On 28 Jun 2012 at 10:45, Kurt Buff wrote:
> It's a much nicer constant than Pi...
> http://newsletters.networkworld.com/t/6688025/258773379/367815/0/
>
> and especially
> http://tauday.com/
>
> Because Pi ruined my math career, I care...
Sorry I missed it.
Forwarded to the math teachers in my
I will vigorously agree with this... a cluster for handling ADFS2 load for
basic sign-on to SaaS is very rarely necessary, but you almost always do
want to be able to patch and reboot without making unavailable all the
stuff that now absolutely depends on federation/SSO.
--Steve
On Thu, Jun 28, 2
:-P
From: Brian Desmond [mailto:br...@briandesmond.com]
Sent: Thursday, June 28, 2012 11:52 AM
To: NT System Admin Issues
Subject: RE: Office 365 and AD synchronization
I think 99.99% is overdoing it. I'm pretty sure there is more than .01% of
customers who want HA for their AuthN to email, IM,
3.5 remove server from domain
From: David Lum [mailto:david@nwea.org]
Sent: Thursday, June 28, 2012 2:14 PM
To: NT System Admin Issues
Subject: Upgrading DC's to 2K8
Reality check:
Empty forest root
MYDOMAIN.LOCAL
ML-DC01
ML-DC02
Then subdomain
SUBDOMAIN.MYDOM
I am with Kurt on this you might as well push it to 2k8r2. Jon
> Date: Thu, 28 Jun 2012 11:32:01 -0700
> Subject: Re: Upgrading DC's to 2K8
> From: kurt.b...@gmail.com
> To: ntsysadmin@lyris.sunbelt-software.com
>
> > From: David Lum [mailto:david@nwea.org]
> > Sent: Thursday, June 28, 2012
Woot I think that is it - thanks
-Original Message-
From: Steve Kradel [mailto:skra...@zetetic.net]
Sent: Thursday, June 28, 2012 2:45 PM
To: NT System Admin Issues
Subject: Re: Upgrading to IIS 7.x
Haven't needed to configure one of these under IIS7, but suspect it is in the
"Handler M
Haven't needed to configure one of these under IIS7, but suspect it is
in the "Handler Mappings" section; you might also need to register it
as an allowed CGI; along these lines
http://geekswithblogs.net/Lance/archive/2007/12/13/how-to-run-cgi-applications-on-iis7.aspx
--Steve
On Thu, Jun 28, 201
> From: David Lum [mailto:david@nwea.org]
> Sent: Thursday, June 28, 2012 2:14 PM
> To: NT System Admin Issues
> Subject: Upgrading DC's to 2K8
> What about this plan for ML-DC01?
I assume your earlier message about the uneventful schema extension
was for this domain, and for this purpose?
Sounds sound. Did it here about 18 months ago
John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
From: David Lum [mailto:david@nwea.org]
Sent:
Reality check:
Empty forest root
MYDOMAIN.LOCAL
ML-DC01
ML-DC02
Then subdomain
SUBDOMAIN.MYDOMAIN.LOCAL
SML-DC01
SML-DC02
All are currently 2K3 DC's. Ideally I think we'd like to upgrade them to W2K8
DC's and keep the same name (we
Ah
No.
"The security is based on a proprietary, patent pending, Digital
Security Bubble(TM) (DSB) algorithm..."
Snakeoil.
Kurt
On Thu, Jun 28, 2012 at 9:30 AM, Ziots, Edward wrote:
> Actually according to the article they are using AES and RSA standards,
> which are available to public sc
On Thu, Jun 28, 2012 at 12:30 PM, Ziots, Edward wrote:
> Actually according to the article they are using AES and RSA standards,
> which are available to public scrutiny ...
I saw that, too. But if accurate, that means they're lying in their
product description. Either way, it's a sign of sna
No, but the other SE's half did. I should have put a smiley after my "nothing
broke" comment.
I read a blog the other day that a schema upgrade did break something, but only
because they went "forward then backward":
http://blogs.technet.com/b/askpfeplat/archive/2012/02/20/2008-r2-active-directo
I know, it was a tong-in-cheek comment. Like you I thought there was an EventID
description that differentiated between an interactive logon and other types.
Have you looked on http://www.ultimatewindowssecurity.com ?
Specifically:
http://www.ultimatewindowssecurity.com/securitylog/quickref/Defa
It is Microsoft Duck..
Z
Edward Ziots
CISSP, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Thursday, June 28, 2012 12:35 PM
To: NT System Admin Issues
Subject: Re: Schema upgrade/rollback
Why not put the service accounts in a group and apply GPO that denies
logon type 2 (Logon Locally) via User Rights Assignment.
1) The common logon types are the following.
a) Logon Type (2): Console logon - interactive from the computer
console
b) Logon Type (3): Network l
You *expected* something to break?
* *
*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…
*
On Thu, Jun 28, 2012 at 11:56 AM, David Lum wrote:
> I extended our Schema last week and amazingly, nothing broke. Now,
> before deploying the first 2K
Actually according to the article they are using AES and RSA standards,
which are available to public scrutiny (I agree if encryption was
proprietary and not open to public scrutiny I wouldn't be advising using
it)
The Anti-Forensics capabilities might be a blessing and a curse in the
age of BYOD
Keep in mind what I'm trying to do here. Not trying to figure out a way to
make sure they can't do interactive logon. I need to prove to audit that
they didn't logon interactively. That means a report from the security
logs.
Christopher Bodnar
Enterprise Achitect I, Corporate Office of Tech
Set a GPO to prevent them from being interactive and see what breaks :P
From: Christopher Bodnar [mailto:christopher_bod...@glic.com]
Sent: Thursday, June 28, 2012 7:37 AM
To: NT System Admin Issues
Subject: Identifying service accounts that are loggin in interactively
Is anyone else tasked with
I extended our Schema last week and amazingly, nothing broke. Now, before
deploying the first 2K8 DC I am running though this "checklist":
http://blogs.technet.com/b/glennl/archive/2009/08/21/w2k3-to-w2k8-active-directory-upgrade-considerations.aspx
In some cases I am going to create an equivalen
I think 99.99% is overdoing it. I'm pretty sure there is more than .01% of
customers who want HA for their AuthN to email, IM, SharePoint, partner apps,
etc.
Thanks,
Brian Desmond
br...@briandesmond.com
w - 312.625.1438 | c - 312.731.3132
From: Michael B. Smith [mailto:mich...@smithcons.com]
Yes - that is the only back out plan.
Thanks,
Brian Desmond
br...@briandesmond.com
w - 312.625.1438 | c - 312.731.3132
From: David Lum [mailto:david@nwea.org]
Sent: Friday, June 08, 2012 11:48 PM
To: NT System Admin Issues
Subject: RE: Schema upgrade/rollback
I'm not worried in the least,
Is anyone else tasked with doing this? This is a new requirement from
audit. We have about 1,000 accounts that are being used to run services in
the environment. So audit is asking how we know these accounts aren't
being used to logon interactively. All security logs are being shipped to
or SEI
Uh, yeah. +27
It pegs the bullshit meter fer sher.
Kurt
On Thu, Jun 28, 2012 at 7:01 AM, Ben Scott wrote:
> On Thu, Jun 28, 2012 at 9:43 AM, David Lum wrote:
>> http://news.cnet.com/8301-1009_3-57462189-83/wickr-an-iphone-encryption-app-a-3-year-old-can-use/?tag=mncol;txt
>
> Â From the app pag
On Thu, Jun 28, 2012 at 9:55 AM, Paul Hutchings
wrote:
> Is encrypting texts that much use to most folks?
"Useful" is ill-defined, but certainly people send information in
cleartext over SMS which they prolly wouldn't want disclosed. (But
people do the same with email and snail mail, which is
On Thu, Jun 28, 2012 at 9:43 AM, David Lum wrote:
> http://news.cnet.com/8301-1009_3-57462189-83/wickr-an-iphone-encryption-app-a-3-year-old-can-use/?tag=mncol;txt
From the app page:
http://itunes.apple.com/us/app/wickr/id528962154?ls=1&mt=8
"The security is based on a proprietary, patent pen
Does it serve that much purpose I wonder? Is encrypting texts that much use to
most folks?
From: David Lum [mailto:david@nwea.org]
Sent: 28 June 2012 14:44
To: NT System Admin Issues
Subject: Wickr on corporate iPhones?
Could this be workable in a corporate environment I wonder? Specificall
Nope I sure don't mind the command line.
From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Wednesday, June 27, 2012 2:25 PM
To: NT System Admin Issues
Subject: RE: Backup a DC
Windows server backup is amazingly powerful, if you don't mind dropping to the
command line.
From: David Lum
Wow - that's been a while :)
From: Michael B. Smith
To: NT System Admin Issues
Sent: Wednesday, June 27, 2012 4:23 PM
Subject: RE: OT - Clean Joke -
Honestly, I have a printed copy of this joke (with minor changes appropriate
for changing technology), fr
30 matches
Mail list logo