>>> Devin Meade
> >>>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: 2008 R2 DHCP / MAC Address Filtering / mass import of MAC ID's

[Devin Meade]

No requirement, just curious cuz I see this option.  I have this disabled
for now.

On Wed, Jan 4, 2012 at 4:55 PM, Don Ely  wrote:

> "requirement OR need"
>
>
> On Wed, Jan 4, 2012 at 2:55 PM, Don Ely  wrote:
>
>> I'll bite...  What's the requirement for need for doing this?
>>
>>
>> On Wed, Jan 4, 2012 at 2:49 PM, Devin Meade wrote:
>>
>>> So I am finally replacing our 2003 DHCP servers with 2008 R2.  I see the
>>> option to allow only those MAC ID's that we know about.  We have a small
>>> network, and I am reviewing the current leases.  Our IT dept knows about
>>> each device (whoo hoo) that is currently leased.  I would *like* to enable
>>> this option and import each MAC address into each DHCP server.  Is there an
>>> import option?  I can right click a current lease and add to the deny or
>>> allow filter, but I would like an import of some sort.
>>>
>>> For servers prior to 2008R2 there is a separate download
>>> "MacFilterCallout.dll" and "SetupDHCPMacFilter.rtf".  This installs to
>>> %SystemRoot%\system32 and has some import functions, but I don't see it in
>>> my 2008R2 server.  I know you can spoof a MAC ID, we do have a company
>>> policy to use our WiFi outside of our network, but this reduces our attack
>>> surface (salesmen and who-knows-what's on their laptops etc...)
>>>
>>> Anyone using MAC ID filtering on 2008 R2 DHCP?  If so, how do you handle
>>> mulitple servers and mass import of the mac addresses?
>>>
>>> Thanks all,
>>> Devin Meade
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>
>>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

2008 R2 DHCP / MAC Address Filtering / mass import of MAC ID's

[Devin Meade]

So I am finally replacing our 2003 DHCP servers with 2008 R2.  I see the
option to allow only those MAC ID's that we know about.  We have a small
network, and I am reviewing the current leases.  Our IT dept knows about
each device (whoo hoo) that is currently leased.  I would *like* to enable
this option and import each MAC address into each DHCP server.  Is there an
import option?  I can right click a current lease and add to the deny or
allow filter, but I would like an import of some sort.

For servers prior to 2008R2 there is a separate download
"MacFilterCallout.dll" and "SetupDHCPMacFilter.rtf".  This installs to
%SystemRoot%\system32 and has some import functions, but I don't see it in
my 2008R2 server.  I know you can spoof a MAC ID, we do have a company
policy to use our WiFi outside of our network, but this reduces our attack
surface (salesmen and who-knows-what's on their laptops etc...)

Anyone using MAC ID filtering on 2008 R2 DHCP?  If so, how do you handle
mulitple servers and mass import of the mac addresses?

Thanks all,
Devin Meade

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Dell.com down

[Devin Meade]

Okay, let see my choices: (1) fight this or (2) go play football with my son
and team.  Hmmm .. pick this up tomorrow!

On Mon, Oct 17, 2011 at 5:30 PM, Greg Olson  wrote:

> It's dead Jim
>
> -Original Message-
> From: Charlie Kaiser [mailto:charl...@golden-eagle.org]
> Sent: Monday, October 17, 2011 3:30 PM
> To: NT System Admin Issues
> Subject: RE: Dell.com down
>
> Same here. Support.dell.com not available...
>
> ***
> Charlie Kaiser
> charl...@golden-eagle.org
> Kingman, AZ
> ***
>
>
> > -Original Message-
> > From: Devin Meade [mailto:devin.me...@gmail.com]
> > Sent: Monday, October 17, 2011 3:27 PM
> > To: NT System Admin Issues
> > Subject: Dell.com down
> >
> > Hmm ... I can't get to www.dell.com on multiple computers with
> > different
> ISP's.  Seems it
> > not available in the Oklahoma City area.  Anyone else see this?  Maybe
> they run
> > blackberries :-/.
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> > <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Dell.com down

[Devin Meade]

Hmm ... I can't get to www.dell.com on multiple computers with different
ISP's.  Seems it not available in the Oklahoma City area.  Anyone else see
this?  Maybe they run blackberries :-/.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Sherry's Back

[Devin Meade]

Sherry, welcome back!  Maybe we will run into each other the next time you
are in OKC.  We are off of N63rd Street and the Broadway Extension.

Later,
Devin Meade


On Tue, Aug 16, 2011 at 12:43 PM, Sherry Abercrombie <
sabercrom...@nhdallas.com> wrote:

>  Hello everyone, I’m finally back.  After being laid off in April 2010, I
> was unemployed for about 4 months, finally landing a job answering Help Desk
> and eventually as a Network Operator at Radio Shack corporate headquarters.
> Not exactly doing any technical server admin type stuff……this week I started
> a new job as the Facilities/IT Manager at New Horizons Computer Training
> Center – Dallas.  I’ll be over the facilities in Dallas, Fort Worth, Tulsa
> and Oklahoma City.  Will be managing a small team, doing server admin stuff
> and other technical stuff, and access to any training I want to take….oh
> yes, I’m really excited about this job.  So here I am back on the lists and
> very glad to be back.
>
> ** **
>
> ** **
>
> *Sherry Abercrombie | Facilities/IT Manager*
>
> Dallas | Fort Worth | Oklahoma City | Tulsa 
>
> 972.490.5151 x2250  
>
> sabercrom...@nhdallas.com  |
> www.nhcomputerlearning.com <http://www.nhtexas.com/> 
>
> ** **
>
> ** **
>
> --
> This information may contain information that is privileged, confidential
> and exempt from disclosure under applicable law. If you are not the intended
> recipient, you are hereby notified that any disclosure, photocopying or
> distribution of these contents is unauthorized and prohibited. If you have
> received this in error, please notify the sender immediately and destroy all
> copies.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Training (was RE: Error message in logs)

[Devin Meade]

John, I can't follow this list like I used to...maybe this was suggested.  A
few years back I performed a DR test.  I took a backup of one of our domain
controllers restored it to a old PC on a single desktop switch.  The dt
switch never touched the real LAN.  Then I deployed a workstation in the
test domain.  Then restored our exchange server and then upgraded it.  I was
a live copy of our win2000 active directory and a backup of the email
server.  That was an acid test.  I pushed REALLY HARD to get the time to do
this and got it.  This was really before VM's.  This should be much easier
if you can get enough of a machine to run the various servers
simultaneously, as VM's.  Man, I need to do this again...
--Devin

On Mon, Aug 1, 2011 at 11:17 AM, John Aldrich
wrote:

> Let me ask you this... how would you set it up so that you don't run the
> risk of messing up your "real" domain? I'm guessing set up a small LAN and
> keep it disconnected?
>
>
>
> From: James Rankin [mailto:kz2...@googlemail.com]
> Sent: Monday, August 01, 2011 12:15 PM
> To: NT System Admin Issues
> Subject: Re: Training (was RE: Error message in logs)
>
> Training ain't all about money. You can learn most everything you need to
> know about GPOs from a small lab which could be set up on a couple of old
> PCs, coupled with some online docs. I know you also said you were low on
> spare time, but when things are quiet I usually tinker with some test
> stuff,
> which is how I'm trying to learn my XenApp 6.5 skills at the moment.
> On 1 August 2011 17:08, John Aldrich  wrote:
> Agreed. Not ENTIRELY the community, at least. I admit, I am frustrated and
> overloaded here. That being said, is it REALLY too much to ask that we NOT
> continue flogging a particular dead horse? I know I need more training. I
> have no money for said training, and it's extremely frustrating when people
> insist on posting "that's elementary. You should just go get more
> training."
> That sort of reply is NOT helpful.
>
>
>
> From: Jonathan Link [mailto:jonathan.l...@gmail.com]
> Sent: Monday, August 01, 2011 12:03 PM
> To: NT System Admin Issues
> Subject: Re: Training (was RE: Error message in logs)
>
> John, are you starting to notice a pattern here?
>
> You have a problem.  Someone helps you, probably not as well as you'd like,
> or in the manner you like, and offers some unsolicited comment about the
> way
> you ask for help, or your reputation for accepting help, etc.
> You rant.
> Someone explains things.
> You calm down.
>
> This has been a pretty common cycle, and the frequency with which it
> repeats
> should be telling that the fault is not on the community.
> On Mon, Aug 1, 2011 at 11:54 AM, John Aldrich <
> jaldr...@blueridgecarpet.com>
> wrote:
> Thank you, Andrew, for your reasoned words. I am extremely frustrated and
> overloaded with work right now, and when people insist on saying "pay for
> your own training" when I *specifically* requested that we cease flogging
> that particular deceased equine, I lash out.
>
> I would like to apologize to the list in general. However, my point
> remains:
> I have no money, whatsoever, for training. I am doing good to pay my bills
> as it is. Thank you for understanding.
>
> Should conditions change such that I can afford to pay my bills, eat AND
> keep a roof over my head as well as pay for training, I will do so. Please
> let's not continue with "sometimes you just have to pay for your own
> training" for the time being. Please.
>
> This has been a VERY hectic Monday and it's not even half over yet. Sorry
> for any hard feelings. I have tried to take to heart the need to try to
> find
> the answers on my own. Obviously some folks didn't notice that I had not
> had
> much luck searching, but I did try. Thank you.
>
>
>
> From: Andrew S. Baker [mailto:asbz...@gmail.com]
> Sent: Monday, August 01, 2011 11:41 AM
> To: NT System Admin Issues
> Subject: Re: Training (was RE: Error message in logs)
>
> Biting the hands that feed you is always bad policy.
>
> If you insist on taking that approach, you might consider doing so off-line
> so you don't destroy what little sympathy appears to remain for you on this
> list.
>
> Unless, of course, your real goal is just to annoy and create confusion, in
> which case, carry on.
>
> ASB
> http://about.me/Andrew.S.Baker
> Harnessing the Advantages of Technology for the SMB market…
>
>
> On Mon, Aug 1, 2011 at 11:11 AM, John Aldrich <
> jaldr...@blueridgecarpet.com>
> wrote:
> Apparently you didn't read my initial post. I DID Google. I found a page
> that applied to Windows 2000, but supposedly said it applied to 2003 as
> well. Guess what. It didn't. I posted on here and CONTINUED to search. I
> finally found another page that refers to a different KB article that
> explains that it's likely a corrupt local GPO. So, yes, I did do "due
> diligence."  Sorry if I didn't do enough for you or do it fast
> enough! 
>
>
>
>
> -Original Message-
> From: Mayo, Bill [mailto:bem..

Re: Seriously (was RE: Vipre console hangs server on reboot)

[Devin Meade]

HEY SAM: 



On Thu, Jul 28, 2011 at 1:45 PM, Sam Cayze  wrote:

> Seriously I’d rather go back to the bashing.  At least that had topics of
> management, budgeting, morals, professionalism, etc.  (Although I saw LITTLE
> of the latter out of many of you).
>
> ** **
>
> Sam
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Tape backup policies

[Devin Meade]

David,

This is why we moved to online archives only.  It requires more disk space
and periodic review, but disk space is cheap and so is my time!  We had DDS1
tapes written in Palindrome Network Archivist, some from the late 80's or
so, we had DDS2, DDS3, DDS4, DLTIV, DLT S320 and now DLTS4.  We even had
some archive CD's that could not be read, lucky we had offsite copies of the
CD's which were readable.  I guess I can't store them on my dashboard :-).

On Fri, Jun 3, 2011 at 4:32 PM, David Lum  wrote:

> Why not do a one-time restore of really old backups to your newer backup
> medium? That way you can always use your current SW for a restore from any
> time frame.
>
> Dave
>
> -Original Message-
> From: Mike Leone [mailto:oozerd...@gmail.com]
> Sent: Friday, June 03, 2011 9:25 AM
> To: NT System Admin Issues
> Subject: Re: Tape backup policies
>
> On 6/3/2011 9:53 AM, richardmccl...@aspca.org wrote:
> >
> > Here is something I don't recall being discussed...
> >
> > LTO1 may be read by an LTO3 drive.  Our LTO3 tapes supposedly can be
> > read by our new LTO5 drive...
> >
> > What I'm getting at is, keeping "forever" may require moth-balling
> > machines so they can be read if necessary
>
> Or drives .. I have a stand-alone SDLT320 and stand-alone SDLT600 tape
> drive, attached to a server other than my current backup server,
> specifically for the reason of reading old tapes.
>
> It becomes more aggravating when I need an old ArcServe tape, instead of
> more current Networker. That's why I have a separate machine that is a
> Networker storage ndoe, that also has ArcServe installed on it. So I can
> start whichever backup program I need, to do restores.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Tape backup policies

[Devin Meade]

We have a data retention policy driven by lawyers.  Our offsite backups are
tape via Disk-to-Disk-to-Tape.  These tapes are explicitly NOT to be used
for long term retention, ie our tapes are rotated in about a year.  Our
policy drives what is kept long term and short term.  Where they are kept
doesn't matter but we have a separate fileshare with "Permanent Archives"
and "Interim Archives".  The perm archives are kept indefinitely (pretty
much construction drawings only).  Our Interems are kept for various
timeframes based on type - with a max of 5 years ... then they get deleted.
FYI We are considering some online backup systems for offsite DR but we need
more work to pay for it.
hth, Devin

On Fri, Jun 3, 2011 at 8:12 AM, David Mazzaccaro <
david.mazzacc...@hudsonmobility.com> wrote:

>  Hello everyone.
>
> For those who are still backing up to tape…
>
> What do you guys have for tape backup policies?
>
> I’m curious as to how far back you are keeping tapes – 1 year? 5 years?
>
> I’ve typically seen a 10 tape rotation w/ a monthly tape put in 
> offsitestorage.
>
> Is this still common practice?
>
> .
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

OT - Happy Skynet Day

[Devin Meade]

List peeps,

Today is "SkyNet Day" and it becomes "self aware":

From: http://en.wikipedia.org/wiki/Skynet_%28Terminator%29
"Skynet now will be implemented on April 19, 2011 and will begin its attack
against humanity on April 21."

Watch all your machines closely and I hope you are all patched up!

HA!
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Backups/deduplication

[Devin Meade]

We use BE2010 R2 with dedupe on an 18TB array, without major problems.  We
only keep 3 mos of data though.  BE is NOT in the league of Exagrid /
Quantum / HP etc.  I have had jobs hang in the queue - but not that often.
BE is pretty much entry level and works okay.   We looked at Exagrid
extensively and may eventually go to that but for the price BE is works for
us.  It costs much less too.  Our original plan was to deploy BE with Dedupe
and if it wasn't adequate we can re-use the drive array elsewhere (Dell
MD1200) and we may do that in a year or so.

hth, DL Meade

On Tue, Mar 1, 2011 at 9:08 AM, Kramer, Jack  wrote:

> Please god don't use Backup Exec if you have an environment that you want
> to be at all reliable. Mysterious problems with backups hanging forever in
> queue once you hit 9TB or so on your dedup folder, plus size limits and the
> limit of one dedup folder per media server which, as it turns out, can never
> be moved to another media server ever. (Though apparently DoubleTake
> replication has worked to move mine off of an ailing backup server.) Also,
> RAM hungry – but so is any dedup software.
>
> We're now working on a switch to Commvault. Biggest downside there seems to
> be cost but it's looking like one of those "get what you pay for" kind of
> things. I was also very impressed with the Exagrid appliances too – from
> what I remember you just dump a full uncompressed backup to their landing
> area and they take care of all the compression/dedup for you. The College of
> Human Medicine has several of them. Once again, major limitation there is
> cost.
>
> 
> Jack Kramer
> Computer Systems Specialist
> University Relations, Michigan State University
> w: 517-884-1231 / c: 248-635-4955
>
> From: Paul Hutchings 
> Reply-To: NT System Admin Issues 
> Date: Tue, 1 Mar 2011 09:49:35 -0500
> To: NT System Admin Issues 
> Subject: RE: Backups/deduplication
>
> Have a look at Commvault or Backup Exec, possibly NetBackup too.  They will
> all do dedupe to disk within software – you might find it offers a lot more
> flexibility at a lower cost than a hardware appliance, plus lower growth
> costs.
>
> We use Commvault, ask away but in two words, it’s good.
>
> Paul
>
> *From:* Tom Miller [mailto:tmil...@hnncsb.org ]
> *Sent:* 01 March 2011 14:45
> *To:* NT System Admin Issues
> *Subject:* RE: Backups/deduplication
>
>
>
> Arcserve.  I can change though since we are no longer under subscription
> renewal.
>
> >>> "Paul Hutchings"  3/1/2011 9:35 AM >>>
>
> What backup software are you using?
>
> *From:* Tom Miller [mailto:tmil...@hnncsb.org ]
> *Sent:* 01 March 2011 14:32
> *To:* NT System Admin Issues
> *Subject:* Backups/deduplication
>
>
>
> Disclaimer:  I know, I know, it's been on the list before.  I checked the
> archives and didn't see what I really need from you folks.
>
>
>
> I'm in the market for a deduplication device.  My LTO changer died
> recently, so this is a good time to change.  I've been looking at the
> following:
>
>
>
> - Barracuda Backup 890, optional "cloud" storage can be purchased
>
> - EMC DD610
>
> - Exagrid EX 3000/4000
>
> - Overland SnapSAN
>
> - HP Storageworks
>
>
>
> Comments on the above?  I want to do the usual:  point my backup software
> to it, let it run.  I will eventually need a second unit so I can replicate
> to a second location, so replication software/technology is needed.
>
>
>
> We have typical data here:  files, e-mail (not Exchange, so file-system
> only), databases, XenServer VM images, etc.  Currently running about 2 - 3 T
> per full backup.  We retain data for one year before overwrite.
>
>
>
> Any favorites, any to avoid?
>
>
>
> Tom
>
>
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
> --
>
> *MIRA Ltd*
>
>
>
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
>
> Registered in England and Wales No. 402570
>
> VAT Registration  GB 100 1464 84
>
>
>
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 

Re: AutoCAD Remote License Issues

[Devin Meade]

We had exactly the same problem that was solved via login script:
SETX FLEXLM_TIMEOUT 100

Worked for us - is your timeout high enough?

hth, Devin

On Thu, Feb 24, 2011 at 3:25 PM, Roger Wright  wrote:

> Any tips for enabling VPN users to consistently obtain an AutoCAD
> license from the server when connecting via VPN?  My user is unable to
> obtain a license when out of the office but is fine when in the
> office.  She can ping the ADLM server when she's connected via VPN and
> we've enabled the FLEXLM_TIMEOUT setting but it consistently times out
> with the  infamous 1.5.-18 error.
>
>
> Roger Wright
> ___
>
> A friend of mine sold his house this week. He got a pretty good price
> for it, but his landlord was really mad.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Monday morning not-so-funny

[Devin Meade]

Hello all,

Our electric provider, OG&E, calls us at 10 AM saying "We are replacing your
meter now and we will cut your power off in about 1 min".  Our facilities
mgr says "Uh no you don't, you didn't' schedule it".  They say they must do
it.  So we say we need at least 15 min and shame on you for not scheduling
it.  So we have just about everything powered down, when they call back.
They accidentally had the wrong address, it's really the building up the
street under renovation ... and we are so sorry.  So we now start powering
up our systems.  I just had to share this ... you can't make this up!

Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Dedupe - Do you trust it?

[Devin Meade]

We migrated our main file server by backing it up, then restored it to a new
machine using Backup Exec 2010 R2 with DeDuplication months ago.  This
allowed us to (1) perform a litmus test on our backup system and (2) have an
back-out plan if it fails.  Our email is on a database (Exchange), so are
our payroll and billing systems (MS SQL 2005).  That said, we duplicate our
de-duped backups for offiste storage using tape ... in non-deduped /
"rehydrated" format.

DL Meade

On Wed, Feb 16, 2011 at 8:33 AM, Kurt Buff  wrote:

> IBM Tivoli Storage Manager has used the 'incrementals forever' model
> for many years, and in environments from mainframes on down - just not
> with dedupe, though that may now be a feature. The more I play with
> other solutions, the more I miss TSM.
>
> On Wed, Feb 16, 2011 at 04:44, Paul Hutchings 
> wrote:
> > Thanks Andrew, I am already trialling the d2d and dedupe with Commvault
> (our
> > current product).
> >
> >
> >
> > Don’t misunderstand me, I’m not suggesting I’m dealing with
> flat-earther’s
> > and they aren’t suggesting “don’t’ do it”, I just found it a bit of an
> odd
> > stance how they seemed inherantly distrusting of dedupe “because it’s a
> > database” whilst no-one questions the numbers in a financial system that
> is
> > held in a database, or if they do, the assumption is the input or the
> > formulae are wrong, nobody ever questions if the database has stuffed up
> and
> > randomized a value etc.
> >
> >
> >
> > I’ll happily admit myself that I’d still want to take traditional full’s
> > every so often rather than rely on a single full and then “incremental
> > forever”, and I’d still be looking to spool the deduped backups to
> > non-deduped tape.
> >
> >
> >
> > Paul
> >
> > From: Andrew S. Baker [mailto:asbz...@gmail.com]
> > Sent: 16 February 2011 12:07
> > To: NT System Admin Issues
> > Cc: Paul Hutchings
> > Subject: Re: Dedupe - Do you trust it?
> >
> >
> >
> > The basic concepts of data deduplication is used in a lot of places, not
> the
> > least of which are compression algorithms, data encryption, WAN
> > optimization, etc.
> >
> >
> >
> > I think that the technology is mature, and that there's a lot of impetus
> to
> > do it right, in general.
> >
> >
> >
> > Unless they're going to suggest that they don't trust ANY data in
> non-native
> > format, they'll have to concede that they accept all sorts of data
> > abstraction for other reasons on a regular basis.
> >
> >
> >
> > This one saves both time and disk space.
> >
> >
> >
> > You should speak to your favorite vendor in this space and get a pilot,
> so
> > you can see/smell/feel it in action for yourself.
> >
> >
> >
> > ASB (Find me online via About.Me)
> > Exploiting Technology for Business Advantage...
> >
> >
> >
> > On Wed, Feb 16, 2011 at 6:30 AM, Paul Hutchings <
> paul.hutchi...@mira.co.uk>
> > wrote:
> >
> > Just having a discussion with my boss and a colleague about backup
> strategy.
> >
> >
> >
> > They’re a little mistrusting of dedupe on the basis “It’s a database it
> can
> > go wrong”, to which my retort was largely a combination of having to have
> > faith in an established vendor, combined with “If a database gives you a
> > value you assume it’s correct, you don’t think “what if the database has
> > corrupted the value” because you have faith in the checks and balances
> that
> > ensure the data is atomic”.
> >
> >
> >
> > So, what are you views on dedupe when it comes to backups?
> >
> > 
> >
> > MIRA Ltd
> >
> >
> >
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
> >
> > 
> > MIRA Ltd
> > Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> > Registered in England and Wales No. 402570
> > VAT Registration  GB 100 1464 84
> > The contents of this e-mail are confidential and are solely for the use
> of
> > the intended recipient.  If you receive this e-mail in error, please
> delete
> > it and notify us either by e-mail, telephone or fax.  You should not
> copy,
> > forward or otherwise disclose the content of the e-mail as this is
> > prohibited.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> >
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-sof

Re: Dedupe Thoughts?

[Devin Meade]

We have an almost identical setup as Jack's except we have a Dell
MD1200 on RAID6 giving us 18TB of storage.  The client side dedupe is
very nice, our fulls run almost with no network activity.   We get
dedupe on ESXi (no client side dedupe though).

We do D2D2T and it really helps... especially when we can't get to the
office due to a blizzard!

Devin

On Fri, Feb 4, 2011 at 1:31 PM, Kramer, Jack  wrote:
> This is what we do here - I have BE2010r2 with dedup and have my backup
> controller attached to a 10TB array built on a Dell MD1000. It's pretty
> quick and does a great job of dedup - I've eliminated incrementals from my
> schedule and only run fulls now and let dedup handle the overlap. Beware
> the RAM requirements - BE2010r2's min recommended is 8GB with an
> additional 1GB/tb of backed up data for the deduplication option IIRC.
>
> 
> Jack Kramer
> Computer Systems Specialist
> University Relations, Michigan State University
> w: 517-884-1231 / c: 248-635-4955
>
>
>
>
> On 2/4/11 2:27 PM, "Paul Hutchings"  wrote:
>
>>How come you're looking at NAS rather than just shovelling a few 2tb
>>drives in your backup server?
>>
>>I'm looking into doing something very similar myself (we use
>>Commvault/Simpana) and the rule of thumb on disk space, assuming you're
>>not paying per Tb stored, is disk is cheap, and with dedupe rates what
>>they are for average data, you'd be mad not to shovel in as much as you
>>can afford and leave tape as the very last resort.
>>
>>-Original Message-
>>From: Roger Wright [mailto:rhw...@gmail.com]
>>Sent: 04 February 2011 18:08
>>To: NT System Admin Issues
>>Subject: Dedupe Thoughts?
>>
>>I'm looking at some options for a "poor man's" deduplication system for
>>backups.  A Data Domain or Exagrid solution would be preferred but not
>>feasible at this time.
>>
>>We're currently backing up a little over 4 TB to LTO3 tape and have
>>outgrown our backup window, library capacity, and RTO.
>>
>>I'm thinking of using BE 2010's Deduplication option for the engine and
>>something like the Synology DS1511+ with 5 - 2GB drives for 8 TB of
>>storage (w/RAID5 or just a hot spare).  Then I could offload to tape for
>>off-site storage or script replication to another unit at a branch
>>office.
>>
>>Any best practices thoughts for sizing the storage for the deduped data?
>>Does it just depend on the ratio achieved and the storage and the number
>>of backup sets retained?  One nice thing about the Synology system is it
>>can be easily expanded to up to 15 disks.
>>
>>A Data Domain or Exagrid solution would be preferred but not feasible at
>>this time.
>>
>>
>>Roger Wright
>>___
>>
>>"The internet is a great way to get on the net." - Bob Dole
>>
>>~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>  ~
>>
>>---
>>To manage subscriptions click here:
>>http://lyris.sunbelt-software.com/read/my_forums/
>>or send an email to listmana...@lyris.sunbeltsoftware.com
>>with the body: unsubscribe ntsysadmin
>>
>>
>>--
>>MIRA Ltd
>>
>>Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
>>Registered in England and Wales No. 402570
>>VAT Registration  GB 100 1464 84
>>
>>The contents of this e-mail are confidential and are solely for the use
>>of the intended recipient.  If you receive this e-mail in error, please
>>delete it and notify us either by e-mail, telephone or fax.  You should
>>not copy, forward or otherwise disclose the content of the e-mail as this
>>is prohibited.
>>
>>~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>~   ~
>>
>>---
>>To manage subscriptions click here:
>>http://lyris.sunbelt-software.com/read/my_forums/
>>or send an email to listmana...@lyris.sunbeltsoftware.com
>>with the body: unsubscribe ntsysadmin
>>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Was Simple routing now is NEEDED - Sonicwall Pro firmware

[Devin Meade]

Phil,

I just logged into our old snwl account and they have all the old firmware
available for the sonicwall pro.  I can download the prior 11 versions from
6.0.11 through 6.5.04.  The VPN client is available as well.  I am sending
the latest firmware directly.

Devin


On Tue, Jan 25, 2011 at 10:51 AM, Devin Meade  wrote:

> Phil,
>
> I can probably get these off of some old tape from around 2002 or 2003, but
> it could take a while.  Le me know if you need this and I can start the
> process.
>
> Devin
>
> On Tue, Jan 25, 2011 at 9:01 AM, Andrew Laya wrote:
>
>> I have a couple of old firmware files for PRIO200/240 models.  Sent off
>> list.
>>
>> Andrew.
>>
>>
>>
>> On Tue, Jan 25, 2011 at 8:54 AM, Steve Ens  wrote:
>>
>>> Hi phil, it is the original "pro". No other model on it.
>>>
>>> On Monday, January 24, 2011, Phil Brutsche  wrote:
>>> > I've got a firmware archive for some of those old boxes, do you know
>>> > exactly which model this is?
>>> >
>>> > Steve Ens wrote:
>>> >> Corrupted firmware on eight year old Sonicwall...need to test NAT...
>>> it
>>> >> is EOL so Sonicwall won't help me.  If anyone has an old one kicking
>>> >> around, let me know.
>>> >
>>> > --
>>> >
>>> > Phil Brutsche
>>> > p...@optimumdata.com
>>> >
>>> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>>> >
>>> > ---
>>> > To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> > or send an email to listmana...@lyris.sunbeltsoftware.com
>>> > with the body: unsubscribe ntsysadmin
>>> >
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Was Simple routing now is NEEDED - Sonicwall Pro firmware

[Devin Meade]

Phil,

I can probably get these off of some old tape from around 2002 or 2003, but
it could take a while.  Le me know if you need this and I can start the
process.

Devin

On Tue, Jan 25, 2011 at 9:01 AM, Andrew Laya  wrote:

> I have a couple of old firmware files for PRIO200/240 models.  Sent off
> list.
>
> Andrew.
>
>
>
> On Tue, Jan 25, 2011 at 8:54 AM, Steve Ens  wrote:
>
>> Hi phil, it is the original "pro". No other model on it.
>>
>> On Monday, January 24, 2011, Phil Brutsche  wrote:
>> > I've got a firmware archive for some of those old boxes, do you know
>> > exactly which model this is?
>> >
>> > Steve Ens wrote:
>> >> Corrupted firmware on eight year old Sonicwall...need to test NAT... it
>> >> is EOL so Sonicwall won't help me.  If anyone has an old one kicking
>> >> around, let me know.
>> >
>> > --
>> >
>> > Phil Brutsche
>> > p...@optimumdata.com
>> >
>> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> > ~   ~
>> >
>> > ---
>> > To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> > or send an email to listmana...@lyris.sunbeltsoftware.com
>> > with the body: unsubscribe ntsysadmin
>> >
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT: Home RAID enclosure recommendations?

[Devin Meade]

I was planning on looking into this after Christmas but here are a few
things I have run into.

1. The WD "Y" drives (the TLR limited, RAID specific ones ... both RE2
and RE3 version) performed much slower than Hitachi Ultrastar A7K2000,
by far.  This was on WS2003 32bit, WS2008R2 and ESXi 4 using Adaptec
3405 Sata RAID controllers.  The adaptec 3405 / Hitachi Ultrastar
combo has proven itself for us with ~100 users.

2. For another need (5 users, small business that is) I was going to
look into the Terrastation but find many comments of slowness and I
don't like the "OS" being on the HDD's.  But they have a really cool
neat-o feature that if you buy two of these you can set up live
replication.  I was considering this for my Mom and Pop's business -
so it's a little more heavy duty than "plain home use".  But the price
is not much higher than the adaptec controller above and HDD's.  IIRC
they had another feature that you could attach a USB drive for backup.

3. Because of #2, I was looking at the Netgear products.  Netgear had
some sort of replication, I forget what it is, but I don't know if
it's as whiz-bang neat-o as the Buffalo implementation.

4. All my home machines have RAID of some sort using *GASP* Promise
raid controllers and old hard drives that I just had laying around!
But alas I have outgrown the capacity and want to upgrade to something
else.

5. I may just get the cheapo USB/eSata RAID 1 array (Fantom G-Force
MegaDisk) and be done with it!

Again, I was going to look at this in about a week, but there ya go.

hth and Merry Christmas all,
Devin

On Wed, Dec 22, 2010 at 11:18 AM, Raper, Jonathan - Eagle
 wrote:
> "Anyone else using WD desktop drives in RAID and messed with TLER (or 
> regretted not messing with it)?"
>
> Or, for that matter, regretted messing with it?
>
> (I'm sure it was implied, but I figured it worthwhile to ask the 
> pseudo-obvious.)
>
> Jonathan L. Raper, A+, MCSA, MCSE
> Technology Coordinator
> Eagle Physicians & Associates, PA
> jra...@eaglemds.com
> www.eaglemds.com
>
>
> -Original Message-
> From: Carl Houseman [mailto:c.house...@gmail.com]
> Sent: Wednesday, December 22, 2010 12:15 PM
> To: NT System Admin Issues
> Subject: RE: OT: Home RAID enclosure recommendations?
>
> Wow, I can get 4 1TB drives for $64.99? ;)
>
> I've been hearing lately about "Time Limited Error Recovery" (TLER) feature
> in WD drives, which is disabled by default in their "desktop drives".  It
> should be enabled to allow the RAID controller to handle recovery, else the
> RAID controller will timeout the drive and drop it from the set.  I've had a
> pair of WD10EADS green drives in RAID 1 for about a year with no trouble,
> but I'm wondering if I should try to tweak the TLER before there is trouble.
> WD provides no means of tweaking it, but the community has provided a
> utility, WDTLER, that can tweak it on some drives but not others.
>
> Anyone else using WD desktop drives in RAID and messed with TLER (or
> regretted not messing with it)?
>
> Carl
>
> -Original Message-
> From: Matthew W. Ross [mailto:mr...@ephrataschools.org]
> Sent: Wednesday, December 22, 2010 11:52 AM
> To: NT System Admin Issues
> Subject: Re: OT: Home RAID enclosure recommendations?
>
> 3TB Raid on the cheap:
>
> 1x SansDigital 4-Bay enclosure (eSATA or USB) in raid 5 - $169.99
> http://www.newegg.com/Product/Product.aspx?Item=N82E1681659
>
> 4x Western Digital Green 1TB drives - $64.99
> http://www.newegg.com/Product/Product.aspx?Item=N82E16822136490
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Jim Slattery
> [mailto:slattery_...@hotmail.com]
> Sent: Wed, 22 Dec 2010
> 05:56:55 -0800
>
>> I recently started taking a lot of photos and videos, and I'm realizing
> that
>> my current storage solution at home isn't going to cut it very soon.
>>
>> Does anyone have a recommendation for a good price/performance RAID
>> enclosure (or populated solution) for home use? I'd like to have 3-4TB
>> available if possible.
>>
>> Thanks, and Happy Holidays!
>>
>> Jim
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> Any medical information contained in this electronic message is CONFIDENTIAL 
> and privileged. It is unlawful for unauthorized persons to view, copy, 
> disclose, or disseminate CONFIDENTIAL information. This electronic message 
> may contain information that is confidential and/or legally privileged. It is 
> intended only for the use of the individual(s) and/or entity named as 
> recipients in the message. If you are not an intended recipient of this 
> message, please notify the sender immediately and delete this material from 
> your computer. Do not deliver, distr

Re: Old user data

[Devin Meade]

Yes it is the IP of the company and our AUP says so.  All employees sign an
AUP and it goes to their HR file.  We have had employees leave and ask for
their user folder.  The management team goes through it with the AUP in
mind.  We have had instances when the "Exit Team" denied the entire folder.
If they want a copy of their mailbox, well that's easy . . . UMMM NO.
Everything is reviewed against the AUP.  The AUP was made by laywersand
it's iron-clad.  What I have seen leave the firm is pretty benign (scans of
PE certificates, kiddo pictures, etc).

Our dept heads had this argument before.  My contention is why the heck is
IT deciding what data leaves or stays?  Before our we got Religion about
data retention and company Intellectual Property, when someone left the
firm, they would send them to IS to get any files they wanted (I don't have
the time, you do it).  Whatever!  I/we in IT pretty much had to get their
dept head involved anyway due to the nature of the personal folder.

I argued that this is a management and HR issue.  They needed to come up
with a policy.  One that's aligned to our industry's needs and regulations.
I.T. should advise on how to achieve that . . . no more.

So at the end of the day, what they get to take with time is their kids
pictures, professional certifications (if any) and possibly files from
professional associations they are personally members of (ASHRAE is one of
them).  Some of this is so esoteric that we cant tell what it is, therefore
the policy change to bring their dept head into it.  We do use a checklist.



On Wed, Aug 18, 2010 at 12:37 PM, Ziots, Edward  wrote:

>  Isn’t the property created on the companies computers by the employees
> during said work, the property of the company? Why does an employee that
> leaves entitled to any information whatsoever?  Again HR policy will dictate
> what is truly personal, and what is business related, but could be a nice
> avenue for information disclosure… if you aren’t careful.
>
>
>
> Z
>
>
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Network Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org 
>
> Cell:401-639-3505
>
>
>
> *From:* Devin Meade [mailto:devin.me...@gmail.com]
> *Sent:* Wednesday, August 18, 2010 12:03 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Old user data
>
>
>
> We just revamped this process.  The user prep's an exit folder.  The user's
> supervisor makes a pass through it to cull any contract docs etc out.  The
> the IS dept head does the same.  Then we burn a CD or DVD fur the user.
>
> Before this is done, we make a separate image of their workstation, user
> folder and export the mailbox to PST.  We attempt to capture and
> "undisturbed copy" of this data.  This is burned to CD/DVD.  This goes to HR
> and they follow their own data retention policies.  IS maintains no long
> term archives of this data type.
>
> We keep their old workstation for no more than a week or two.  It may have
> CAD templates and Lord-Knows-What-Else.  We change the user's password and
> their dept head is supposed to login as the user and poke around to see if
> they need anything.  This is a subset of a Data Retention Policy, I'm sure I
> forgot something...
>
> Devin
>
> On Wed, Aug 18, 2010 at 10:48 AM, Andrew S. Baker 
> wrote:
>
> Definitely.
>
>
>
> Or give them a DVD.
>
>
>
> We don't allow them access to the former user's location for file storage,
> as that creates too many plausible deniability [1] scenarios.
>
>
>
> *ASB *(My XeeSM Profile) <http://XeeSM.com/AndrewBaker>
> *Exploiting Technology for Business Advantage...*
> * *
>
> Signature powered by WiseStamp <http://www.wisestamp.com/email-install>
>
>
>
> [1] Mix and match posting [2]
>
> [2] Inside joke
>
> [3] Even bigger inside joke
>
>
>
>
>
> On Wed, Aug 18, 2010 at 11:45 AM, Steven M. Caesare 
> wrote:
>
> Contact supervisor and offer to copy data to new location of their choice,
> often as a subdir to them.
>
>
>
> -sc
>
>
>
> *From:* David Lum [mailto:david@nwea.org]
> *Sent:* Wednesday, August 18, 2010 11:43 AM
> *To:* NT System Admin Issues
> *Subject:* Old user data
>
>
>
> How do you guys manage deleting data from employees that have left the
> company, what’s your process?
>
> *David Lum** **// *SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025
> *// *(Cell) 503.267.9764
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Re: Old user data

[Devin Meade]

If you were asking me ... we do have a "Workstation and User Retirement"
checklist.  It has a number of conditions as in if the employee is
terminated and how long the computer will remain in service.  It has Active
Directory checklist, mailbox checklist (ie if the email addy will be
redirected), we run Trend Micro and LANDesk so the that has to be accounted
for etc.  The last step is a secure disk wipe (DBAN etc).  We may (or may
not) divide up these tasks and you must initial any steps you do.
Devin

On Wed, Aug 18, 2010 at 11:18 AM, David Lum  wrote:

>  It that part of an exit checklist? We have a lot of churn here, namely
> contractors but a fair amount of employees over a year…
>
> *David Lum** **// *SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025 *// *(Cell) 503.267.9764
>
>
>
>
>
>
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Wednesday, August 18, 2010 8:48 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Old user data
>
>
>
> Definitely.
>
>
>
> Or give them a DVD.
>
>
>
> We don't allow them access to the former user's location for file storage,
> as that creates too many plausible deniability [1] scenarios.
>
>
>
> *ASB *(My XeeSM Profile) 
> *Exploiting Technology for Business Advantage...*
> * *
>
> Signature powered by WiseStamp 
>
>
>
> [1] Mix and match posting [2]
>
> [2] Inside joke
>
> [3] Even bigger inside joke
>
>
>
>
>
> On Wed, Aug 18, 2010 at 11:45 AM, Steven M. Caesare 
> wrote:
>
> Contact supervisor and offer to copy data to new location of their choice,
> often as a subdir to them.
>
>
>
> -sc
>
>
>
> *From:* David Lum [mailto:david@nwea.org]
> *Sent:* Wednesday, August 18, 2010 11:43 AM
> *To:* NT System Admin Issues
> *Subject:* Old user data
>
>
>
> How do you guys manage deleting data from employees that have left the
> company, what’s your process?
>
> *David Lum** **// *SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025 *// *(Cell) 503.267.9764
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Old user data

[Devin Meade]

We just revamped this process.  The user prep's an exit folder.  The user's
supervisor makes a pass through it to cull any contract docs etc out.  The
the IS dept head does the same.  Then we burn a CD or DVD fur the user.

Before this is done, we make a separate image of their workstation, user
folder and export the mailbox to PST.  We attempt to capture and
"undisturbed copy" of this data.  This is burned to CD/DVD.  This goes to HR
and they follow their own data retention policies.  IS maintains no long
term archives of this data type.

We keep their old workstation for no more than a week or two.  It may have
CAD templates and Lord-Knows-What-Else.  We change the user's password and
their dept head is supposed to login as the user and poke around to see if
they need anything.  This is a subset of a Data Retention Policy, I'm sure I
forgot something...

Devin

On Wed, Aug 18, 2010 at 10:48 AM, Andrew S. Baker  wrote:

> Definitely.
>
> Or give them a DVD.
>
> We don't allow them access to the former user's location for file storage,
> as that creates too many plausible deniability [1] scenarios.
>
>
>
> *ASB *(My XeeSM Profile) 
> *Exploiting Technology for Business Advantage...*
> * *
> Signature powered by WiseStamp 
>
> [1] Mix and match posting [2]
> [2] Inside joke
> [3] Even bigger inside joke
>
>
>
> On Wed, Aug 18, 2010 at 11:45 AM, Steven M. Caesare 
> wrote:
>
>> Contact supervisor and offer to copy data to new location of their choice,
>> often as a subdir to them.
>>
>>
>>
>> -sc
>>
>>
>>
>> *From:* David Lum [mailto:david@nwea.org]
>> *Sent:* Wednesday, August 18, 2010 11:43 AM
>> *To:* NT System Admin Issues
>> *Subject:* Old user data
>>
>>
>>
>> How do you guys manage deleting data from employees that have left the
>> company, what’s your process?
>>
>> *David Lum** **// *SYSTEMS ENGINEER
>> NORTHWEST EVALUATION ASSOCIATION
>> (Desk) 971.222.1025 *// *(Cell) 503.267.9764
>>
>>
>>
>>
>>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: ssh publishing on ISA

[Devin Meade]

ISA 2004 - firewall policy - use the "New server publishing wizard":
Enter the internal server IP address.
Make a custom protocol with TCP / outbound / port 22.
Select "External"

I dont think you want the "Web server publishing wizard" as it requires a
"listener".   Same goes for the other "new rule" types.

After the wizard is done, you should get a policy like this:
Name: Whatever you want
Action: Allow
Protocols: whatever you named it
>From / Listener: External
To: Internal IP address

You can add a schedule if you want.  IIRC the wizard got it 90% right, I
always had to go change one of the parameters to make it work, go figure!  I
did this quite often with Famatech RAdmin, but we don't use this anymore

Hope this helps, Devin


On Mon, Aug 9, 2010 at 3:57 PM, S Powell  wrote:

> yes it is the first rule.
>
>
> Google.com  Learn it. Live it. Love it.
>
>
>
> On Mon, Aug 9, 2010 at 12:47, John Cook  wrote:
> > Did you move that rule to the top?
> > John W. Cook
> > Systems Administrator
> > Partnership for Strong Families
> >
> > - Original Message -
> > From: S Powell 
> > To: NT System Admin Issues 
> > Sent: Mon Aug 09 15:39:55 2010
> > Subject: ssh publishing on ISA
> >
> > Hello World!
> >
> > I'd be grateful to anyone out there who could give me a hand with this,
> >
> > I've got SSH running on a mac (xserve) and I cannot quite figure out
> > how to publish it via our ISA.
> >
> > i've tried a non-web server rule allowing port 22 in and out. and yet
> > this seems to not work.
> >
> > traffic seems to drop and is blocked by the default (enterprise deny
> > all traffic) rule.
> >
> > TIA
> >
> >
> > Google.com  Learn it. Live it. Love it.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> >
> > CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
> attached to or with this Notice is intended only for the person or entity to
> which it is addressed and may contain Protected Health Information (PHI),
> confidential and/or privileged material. Any review, transmission,
> dissemination, or other use of, and taking any action in reliance upon this
> information by persons or entities other than the intended recipient without
> the express written consent of the sender are prohibited. This information
> may be protected by the Health Insurance Portability and Accountability Act
> of 1996 (HIPAA), and other Federal and Florida laws. Improper or
> unauthorized use or disclosure of this information could result in civil
> and/or criminal penalties.
> >  Consider the environment. Please don't print this e-mail unless you
> really need to.
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> >
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Do you all like fewer or more servers?

[Devin Meade]

We have about the same environment.  We keep most services separate for the
reason you state.  We decided to not not virutalilze "large" file servers.
That definition keeps changing though.  Anything else is a candidate for a
VM.  I really like having one (maybe two) services per server, it has helped
up-time greatly.  It also depends on our vendors' requirements (Deltek and
NewForma).  They won't support their respective servers on a VM so they get
a "floor" model (rack that is).  NewForma will change it next year
(Whoopee!).  We plan on Exchange 2010 on ESXI (unless we go to a hosted
solution).  But it will be a dedicated box if I have my say.  We try to
define any server based on what it would cost us in downtime if were to
fail.  Also we define what a slowdown would cost.  We did have Exchange on
an inadequate box - I will never do that again.  That drives the decision to
go to a dedicated high end box or a VM on (for us) slower hardware.

If we had to go back to dedicated boxes for each of our VM's I need more
shelving!  We are up to 10 prod VM's and at least 5 test VM's.  All our
workstation start as a VMware workstation too.

hth, Devin

We do VM the "service" machines though except for domain controllers.  We
will add on of those though.


On Mon, Jul 19, 2010 at 8:54 AM, Holstrom, Don  wrote:

> I only have a hundred users. Been doing this for about 12 years. I always
> thought it was better to have more or less one major server per service.
> That way, if one of our services came down or needed work, I wouldn’t be
> taking down the entire system. I have a buddy with fewer users than me and
> he has 20+ servers. Some in the air (virtual), some on the ground. I have
> seven servers running. Both of us host our web services at an outside firm.
> Both of us use Exchange. An outside firm says we should go with only a
> couple of servers. That sure would make things easier, but…
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: online backup systems

[Devin Meade]

Forget about elephant drive (pun intended).  I never could get the backup to
work on a vista and Two XP boxes for home.  No response from them either.  I
let it expire
Devin

On Mon, Jul 19, 2010 at 10:57 AM, Tobie Fysh
wrote:

> JungleDisk is pretty good in my (non-paid work) experience.
>
>
>
> Tobie
>
>
>
> *From:* Laurence Childs [mailto:laurence.chi...@btinternet.com]
> *Sent:* 19 July 2010 16:13
> *To:* NT System Admin Issues
> *Subject:* online backup systems
>
>
>
> Hi All
>
> I have a requirement from a UK 2 man band for an online backup system
>
> I have looked in to Carbonite but they don't have a reseller / referral
> program for their business offering.
>
> Anybody able to recommend a good, reliable system that is based in the UK?
>
> Regards
>
> Laurence
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~  ~
>
> --
>
> This message has been scanned by MimeCast on behalf of Freebridge Community
> Housing and found to be free of viruses and not SPAM. If you have any
> concerns about the message contents please contact the ICT ServiceDesk.
> --
>  [image: Freebridge Community Housing Logo]   
> [image:
> twitter.com/Freebridge]  [image: Freebridge
> on 
> Facebook]
>  This e-mail (including any attachments), is confidential and intended only
> for the use of the addressee(s). It may contain information covered by
> legal, professional or other privilege. If you are not an addressee, please
> inform the sender immediately and destroy this e-mail. Do not copy, use or
> disclose this e-mail.
>
> E-mail transmission cannot be guaranteed to be secure or error free. The
> sender does not accept liability for any errors or omissions in the contents
> of this message which arise as a result of e-mail transmission. If
> verification is required please request a hard copy version.
>
> Freebridge Community Housing Ltd is a Charitable Industrial and Provident
> Society - Reg No IP29744R Registered with the Housing Corporation - No
> L4463. VAT Registration Number 860762121
>
> Freebridge Community Housing, Juniper House, Austin Street, Kings Lynn,
> Norfolk PE30 1DZ
>
> --
> This email message has been scanned for viruses by Mimecast.
> Mimecast delivers a complete managed email solution from a single web based
> platform.
> For more information please visit http://www.mimecast.com
> --
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<<110071916575804202.gif>><<110071916575803802.gif>><<110071916575804002.gif>>

Re: RANT: STUPID Help Desk! (OT)

[Devin Meade]

Same story here.  We have a check scanning setup which must be on XP.  No
Vista or Win 7.

On Thu, Jun 17, 2010 at 9:33 AM, John Aldrich
wrote:

>  I just got off the phone with the help desk at our bank. We have a new
> Vista computer and the software we use to view our check images no longer
> works because we’re using Vista and Vista is not a supported O/S. Apparently
> it only works on XP, 2000 or 98. L
>
>
>
> Not to mention, they couldn’t tell me how to get an updated version of the
> software! I’ve got a call into the sales rep to explain that they really
> need to get with it, because XP isn’t being sold any more, and 98 and 2000
> are not even **supported** by Microsoft any longer! Sheesh!
>
>
>
> This is the second issue I’ve had with a so-called “help desk” this week.
> I’m not feeling very charitable right now!
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Password policy enforcement after a change

[Devin Meade]

Okay ... we had no problems maybe because we had assigned pw's which the
users could not change.  We only had one VPN user - that never used it :-\
Now we have about 20 VPN users.  We also executed the Group Policy and went
thru AD and checked "force pw change" at around 10PM and announced it many
times.  We had under 100 users at the time so that didn't take too long.
IIRC there were about 5 or 10 users who needed hand holding to change the
pw.

On Tue, Jun 15, 2010 at 4:12 PM, Andrew S. Baker  wrote:

> Ben,
>
> They will have all sorts of problems accessing resources if you changed
> that right now.  :)
>
> The remote people would be especially pleased with you.   Depending on what
> services they were trying to access, they *might* be told to change their
> passwords, but many of the resources would just do weird things to them.
>
> Like Jonathan mentioned, I'd send out a nice memo indicating that passwords
> will need to change before XXX date, and then set the new policy to go into
> effect the day after that.
>
> -ASB: http://XeeSM.com/AndrewBaker
>
>
> On Tue, Jun 15, 2010 at 3:11 PM, Ben Scott  wrote:
>
>> Hello, list,
>>
>>  After years of lobbying on my part, I have finally gotten top
>> management at %WORK% to approve a company password policy, complete
>> with enforcement via Active Directory/Group Policy.  (And there was
>> much rejoicing!)
>>
>>  I know we have people who have never changed their password since
>> they were hired in 2001.  When we suddenly go from "No password
>> expiration" to "X days", at their next logon, they'll be prompted to
>> change their password.  However, until they logoff/logon, the system
>> won't prompt them.  My question is: Will they have trouble accessing
>> resources until they change their password?  I've never tried to use a
>> Windows domain with an 8-year-expired password before.
>>
>>  Win 2000 AD server, Win XP Pro SP3 clients.
>>
>>  (Yes I know Win2K has five weeks until EOL.  I'm working on it.
>> Budget priorities, bad economy, yadda yadda.)
>>
>> -- Ben
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Password policy enforcement after a change

[Devin Meade]

Hmm we did that ~ 2 yrs ago.  We used to assign passwords but *finally* sold
it to upper mgt to do it via Active Dir and the built in complexity policy
(2003 native mode).  It went pretty well, nobody lost access, they had to
change their passwords at next logon.  We announced it well before hand
(many times).  Still had much wailing and gnashing of teeth but it's been
worth it!  We even went through the expiry of passwords and peeps were able
to change them (mostly no hand holding).  We added the accountinfo.dll or
whatever it is called to see when passwords were set on the DC's for each
acct.

On Tue, Jun 15, 2010 at 2:11 PM, Ben Scott  wrote:

> Hello, list,
>
>  After years of lobbying on my part, I have finally gotten top
> management at %WORK% to approve a company password policy, complete
> with enforcement via Active Directory/Group Policy.  (And there was
> much rejoicing!)
>
>  I know we have people who have never changed their password since
> they were hired in 2001.  When we suddenly go from "No password
> expiration" to "X days", at their next logon, they'll be prompted to
> change their password.  However, until they logoff/logon, the system
> won't prompt them.  My question is: Will they have trouble accessing
> resources until they change their password?  I've never tried to use a
> Windows domain with an 8-year-expired password before.
>
>  Win 2000 AD server, Win XP Pro SP3 clients.
>
>  (Yes I know Win2K has five weeks until EOL.  I'm working on it.
> Budget priorities, bad economy, yadda yadda.)
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: basic wiring question

[Devin Meade]

+ 1,000

BTDT Now no voice guys are allowed near our data cables. EVER!  GRRR!

We do all cabling now with a Fluke Cable IQ.

On Mon, May 24, 2010 at 4:45 PM, Phil Brutsche  wrote:

> +1
>
> My coworkers gave me a good ribbing when I spent $1k on a Fluke Networks
> cable qualifier (not a certifier, a qualifier) instead of $50 for some
> random $50 Home Depot piece of s$*&#.
>
> Until they had to use it, that is.
>
> On 5/24/2010 4:26 PM, Raper, Jonathan - Eagle wrote:
> > However, your cabling vendor screwed up and they need to fix and
> > recertify every single drop they’ve done for you like that. IMNSHO, any
> > serious structured cabling contractor will use a CAT5/5e/6/7 etc cable
> > certifier that does WAY more than a simple continuity test. While a $50
> > or $100 Siemens continuity checker is great for a quick and dirty
> > inspection, nothing compares to certification.
>
> --
>
> Phil Brutsche
> p...@optimumdata.com
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: sig pad for Word

[Devin Meade]

Running behind on my ntsysadmin reading, but we use "sign it" from
www.cic.com to sign PDF contract docs.  They might have something for ms
word.
hth, Devin

On Wed, Apr 28, 2010 at 1:46 PM, James Kerr  wrote:

>  Can anyone recommened a inexpensive USB signature pad for signing word
> documents?
>
> James
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

CMAK preventing display of last user name in GUI

[Devin Meade]

We have some common use laptops and we are using the CMAK to deploy VPN to
them.  They are Vista SP2.  I want to to prevent the "User name" field from
pre-populating in the GUI.  It "remembers" the last user name.  I do have a
group policy for the regular login screen, just not the CMAK/VPN window.

I want to prevent peeps from entering their name and checking "remember this
password" on the common use laptops.  Maybe I should try to remove the "save
password" check box.

-Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Internet Policies

[Devin Meade]

I used a "fake DNS" entry for twitter.com and the others that I found in the
ISA log.  I made a new forward lookup zone for each one in our Active Dir
integrated DNS system.  I know it wont block sub-domains but it made the
point.  It has since been removed.  I can use Trend micro officescan if we
want to actively block though.
Devin

On Tue, May 4, 2010 at 1:22 PM, John Aldrich
wrote:

>  I was aware of that, but I was wondering what Devin’s company used. 
> JPersonally, I’d go for either DNS (if there was a blackhole or something
> easily implemented like that) or web filtering appliance.
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Tuesday, May 04, 2010 2:20 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Internet Policies
>
>
>
> They can be blocked via DNS, via Firewalls, via Web Filtering technologies.
>
>
> -ASB: http://XeeSM.com/AndrewBaker
>
>  On Tue, May 4, 2010 at 2:11 PM, John Aldrich <
> jaldr...@blueridgecarpet.com> wrote:
>
> How did you block them? Do you have an appliance or did you put in some
> sort of DNS entries?
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
> *From:* Devin Meade [mailto:devin.me...@gmail.com]
> *Sent:* Tuesday, May 04, 2010 1:21 PM
>
>
> *To:* NT System Admin Issues
> *Subject:* Re: Internet Policies
>
>
>
> Up until last month we blocked all the social networking sites.  Now our
> firm is marketing on them.  We are adjusting our policies for this.  It will
> be on a user-by-user basis though.
> Devin
>
> On Tue, May 4, 2010 at 11:38 AM, John Aldrich <
> jaldr...@blueridgecarpet.com> wrote:
>
> What restrictions, if any, do your organizations place on things like IM or
> social networking sites? I sent out a warning to the office personnel this
> morning regarding the new “IM Virus” and got an email back from the CEO
> basically stating “shouldn’t that be a violation of company policy anyway?”
> and I had to tell him, I knew of no policies regarding that; and that in
> fact, my former supervisor was fully aware of at least one person (who’s
> child is overseas in the military) who used IM on a semi-regular basis.
>
> For this reason, I’m working on coming up with a company policy. I’ve
> looked at the sample template from SANS as well as another one that someone
> sent me off-list. I’m planning on incorporating the best of everything I
> get, so if anyone has any suggested language regarding IM or social
> networking, please let me have it. J
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~<><>

Re: Internet Policies

[Devin Meade]

Also we don't block anything.  We have an AUP and a disclaimer at logon..
We do log all activity and that's explained up front.  We hire professionals
and they are supposed to act that way.  This is an HR issue so IS just
reports lists of visited websites upon request.

On Tue, May 4, 2010 at 12:20 PM, Devin Meade  wrote:

> Up until last month we blocked all the social networking sites.  Now our
> firm is marketing on them.  We are adjusting our policies for this.  It will
> be on a user-by-user basis though.
> Devin
>
>
> On Tue, May 4, 2010 at 11:38 AM, John Aldrich <
> jaldr...@blueridgecarpet.com> wrote:
>
>>  What restrictions, if any, do your organizations place on things like IM
>> or social networking sites? I sent out a warning to the office personnel
>> this morning regarding the new “IM Virus” and got an email back from the CEO
>> basically stating “shouldn’t that be a violation of company policy anyway?”
>> and I had to tell him, I knew of no policies regarding that; and that in
>> fact, my former supervisor was fully aware of at least one person (who’s
>> child is overseas in the military) who used IM on a semi-regular basis.
>>
>> For this reason, I’m working on coming up with a company policy. I’ve
>> looked at the sample template from SANS as well as another one that someone
>> sent me off-list. I’m planning on incorporating the best of everything I
>> get, so if anyone has any suggested language regarding IM or social
>> networking, please let me have it. J
>>
>>
>>
>> [image: John-Aldrich][image: Tile-Tools]
>>
>>
>>
>>
>>
>>
>>
>>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~<><>

Re: Internet Policies

[Devin Meade]

Up until last month we blocked all the social networking sites.  Now our
firm is marketing on them.  We are adjusting our policies for this.  It will
be on a user-by-user basis though.
Devin

On Tue, May 4, 2010 at 11:38 AM, John Aldrich
wrote:

>  What restrictions, if any, do your organizations place on things like IM
> or social networking sites? I sent out a warning to the office personnel
> this morning regarding the new “IM Virus” and got an email back from the CEO
> basically stating “shouldn’t that be a violation of company policy anyway?”
> and I had to tell him, I knew of no policies regarding that; and that in
> fact, my former supervisor was fully aware of at least one person (who’s
> child is overseas in the military) who used IM on a semi-regular basis.
>
> For this reason, I’m working on coming up with a company policy. I’ve
> looked at the sample template from SANS as well as another one that someone
> sent me off-list. I’m planning on incorporating the best of everything I
> get, so if anyone has any suggested language regarding IM or social
> networking, please let me have it. J
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Dell MD1000

[Devin Meade]

We just deployed a file server with a MD1220.  It's on a PowerEdge R610 with
a Perc H800 - no problems since Saturday!
Devin

On Wed, Apr 28, 2010 at 2:33 PM, Richard Stovall  wrote:

> Anyone have one (or more) of the Dell MD1000s?  Any comments, good or ill?
>
> I'm thinking about creating a new file server and this is a relatively
> inexpensive option from a big vendor.
>
> Thanks,
> RS
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Officially Unemployed

[Devin Meade]

Sherry,

I truly wish I knew of an opening in DFW.  I would recommend you in a
heartbeat.  Like others have said, unwind for a week or so and jump back in
the pool.  This happened to me and I got a much better position about 2 mos
later.  That was ... let me count... 13 yrs ago...  Keep a stiff upper lip /
you can do it / GO SHERRY!
Devin

On Mon, Apr 26, 2010 at 10:03 AM, Sherry Abercrombie wrote:

> Well, I was informed this morning that because of consolidation of some
> positions and the new Cisco network equipment that was being brought in, my
> position was being eliminated.  So, as of 9ish this morning I'm officially
> unemployed.  Severance package will end on October 1 this year.  So anyone
> know of any jobs her in the Dallas/Fort Worth area, let me know ;)
>
> --
> Sherry Abercrombie
>
> "Any sufficiently advanced technology is indistinguishable from magic."
> Arthur C. Clarke
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: UPSes

[Devin Meade]

"The Symettra sends a shutdown signal" should really say "The Symettra sends
status to the windows servers and they are set to react to this status".

Hmm must read my own posts before sending...
Devin

On Fri, Apr 23, 2010 at 11:55 AM, Devin Meade  wrote:

> I would agree on the cable issue.  I have a box with "APC Cables don't
> touch upon pain of death" written on it.  That said our Symettra LX is a
> tank.  Ours has a management card and it works with "APC Network Shutdown
> software" which is free on our windows servers.  The Symettra sends a
> shutdown signal to the servers from the management card.  We have had
> stellar support and apc has replaced bad batteries with no hassle.
>
> Devin
>
>
> On Wed, Apr 21, 2010 at 10:19 AM, Angus Scott-Fleming  > wrote:
>
>>  [correcting the gag-me-with-a-shovel apostrophized subject]
>>
>>  On 16 Apr 2010 at 10:37, Andrew S. Baker  wrote:
>>
>>  > APC used to be wy ahead of the pack, but I don't find that to be
>> ture
>> > anymore.  Their quality has gone down a little, and the quality of the
>> other
>> > players in this space have gone up quite a bit.
>> >
>> > I'm fine with Tripplite, APC and CyberPower UPS products in the 500VA to
>> > 3000VA range.
>>
>>  The consensus in the current threads on UPS is "APC is the Cadillac" but
>> that you pay Cadillac prices for them.
>>
>>  One thing that really torques me about APC is their insistence on using
>> custom, non-standard interfaces like the $30+-to-replace RJ-50-to-USB cables
>> they currently use, and the $35+-to-replace non-standard "RS-232" cables
>> they used to use -- why not use a standard USB A-to-B cable like TrippLite?
>> G!
>>
>>  Most modern PCs no longer have RS-232 ports, so refurb units with RS-232
>> cables are off the table for my clients.  Once you add the cost of
>> purchasing and configuring a USB-to-RS-232 adapter, you've lost a good chunk
>> of the  cost savings and there's no guarantee the UPS software will work
>> with it.
>>
>>
>>
>>  --
>> Angus Scott-Fleming
>> GeoApps, Tucson, Arizona
>> 1-520-895-3270
>> Security Blog: http://geoapps.com/
>>
>>
>>
>>
>>
>>
>>
>>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Re: UPSes

[Devin Meade]

I would agree on the cable issue.  I have a box with "APC Cables don't touch
upon pain of death" written on it.  That said our Symettra LX is a tank.
Ours has a management card and it works with "APC Network Shutdown software"
which is free on our windows servers.  The Symettra sends a shutdown signal
to the servers from the management card.  We have had stellar support and
apc has replaced bad batteries with no hassle.

Devin

On Wed, Apr 21, 2010 at 10:19 AM, Angus Scott-Fleming
wrote:

>  [correcting the gag-me-with-a-shovel apostrophized subject]
>
>  On 16 Apr 2010 at 10:37, Andrew S. Baker  wrote:
>
>  > APC used to be wy ahead of the pack, but I don't find that to be
> ture
> > anymore.  Their quality has gone down a little, and the quality of the
> other
> > players in this space have gone up quite a bit.
> >
> > I'm fine with Tripplite, APC and CyberPower UPS products in the 500VA to
> > 3000VA range.
>
>  The consensus in the current threads on UPS is "APC is the Cadillac" but
> that you pay Cadillac prices for them.
>
>  One thing that really torques me about APC is their insistence on using
> custom, non-standard interfaces like the $30+-to-replace RJ-50-to-USB cables
> they currently use, and the $35+-to-replace non-standard "RS-232" cables
> they used to use -- why not use a standard USB A-to-B cable like TrippLite?
> G!
>
>  Most modern PCs no longer have RS-232 ports, so refurb units with RS-232
> cables are off the table for my clients.  Once you add the cost of
> purchasing and configuring a USB-to-RS-232 adapter, you've lost a good chunk
> of the  cost savings and there's no guarantee the UPS software will work
> with it.
>
>
>
>  --
> Angus Scott-Fleming
> GeoApps, Tucson, Arizona
> 1-520-895-3270
> Security Blog: http://geoapps.com/
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

New boss hot on Dell Switches

[Devin Meade]

I have been wanting to replace our aging Dell Switches with HP Procurve for
ages.  Enter a new boss.  So the new boss now wants to replace the Dell
switches with Dell switches.  He says they are half the cost - that's true.
He wants to do it right freaking now with absolutely no research.  So I get
3 min to research it and this email took two.  I get 60 more seconds to do a
detailed comparison.  Crap that sentence just took 15 seconds.  So I am
looking at tech specs and warranty.  THe first thing is the lifetime
warranty from HP Procurve.  I dont really value that so much but it is
there.  The networking equip lifetime for us seems to be around 8 years and
Dell's go to five - HP's are lifetime.   In five years, equiv replacement
equip will be dirt cheap and we will be looking to move to the next
technology anyway.  We need around 200 gigabit ports - stackable etc.  We
are looking at the Procurve 3500  series and Dell Powerconnect 6248 series -
all 48 ports.  I have read pretty much glowing reports of in-the-field
support regarding HP.  We have had a few issues with our Dell PowerConnect
but Dell worked with us with no problem.  One of our 3448 switches was
replaced via priority overnight with little hassle.

Anyone have any compelling reason to spend almost 2X on ProCurve over Dell
PowerConnect?

Thanks!
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: question on cat-6 and 480V together

[Devin Meade]

I spent about 6 mos in the ceiling of our office moving bundles of cat5/6
cables off of florescent ballasts and making sure they were 12-18 inches
away from power circuits.  Also verified that no parallel runs for data and
power were left.  My cable guy said long parallel runs (say ~10ft or more)
are bad due to harmonics introduced via alternating current.  He also said
power and data, if they cross over, should do so at 90 degree angles.  After
doing this we saw a good deal of improvement in the network.  We did use a
Fluke Cable IQ to qualify the runs.  I would serisously fiber - maybe a
switch with fiber uplinks.  Check the local code first, not all
municipalities have up to date codes in force.  Our firm deals with at least
three different NEC's (maybe more).

hth, Devin

On Wed, Apr 7, 2010 at 7:29 AM, Steven M. Caesare wrote:

> It's actually the opposite.
>
> If at all possible, try to cross electrical cables, and signal cables
> (including UTP) at right angles.
>
> The magnetic lines of flux induce more signal noise on parallel
> conductors than it does perpendicular conductors.
>
> Now, a CAT 5/6 cable running on top of fluorescent fixtures... all bets
> are probably off. The wiring and ballasts inside those could be oriented
> all over the map.
>
> -sc
>
> > -Original Message-
> > From: David W. McSpadden [mailto:dav...@imcu.com]
> > Sent: Wednesday, April 07, 2010 8:26 AM
> > To: NT System Admin Issues
> > Subject: RE: question on cat-6 and 480V together
> >
> > I thought the actually problem with electrical currents and network
> cable was
> > (Pun intended) crossing the streams.  What I mean to say is that as
> long as
> > you run the cables parallel to each other throughout the line the
> affect is
> > very minimal with regards to depreciated signal strength but if you
> were to
> > wrap one are the other or cross them the electric current would act as
> a
> > magnetic and suck the signal out of the cable
> > This is very tricky stuff you are wanting to try but I think that you
> could pull it
> > off but test it first.  You may have to run your cable the full 18
> inches apart
> > from electrical...
> >
> >
> > -Original Message-
> > From: Eldridge, Dave [mailto:d...@parkviewmc.com]
> > Sent: Wednesday, April 07, 2010 8:18 AM
> > To: NT System Admin Issues
> > Subject: RE: question on cat-6 and 480V together
> >
> > I know it's amazing it might just work fine. :) Lucky I do have an
> excellent
> > cable guy that is also researching this. We will have shielded,
> outdoor rated
> > cat6E with some sort of lightning protection. This will be extended
> thru
> > May/June and this is Colorado. I will looking into separation even by
> a few
> > inches.
> >
> > -Original Message-
> > From: Raper, Jonathan - Eagle [mailto:jra...@eaglemds.com]
> > Sent: Wednesday, April 07, 2010 6:12 AM
> > To: NT System Admin Issues
> > Subject: RE: question on cat-6 and 480V together
> >
> > Not best practice, but how many of our cable installations actually
> are
> > installed according to best practice? I've had to get on cabling
> cntractors for
> > laying cable directly on top of a 277v fluorescent fixture... *sigh*
> (I got a new
> > cabling contractor!)
> >
> > I've never tried what you're being asked to do, but here are my
> thoughts...
> >
> > As for your specific situation, it may work just fine. Ideally you'd
> want to have
> > them separated by at least several inches, if possible. I'd probably
> specify
> > shielded Cat6, outdoor rated cable to be on the safe side. Also, there
> may be
> > a specific cable type for suspended cable runs.
> > Finally, I'd consider lightning protection on both ends once inside
> the
> > building, in order to protect your equipment.
> >
> > Jonathan L. Raper, MCSE
> >
> > Sent from my Windows Mobile (r) enabled Smartphone. Please excuse
> > brevity & any misspellings.
> >
> > 
> > From: Eldridge, Dave 
> > Sent: Wednesday, April 07, 2010 7:55 AM
> > To: NT System Admin Issues 
> > Subject: OT: question on cat-6 and 480V together
> >
> > I am being told that one of our MRI machines is temporarily moving to
> a
> > trailer out on the street and they want to pull overhead a cat-6 and
> 3phase
> > 480V together. Way out of my league. Anyone see any noise issues with
> > these tied together? Anything else I'm missing?
> > thanks
> >
> >
> > This e-mail contains the thoughts and opinions of the sender and does
> not
> > represent official Parkview Medical Center policy.
> >
> > This communication is intended only for the recipient(s) named above,
> may
> > be confidential and/or legally privileged: and, must be treated as
> such in
> > accordance with state and federal laws. If you are not the intended
> recipient,
> > you are hereby notified that any use of this communication, or any of
> its
> > contents, is prohibited. If you have received this communication in
> error,
> > please return to sender and delete the messag

Re: recover initialized drive

[Devin Meade]

Does the drive have mission critical data on it?  Trying to recover the
drive with lowcost/free solutions just may be destructive.  That's your call
though.  Decide how important it is ... if it warrants it you might just
send it off to Ontrack.  We did this many moons ago and they got all the
data.

hth, Devin

On Tue, Apr 6, 2010 at 8:56 AM, Ben Scott  wrote:

>  You could also try gpart ("guess partitions"), which is a Linux/Unix
> tool.  It's included on many "live CDs", such as SystemRescueCD
> (http://www.sysresccd.org/).
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: SunGard

[Devin Meade]

Back in the early 90's when I worked at a fortune 500 firm (Kerr-McGee), we
used a Sunguard site in Philly, PA do perform DR tests every 6 mos.  Pack-up
a ton of 3480/3490 tapes and off our staff went.  This was for a IBM
3090-400J (??) mainframe I was a lowly grunt at that time in the data
center.  Those weekends always made for some shall we say colorful /
spirited long-distance phone calls.  Heh, fun times!

On Wed, Mar 31, 2010 at 8:56 AM, John Aldrich
wrote:

>  Anyone heard of SunGard? Got cold-called by them regarding their
> “availability” / data / business-continuity services and before I talk much
> to them, I want to make sure they’re 1) legitimate and 2) not overpriced.
> J
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Adaptec RAID 3405 Any used this raid card?

[Devin Meade]

Sorry, running behind on reading this list.  We have a few of these but only
on Server 2003 32 bit.  They are are better than consumer grade...  I
consider their feature set "entry level business".  They run VERY VERY HOT,
get an exhaust fan.

hth Devin

On Mon, Mar 22, 2010 at 3:04 PM, jgarciaitl...@gmail.com <
jgarciaitl...@gmail.com> wrote:

> Adaptec RAID 3405
> Does this work windows x64 2003 or 2008, it I see only 2003 2008 and xp x64
>
> I don't see x64 version for a server os.
> I see this " 17 Mar 2010 Adaptec RAID Driver v5.2.0.17335 for Windows,
> Microsoft Certified AACRAID Driver v5.2.0.17335 for Windows Server 2008,
> Windows 7, Vista, Server 2003, and XP x64, Microsoft Certified   "
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Blackberry issues today?

[Devin Meade]

Thanks Don, Dave, Kathleen and David.  I just got through - 45 min was the
sweet spot.

On Mon, Mar 29, 2010 at 3:10 PM, Orland, Kathleen wrote:

>  All OK here (Toronto, Canada).
>
> - Original Message -
> *From:* Don Guyer 
> *To:* NT System Admin Issues 
> *Sent:* Monday, March 29, 2010 3:55 PM
> *Subject:* RE: Blackberry issues today?
>
>  Good here (Verizon, near Philadelphia).
>
>
>
> Don Guyer
>
> Systems Engineer - Information Services
>
> Prudential, Fox & Roach/Trident Group
>
> 431 W. Lancaster Avenue
>
> Devon, PA 19333
>
> Direct: (610) 993-3299
>
> Fax: (610) 650-5306
>
> don.gu...@prufoxroach.com
>
>
>
> *From:* David Mazzaccaro [mailto:david.mazzacc...@hudsonhhc.com]
> *Sent:* Monday, March 29, 2010 3:50 PM
> *To:* NT System Admin Issues
> *Subject:* RE: Blackberry issues today?
>
>
>
> Zero problems that I am aware of.
>
> (Sprint/New England).
>
>
>
>
>  --
>
> *From:* Devin Meade [mailto:devin.me...@gmail.com]
> *Sent:* Monday, March 29, 2010 3:42 PM
> *To:* NT System Admin Issues
> *Subject:* Blackberry issues today?
>
> I have been on hold with BES support for over 30 min now.  That's never
> happened before (to me).  I don't see any newsgroup banter that BB is having
> issues.  Anyone having issues today?  Our BES is working, but I am holding
> for a minor problem with accepting appointments on the hand-held.
>
> Thanks... Devin
>
>
>
>
>
>
> .
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Blackberry issues today?

[Devin Meade]

I have been on hold with BES support for over 30 min now.  That's never
happened before (to me).  I don't see any newsgroup banter that BB is having
issues.  Anyone having issues today?  Our BES is working, but I am holding
for a minor problem with accepting appointments on the hand-held.

Thanks... Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Server 2008 R2 event log limits thoughts

[Devin Meade]

So we have a brand new 2008 R2 server.  This will be a file server.  Our
current 2003 SP2 file server has file auditing on, but was disabled due to
NewForma Project Center.  This is a unique software for architectural firms
that integrates with yet another special piece of software for architectural
firms . . . Deltek Vision which is our billing system.  To summarize
NewForma, it constantly accesses the files and indexes them.  All the frikin
time.  That's why I had to disable file auditing.  There would be 10
bazillion entries from NewForma and then one user entry in the security log
. . . and with the limits on 2003 event log size, we got about 8-12 hours of
auditing.  Now with 2008 R2 I can audit only certain users/groups.  So I can
exclude (I think) this domain service account from auditing (sweet!).  I
plan on once again, auditing file access by the users.  I plan on seeing how
much logging is generated and then adjusting the max log size accordingly.

With the improvements in the event logging system(s) in 2008 R2 in mind, any
thoughts or reco's on this?

Thanks, Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Archive data

[Devin Meade]

We just donated the equipment that had PNA 2.0f on it.  It had about 1/2
inch of dust on it.  Some old DDS tape drives on a parallel port/SCSI
adapter on a DOS 5.0 box (486/33).  IIRC, it was licensed on how much
storage was on your Netware server (100MB packs?).  I remember the restore.
It **REALLY HELPED** if you knew the path and filename, else you could  all day.

On Mon, Feb 22, 2010 at 4:47 PM, Erik Goldoff  wrote:

>  Ah yes, Palindrome ... back in the day we used the Palindrome Network
> Archivist, it used a Tower of Hanoi automatic tape rotation scheme ...
> that's one that I miss nowadays.
>
>  Erik Goldoff
>
> *IT  Consultant*
>
> *Systems, Networks, & Security *
>
> '  Security is an ongoing process, not a one time event ! '
>
>
>  --
> *From:* Sherry Abercrombie [mailto:saber...@gmail.com]
> *Sent:* Monday, February 22, 2010 5:40 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Archive data
>
> Actually, we did this once, about 15 years ago with what has become Backup
> Exec.  At that time it was Palindrome PNA or something like that, was bought
> several times, and is now BE.  It had a feature that you could select that
> would backup a file, and based on age that you pre-set, after successful
> backup, zero-byte the file.  The file name was still on the network, but it
> was zero bytes in size.  If it was needed you had to go to tape to restore.
>
>
> Like I said, we only did this once, and ended up having to restore all the
> files ;).  It doesn't appear that this feature has made it through all the
> changes in ownership and versions because BE doesn't have this it that I can
> find..
>
> On Mon, Feb 22, 2010 at 4:32 PM, Erik Goldoff  wrote:
>
>>  sorry, nope ... looked into an optical archiving system that left a stub
>> in place that automatically retrieved a file from a nearline optical
>> jukebox, but it was slow and pricey, and this was about 5 years ago.
>>
>>  Erik Goldoff
>>
>> *IT  Consultant*
>>
>> *Systems, Networks, & Security *
>>
>> '  Security is an ongoing process, not a one time event ! '
>>
>>
>>  --
>>  *From:* David Lum [mailto:david@nwea.org]
>> *Sent:* Monday, February 22, 2010 4:09 PM
>>
>> *To:* NT System Admin Issues
>> *Subject:* RE: Archive data
>>
>>   Wow - nobody?
>>
>>
>>
>> *From:* David Lum [mailto:david@nwea.org]
>> *Sent:* Thursday, February 18, 2010 8:18 AM
>> *To:* NT System Admin Issues
>> *Subject:* Archive data
>>
>>
>>
>> Do any of you guys have an automated method for migrating old, unused user
>> data off your primary servers? I’m talking about data users don’t want to
>> have deleted, but they maintain for “I might need it someday” purposes.
>>
>>
>>
>> To accommodate this I would think a cheap RAID1 NAS should be sufficient,
>> there is no need for high-speed, multiple user access. I’m thinking it would
>> be a very cheap way to pull a TB or so off our SAN….
>>
>> *David Lum** **// *SYSTEMS ENGINEER
>> NORTHWEST EVALUATION ASSOCIATION
>> (Desk) 971.222.1025 *// *(Cell) 503.267.9764
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>
>
> --
> Sherry Abercrombie
>
> "Any sufficiently advanced technology is indistinguishable from magic."
> Arthur C. Clarke
> Sent from Keller, TX, United States
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Has anyone seen BSOD's when applying MS10-015 Patch for Windows Kernel

[Devin Meade]

I saw this 
article.
I deployed it to our test group and they are just fine.  This is 9 XP SP3
boxes and 19 Vista SP2 boxes.  They all have Office 2007 SP2.  We will
deploy to all remaining boxes overnight tonight.
Devin

On Thu, Feb 11, 2010 at 10:04 AM, Ziots, Edward  wrote:

>
>
> Getting some chatter at my workplace about reports of possible BSOD with
> MS10-015 being applied to machines, can anyone confirm what you are seeing
> from Windows XP, Vista or 7 with this patch or Windows 2000-2008?
>
>
>
> Thanks
>
> Z
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Too many replies causes Outlook to not send???

[Devin Meade]

We use a low cost ISP and they limit the total number of emails for each
POP3 account.  The ISP is omnis, they verified that it was an antispam
tactic.  It was set to 200 emails per 24 hr period.  They bumped ours up
some.  I don't remember the failure message but it wasn't very informative.
hth, Devin

On Thu, Jan 21, 2010 at 7:37 AM, John Aldrich
wrote:

>  I’ve noticed that on messages where there has been an extended email
> conversation, after a certain number of replies back and forth, Outlook will
> error out on sending. Talking Outlook 2007 here. I’ve seen it on my Outlook
> and on at least one user’s outlook where he’s emailing back and forth with
> his wife. Even if you trim the quotes, it refuses to send. This is using POP
> email, btw. Has anyone else seen this and does anyone have a fix for it,
> other than starting a new email?
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Required Certs = Study Time at Work?

[Devin Meade]

*

*You can get a "Certified Application Security Specialist" here:
http://www.asscert.com/

No study time needed and a free logo to boot!


On Tue, Jan 12, 2010 at 4:25 PM, Jonathan Link wrote:

> 8 days a week
> Is not enough to show I care.
>
> On Tue, Jan 12, 2010 at 4:47 PM, Sean Martin wrote:
>
>> We're technically allotted 1 hour of study time per day. While I don't
>> think anyone in management would look down on someone for utilizing that
>> time, current workload and productivity expectations generally turn that 8
>> hours a week into a fantasy rather than a reality.
>>
>> The problem I run into is having the necessary resources to suit my
>> studies. I've just recently started on the MCITP for  2008 Enterprise Server
>> Administration, and it became immediately apparent that without the
>> availability of VMWare (at home), I wouldn't gain nearly as much from the
>> study material. We don't have the same virtualization resources available
>> for study use at work so I opt to spend my own time studying.
>>
>> - Sean
>>
>>  On Tue, Jan 12, 2010 at 12:35 PM, Jon D  wrote:
>>
>>> I'm curious for those whose company requires them to get
>>> certifications, if the company also gives them time to study at work.
>>> One of the partners where I work wants me to get a new certification
>>> that's probably 1,000-1,400 hours of study time.
>>> Is it too much to ask for an hour a day of study time at work or no?
>>>
>>>
>>>
>>> Thanks in advance for any insight.
>>> Jon
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>> .
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>>> ~   ~
>>>
>>
>>
>>
>>
>>
>>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Win7 God mode?

[Devin Meade]

Vista Business 32 Bit SP2 w/ latest patches.

It works as local admin off the C drive.  Also tested as non admin under the
users Documents and it works but the applets are still blocked.

Devin

On Tue, Jan 5, 2010 at 9:43 AM, David Lum  wrote:

>  Anyone?
>
> http://news.cnet.com/8301-13860_3-10423985-56.html
>
> *David Lum** **// *SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025 *// *(Cell) 503.267.9764
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: 2003 Server R2

[Devin Meade]

Hence the old joke that disk two was "R2D2".  Couldn't resist.
Devin

On Tue, Dec 22, 2009 at 1:25 PM, Jeff Bunting wrote:

> Unless MS has changed this, disc 1 of  R2 is plain old Windows 2003.  Disc
> 2 has the R2 components, so you could just install disc 1 and not have to
> extend the schema immediately.
>
> Jeff
>
>
>
> On Tue, Dec 22, 2009 at 10:36 AM, David Lum  wrote:
>
>>  Scenario: Domain and forest are 2003 Server (non R2)
>>
>>
>>
>> I can no longer download 2003 Server from MVLS, 2003 R2 is the oldest I
>> can get. I need to stand up a new DC and 2003 R2 requires extending the
>> schema. The powers that be are likely ask me what is to be gained from
>> extending the schema other than being able to stand up a newer OS’d DC.  I
>> found the changes here:
>>
>> http://technet.microsoft.com/en-us/library/cc755834(WS.10).aspx
>>
>>
>>
>> I need to answer “why” with something other than “because it’s newer”.
>>
>>
>>
>> I also have a desire to go to 2008 DC’s in the near future but I will need
>> to make a business case for that as well (2008 R2 AD recycle bin is a good
>> one but I’ll want more ammo).
>>
>> *David Lum** **// *SYSTEMS ENGINEER
>> NORTHWEST EVALUATION ASSOCIATION
>> (Desk) 971.222.1025 *// *(Cell) 503.267.9764
>>
>>
>>
>>
>>
>>
>>
>>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: looking for free helpdesk solution

[Devin Meade]

We were going to do an eval of www.sysaid.com in the next month or two.
IIRC it was very customizable.  It's been a while since the demo :-).  It
had teaming and quite a bit for free or very low cost.
hth, Devin

On Tue, Dec 22, 2009 at 1:56 PM, Kim Longenbaugh
wrote:

> I dune go to places like that.
>
> -Original Message-
> From: Phillip Partipilo [mailto:p...@psnet.com]
> Sent: Tuesday, December 22, 2009 1:31 PM
> To: NT System Admin Issues
> Subject: RE: looking for free helpdesk solution
>
> Be forewarned, once you get involved with Spiceworks, they will spam
> your inbox vigorously.  Has anyone here actually been to a Spiceworld?
>
>
> Phillip Partipilo
> Parametric Solutions Inc.
> Jupiter, Florida
> (561) 747-6107
>
>
> -Original Message-
> From: Jeff Johnson [mailto:jjohn...@hydraflowusa.com]
> Sent: Tuesday, December 22, 2009 11:17 AM
> To: NT System Admin Issues
> Subject: RE: looking for free helpdesk solution
>
> I think this one is overkill for you, but anyone looking for a "full
> suite" of
> items for their job, you just can't beat this.  Plus it's FREE!
> There is
> a built in help desk.
>
> http://www.spiceworks.com/
>
>
> Jeff Johnson
> Systems Administrator
> 714-773-2600 Office
> 714-773-6351 Fax
>
>
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Tuesday, December 22, 2009 7:38 AM
> To: NT System Admin Issues
> Subject: Re: looking for free helpdesk solution
>
> http://www.liberum.org/
>
> On Tue, Dec 22, 2009 at 02:26, Laurence Childs
>  wrote:
> > Hi All
> >
> > i have been supporting a couple of local organisations for a few years
> now
> >
> > recently i was made redundant and have expanded the portfolio of
> customers that i support
> >
> > I'm looking for some way of logging support tickets that my customers
> raise so that i can track them and also perhaps report on them at the
> end of the month
> >
> > as I'm a small organisation i need something free, or as close to as
> possible
> >
> > i do remember something from a few years ago that was web based that
> ran on a local server with an MS access database back end but can't find
> it when searching the Internet recently
> >
> > if anybody knows of anything that may fit the bill could they point me
> in the right direction?
> >
> > thanks
> >
> > Laurence
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> --
> If this email is spam, report it here:
> http://www.onlymyemail.com/view/?action=reportSpam&Id=ODEzNjQ6MTAyMjg3Nj
> c4MjpwanBAcHNuZXQuY29t
>
>
>
>
> THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
> AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS
> INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
> COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
> IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
> NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
> FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Consultant PC on your network

[Devin Meade]

We did what Terry did with spare desktops.  Also setup wired and wireless
internet only access outside our firewall.  So far, no exceptions have been
required.  Our policy is very strict and we have separate labels on the
conference jacks for company equipment and for outside equipment - also have
the wireless SSID and pw on a card next to the phones.


On Mon, Dec 7, 2009 at 11:05 AM, Terry Dickson
wrote:

> We have to have Laptops for them, we are not allowed to let equipment from
> outside our org to attach to our wire without great exception.  We currently
> have one multi-million dollar project and those consultants each have a
> "Project" Laptop to use.  They hate that because they usually have their own
> also.  But there is a public wireless that in most locations they can
> connect to with their personal computers.
>
>
>
> -Original Message-
> From: David Lum [mailto:david@nwea.org]
> Sent: Monday, December 07, 2009 10:45 AM
> To: NT System Admin Issues
> Subject: Consultant PC on your network
>
> What process do you guys use for allowing a consultant to put their PC on
> your "wire"? Surely there are some questions needing to be asked, like does
> it have AV and is patched, probably need to make sure it's not running some
> DHCP or other service that might disrupt your network, right?
>
> David Lum // SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025 // (Cell) 503.267.9764
>
>
>
>
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Wtf! [Message clipped]

[Devin Meade]

Yeah, me.  But just for the "Google Public DNS" messages though, weird.

On Thu, Dec 3, 2009 at 3:49 PM, Steven Peck  wrote:

> wtf?  [Message clipped]
>
> Anyone else getting a bunch of gmail messages as [Message clipped]
> click to read full message?
>
> Steven
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Freakin mondays.

[Devin Meade]

FWIW we put a 5 min UPS on all workstations 2 months ago.  I explained many
times that it allows you to SAVE your (#*$)@  FILE when the POWER GOES OUT.
NO MORE!

We then had a wind storm that killed power for about 2 blocks around us for
about 12 hours.  It was totally dark in the office.  Major cloud cover and
nobody could see to avoid the walls.  I meander around (with flashlight) and
see about half the users working away IN THE DARK.  Some with flashlights on
their keyboards.  Geez.  I go watch the server shut down automatically.  Oh
Joy.

-Devin, BOFH and stuff.


On Mon, Nov 23, 2009 at 11:39 AM,  wrote:

>
> We too use APC...
> -
> RMc
>
> "Ben Schorr"  wrote on 11/23/2009 10:34:24 AM:
>
>
> > What brand are you using?  We’ve had almost no problems at all with
> > American Power Conversion over the last 20 years – other than
> > needing to replace the batteries every few years, as expected.
>
> >
> > Ben M. Schorr
> > Chief Executive Officer
> > __
> > Roland Schorr & Tower
> > www.rolandschorr.com
> > b...@rolandschorr.com
> > Twitter: http://www.twitter.com/bschorr
> >
> > From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
> > Sent: Monday, November 23, 2009 6:20 AM
>
> > To: NT System Admin Issues
> > Subject: RE: Freakin mondays.
> >
> >
> > OTOH, whenever we get a brown-out or sag, we almost always have one
> > or more UPSs fail.  I was told that was the difference between a $60
> > UPS and a $450 UPS.  (The big ones make nice space heaters for
> > winter, though...)
> > --
> > Richard D. McClary
> > Systems Administrator, Information Technology Group
> >
> > ASPCA®
> > 1717 S. Philo Rd, Ste 36
> > Urbana, IL  61802
> >
> >
> >
> > "Raper, Jonathan - Eagle"  wrote on 11/23/2009
> > 10:16:21 AM:
> >
> > > Wax on….wax off… J
> > >
> > > Yeah, I’d have them order a new UPS too, probably…
> > >
> > > If the existing UPS didn’t last 5 minutes, then he must have a
> > > massive PC, an OLD UPS, a basically dead battery, or the software is
> > > set to shut the system down prematurely….
> > >
> > > We consistently get 20 minutes of runtime (or more) from a BackUPS
> > > 750 ES for our desktop PCs…that model is a couple of years old
> > > too…and they cost less than $100…
> > > Jonathan L. Raper, A+, MCSA, MCSE
> > > Technology Coordinator
> > > Eagle Physicians & Associates, PA
> > > jra...@eaglemds.com
> > > www.eaglemds.com
> > >
> > > From: Andrew Levicki [mailto:and...@levicki.me.uk]
> > > Sent: Monday, November 23, 2009 11:03 AM
> > > To: NT System Admin Issues
> > > Subject: Re: Freakin mondays.
> > >
> > > Breathe in, ...
> > >
> > > ... and breathe out.
> > >
> > > Hey if this dude wants a massive APC box under his desk, tell him to
> > > get it signed off. After all, all you got to do is plug it in and
> > > walk away (could install the software if he asks nicely).
> > >
> > > And breathe in, ...
> > >
> > > ... and breathe out.
> > > 2009/11/23 Phillip Partipilo 
> > > Trying my hardest to not be too abrasive here.  This sort of junk
> always
> > > happens on Mondays.  This dork is complaining about a machine going
> down
> > > because the power went out for 5 minutes.  The UPS is meant for power
> > > flickers.  Come on man, our power company, Florida Power and Light, ie,
> FPL,
> > > is well known to be Frequent Power Loss.  I hate Mondays.
> > >
> > >
> > > Phillip Partipilo
> > > Parametric Solutions Inc.
> > > Jupiter, Florida
> > > (561) 747-6107
> > >
> > >
> > >
> > >
> > >
> > > THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
> > > AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS
> > > INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
> > > COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
> > > IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
> > > NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
> > > FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER.
> > >
> > >
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > > ~   ~
> > >
> > >
> > >
> > >
> > > Any medical information contained in this electronic message is
> > > CONFIDENTIAL and privileged. It is unlawful for unauthorized persons
> > > to view, copy, disclose, or disseminate CONFIDENTIAL information.
> > > This electronic message may contain information that is confidential
> > > and/or legally privileged. It is intended only for the use of the
> > > individual(s) and/or entity named as recipients in the message. If
> > > you are not an intended recipient of this message, please notify the
> > > sender immediately and delete this material from your computer. Do
> > > not deliver, distribute or copy this message, and do not disclose
> > > its contents or take any action in reliance on the information that
> > > it contains.
> > >
> > >
> >
> >
> >
> >
>
>
>
>
>
>

~ Finally, powerful endpoint securit

Compaq nc6400 Laptop OEM ISO download?

[Devin Meade]

HP Compaq NC6400 w/ a bad hard disk.  It has a recovery partition, but we
have no OEM CD's.  I want to swap the HDD out.  Is there a download from HP
on this?  I could not find anything but drivers and utilities.  Maybe I can
clone the recovery partition (which seems to be good) to a new disk.

Thanks, Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: WSJ Reporter thinks IT departments should allow users to install whatever

[Devin Meade]

He will now!

On Wed, Nov 18, 2009 at 5:12 PM, Steven M. Caesare wrote:

>  I suspect he may have all sorts of network performance issues as well…
>
>
>
> -sc
>
>
>
> *From:* Webster [mailto:carlwebs...@gmail.com]
> *Sent:* Wednesday, November 18, 2009 2:21 PM
>
> *To:* NT System Admin Issues
> *Subject:* RE: WSJ Reporter thinks IT departments should allow users to
> install whatever
>
>
>
> I liked how the WSJ IT staff refused to comment for the article.
>
>
>
>
>
> Webster
>
>
>
> *From:* Jonathan Link [mailto:jonathan.l...@gmail.com]
> *Subject:* WSJ Reporter thinks IT departments should allow users to
> install whatever
>
>
>
> Discuss:
>
>
> http://online.wsj.com/article/SB10001424052748703567204574499032945309844.html
>
>
>
> I believe this is more an indictment of the low quality of journalism
> nowadays.  It's little more than a rant on his employer's IT policies.  In
> no instance does he discuss the measured effect of IT policies might have
> within an organization.  He makes vague allusions to the productivity gains
> users could acheive if allowed to use any software they felt necessary to do
> their job.  Near the end of the article he does finally discuss some of the
> valid reasons for constraining users ability to install shiny new software
> in order to be more "productive."
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Portal laptop storage

[Devin Meade]

It's not for a school, its for IT training in a corporate environment.

We use Dell and they have tons of them, never even thought about Dell.  A
little pricey though.

This may work:
http://accessories.us.dell.com/sna/products/Security_and_Protection/productdetail.aspx?c=us&l=en&cs=04&sku=A2257322

Many thanks Sam,
Devin

On Fri, Nov 13, 2009 at 4:25 PM, Sam Cayze  wrote:

>  Check with you PC Provider, I am pretty sure both Apple and Dell stock
> these - you might get the best gain if you are using an educational discount
> from these vendors.  (Making an assumption this is for a school...)
>
>
> *Sam Cayze*
> Information Technology Administrator
> *ROLLOUTS**
> **ONSITE • ON DEMAND**
> *
> LinkedIn Profile <http://www.linkedin.com/in/samcayze>
> Facebook Profile <http://www.facebook.com/samcayze>
>
>
>
>  --
> *From:* Devin Meade [mailto:devin.me...@gmail.com]
> *Sent:* Friday, November 13, 2009 4:19 PM
> *To:* NT System Admin Issues
> *Subject:* Portal laptop storage
>
> We will soon have a "Training Lab" with 6 laptops.  I have seen portable
> storage shelves that allowed you to power the laptops and lock them up.
> Anyone use this kind of thing?  I want to be able to maintain them without
> continually setting them up.  They are supposed to never leave the premises
> (yeah right) so they have no carry cases.
>
> Here is what I am seeing, anyone use these?
>
>
> http://www.datalinksales.com/secure_laptop_notebook_storage/multimedia_and_laptop_security_cart.html
>
>
> http://www.pc-security.com/products_solutions/carts_cabinets_cases/carts,_cabinets,_cases.htm
>
> El-cheapo version of above.  Those kind of wheels always break:
>
> https://www.schooloutfitters.com/catalog/product_family_info/cPath/CAT11_CAT116/pfam_id/PFAM9030
>
> Minimal and looks fairly heavy duty.  May be adequate (I can put a power
> strip in!).
>
> https://www.schooloutfitters.com/catalog/product_family_info/cPath/CAT11_CAT116/pfam_id/PFAM697
>
> TIA, Devin
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Portal laptop storage

[Devin Meade]

We will soon have a "Training Lab" with 6 laptops.  I have seen portable
storage shelves that allowed you to power the laptops and lock them up.
Anyone use this kind of thing?  I want to be able to maintain them without
continually setting them up.  They are supposed to never leave the premises
(yeah right) so they have no carry cases.

Here is what I am seeing, anyone use these?

http://www.datalinksales.com/secure_laptop_notebook_storage/multimedia_and_laptop_security_cart.html

http://www.pc-security.com/products_solutions/carts_cabinets_cases/carts,_cabinets,_cases.htm

El-cheapo version of above.  Those kind of wheels always break:
https://www.schooloutfitters.com/catalog/product_family_info/cPath/CAT11_CAT116/pfam_id/PFAM9030

Minimal and looks fairly heavy duty.  May be adequate (I can put a power
strip in!).
https://www.schooloutfitters.com/catalog/product_family_info/cPath/CAT11_CAT116/pfam_id/PFAM697

TIA, Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: Time estimate needed

[Devin Meade]

Somewhat "Off Tread" but when we donate computer, we make the end user
accept any license agreements.  They also sign a form (attorney approved)
absolving us of licensing issues.  Upon purchase of new machines, we
snapshot a box before first boot.  When it's donated, restore it back and
any original CD's (if we can find them).  Can MS OFfice be set to "OEM
out-of-box-where-you-gotta-accept-big-fat-license-agreement"?  I think I saw
that somewhere in the ORK.  Surely someone on this list knows!  Dont call me
Shirley.
-Devin

On Fri, Nov 13, 2009 at 10:46 AM, Mike Hoffman  wrote:

> If the machines are going to be sold on ebay then they will not be getting
> corporate copies of software. So unless you have one CD for Windows and
> Office for each then you are hard disk loading. If the machines have a COA
> on them then Windows is a safe bet, but I would put an Office Trial on each
> or else you might get implicated. If he then has the correct keys then he
> can put them in.
>
> Mike
>
> -Original Message-
> From: Ben Scott [mailto:mailvor...@gmail.com]
> Sent: 13 November 2009 16:11
> To: NT System Admin Issues
> Subject: Re: OT: Time estimate needed
>
> On Fri, Nov 13, 2009 at 6:16 AM, John Aldrich
>  wrote:
> > I'm just installing what he gives me. :-)
>
>  Be warned that you may still be held liable for
> copyright/contract/license violations if it turns out this "client"
> didn't have the rights to do what he's asking you to do.
>
>  "I didn't know" may sound good to you, but the courts don't always agree.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Desktop Management

[Devin Meade]

We purchased Landesk management suite with patch management just over a year
ago.  It has really decreased the time spent on patching.  All the friggin
adobe deployment problems you hear about... no problem.  We *just* purchased
the appl virt add-on, have not had time to look at it.  This uses Vmware
ThinApp (they acquired it). Our two-person help desk staff (me and the guy
over the cubicle) use the remote-control all the time - it works well.  We
don't have the management gateway, but with that piece, you can extend
remote control (and the rest of the suite) to road warriors.  As far as the
LD software deployment piece, it is about to be totally ve-vamped in the
next month or two.  From their newsgroups and user-groups, the beta testers
**really** like it.   We decided to wait on the new released for app
deployment.  The current version (v 8.8) requires a second server (not a
deal killer) but is a little long in the tooth, so we wait ~6 weeks.  I have
had a few issues and had very good (non India) support.  They have an active
discussion group.  Landesk sponsors a quarterly user-group meeting
(providing lunch) and that has been superb to catch some ideas on how to use
the product.  It's a big initial purchase (about than $100 a seat IIRC), but
the annual renewals are about 20% of that.  We test drove Altiris and could
not stand it.  The one thing I really like with LanDesk patch manager is the
scheduling options - just about any deploy schedule you can muster up it can
do.  It also reports in real time during patch deployment.  We ran WSUS3
before, which worked well for us.  We/I have been very pleased with this
product, it's not without issues (what is?).  Oh yeah, when we demoed this,
I could not really test the product in the free trial time period (30 or 60
days??), they extended the 100 user free trial for us - twice.  FYI - We
purchased our servers and workstation through Dell, and they gave us a deal
on this, or so they said :-)

hope this helps,
Devin

On Tue, Nov 3, 2009 at 3:21 PM, Tom Miller  wrote:
> I'm really looking at my options, and it's nice to hear I'm not the only
one
> struggling with this product.  It has a huge following, and seems to work
> well for those entities that can dedicate full-time staff to desktop
> management - not possible here, and it was not necessary with Zen.
>
> Kace, Landesk, Altiris (sort of not really since it's now owned by
> Symantec), Quest...
>
> Install clientwait...create app deployment...waitcreate patch
> deployment...wait Lots of waiting with this product.
>
 "Ray"  11/3/2009 4:15 PM >>>
>
> We’re using SCCM, sort of, having migrated from Zen also.
>
> We call it SCUM.   Tons and tons of functionality, although we could care
> less about most of it.   For Imaging it appears to be mediocre.  For
remote
> control it’s also mediocre, if we can even get it to work.   No
> CTRL-ALT-DELETE seems silly.
>
> I will also point out that I’m not too involved with its rollout.
>
> From: Tom Miller [mailto:tmil...@hnncsb.org]
> Sent: Tuesday, November 03, 2009 1:58 PM
> To: NT System Admin Issues
> Subject: Re: Desktop Management
>
>
>
> Have it now - don't like it.
>
 Jon Harris  11/3/2009 3:40 PM >>>
>
> Depending on the size try looking at the various System Center products.
>
> Jon
>
> On Tue, Nov 3, 2009 at 3:31 PM, Tom Miller  wrote:
>
> Hi All,
>
> I'm looking for desktop management products primarily for 1) application
> installation/distribution, 2) patching (MS or otherwise) and 3)
> inventorying. Other items are bonus.
>
> I used Novell Zenworks in the past and that was good but now is too
> expensive. I started over the last six months using Microsoft
Configuration
> Manager. While I like it, I'm spending much more time on it that I did
with
> Zen. There's been discussion of Kace and that looks like a possible
> alternative. Anyone have any others to recommend?
>
> Thanks
>
>
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
>
>
>
>
>
>
>
>
>
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
>
>
>
>
>
>
>
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If yo

Re: OT error loading ssl cert onto wm 6.1 phone

[Devin Meade]

We have had cert problems if the date and time is wrong on the phone.
I had one phone that the year was . . . minus 10!
hth, Devin


On Thu, Oct 29, 2009 at 2:47 PM, Sean Rector  wrote:
> One other thing – my certs were saved as .CER files.  I don’t know if that
> makes a difference.
>
>
>
> I forgot one more thing…
>
>
>
> On the WM phones, I copy them to a documents folder, then simply
> double-click the certificate file to install it on the phone.
>
>
>
> Sean Rector, MCSE
>
>
>
> From: Eldridge, Dave [mailto:d...@parkviewmc.com]
> Sent: Thursday, October 29, 2009 3:42 PM
> To: NT System Admin Issues
> Subject: RE: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> I have gone thru the steps that Simon  Butler lays out and I am still
> getting the error on the phone. 85010014.
>
>
>
> Dumb question but which cert am I grabbing from the exchange server to load
> onto the phone?
>
>
>
> The email.domain.com in personal folders or in the trusted root CA
> UTN-USERFirst-Hardware that it is issued by?
>
>
>
> Thanks still struggling with this.
>
>
>
> From: Ken Schaefer [mailto:k...@adopenstatic.com]
> Sent: Wednesday, October 28, 2009 7:59 PM
> To: NT System Admin Issues
> Subject: RE: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> Hi,
>
>
>
> ActiveSync works by sending requests directly to the configured ActiveSync
> web application. All the information about the user, and what command it
> wants to run etc. are contained within the querystring of the request. The
> The ActiveSync client doesn't have a way of negotiating past the FBA login
> screen, which might explain why it's failing.
>
>
>
> Cheers
>
> Ken
>
>
>
> 
>
> From: Eldridge, Dave [...@parkviewmc.com]
> Sent: Thursday, 29 October 2009 8:40 AM
> To: NT System Admin Issues
> Subject: RE: OT error loading ssl cert onto wm 6.1 phone
>
> thanks
>
>
>
> From: Sherry Abercrombie [mailto:saber...@gmail.com]
> Sent: Wednesday, October 28, 2009 3:38 PM
> To: NT System Admin Issues
> Subject: Re: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> Yes, I had to setup a second virtual directory, fba & ActiveSync don't like
> each other.  Check Daniel Petri's web site for the how to's on setting up a
> second vd.
>
> On Wed, Oct 28, 2009 at 3:07 PM, Eldridge, Dave  wrote:
>
> No single server. I have fba enabled along with ssl. The article Richard
> mentioned talks about doing this second virtual directory.
>
>
>
> From: Carol Fee [mailto:c...@massbar.org]
>
> Sent: Wednesday, October 28, 2009 3:01 PM
> To: NT System Admin Issues
>
> Subject: RE: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> Yes we do and no we did not.  Are you using FE/BE setup ?
>
>
>
> CFee
>
> From: Eldridge, Dave [mailto:d...@parkviewmc.com]
> Sent: Wednesday, October 28, 2009 4:47 PM
> To: NT System Admin Issues
> Subject: RE: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> Yea that pertains to loading the cert into the phone’s root cert. We
> verified that.
>
> It’s amazing how varied the responses are to this issue. J
>
>
>
> Do you have wm accessing  your exchange? If so did you create an additional
> virtual directory?
>
>
>
> From: Sherry Abercrombie [mailto:saber...@gmail.com]
> Sent: Wednesday, October 28, 2009 2:19 PM
> To: NT System Admin Issues
> Subject: Re: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> Try this link:  http://support.microsoft.com/kb/915840
>
> On Wed, Oct 28, 2009 at 3:12 PM, Carol Fee  wrote:
>
> If I remember correctly, the cert has to be installed in the Root certs on
> the phone.
>
>
>
> CFee
>
> From: Eldridge, Dave [mailto:d...@parkviewmc.com]
> Sent: Wednesday, October 28, 2009 3:01 PM
> To: NT System Admin Issues
> Subject: OT error loading ssl cert onto wm 6.1 phone
>
>
>
> Looking for some guidance here.
>
>
>
> Right up front I have no experience with mobile phones and I now I have to
> start supporting a bunch of these.
>
> My boss has a Samsung i760 running wm 6.1 and is getting the following error
> code 85010014
>
>
>
> I have done the following to export the cert off the exchange server 2003
> sp2.
>
>
>
> Opened up mmc and certs.
>
>
>
> Went to personal folder.
>
> Right click my web cert called email.domain.com, export, no to export the
> private key
>
> Select crypto (p7b) as the file extension.
>
> Give a file name and load onto phone
>
> The cert does install on the phone but gets an error code of 85010014 when
> trying to connect to exchange.
>
> What am I missing here? This shouldn’t be this hard.
>
>
>
> Any ideas?
>
> Thanks
>
>
>
> Can’t wait until the BES part of this project comes up also. J
>
>
>
>
>
>
>
> This e-mail contains the thoughts and opinions of the sender and does not
> represent official Parkview Medical Center policy.
>
> This communication is intended only for the recipient(s) named above, may be
> confidential and/or legally privileged: and, must be treated as such in
> accordance with state and federal laws. If you are not the intended
> recipient, you are

Re: What else would you tell this user?

[Devin Meade]

+999E999

On Tue, Oct 27, 2009 at 10:56 AM, Phillip Partipilo  wrote:
> +1
>
>
>
> I agree that a certain point is reached where I don’t even want the users
> money any more.  Sometimes I want to pay them to stay as far away from me as
> possible.
>
>
>
>
>
>
>
> Phillip Partipilo
>
> Parametric Solutions Inc.
>
> Jupiter, Florida
>
> (561) 747-6107
>
>
>
>
>
> From: Maglinger, Paul [mailto:pmaglin...@scvl.com]
> Sent: Tuesday, October 27, 2009 11:17 AM
> To: NT System Admin Issues
> Subject: RE: What else would you tell this user?
>
>
>
> I personally like the ball-peen hammer technique used in “Casino”.
>
>
>
> From: Lee Douglas [mailto:lee.doug...@gmail.com]
> Sent: Tuesday, October 27, 2009 9:56 AM
> To: NT System Admin Issues
> Subject: Re: What else would you tell this user?
>
>
>
> Had one the other day with Windows Police Pro on it and couldn't boot into
> safe mode, couldn't run the task manager fix and couldn't load / run MBytes.
> After about 2 1/2 hours (shouldn't have spent more than 10 minutes, but I'm
> stubborn), I finally prescribed a format & re-install.
>
>
>
> I can sort of understand how the Trojan authors get off on their cleverness,
> but I'm advocating that we bring back public flogging, just for them...
>
>
>
>
>
> On Tue, Oct 27, 2009 at 10:50 AM,  wrote:
>
> 1. Often, these trojans will keep REAL anti-malware applications from
> running.  However, if the system can be booted into Safe Mode (I came across
> one that could not!), MalwareBytes at least ought to run.
>
> 2. They guy is being prevented from downloading MBytes or anything else on
> that machine.  He will need to obtain a copy of MBytes or VIPRERESCUE
> elsewhere and install from portable media.
>
> 3. I've seen entirely too many of these occurrences on systems with McAfee
> on them.
>
> Good luck!
> --
> Richard D. McClary
> Systems Administrator, Information Technology Group
>
> ASPCA®
> 1717 S. Philo Rd, Ste 36
> Urbana, IL  61802
>
> richardmccl...@aspca.org
>
> P: 217-337-9761
> C: 217-417-1182
> F: 217-337-9761
> www.aspca.org
>
>
> The information contained in this e-mail, and any attachments hereto, is
> from The American Society for the Prevention of Cruelty to Animals® (ASPCA®)
> and is intended only for use by the addressee(s) named herein and may
> contain legally privileged and/or confidential information. If you are not
> the intended recipient of this e-mail, you are hereby notified that any
> dissemination, distribution, copying or use of the contents of this e-mail,
> and any attachments hereto, is strictly prohibited. If you have received
> this e-mail in error, please immediately notify me by reply email and
> permanently delete the original and any copy of this e-mail and any printout
> thereof.
>
>
> "David W. McSpadden"  wrote on 10/27/2009 09:40:36 AM:
>
>> Follow this thread from top to bottom.
>
>
>
>> What else would you tell this home user??
>>
>>
>> I don’t understand how this keeps happening I have Microsoft
>> security running also but I am getting tierd of this junk these
>> things need to find another home besides mine
>> From: David McSpadden
>> Sent: Tuesday, October 27, 2009 10:32 AM
>> To: xx
>> Subject: RE: Home Computer
>> Sure.
>> From: xx
>> Sent: Tuesday, October 27, 2009 10:30 AM
>> To: David McSpadden
>> Subject: RE: Home Computer
>>  Ok I will try tonight if I cant do you want it back?
>>  From: David McSpadden
>> Sent: Tuesday, October 27, 2009 10:28 AM
>> To: xx
>> Subject: RE: Home Computer
>>  Those pictures are a part of the Trojan/virus/thingy.
>> Yes if you can get on the internet you can find it by googling for
>> Microsoft security essentials download.
>>  From: xx
>> Sent: Tuesday, October 27, 2009 10:26 AM
>> To: David McSpadden
>> Subject: RE: Home Computer
>> So I will just find that on the internet? If I can get on the net
>> because when I tried last night I couldn’t get around all the pop
>> ups ( I will get those pics to you asap  LOL)   So does that mean
>> someone has been looking at that stuff or is that just the possible
>> virus causing that to pop up ?
>> From: David McSpadden
>> Sent: Tuesday, October 27, 2009 10:19 AM
>> To: xx
>> Subject: RE: Home Computer
>>  I think you should send me the naughty pictures for an objective opinion.
>>  Also, I think you should download Microsoft’s Free Security
>> Essentials virsus/spyware scanner.
>> It is quick and easy.  All you have to do it tell it when and what to
>> scan.
>> That might find something your Mcafee doesn’t.
>>  From: xx
>> Sent: Tuesday, October 27, 2009 10:11 AM
>> To: David McSpadden
>> Subject: Home Computer
>>  Hi It’s me again….. I think my computer has issues again I have
>> been getting pop ups telling me my computer could be infected but it
>> wasn’t from Mcafee so I ignored it then mcafee would pop up and say
>> it blocked a trojen  so I thought I was ok but last night when I
>> tried to get into my email naughty pics poped up? So I thought I
>> would run a full scan but couldn’t get

Re: Exchange 10 or 7?

[Devin Meade]

Probably a second server, a PowerEdge R410 or R510.  I am just reading
about Ex2010 db replication.  The main server will probably be a
PE2900II with DAS.  We use double-take for file server replication,
using DT for exchange server replication gives me shudders.  I know we
should be using shared storage, but I can't get that to fly, so I am
proposing server-to-server replication.  Upper mgt wants "some kind of
HA" but says no to a storage array with ESX etc.  Then we can compare
those numbers.  We only have two servers that are mission critical, so
using shared storage does not give us much  economy of scale.
Devin

On Mon, Oct 26, 2009 at 11:08 AM, Sherry Abercrombie  wrote:
> What do you plan to use to do database replication?
>
> On Mon, Oct 26, 2009 at 11:04 AM, Devin Meade  wrote:
>>
>> We plan on moving from Exchange 2003 to 2010.  Possibly with two
>> servers doing database replication.
>>
>> Question: I am budgeting Exchange Server CALS and Exchange server
>> itself on new hardware.  We currently have Outlook 2007 CALS, will
>> those work with Exchange 2010?  We don't plan on upgrading Outlook
>> until probably 2011.
>>
>> Thanks,
>> Devin
>>
>> On Mon, Oct 26, 2009 at 10:11 AM, Carl Houseman 
>> wrote:
>> > Since SBS follows the version of Windows, you might wish for SBS 2008 R2
>> > to
>> > include E2010.  But I wouldn't hold my breath.
>> >
>> >
>> >
>> > Carl
>> >
>> >
>> >
>> > From: Phillip Partipilo [mailto:p...@psnet.com]
>> > Sent: Monday, October 26, 2009 10:12 AM
>> > To: NT System Admin Issues
>> > Subject: RE: Exchange 10 or 7?
>> >
>> >
>> >
>> > I wonder if there is going to be a SBS 2010 to include e2k10
>> >
>> >
>> >
>> >
>> >
>> > Phillip Partipilo
>> >
>> > Parametric Solutions Inc.
>> >
>> > Jupiter, Florida
>> >
>> > (561) 747-6107
>> >
>> >
>> >
>> >
>> >
>> > From: Sean Rector [mailto:sean.rec...@vaopera.org]
>> > Sent: Monday, October 26, 2009 8:42 AM
>> > To: NT System Admin Issues
>> > Subject: RE: Exchange 10 or 7?
>> >
>> >
>> >
>> > As my mailbox is the only one set up on our 2k7 setup, I’m definitely
>> > going
>> > to go to 2k10.
>> >
>> >
>> >
>> > Sean Rector, MCSE
>> >
>> >
>> >
>> > From: Ziots, Edward [mailto:ezi...@lifespan.org]
>> > Sent: Sunday, October 25, 2009 5:19 PM
>> > To: NT System Admin Issues
>> > Subject: RE: Exchange 10 or 7?
>> >
>> >
>> >
>> > Going to 2010 prolly here also, lots of good stuff in the new exchange…
>> >
>> > Z
>> >
>> >
>> >
>> > Edward Ziots
>> >
>> > Network Engineer
>> >
>> > Lifespan Organization
>> >
>> > MCSE,MCSA,MCP+I, ME, CCA, Security +, Network +
>> >
>> > ezi...@lifespan.org
>> >
>> > Phone:401-639-3505
>> >
>> > 
>> >
>> > From: Leedy, Andy [mailto:ale...@butlerahs.com]
>> > Sent: Friday, October 23, 2009 11:16 PM
>> > To: NT System Admin Issues
>> > Subject: RE: Exchange 10 or 7?
>> >
>> >
>> >
>> > +1
>> >
>> >
>> >
>> >  From what I’ve heard CAS/HUBS can be on the same box as MB servers.
>> > Less
>> > hardware. J
>> >
>> >
>> >
>> > From: Brian Desmond [mailto:br...@briandesmond.com]
>> > Sent: Friday, October 23, 2009 11:07 PM
>> > To: NT System Admin Issues
>> > Subject: RE: Exchange 10 or 7?
>> >
>> >
>> >
>> > You’re going to be doing the work twice to go from 2007 to 2010. There’s
>> > no
>> > in place upgrade or anything like that.
>> >
>> >
>> >
>> > If you’re just running one box then it seems logical to me that going
>> > straight to 2010 would be A LOT easier and cheaper in the long run.
>> >
>> >
>> >
>> > Thanks,
>> >
>> > Brian Desmond
>> >
>> > br...@briandesmond.com
>> >
>> >
>> >
>> > c - 312.731.3132
>> >
>> >
>> >
>> > From: Holstrom, Don [mailto:dholst...@nbm.org]
>> > Sent: Thursday, October 22, 2009 9:46 AM
>>

Re: Exchange 10 or 7?

[Devin Meade]

We plan on moving from Exchange 2003 to 2010.  Possibly with two
servers doing database replication.

Question: I am budgeting Exchange Server CALS and Exchange server
itself on new hardware.  We currently have Outlook 2007 CALS, will
those work with Exchange 2010?  We don't plan on upgrading Outlook
until probably 2011.

Thanks,
Devin

On Mon, Oct 26, 2009 at 10:11 AM, Carl Houseman  wrote:
> Since SBS follows the version of Windows, you might wish for SBS 2008 R2 to
> include E2010.  But I wouldn't hold my breath.
>
>
>
> Carl
>
>
>
> From: Phillip Partipilo [mailto:p...@psnet.com]
> Sent: Monday, October 26, 2009 10:12 AM
> To: NT System Admin Issues
> Subject: RE: Exchange 10 or 7?
>
>
>
> I wonder if there is going to be a SBS 2010 to include e2k10
>
>
>
>
>
> Phillip Partipilo
>
> Parametric Solutions Inc.
>
> Jupiter, Florida
>
> (561) 747-6107
>
>
>
>
>
> From: Sean Rector [mailto:sean.rec...@vaopera.org]
> Sent: Monday, October 26, 2009 8:42 AM
> To: NT System Admin Issues
> Subject: RE: Exchange 10 or 7?
>
>
>
> As my mailbox is the only one set up on our 2k7 setup, I’m definitely going
> to go to 2k10.
>
>
>
> Sean Rector, MCSE
>
>
>
> From: Ziots, Edward [mailto:ezi...@lifespan.org]
> Sent: Sunday, October 25, 2009 5:19 PM
> To: NT System Admin Issues
> Subject: RE: Exchange 10 or 7?
>
>
>
> Going to 2010 prolly here also, lots of good stuff in the new exchange…
>
> Z
>
>
>
> Edward Ziots
>
> Network Engineer
>
> Lifespan Organization
>
> MCSE,MCSA,MCP+I, ME, CCA, Security +, Network +
>
> ezi...@lifespan.org
>
> Phone:401-639-3505
>
> 
>
> From: Leedy, Andy [mailto:ale...@butlerahs.com]
> Sent: Friday, October 23, 2009 11:16 PM
> To: NT System Admin Issues
> Subject: RE: Exchange 10 or 7?
>
>
>
> +1
>
>
>
>  From what I’ve heard CAS/HUBS can be on the same box as MB servers. Less
> hardware. J
>
>
>
> From: Brian Desmond [mailto:br...@briandesmond.com]
> Sent: Friday, October 23, 2009 11:07 PM
> To: NT System Admin Issues
> Subject: RE: Exchange 10 or 7?
>
>
>
> You’re going to be doing the work twice to go from 2007 to 2010. There’s no
> in place upgrade or anything like that.
>
>
>
> If you’re just running one box then it seems logical to me that going
> straight to 2010 would be A LOT easier and cheaper in the long run.
>
>
>
> Thanks,
>
> Brian Desmond
>
> br...@briandesmond.com
>
>
>
> c - 312.731.3132
>
>
>
> From: Holstrom, Don [mailto:dholst...@nbm.org]
> Sent: Thursday, October 22, 2009 9:46 AM
> To: NT System Admin Issues
> Subject: Exchange 10 or 7?
>
>
>
> I have been using Exchange 03 here at the Museum for a few years. I have
> Exchange 07 software, we are a non-profit so licenses are cheap. But I was
> wondering if I should skip over 07 and go right to 10. Is this a harder
> upgrade? Impossible? Anyone done it? Either way, I would use another server,
> faster with 6 times the RAM of our 03 machine and run either over Server 08,
> 64-bit. And then transfer over a couple of weeks. One of my admin buddies
> from another firm says best to go with 7, impress everyone, and then go with
> 10 in a year or two. I also have a problem mentioned earlier with too many
> of the employees saving too much in their Inboxes, so I would give them an
> increase to save even more ridiculous stuff.
>
>
>
>
>
>
>
>
>
> **
>
> CONFIDENTIALITY NOTICE: The information transmitted in this message is
> intended only for the person or entity to which it is addressed and may
> contain confidential and/or privileged material. Any review, retransmission,
> dissemination or other use of this information by persons or entities other
> than the intended recipient is prohibited. If you received this in error,
> please contact the sender and destroy all copies of this document. Thank
> you.
>
> Butler Animal Health Supply
>
> **
>
>
>
>
>
>
>
>
>
>
>
> Information Technology Manager
> Virginia Opera Association
>
> E-Mail: sean.rec...@vaopera.org
> Phone:    (757) 213-4548 (direct line)
> {+}
>
> Virginia Opera's 35th Anniversary Season The One You Love
> Celebrate with a 2009-2010 Subscription: La Bohème, The Daughter of the
> Regiment, Don Giovanni and Porgy and BessSM
> Visit us online at www.vaopera.org or call 1-866-OPERA-VA
>
> The vision of Virginia Opera is to enrich lives through the powerful
> integration of music, voice and human drama
>
> 
>
> This e-mail and any attached files are confidential and intended solely for
> the intended recipient(s). Unless otherwise specified, persons unnamed as
> recipients may not read, distribute, copy or alter this e-mail. Any views or
> opinions expressed in this e-mail belong to the author and may not
> necessarily represent those of Virginia Opera. Although precautions have
> been taken to ensure no viruses are present, Virginia Opera cannot accept
> respons

Re: Buffalo TeraStation III

[Devin Meade]

Thanks guys - we are budgeting for next year.  Maybe we will know more then.

On Fri, Oct 23, 2009 at 2:51 PM, Ben Schorr  wrote:
> I haven't looked at the III but the biggest problem we saw with the
> earlier versions was that there was NO provision for file or
> folder-level security.  You could ONLY apply security at the SHARE
> level.  Which rendered the unit mostly useless for our business clients.
>
> I hope they've fixed that because otherwise I really like their devices.
>
> Ben M. Schorr
> Chief Executive Officer
> __
> Roland Schorr & Tower
> www.rolandschorr.com
> b...@rolandschorr.com
>
>
>> -Original Message-
>> From: Devin Meade [mailto:devin.me...@gmail.com]
>> Sent: Friday, October 23, 2009 9:06 AM
>> To: NT System Admin Issues
>> Subject: Buffalo TeraStation III
>>
>> We are considering this for a NAS device.  I see some rave reviews
> here on
>> this newsgroup and on Amazon.  I also see some horrific tech support
> stories
>> on Amazon reviews.  But can you really trust Amazon reviews?  I also
> see a
>> range of bad / good reviews on cnet.com (most from prior to 2008, but
> one
>> from 4 mos ago).  The majority of the negative reviews are for
> replacement
>> hard drives, that ought to be easy-peasy-lemon-squeazy to fix.
> Hmmkay.
>> Anyway I see that they have new firmware which fixes a multitude of
>> problems.  I see good reviews for the most part for the last year or
> so -
>> maybe they have their ducks lined up now.
>>
>> Has anyone used one of these AND had a disk failure that was resolved
> like it
>> should be?
>>
>> http://www.smallnetbuilder.com/nas/nas-reviews/30790-the-terastation-
>> reborn-buffalo-terastation-iii-reviewed
>> I see they are using SATA 3.  That was too hard to find out.
>>
>> http://www.smallnetbuilder.com/index.php?option=com_nas&Itemid=&ch
>> art=12
>> Shows 55MB / sec write performance - on a 2 drive setup.  No RAID5
>> numbers???
>>
>> Does anyone have a RAID5 setup and have write performance numbers?  We
>> are considering the 4 drive array using 2TB drives (giving us 6TB
> usable).
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>> <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Buffalo TeraStation III

[Devin Meade]

We are considering this for a NAS device.  I see some rave reviews
here on this newsgroup and on Amazon.  I also see some horrific tech
support stories on Amazon reviews.  But can you really trust Amazon
reviews?  I also see a range of bad / good reviews on cnet.com (most
from prior to 2008, but one from 4 mos ago).  The majority of the
negative reviews are for replacement hard drives, that ought to be
easy-peasy-lemon-squeazy to fix.  Hmmkay.  Anyway I see that they have
new firmware which fixes a multitude of problems.  I see good reviews
for the most part for the last year or so - maybe they have their
ducks lined up now.

Has anyone used one of these AND had a disk failure that was resolved
like it should be?

http://www.smallnetbuilder.com/nas/nas-reviews/30790-the-terastation-reborn-buffalo-terastation-iii-reviewed
I see they are using SATA 3.  That was too hard to find out.

http://www.smallnetbuilder.com/index.php?option=com_nas&Itemid=&chart=12
Shows 55MB / sec write performance - on a 2 drive setup.  No RAID5 numbers???

Does anyone have a RAID5 setup and have write performance numbers?  We
are considering the 4 drive array using 2TB drives (giving us 6TB
usable).

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Quick hardware recommendation

[Devin Meade]

We have a number of Adaptec 3405 PCIe cards.  With Western Digital RE3
SATA 3 drives they can write about 75% as quick as our Poweredge 2900
using SAS drives.  Get the optional battery if you use this.  Also,
the get VERY HOT, we have extra "slot fans" for these.
Devin



On Thu, Oct 22, 2009 at 12:02 PM, Kurt Buff  wrote:
> Anyone?
>
> On Tue, Oct 20, 2009 at 09:05, Kurt Buff  wrote:
>> All,
>>
>> I've got a Supermicro box with an Intel motherboard in it that is
>> having issues with the motherboard RAID controller. - it's an Adaptec
>> SATA HostRAID controller, and it's choking on the load we've given it.
>>
>> Anyone have a good recommendation for an add-in RAID1 controller that
>> I can move the OS to?
>>
>> There are 6 other drives in the chassis in a RAID5 array, and they're
>> on a 3ware 9550SX controller, which seems to be performing just fine,
>> but I want the OS on a separate controller for better throughput.
>>
>> Thanks,
>>
>> Kurt
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Deleting printer from XP

[Devin Meade]

Were they deployed via Group Policy?  If so, you will get an "access denied"
message when you try to delete it.

On Fri, Oct 2, 2009 at 1:09 PM, N Parr  wrote:

> I have a couple XP SP3 workstations that can't delete any printers that
> are installed and shared on other computers.  Anyone ever run in to
> this?  It has to be something on the workstation side because some of
> the printers are installed on other XP workstations and 2000/2003
> servers and I can't delete any of them.  But I can just fine from other
> workstations.  Bouncing the spooler, rebooting doesn't help.  I can't
> find anything helpful googling because the search terms fit so many
> problems.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Clipboard funkyness

[Devin Meade]

Could you have a password manager that clears the clipboard upon exit or
minimize?  Password safe has this option.

Devin

On Tue, Sep 29, 2009 at 2:59 PM, Candee Vaglica  wrote:

> It works for me...
> XP PRO SP3; Outlook 2007, Word 2007
> All SP's/fixes
>
> On Sun, Sep 27, 2009 at 2:02 PM, Steven M. Caesare 
> wrote:
>
>>  OK, so  while back I was whin^H^H^H^Hmentioning about the Windows
>> clipboard behavior change. I’ve finally figured out one of the combinations
>> that reproduces it for me.
>>
>>
>>
>> -WinXP + all SP’s/fixes
>>
>> -Office 2K7 + all SP’s/fixes
>>
>>
>>
>> 1)  Compose document in Word. Type some junk and CTRL+C to clipboard.
>>
>> 2)  Test by pasting a few times in to same document. Data remains on
>> clipboard for multiple pastes.
>>
>> 3)  Switch to Outlook. Reply to a message[1] and type a few things in
>> the message body (you don’t have to actually send).
>>
>> 4)  Switch back to Word and paste. Nothing. Nada. Zip.
>>
>>
>>
>> This is annoying and breaks long-standing proper clipboard behavior IMO.
>>
>>
>>
>> I’ll attempt on a couple of other machines/platforms as well.
>>
>>
>>
>> -sc
>>
>>
>>
>> [1]- For some reason composing a new email doesn’t trigger it, where a
>> Reply does.
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Block device from DHCP scope

[Devin Meade]

You could give it a bogus address, then use an alert system to ping that
address (if it will return one) to let you know to go hunting.


On Wed, Sep 16, 2009 at 10:26 AM, James Rankin wrote:

> Cheers, I did have some thoughts down that route, but didn't know whether
> you could give it a "bad" address in terms of the scope or not. Shows you
> how long it is since I set up any DHCP stuff. Let's wait for the support
> call from the idiot telling me he can't access the internet from work with
> his (or her) IPhone any more...
>
> 2009/9/16 Jon Harris 
>
> Agreed just grab the Mac address and give it the address 127.0.0.1 as a
>> reservation with the same address as the gateway.  Lots of fun.
>>
>> Jon
>>
>> On Wed, Sep 16, 2009 at 11:10 AM, John Aldrich <
>> jaldr...@blueridgecarpet.com> wrote:
>>
>>>  Sure… can you get the MAC address of that device? If so, just give it a
>>> static assignment that is “bad” and you’re all set. J Not quite what you
>>> had in mind, but it works quite well. J
>>>
>>>
>>>
>>> [image: John-Aldrich][image: Tile-Tools]
>>>
>>>
>>>
>>> *From:* James Rankin [mailto:kz2...@googlemail.com]
>>> *Sent:* Wednesday, September 16, 2009 11:07 AM
>>> *To:* NT System Admin Issues
>>> *Subject:* Block device from DHCP scope
>>>
>>>
>>>
>>> Anyway I can block a device from obtaining an IP address from our DHCP
>>> scope? I have a rogue IPhone that appears intermittently on my DHCP range. I
>>> haven't managed to find out who it is yet but if I do I will be sure to
>>> address it via HRturning off the wireless unfortunately is not an
>>> option. I know the user could probably bang in some static settings to get
>>> around the block, but seeing as though our users can't save things in the
>>> right folders, I'm relying on them not being savvy enough to enter some
>>> network settings themselves.
>>>
>>> Thanks for all ideas...
>>>
>>> --
>>> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
>>> the machine wrong figures, will the right answers come out?' I am not able
>>> rightly to apprehend the kind of confusion of ideas that could provoke such
>>> a question."
>>>
>>> http://raythestray.blogspot.com
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>>
>>
>>
>>
>>
>>
>
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
> http://raythestray.blogspot.com
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Disk based backup

[Devin Meade]

FYI Backup Exec 2010 is to be released in March.  This next batch of
products from Symantec promises "De-Dupe Everywhere".  Yep & uh-huh
it's vaporware from (cough) Symantec...  I bet that we are about to
see a ton of backup products that will do de-dupe.  The quotes we got
from Exagrid were 2-3 timesmore than yours :-).  I expect the Symantec
products to be less capable than Exagrid / DataDomainEMC / etc, but at
*hopefully* a small fraction of the cost.  I wonder if our firm - at
about 4TB nightly - has the economy of scale to use D2D.  We may do
D2D2T for offiste DR.  We certainly can't use these product's ability
for offsite delta replication to another disk array.  We have no
second office.  I wonder if we could get a hosting service to host an
offiste DR box like this...

On Tue, Sep 15, 2009 at 2:26 PM, Evan Brastow
 wrote:
> Hi guys,
>
>
>
> I wanted to thank everyone for their suggestions… I looked at Exagrid,
> DataDoimain and FalconStor, and I think I left out a key fact in my email…
> budget! My apologies! Exagrid and DataDomain were in the $18k to $22k range
> from what I saw (with their lowest-end offerings) and I didn’t get a chance
> to see the cost of FalconStor.
>
>
>
> I paid about $5500 for my Tandberg T24 library which gave me 38TB of
> compressed storage (800GB/1.6TB per tape.)
>
>
>
> As far as off site storage, I hadn’t actually thought about that when
> thinking of moving to disk based backup. That could complicate things a bit
> as I was just taking one backup tape per month on a Sunday and moving it
> off-site.
>
>
>
> Software-wise, I’m using Backup Exec 12 and it isn’t killing me, so I’ll
> probably stick with that as I still have support and maintenance agreements
> for it.
>
>
>
> I’m able to get a quote of about $3500 for a Tandberg T24 with a 12 slot
> magazine (instead of the 24 slot my current one has, where I only use 12
> slots anyway) for $3500, which seems to be a good buy for the route I want
> to go. It’s cheap, and I’ll get an extended warranty with this one. Make
> sense to people?
>
>
>
> Thanks again for your time and help!
>
>
>
> Evan
>
>
>
>
>
> From: Andrew S. Baker [mailto:asbz...@gmail.com]
> Sent: Monday, September 14, 2009 9:37 PM
> To: NT System Admin Issues
> Subject: Re: Disk based backup
>
>
>
> Do you want to do pure D2D?   Or would you want to look at Virtual Tape?
>
> Do you have any plans for off-site storage?  Or will you replicate to a
> separate site?
>
> Exagrid is one option, as it FalconStor.
>
> On the software side, you can look at products like Ultrabac, unless you're
> happy with your existing backup vendor.
>
> -ASB: http://XeeSM.com/AndrewBaker
>  Providing Competitive Advantage through Effective IT Leadership
>
> On Mon, Sep 14, 2009 at 6:16 PM, Evan Brastow 
> wrote:
>
> Hi guys,
>
>
>
> I did a search on subject headings for this year to see if I could find
> anything about this, but nothing jumped out at me.
>
>
>
> I have a 1-1/2 year old Tandberg Data T24 storage library and the drive just
> bit the dust six months out of warranty. Tandberg has told me (as expected,)
> “If it turns out the repair and service agreement is close to the cost of a
> new unit, that might serve as an option for you as well.”
>
>
>
> Before I go down the route of fix or replace I’m wondering if I should look
> into disk based backup? I’m looking to backup about 1.5 TB per night in a
> window that is about six hours in length between backup and verify.
>
>
>
> Anyone have disk based backup that’s fast and working for them?
>
>
>
> Thanks,
>
>
>
> Evan
>
>
>
>
>
>
>
>
>
>
>
>
>
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Restores from Incremental backups

[Devin Meade]

Palindrome was acquired Seagate was acquired by Veritas was acquired
by Symantec.

Seagate dropped support for Palindrome about a year after acquisition.
 That was around 1992?

We used the Tower of Hanoi / G/F/S rotation scheme.  It would give you
a total history of any file by browsing to it.  You could select a
folder (or file) and say restore.  It would prompt you as to what tape
to insert.  It also kept a db of what tapes should be offsite/onsite.
Reminded me of CA-11 from the IBM 3090 days.  Twas all character
graphics!

Devin


On Fri, Sep 11, 2009 at 4:40 PM, Erik Goldoff  wrote:
> like the old Palindrome, used a Tower of Hanoi rotation scheme, restore a
> file/folder/system and it would tell you the specific ( and minimum ) tapes
> required ... but isn't that basically the predecessor of Symantec's
> NetBackup product ?
>
>
> Erik Goldoff
>
> IT  Consultant
>
> Systems, Networks, & Security
>
>
> 
> From: Jeff Bunting [mailto:bunting.j...@gmail.com]
> Sent: Friday, September 11, 2009 2:22 PM
> To: NT System Admin Issues
> Subject: Re: Restores from Incremental backups
>
> I think the point was the software (BackupExec, I'm guessing) should be able
> to understand incremental restores and not rely on the operator to have to
> manually find & select each incremental copy for the restore.  I always
> thought that was an obvious feature it lacked.  Not being able to tell be
> how much disk space a restore was going to need was another.
>
>
> On Fri, Sep 11, 2009 at 12:45 PM, Ben Scott  wrote:
>>
>> On Thu, Sep 10, 2009 at 5:10 PM, jesse-r...@wi.rr.com
>>  wrote:
>> > I understand the whole differential versus incremental pros/cons.
>> ...
>> > So, that's why I was wondering about an easier method to restore
>> > incremental backups.
>>
>>  If you really understand, why are you looking for something you
>> obviously can't do?  :-)
>>
>>  Incremental only store the data since the last incremental, so you
>> need all the incremental to restore all your data.  If you don't use
>> all the media you don't have all the data.  There's no magic wand that
>> re-creates data you don't have (as many people have discovered, much
>> to their dismay).
>>
>> > ... with the files changing in some cases as much as they do, especially
>> > the
>> > backing up of flat database files, and other things, differentials would
>> > hurt us ...
>>
>>  One strategy is monthly full, weekly differential, and daily
>> incremental.  That way, the worst case is restoring a full, a diff,
>> and and four incs, instead of a month worth of incs.
>>
>>  Another strategy is different schedules and rotations for your
>> different data sets.  Example:  Some data that doesn't change often or
>> much, but you have a lot of it.  Do fulls every few months, plus
>> differentials once a week or whatever.  Some other data changes every
>> day and overwrites old data.  Do fulls every day of just that data.
>> Etc.
>>
>>  It should in theory be possible to have a backup system that "knows"
>> how much data has changed, and automatically does diff or inc based on
>> that, but I've never encountered such.  Maybe the more expensive
>> stuff, like Tivoli.
>>
>> -- Ben
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>
>
>
>
>
>
>
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: [OT] Phone number to tell you your phone number.

[Devin Meade]

1-800-444-

On Fri, Sep 11, 2009 at 1:33 PM, Phillip Partipilo  wrote:
> In a previous life, I worked in telecom biz.  There was this great phone
> number we used when we clipped a buttset up and you called this number, and
> a computer answered and told you the phone number you are calling from.
> That's all it did. We're in the process of going VoIP and our ancient phone
> system is a complete mess of spaghetti!
>
>
> Phillip Partipilo
> Parametric Solutions Inc.
> Jupiter, Florida
> (561) 747-6107
>
>
>
>
>
> THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
> AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS
> INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
> COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
> IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
> NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
> FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: group policy updating

[Devin Meade]

Try RSOP.MSC on the machine in question.

hth, Devin


On Tue, Sep 8, 2009 at 4:08 PM, Joseph Heaton wrote:
> I'm updating a group policy, to add a login banner.  Some of the machines in 
> question had one, but they were added manually either to the Local Security 
> Policy, or directly to the registry.  I've gone in, deleted any entries in 
> these two locations, I've run gpupdate /force, and logged out and back in.  
> When I do this, some machines show the correct banner, and show it in Local 
> Security Policy, grayed out, which tells me it's getting it from GP.  Other 
> machines don't seem to be updating, even after sitting for a while.The 
> successes and failures vary from 2k3 to 2k8, physical, and virtual boxes.
>
> Anyone have any idea what I can look at to troubleshoot this?
>
> I've gone into GPMC, and run the Group Policy Results tool, using my account 
> on the boxes in question, and the results come back saying that the desired 
> group policy is supposed to be affecting it.
>
> Thanks,
>
>
>
> Joseph L. Heaton
> Windows Server Support Group
> Information Technology Branch
> Department of Fish and Game
> 1807 13th Street, Suite 201
> Sacramento, CA  95811
> Desk: (916) 323-1284
>
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: On Topic-ish: 67 terabytes, one box, under US$8k

[Devin Meade]

I like the lighter fluid on the laptop video.  I was expecting more smoke!

On Thu, Sep 3, 2009 at 1:28 PM, Maglinger, Paul wrote:
> Wow, that might acutally satisfy our DBAs... for a year or two...  :-)
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Thursday, September 03, 2009 11:50 AM
> To: NT System Admin Issues
> Subject: On Topic-ish: 67 terabytes, one box, under US$8k
>
> http://blog.backblaze.com/2009/09/01/petabytes-on-a-budget-how-to-build-
> cheap-cloud-storage/
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: dell.com down?

[Devin Meade]

Yes.  I can't get to the quote page.  Gmail was for a while too.  C/B
they run PowerEdge servers?


On Tue, Sep 1, 2009 at 4:37 PM, Eldridge, Dave wrote:
> Anyone else?
>
> This e-mail contains the thoughts and opinions of the sender and does not
> represent official Parkview Medical Center policy.
>
> This communication is intended only for the recipient(s) named above, may be
> confidential and/or legally privileged: and, must be treated as such in
> accordance with state and federal laws. If you are not the intended
> recipient, you are hereby notified that any use of this communication, or
> any of its contents, is prohibited. If you have received this communication
> in error, please return to sender and delete the message from your computer
> system.
>
>
>
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

APC vs Dell 19inch racks

[Devin Meade]

We will be getting a 19 inch 42u rack for our current PE2950 and
future Dell PowerEdge servers.  It will house servers and possibly a
disk array.  Is that considered medium density?  We already have some
APC metered PDU's (AP7830's) on a 16KVA Symettra UPS.  They are "0U'
PDU's, which I suppose is a standard for PDU's.  I want to mount two
of these PDU's per rack, as we use redundant power supplies in our
servers.  Should they be mounted on either side, in the rear?  Dell
offers a "Versa Rail" so the server can be slid like a drawer, while
keeping the cables managed.  Is that worth it?  I would think that we
should use APC accessories with APC racks, and Dell acc's with Dell
racks.  Do you like APC over Dell?  Other players?  We will start with
one rack, and possibly add to that in a year as tower servers are
retired.  This is in a dedicated, locked room with dedicated A/C.  No
raised floor though.  I have seen plenty of APC racks in the field,
but no Dell, maybe I have the answer...

I am considering a Dell 4220, APC NetShelter and those units at
Graybar down the street, whatever they are (hmm must go look now)

Thanks . . . and have a great weekend!
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: Our profession has been exposed

[Devin Meade]

Re-imaging a system that has an unknown problem can part of the
problem isolation process.  Problem isolation as a part of
troubleshooting is a lost art.  So is verification that you followed a
written procedure, but I do digress...

I keep seeing entry level techs that want to fly by the seat of their
pants.  They are dying to prove they know how to defrag or chkdsk or
run malwarebytes  or whatever.  They don't want to define the problem
and then record their actions.


On Thu, Aug 27, 2009 at 10:52 AM, Ray wrote:
> But all too often IT is running leaner, as well as the endusers could be.
> Techs screwing around for 1/2 hour or longer just cause downtime for both
> parties.
>
>
> -Original Message-
> From: Charlie Kaiser [mailto:charl...@golden-eagle.org]
> Sent: Thursday, August 27, 2009 7:55 AM
> To: NT System Admin Issues
> Subject: RE: OT: Our profession has been exposed
>
> Troubleshooting is an extremely valuable tool. Curing a symptom doesn't fix
> a problem. Even a wipe and rebuild can be ineffective if the root cause is
> elsewhere. It's one thing to wipe/rebuild a desktop machine for a problem,
> but when it's a strange issue with an exchange box, or SQL server, or DC,
> it's not always an option, much less the best one.
> And it's kind of embarrassing to wipe a PC, return it to service, and have
> the same problem crop up again later that day. Doesn't look very
> professional, IMO.
>
> Being able to troubleshoot is a skill that has, to a great degree, been lost
> in our business. That's why we end up with things like that sysadmin
> flowchart. There's an art and skill to methodical diagnosis that
> differentiates the artisans from the parts changers...
> There's also an art in knowing when to wipe and when to troubleshoot... :-)
>
> ***
> Charlie Kaiser
> charl...@golden-eagle.org
> Kingman, AZ
> ***
>
>> -Original Message-
>> From: David Lum [mailto:david@nwea.org]
>> Sent: Thursday, August 27, 2009 7:47 AM
>> To: NT System Admin Issues
>> Subject: RE: OT: Our profession has been exposed
>>
>> +1          Time is money.
>>
>>
>>
>> Having said that sometimes I will troubleshoot out of curiosity even
>> after it's obvious blowing away and starting over is faster - I get a
>> burning desire to know WHAT happened. Sometimes that tidbit pays huge
>> dividends later, or sometimes knowing exactly what happened amazes
>> other tech's.
>>
>>
>>
>> Dave
>>
>>
>>
>> From: David Mazzaccaro [mailto:david.mazzacc...@hudsonhhc.com]
>> Sent: Thursday, August 27, 2009 7:16 AM
>> To: NT System Admin Issues
>> Subject: RE: OT: Our profession has been exposed
>>
>>
>>
>> "lost art"?
>>
>> Or (in most cases) it's just not cost effective.
>>
>>
>>
>>
>>
>> 
>>
>> From: Don Guyer [mailto:don.gu...@prufoxroach.com]
>> Sent: Thursday, August 27, 2009 10:06 AM
>> To: NT System Admin Issues
>> Subject: RE: OT: Our profession has been exposed
>>
>> That's how our field techs resolve a lot of issues.
>>
>>
>>
>> Troubleshooting is a lost art form, to most techs today.
>>
>>
>>
>> Don Guyer
>>
>> Systems Engineer - Information Services
>>
>> Prudential, Fox & Roach/Trident Group
>>
>> 431 W. Lancaster Avenue
>>
>> Devon, PA 19333
>>
>> Direct: (610) 993-3299
>>
>> Fax: (610) 650-5306
>>
>> don.gu...@prufoxroach.com
>>
>>
>>
>> From: Lee Douglas [mailto:lee.doug...@gmail.com]
>> Sent: Thursday, August 27, 2009 9:50 AM
>> To: NT System Admin Issues
>> Subject: Re: OT: Our profession has been exposed
>>
>>
>>
>> One thing they left out is to format the drive and start over
>> - I've heard that a lot on this forum 
>>
>> On Thu, Aug 27, 2009 at 9:44 AM, Ziots, Edward 
>> wrote:
>>
>> Sigh,
>>
>>
>>
>> Who Ratted us all out. they should be TARRED and feathered.
>>
>>
>>
>> Z
>>
>>
>>
>> Edward Ziots
>>
>> Network Engineer
>>
>> Lifespan Organization
>>
>> MCSE,MCSA,MCP+I, ME, CCA, Security +, Network +
>>
>> ezi...@lifespan.org
>>
>> Phone:401-639-3505
>>
>> 
>>
>> From: Candee Vaglica [mailto:can...@gmail.com]
>> Sent: Thursday, August 27, 2009 7:52 AM
>> To: NT System Admin Issues
>> Subject: Re: OT: Our profession has been exposed
>>
>>
>>
>> I *love* it!
>>
>>
>>
>>
>>
>> On Thu, Aug 27, 2009 at 12:22 AM, Kurt Buff 
>> wrote:
>>
>> Now anyone can be a sysadmin/tech support person:
>>
>> http://xkcd.com/627/
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>   ~
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

Re: LinkedIn

[Devin Meade]

Aaruughhh Deskworks 36 nightmares!  I knew just about all the PF key
assignments for that little jewel.  PF12 we re-calc I think.  Press that and
everyone takes a coffee break while your spreadsheet re-calculated (then you
go fix errors and do it again).  I think it had ~8 inch "floppy disk
cartridges" or something like that.  Good times, good times.


On Mon, Aug 10, 2009 at 4:20 PM, Steven M. Caesare wrote:

>  Nice!
>
>
>
> The System/36 at our company had a mechanical “life system” in it where in
> you attached a ratchet to a hex head crank and ratcheted the disc pack up so
> you could get at the guts underneath it.
>
>
>
> First time I saw a computer that needed sockets the same size I used on my
> car engine.
>
>
>
> -sc
>
>
>
> *From:* Len Hammond [mailto:lenhammo...@gmail.com]
> *Sent:* Monday, August 10, 2009 4:02 PM
> *To:* NT System Admin Issues
> *Subject:* Re: LinkedIn
>
>
>
> I've got one of those in my garage to save for posterity. Weighs about 100
> pounds and the drive motor is 1/3 horsepower. Was 'huge' too, by the
> standards of the day - 550MB. It had 4 each 14" platters. When I retired the
> VAX it was attached to I pulled the other one apart and most of us in the
> company signed a platter and presented it to the company owner & president
> to remember the VAX by.
>
>
>
>
> Len Hammond
> CSI:Hartland
> lenhamm...@gmail.com
>
>  On Fri, Aug 7, 2009 at 10:26 AM, Steven M. Caesare 
> wrote:
>
> C’mon… belt-driven hard disks are uber c00l!
>
>
>
> -sc
>
>
>
> *From:* Jon Harris [mailto:jk.har...@gmail.com]
> *Sent:* Friday, August 07, 2009 10:11 AM
>
>
> *To:* NT System Admin Issues
> *Subject:* Re: LinkedIn
>
>
>
> We still have is run in the walls but Thank God all the hardware that used
> it is gone.  System 36 and what a nightmare that was.
>
>
>
>
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Monitor: regular or widescreen

[Devin Meade]

We purchased one system with a 22 widescreen and 17 normal screen as a demo
unit.  The first one was sent back and then we got a second one.  We tested
more than just the dual monitor setup (CPU, vid card, ram, etc...).  We had
a few select users test drive it for a day or two each and then got
feedback.  Not everyone agreed but we went into the test stating that we
would order uniform machines, no one-off's!


On Mon, Aug 10, 2009 at 12:15 PM, Joe Heaton  wrote:

>  I have to say that I think I fall into this type of user.  I’ve never
> used dual monitors.  I currently have a 21” wide screen, and many windows
> open during the day.  I’ve never had that much of a problem just going down
> to the taskbar and switching windows there.
>
>
>
> Joe Heaton
>
> Employment Training Panel
>
>
>
> *From:* Sam Cayze [mailto:sam.ca...@rollouts.com]
> *Sent:* Monday, August 10, 2009 9:40 AM
> *To:* NT System Admin Issues
> *Subject:* RE: Monitor: regular or widescreen
>
>
>
> “*Why not ask your users what they want?”*
>
> *They won’t know.**  *
>
> *I deployed dual monitors to all my employees way back, and many didn’t
> even understand why, some didn’t want it.  2 weeks later I asked them how it
> was working out, and they ALL agreed that they didn’t know how they ever got
> by without one.  (In our business – dual monitors is a must).  *
>
> *It’s actually made employees not want to work from home anymore because
> they can’t function with one monitor.  Many now have 2 monitors at home.*
>
> *Sam*
>
>
>
> *From:* Brian Desmond [mailto:br...@briandesmond.com]
> *Sent:* Monday, August 10, 2009 11:31 AM
> *To:* NT System Admin Issues
> *Subject:* RE: Monitor: regular or widescreen
>
>
>
> *Why not ask your users what they want?*
>
> * *
>
> *Thanks,*
>
> *Brian Desmond*
>
> *br...@briandesmond.com*
>
> * *
>
> *c - 312.731.3132*
>
> * *
>
> *From:* Tom Miller [mailto:tmil...@hnncsb.org]
> *Sent:* Monday, August 10, 2009 11:03 AM
> *To:* NT System Admin Issues
> *Subject:* Monitor: regular or widescreen
>
>
>
> Folks,
>
>
>
> I"m about to start purchasing for our annual PC refresh cycle.  I normally
> purchase 17" monitors (we are a Dell shop) but I see I can get 19" regular
> and 19" wide screen for just a bit more.  Anyone care to comment on the
> benefit of wide v. regular size?
>
>
>
> Thanks,
>
>
>
>
>
>
>
>
>
> Tom Miller
> Engineer, Information Technology
> Hampton-Newport News Community Services Board
> 757-788-0528
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Monitor: regular or widescreen

[Devin Meade]

It depends on the work being done.  Our users have two screens.  Our CAD
jockeys have a a 22 and a 17 and can put more drawing on the 22 w/o the
annoyance of two monitors.  Some will put the toolbars on the 17.  Our
E-mail / Word / Excel jockeys use two 17's and like to be able to snap the
app to one or the other monitor, widescreen is a waste for them.  We have
one user who just can't handle the truth of using 2 monitors but I digress.
I know you asked about using one monitor, but there ya go.

Devin

On Mon, Aug 10, 2009 at 11:03 AM, Tom Miller  wrote:

>  Folks,
>
> I"m about to start purchasing for our annual PC refresh cycle.  I normally
> purchase 17" monitors (we are a Dell shop) but I see I can get 19" regular
> and 19" wide screen for just a bit more.  Anyone care to comment on the
> benefit of wide v. regular size?
>
> Thanks,
>
>
>
>
> Tom Miller
> Engineer, Information Technology
> Hampton-Newport News Community Services Board
> 757-788-0528
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: AOL

[Devin Meade]

Heh, to this day I drive by a UMB Bank branch office I say to myself "Upper
memory block bank".  Nobody gets that except for subscribers to ntsysadmin.
QEMM-386 beat the pants of of memmaker any day!

Devin


On Fri, Aug 7, 2009 at 11:39 AM, Erik Goldoff  wrote:

>  Yep, I'd use QEMM, but had sk1llz and would tweak the configs for best
> results ... used to know what was in each UMB, sadly those sk1llz that used
> to earn big $$$ are no longer in play   : (
>
> BIG re-education cycle in the IT field, much more rapid than medicine, like
> I told the doctors at the CDC ( Doctors were considered 'professional'
> staff, IT/Computer Specialists were 'administrative support' !!! )
>
>  Erik Goldoff
>
> *IT  Consultant*
>
> *Systems, Networks, & Security *
>
>
>  --
> *From:* Phillip Partipilo [mailto:p...@psnet.com]
> *Sent:* Friday, August 07, 2009 12:09 PM
> *To:* NT System Admin Issues
> *Subject:* RE: AOL
>
>  Anyone cool was using QEMM and Desqview/386!
>
>
> Phillip Partipilo
> Parametric Solutions Inc.
> Jupiter, Florida
> (561) 747-6107
>
>
>
>
>  --
> *From:* Steven M. Caesare [mailto:scaes...@caesare.com]
> *Sent:* Friday, August 07, 2009 11:59 AM
> *To:* NT System Admin Issues
> *Subject:* RE: AOL
>
>  m...@d himem sk1llz?
>
>
>
> -sc
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: BB outage?

[Devin Meade]

Our BES is working well with our 30 BB's - AT&T in Oklahoma.
-Devin

On Fri, Jul 31, 2009 at 4:56 PM,  wrote:

> No issues here. I'm in TX.
> --Original Message--
> From: wjh
> To: NT System Admin Issues
> ReplyTo: NT System Admin Issues
> Subject: BB outage?
> Sent: Jul 31, 2009 4:44 PM
>
> Anyone having issues with blackberry service?  I'm in Atlanta.
>
> Bill
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Black Hat / Visual studio / I-phones....

[Devin Meade]

This week in conclusion:

1. Any developers that use Visual Studio must patch it, recompile and
redistribute all apps.  Nice.
 1. A. It seems that all our doze boxes have the run time version of
this and must get the dev patch, not just the iE patch (done yesterday btw).
2. Patch I.E. (relatively easy).
3. Patch I-phones with I-tunes (pphf  . . .).  The carrier can't patch
it wirelessly?
4. Watch closely for a Windows Mobile patch.
5. Watch for a text message with one single character ... a box.
6. Lookout for laptop BIOS level security packages (computrace, et.al.).  We
have none of these.
7. Have a good weekend!

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: Star Trek Science Fiction?

[Devin Meade]

Well just keep your eye on the red shirts, they never live to the end of the
episode.


On Thu, Jul 30, 2009 at 12:14 PM, Maglinger, Paul wrote:

>  I refer to TNG as "The kinder, gentler Star Trek".  Where's the violence,
> the fist fights, the torn clothing?  I WANNA SEE BLOOD AND GORE AND GUTS AND
> VEINS IN MY TEETH! EAT DEAD BURNT BODIES!  KILL KILL KILL KILL!
>
>  --
> *From:* Erik Goldoff [mailto:egold...@gmail.com]
> *Sent:* Wednesday, July 29, 2009 8:42 PM
> *To:* NT System Admin Issues
> *Subject:* RE: OT: Star Trek Science Fiction?
>
>  nope, I discount TNG ... look at the captain ... all that technology, and
> they still can't cure baldness ?  
>
>  Erik Goldoff
>
> *IT  Consultant*
>
> *Systems, Networks, & Security *
>
>
>  --
> *From:* Wolf [mailto:th3.w...@gmail.com]
> *Sent:* Wednesday, July 29, 2009 9:11 PM
> *To:* NT System Admin Issues
> *Subject:* Re: OT: Star Trek Science Fiction?
>
> It can clone. There are two Riker's now, remember? TNG 6th season "Second
> Chances"
>
> On Wed, Jul 29, 2009 at 1:52 PM, Erik Goldoff  wrote:
>
>>  hell, even their data storage ... remarkably like a 3-1/2" diskette 20+
>> years before they actually came into use
>>
>>
>> The TRANSPORTER is the pure science fiction ... if it worked, it would
>> also be a clone machine ... because it has to destroy (deconstruct) the
>> source object to send it before it can recreate it at the other side, but
>> once in the buffer, should be able to continuously replicate the object
>>  Erik Goldoff
>>
>> *IT  Consultant*
>>
>> *Systems, Networks, & Security *
>>
>>
>>  --
>> *From:* Sherry Abercrombie [mailto:saber...@gmail.com]
>> *Sent:* Wednesday, July 29, 2009 3:08 PM
>> *To:* NT System Admin Issues
>> *Subject:* Re: OT: Star Trek Science Fiction?
>>
>> Well, let's not forget the communicatorany one use a cell phone these
>> days?  Pens as we know them today also were a direct result of the original
>> series
>>
>>
>>
>>
>>
>>
>
>
>
>
>
>
>
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Happy birthday NASA

[Devin Meade]

>From Wikipedia:NASA was established by the National Aeronautics and Space
Act  on
July 29, 1958

And no special Google page?

- Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Please keep me ON this mailing list

[Devin Meade]

This is not the day to leave this list, today's humor alone is worth it!

Anyone remember the "Way back" machine?

Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Trend Micro and IE zero day exploit

[Devin Meade]

FYI - If you have Trend Micro Office Scan and are using the web reputation
feature, you are covered:

http://us.trendmicro.com/us/threats/microsoft-mpeg-vulnerability/index.html
"Trend Micro products with Web Reputation technology currently block
malicious URLs associated with this exploit."

-- Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: New IE zero day exploit in the wild

[Devin Meade]

Where do your rate Grad School Professors?  Below or above Dr's and/or
Lawyers (grin)?

On Thu, Jul 9, 2009 at 4:06 PM, Kurt Buff  wrote:

> Yeah, well...
>
> In the medical field, right after doctors, I'd put CCU nurses. Heh.
>
> Kurt
>
> On Thu, Jul 9, 2009 at 12:27, paul chinnery wrote:
> > Thanks.  I am so forwarding this to our Clincal Analyst; she's a licensed
> RN
> > who use to work in CCU.
> >
> >> Date: Thu, 9 Jul 2009 11:44:54 -0700
> >> Subject: Re: New IE zero day exploit in the wild
> >> From: kurt.b...@gmail.com
> >> To: ntsysadmin@lyris.sunbelt-software.com
> >>
> >> Since I don't work with doctors in my capacity of IT geek, I don't
> >> know for sure. However, I was married to a critical care nurse for 7
> >> years, and I'll put my money on the doctors.
> >>
> >> Heh.
> >>
> >> On Thu, Jul 9, 2009 at 05:04, paul chinnery wrote:
> >> > A third of my users are doctors.  I wonder which group is harder to
> work
> >> > with: engineers or doctors?
> >> >
> >> >> Date: Wed, 8 Jul 2009 11:51:09 -0700
> >> >> Subject: Re: New IE zero day exploit in the wild
> >> >> From: kurt.b...@gmail.com
> >> >> To: ntsysadmin@lyris.sunbelt-software.com
> >> >>
> >> >> Truth. However, there are also political and training issues.
> >> >>
> >> >> 1) We haven't, as a company (nor within IT) figured out how to make
> >> >> our standard apps work under under non-admin accounts. This will take
> >> >> time and resources to figure out, and then further time and resources
> >> >> to figure out how to "productionise" the application of these
> settings
> >> >> and apply them across the domain, including two offices overseas.
> >> >>
> >> >> 2) A large portion of our users are engineers who have a rabid
> >> >> aversion to the idea that they can't be admins on their own boxes.
> I'm
> >> >> in the (multi-year!) process of simply trying to convince engineering
> >> >> managers that none of the staff need two NICs in their boxes - one
> for
> >> >> the production LAN and one for the test/dev LAN.
> >> >>
> >> >> 3) The overseas offices are also politically resistant to this idea.
> >> >>
> >> >> While I agree that the load would be lessened, and we'd have a much
> >> >> better managed and more secure environment, this is not a trivial
> >> >> effort, and at times I despair. But, I persist, and have it as a goal
> >> >> to work toward this fiscal year.
> >> >>
> >> >> The first step is to get signoff by company management, in the form
> of
> >> >> an actual policy - something of which there are no good examples.
> >> >> There are practices and recommendations regarding IT, but very little
> >> >> in the way of a real IT policy that has been agreed to by management.
> >> >>
> >> >> Kurt
> >> >>
> >> >> On Wed, Jul 8, 2009 at 07:52, Jonathan Link
> >> >> wrote:
> >> >> > After taking local admin rights away from users my plate is less
> >> >> > full.
> >> >> > YMMV.
> >> >> >
> >> >> > On Wed, Jul 8, 2009 at 10:47 AM, Kurt Buff 
> >> >> > wrote:
> >> >> >>
> >> >> >> Yes, unfortunately, all our users are admins. It sucks, but I use
> it
> >> >> >> to my advantage when I can.
> >> >> >>
> >> >> >> The reason we've not done a GP is because we haven't had the
> luxury
> >> >> >> of
> >> >> >> studying to understand them. Our plates always seem to be full
> with
> >> >> >> other things.
> >> >> >>
> >> >> >> On Tue, Jul 7, 2009 at 19:04, Ken Schaefer
> >> >> >> wrote:
> >> >> >> > Are all your users admins? Otherwise, how is that logon script
> >> >> >> > going
> >> >> >> > to
> >> >> >> > update HKLM?
> >> >> >> >
> >> >> >> > Machine-based startup script would be better idea, no?
> >> >> >> >
> >> >> >> > Cheers
> >> >> >> > Ken
> >> >> >> >
> >> >> >> > 
> >> >> >> > From: Kurt Buff [kurt.b...@gmail.com]
> >> >> >> > Sent: Wednesday, 8 July 2009 2:41 AM
> >> >> >> > To: NT System Admin Issues
> >> >> >> > Subject: Re: New IE zero day exploit in the wild
> >> >> >> >
> >> >> >> > I'm just pushing out the .reg file in the login script:
> >> >> >> >
> >> >> >> > regedit /s \\fileserver\public\patches\videokillbits.reg
> >> >> >> >
> >> >> >> > The file was easy to create, in a capable editor (not notepad or
> >> >> >> > wordpad) that allows metacharacter search and replace, such as
> >> >> >> > '\n'
> >> >> >> > for CRLF and '\t' for tab. I used the ancient,
> no-longer-supported
> >> >> >> > PFE32. I really should switch to VIM, I suppose.
> >> >> >> >
> >> >> >> > On Tue, Jul 7, 2009 at 08:40, Eric
> >> >> >> > Wittersheim wrote:
> >> >> >> >> I'm pushing out the .reg via GP.  So far so good.
> >> >> >> >>
> >> >> >> >> On Tue, Jul 7, 2009 at 10:38 AM, David Lum  >
> >> >> >> >> wrote:
> >> >> >> >>>
> >> >> >> >>> The “Microsoft fix-it” is an MSI that I am pushing via SMS and
> >> >> >> >>> is
> >> >> >> >>> pushing
> >> >> >> >>> fine (so far just a few test cases have it, but no issues).
> >> >> >> >>> Beats
> >> >> >> >>> trying to
> >> >> >> >>> push out a .REG or something…
> >

Re: Gmail

[Devin Meade]

Refresh took mine out of beta.  Hey I only have 96 gmail invites left.  What
happened to the bazillion I had?

On Tue, Jul 7, 2009 at 12:11 PM, Steven M. Caesare wrote:

>  I guess that shows what they think of you.
>
>
>
> -sc
>
>
>
> *From:* Jon Harris [mailto:jk.har...@gmail.com]
> *Sent:* Tuesday, July 07, 2009 1:03 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Gmail
>
>
>
> Mine still shows as Beta.
>
>
>
> Jon
>
> On Tue, Jul 7, 2009 at 1:01 PM, Steven M. Caesare 
> wrote:
>
> Well, well, well… finally out of beta.
>
>
>
> -sc
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Poll: Internal temperature of UPS?

[Devin Meade]

Heh, that reminds me:




On Mon, Jul 6, 2009 at 5:16 PM, Ben Scott  wrote:

> \On Mon, Jul 6, 2009 at 2:29 PM, David
> Mazzaccaro wrote:
> > Wondering what others typically see their UPS equipment running an
> internal
> > temp at?
> > My APC 3000XLS has gotten up to 103.2 F, just wondering how bad that
> is???
>
>   I have no hard evidence, but I suspect APC UPSes have some kind of
> long-standard failure mode where they overcharge the batteries,
> leading to the batteries swelling and getting stuck in the unit.  High
> temperatures would be another symptom of overcharging.  Check to see
> if the batteries will still slide out of the unit or not.  If not, be
> ready with a screwdriver and a downtime window the next battery
> change.  You'll have to disassemble the entire chassis.
>
>  As I said, no hard evidence, but I've experienced stuck swollen
> batteries several times myself.  Only with APC.  Many others report
> the same.  Google finds many, many hits for this for APC, few or none
> for other manufactures.
>
>  This apparent design defect is my only complaint about APC.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: Filling method guideline

[Devin Meade]

Gene,

I work for a A&E firm.  Early this year we revamped (um... I mean created
where none existed) our "Records Retention and Document Control" policies.
 This has very stringent guidelines for everything.  No exceptions.  We paid
lawyers to QC it (they always trump IT guys, and everyone else too).  Not to
change the subject of this post, but if you are in this field, you run the
risk of a lawsuit.  The product you create is a construction document or
contract.  That old exchange server tape left on the shelf can cost big
time.  BIG TIME.  That old PC under your desk as well.

The short story is that we retain only contract documents into infinity.
 Now, our project creation process includes the creation of empty folders.
 These are not to be renamed, moved or deleted.  Sorry, I an not at liberty
to share folder structure, but its not that complicated.  Upon completion
each project now goes through an archiving process.  No engineering calcs
will be kept into infinity.  The lawyers hate these.  If it's not a
deliverable to the client, it gets deleted at "archive time".  This includes
emails (another can-of-worms).

Your filing and naming conventions don't matter, as long as it is documented
and *stringently followed*.  The quarrels inside the firm on this can be a
nightmare (been there, done that).  I really don't mean to belittle your OP,
but this needs to go to the ownership of the firm level.

FYI - There was much "wailing and gnashing of teeth" when this was
implemented .

hth, Devin

On Thu, Jun 25, 2009 at 6:06 PM, Gene Giannamore<
gene.giannam...@abideinternational.com> wrote:
> Anyone work at an Architectural, Engineering, or General Contractor firm?
I
> am looking for a filling system guideline. Right now we are having several
> people all insisting that their way is the only way to file. It just makes
> it very difficult to find things, especially when we cannot get everyone
to
> follow the naming conventions. Just wondering if anyone might be willing
to
> share, their filling guidelines.
>
>
>
>
>
>
>
> Gene Giannamore
>
> Abide International Inc.
>
> Technical Support
>
> 561 1st Street West
>
> Sonoma,Ca.95476
>
> (707) 935-1577Office
>
> (707) 935-9387Fax
>
> (707) 766-4185Cell
>
> gene.giannam...@abideinternational.com
>
>
>
>
>
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Trend Micro Client Outbreak - Need to remove it from Domain ...fast

[Devin Meade]

FYI If you need to re-home the servers, you will need to TCP port the
clients are using.  From my fading memory it could be 8080 or 8090 as
the defaults.  It depends on the TM version, I think.
-Devin

On Sun, Jun 28, 2009 at 11:07 PM, Devin Meade wrote:
> There might be a group policy installing this.  Maybe the option to
> "uninstall the software if it falls out of the scope of management"
> was checked on, if so disable the GPO, force a policy update and
> reboot them.
>
> Could it be that the clients are homed to a server that is no more?
> If so, you may be able to re-home them to the existing and working
> server, then uninstall.  Look for a move operation under the client
> management piece.
>
> If you have the TMVS running, then you could identify the machines and
> write a quick startup script (with a "if computername==xxx" to
> uninstall them - I don't have the cmd line for that, sorry.
>
> Hopefully you are now done with this... :-)
>
> hth, Devin
>
> On Sun, Jun 28, 2009 at 5:06 PM, aci wrote:
>> Thank you for your replies.
>>
>> Unfortunately, the domain has SAV version 10.1.8. I do not see any options 
>> for removing T/M in there, but of course, I could have missed it.
>>
>> As for the T/M web console, when I am in it, the desktops group is 
>> completely empty. That is why I say I am not sure how the installations were 
>> done. For all I know, he went out and did them manually because he thought 
>> better to have something on the workstation that nothing...
>>
>> I was able to do a scan of the network using the TM vulnerability scanner. 
>> It was able to find all of the workstations, T/M managed or otherwise...) 
>> but I did not see any way to remove clients because they, themselves were 
>> not listed in the web console. I don't know how to refresh the console to 
>> see what is actually installed. If I were able to do that, perhaps I would 
>> be able to right click on them and uninstall the client as suggested.
>>
>> and ideas???
>>
>> TIA
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>>
>
>
>
> --
> Devin
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Re: Trend Micro Client Outbreak - Need to remove it from Domain ...fast

[Devin Meade]

There might be a group policy installing this.  Maybe the option to
"uninstall the software if it falls out of the scope of management"
was checked on, if so disable the GPO, force a policy update and
reboot them.

Could it be that the clients are homed to a server that is no more?
If so, you may be able to re-home them to the existing and working
server, then uninstall.  Look for a move operation under the client
management piece.

If you have the TMVS running, then you could identify the machines and
write a quick startup script (with a "if computername==xxx" to
uninstall them - I don't have the cmd line for that, sorry.

Hopefully you are now done with this... :-)

hth, Devin

On Sun, Jun 28, 2009 at 5:06 PM, aci wrote:
> Thank you for your replies.
>
> Unfortunately, the domain has SAV version 10.1.8. I do not see any options 
> for removing T/M in there, but of course, I could have missed it.
>
> As for the T/M web console, when I am in it, the desktops group is completely 
> empty. That is why I say I am not sure how the installations were done. For 
> all I know, he went out and did them manually because he thought better to 
> have something on the workstation that nothing...
>
> I was able to do a scan of the network using the TM vulnerability scanner. It 
> was able to find all of the workstations, T/M managed or otherwise...) but I 
> did not see any way to remove clients because they, themselves were not 
> listed in the web console. I don't know how to refresh the console to see 
> what is actually installed. If I were able to do that, perhaps I would be 
> able to right click on them and uninstall the client as suggested.
>
> and ideas???
>
> TIA
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Cable tester suggestion

[Devin Meade]

This also is a tone generator and works with the Fluke probe:

http://www.cdw.com/shop/products/default.aspx?EDC=783550&RecommendedFOREDC=742687&RecoType=AC&cm_sp=Product-_-RecoAcc-_-Fluke+Networks+IntelliTone+Pro+200+Probe


On Fri, Jun 5, 2009 at 1:48 PM, Devin Meade  wrote:

> Worth every cent, and it makes me into a super-hero (grin).
>
> *Fluke IQ Cable qualifier. *
>
> http://www.cdw.com/shop/products/default.aspx?edc=742687&enkwrd=ALLPROD%3a742687
>
> This is not cheap, but we had one of those continuity testers before.  I
> kept pitching a fit when I saw 6 inches of jacket removed from cat 5 cable
> with frayed ends etc.  I am currently moving a bundle of cables that were
> laid over vibrating duct work and I see some copper on a few of them.  I
> predict a new cable run...
>
> Now don't let any phone guys near our network closet.
>
> hth,Devin
>
> On Fri, Jun 5, 2009 at 11:59 AM, Phillip Partipilo  wrote:
>
>> I've got a basic cable tester that essentially just tests continuity and
>> polarity.  Every now and then, during our rollout of entire-office
>> gigabit,
>> there is a line that performs like crap.  This cheap tester makes the
>> connection look fine, when, after a re-crimp, it obviously is not.  I know
>> more sophisticated testers exist, that might indicate a small short,
>> crosstalk, interference, reflections, a partial-crimp causing resistance,
>> etc.
>>
>> If any of you use and/or have used such a tester, what would you
>> recommend?
>>
>>
>> Phillip Partipilo
>> Parametric Solutions Inc.
>> Jupiter, Florida
>> (561) 747-6107
>>
>>
>>
>>
>>
>> THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
>> AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS
>> INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
>> COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
>> IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
>> NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
>> FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER.
>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>>
>
>
>
> --
> Devin
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Re: Cable tester suggestion

[Devin Meade]

Worth every cent, and it makes me into a super-hero (grin).

*Fluke IQ Cable qualifier. *
http://www.cdw.com/shop/products/default.aspx?edc=742687&enkwrd=ALLPROD%3a742687

This is not cheap, but we had one of those continuity testers before.  I
kept pitching a fit when I saw 6 inches of jacket removed from cat 5 cable
with frayed ends etc.  I am currently moving a bundle of cables that were
laid over vibrating duct work and I see some copper on a few of them.  I
predict a new cable run...

Now don't let any phone guys near our network closet.

hth,Devin

On Fri, Jun 5, 2009 at 11:59 AM, Phillip Partipilo  wrote:

> I've got a basic cable tester that essentially just tests continuity and
> polarity.  Every now and then, during our rollout of entire-office gigabit,
> there is a line that performs like crap.  This cheap tester makes the
> connection look fine, when, after a re-crimp, it obviously is not.  I know
> more sophisticated testers exist, that might indicate a small short,
> crosstalk, interference, reflections, a partial-crimp causing resistance,
> etc.
>
> If any of you use and/or have used such a tester, what would you recommend?
>
>
> Phillip Partipilo
> Parametric Solutions Inc.
> Jupiter, Florida
> (561) 747-6107
>
>
>
>
>
> THIS ELECTRONIC MESSAGE AND ANY ATTACHMENTS ARE CONFIDENTIAL
> AND PROPRIETARY PROPERTY OF THE SENDER. THE INFORMATION IS
> INTENDED FOR USE BY THE ADDRESSEE ONLY. ANY OTHER INTERCEPTION,
> COPYING, ACCESSING, OR DISCLOSURE OF THIS MESSAGE IS PROHIBITED.
> IF YOU HAVE RECEIVED THIS MESSAGE IN ERROR, PLEASE IMMEDIATELY
> NOTIFY THE SENDER AND DELETE THIS MAIL AND ALL ATTACHMENTS. DO NOT
> FORWARD THIS MESSAGE WITHOUT PERMISSION OF THE SENDER.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>



-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Performance problem on VMwareServer2 - gah

[Devin Meade]

I played around with VMWare server 2.0 and found the ajax web server sucked
all the life out of the host.  That was the only thing on a fairly quick
machine.  Version 1 kills Version 2 performance wise.  Throw in AJAX with
the rest of your google search terms and read on.

-Devin

On Sun, May 24, 2009 at 4:23 AM, Ken Schaefer  wrote:

> FFS - the OP is running a grand total of 5 OSes - 4 VMs and the host, with
> nothing running in any of the VMs across 3 disks on a new server
>
> I can do better than that my laptop (I am writing this email whilst running
> 4 MOSS servers, 1 SQL Server and a DC) on my Dell E6400 with 3 spindles.
>
> Seeing 15 minute lags in the VMs at a time means that something else is up.
> It's not the number of disks. It be the RAID controller, or some other
> driver issue.
>
> Cheers
> Ken
>
> 
> From: Charlie Kaiser [charl...@golden-eagle.org]
> Sent: Saturday, 23 May 2009 5:09 AM
> To: NT System Admin Issues
> Subject: RE: Performance problem on VMwareServer2 - gah
>
> You've got an inadequate disk subsystem for what you're trying to do.
> Choices...
> 1. Launch fewer VMs at one time.
> 2. Add JBOD storage and run one VM per spindle.
> 3. Add USB drives and run the VMs off of that. Not ideal, but workable.
>
> A Raid5 array, as Joseph pointed out, with its parity overhead, is going to
> be unworkable long term. BTDT. My best solution in the past has been a
> bunch
> of disks, ideally mirror sets for reliability if you can swing it, with one
> VM per array.
>
> ***
> Charlie Kaiser
> charl...@golden-eagle.org
> Kingman, AZ
> ***
>
> > -Original Message-
> > From: jesse-r...@wi.rr.com [mailto:jesse-r...@wi.rr.com]
> > Sent: Friday, May 22, 2009 11:24 AM
> > To: NT System Admin Issues
> > Subject: RE: Performance problem on VMwareServer2 - gah
> >
> > Single Array, RAID5, made up of 3 physical disks (thats all we have).
> >
> > Original Message:
> > -
> > From: Charlie Kaiser charl...@golden-eagle.org
> > Date: Fri, 22 May 2009 11:08:22 -0700
> > To: ntsysadmin@lyris.sunbelt-software.com
> > Subject: RE: Performance problem on VMwareServer2 - gah
> >
> >
> > How are the physical drives configured? We usually put no
> > more than one VM on a spindle. The conflicts between two VMs
> > on one spindle produce unacceptable bottlenecks in my experience.
> >
> > ***
> > Charlie Kaiser
> > charl...@golden-eagle.org
> > Kingman, AZ
> > ***
> >
> > > -Original Message-
> > > From: jesse-r...@wi.rr.com [mailto:jesse-r...@wi.rr.com]
> > > Sent: Friday, May 22, 2009 10:49 AM
> > > To: NT System Admin Issues
> > > Subject: Performance problem on VMwareServer2 - gah
> > >
> > > Thought I'd ask our resident gurus...
> > >
> > > I have a brand new HP DL360 server. 8GB memory, 2 quads, 3
> > SAS drives
> > > with a P400i/512 controller w/BBWC.
> > >
> > > I am running Windows 2003 R2 Enterpise on the host machine. I also
> > > created
> > > (4) VMs (each 75GB in size, preallocated) each with a
> > Single vCPU, and
> > > 2GB of memory, running Windows 2003 R2 Enterprise.
> > > NOTE -- These VMs have NOTHING on them except the O/S. No
> > > applications, no nothing.
> > >
> > > I have serious performance problems as it relates to the
> > VMs becoming
> > > unusable for a periond of 15 minutes or so every now and
> > then I am
> > > noticing, on the HOST, that the logical disk - % write time
> > > performance counter just shoots up 100% for as much as
> > 10-15 minutes
> > > (see attachment
> > > diskusage1.jpg) and then slowly comes down back to near zero (see
> > > attachment diskusage2.jpg). The graphs show a total time
> > duration of
> > > 16 minutes - FYI...
> > >
> > > During this high spike of Disk Write % on the host, the VMs
> > themselves
> > > are doing NOTHING. Again, they are PLAIN OS installed with nothing
> > > installed.
> > > Performance monitoring on those VMs shows barely ANY
> > activiate at all,
> > > while the host shows 100% disk write %. So it's definitely
> > the host,
> > > it seems, causing the poor performance. Also, notice in Attachment
> > > diskusage2.jpg the slow decline of Disk Write %... This
> > ALWAYS happens
> > > after a period of 100% disk write % usage it trails off slowly
> > > like that over a 10-15 minute period before it come down to zero
> > > again.
> > >
> > > Any idea what is causing this? I'm thinking about giving up
> > and going
> > > to ESXi. ??
> > >
> > > picture1 -
> > > http://communities.vmware.com/servlet/JiveServlet/download/126
> > > 0005-23055/dis
> > > kusage1.jpg?tstart=0
> > >
> > > picture2-
> > > http://communities.vmware.com/servlet/JiveServlet/download/126
> > > 0005-23054/dis
> > > kusage2.jpg?tstart=0
> > >
> > > Thanks all!
> > >
> > > Remember the true meaning of Memorial Day!
> > > JR
> > >
> > >
> > > 
> > > m

Re: Disaster Recovery (Was Access Based Enumeration on WS08)

[Devin Meade]

We are a much smaller shop.  I setup an external disk to replicate our "IS"
fileshare.  It's also on tape, but without a tape dirve, well...   It has
all documentation, keycodes, etc.

We also keep an updated offsite DR set that has at least two copies of
tested optical media (server, w/s, LOB apps).  I also keep a printed copy
of: workstation deploy documentation, IP Addresses, support contract info,
home phone numbers and active projects sorted by client.

hth, Devin


On Thu, May 21, 2009 at 10:32 AM, Don Guyer wrote:

>  At my last company, we had a rolling cabinet at our DR site that we could
> store items in. We had a few large software binders, as well as some paper
> documentation. We tested DR processes quarterly and updated these items at
> that time where necessary. Yes, it was time consuming to build a software
> repository and cost a bit of money for the media, etc, but it was well worth
> it all.
>
>
>
>
>
> Don Guyer
>
> Systems Engineer - Information Services
>
> Prudential, Fox & Roach/Trident Group
>
> 431 W. Lancaster Avenue
>
> Devon, PA 19333
>
> Direct: (610) 993-3299
>
> Fax: (610) 650-5306
>
> don.gu...@prufoxroach.com
>
>
>
> *From:* Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edu]
> *Sent:* Thursday, May 21, 2009 11:26 AM
> *To:* NT System Admin Issues
> *Subject:* Disaster Recovery (Was Access Based Enumeration on WS08)
>
>
>
> On the topic of DR, quick question.  What methods do other people use for
> storing your critical DR recover information offsite?
>
> I’m not talking about your actual data (tapes, disk, etc).  What I mean is
> lists of things like hardware specs for servers, switches, etc—the lists of
> things you would need to get back up and running, like what to physically
> replace first and lists including what software is installed where.
>
>
> The problem I see with our current setup is that this info is being stored
> on the servers that could need to be restored.  It changes too often to make
> a paper copy or printout each time.  I’m thinking of something like a google
> app service where the data would be available outside of our site in the
> event we really need it.  Free (like google) is nice, but a secure pay-for
> service is also something to consider as they would really be there if you
> need them.
>
>
>
> -Bonnie
>
>
>
> *From:* Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edu]
> *Sent:* Wednesday, May 20, 2009 6:57 AM
> *To:* NT System Admin Issues
> *Subject:* Access Based Enumeration on WS08
>
>
>
> First off, I apologize if this has been covered recently as I haven’t had
> time to read any list mail for over two weeks.  I went on vacation for a
> week, and while I was gone, this happened to one of our schools:
>
>
>
> http://www.komonews.com/news/44411737.html
>
>
>
> http://www.komonews.com/news/44500317.html
>
>
>
> There were four servers in the building.  If you don’t have your DR plans
> updated, I highly recommend reviewing them.
>
>
>
> On to the question—
>
>
>
> In Windows Server 2008, is there a way to enable Access based enumeration
> by default on all file shares?  I can’t seem to find it.  I know how to do
> so for individual shares via share and storage management, but I’m looking
> for something that will either turn it on by default or act like the
> checkbox on 2003 that allowed you to reset all shares to the same as the one
> you are working with.
>
>
>
> Thanks,
>
> Bonnie
>
>
>
>
>
>
>
>
>
>
>
>
>
>


-- 
Devin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~