TS user profile deleting after logoff
OK back to same weird client site ... have ONE user that logs onto terminal server, and gets new/blank desktop profile. Regardless of what she saves/sets, her 'documents and settings' folder gets deleted when she logs out. Not that she's lost rights to the DS folder, as her data/changes are there for as long as she's logged in...This doesn't happen to any other users. (total of about 40 or so users) Anyone run across this before ? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: TS user profile deleting after logoff
There are GPOs that will do such a thing. Erik Goldoff wrote: OK back to same weird client site ... have ONE user that logs onto terminal server, and gets new/blank desktop profile. Regardless of what she saves/sets, her 'documents and settings' folder gets deleted when she logs out. Not that she's lost rights to the DS folder, as her data/changes are there for as long as she's logged in...This doesn't happen to any other users. (total of about 40 or so users) Anyone run across this before ? -- Phil Brutsche [EMAIL PROTECTED] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
wwwroot shared?! Concern?
During a scan/audit, I found a webserver in which my developer turned on sharing for the wwwroot folder. I remember reading that this was a big no-no, since permissions on that folder should never be modified... However, I can't find anything to back up that claim right now. Any arguments I can use to for justification to not allow this? Tia, Sam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
WshNetwork.RemovePrinterConnection Issues
Is it expected that if the server providing the network printer is offline, this vb code cannot delete the mapped printer? Anyone know a more reliable way to purge all network printers in a vb script? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Max LUN Size that Windows 2003 will see
Hey all doing some research on what the largest LUN size Windows 2003 will see accordingly. I know I have run into a 2TB limit with a lot of my HP Servers due to the controllers being used, but what about if its SAN attached storage from a Clarion or DMX? Any ideas, or documentation, my Google-Fu is limited today. TIA EZ Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Max LUN Size that Windows 2003 will see
http://www.microsoft.com/whdc/device/storage/LUN_SP1.mspx -Original Message- From: Ziots, Edward [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 10:05 AM To: NT System Admin Issues Subject: Max LUN Size that Windows 2003 will see Hey all doing some research on what the largest LUN size Windows 2003 will see accordingly. I know I have run into a 2TB limit with a lot of my HP Servers due to the controllers being used, but what about if its SAN attached storage from a Clarion or DMX? Any ideas, or documentation, my Google-Fu is limited today. TIA EZ Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: TS user profile deleting after logoff
OK, found the cause Somehow someone had added this one user to the *local* GUESTS group on that one specific terminal server. Removing her from the group cured the abnormal profile behavior -Original Message- From: Erik Goldoff [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 11:26 AM To: NT System Admin Issues Subject: RE: TS user profile deleting after logoff Yeah, but *only* for *one* user ? Simple domain, one container for all users and only happens on one of three terminal servers... Gonna get another cup of coffee to help research this one ... -Original Message- From: Phil Brutsche [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 11:23 AM To: NT System Admin Issues Subject: Re: TS user profile deleting after logoff There are GPOs that will do such a thing. Erik Goldoff wrote: OK back to same weird client site ... have ONE user that logs onto terminal server, and gets new/blank desktop profile. Regardless of what she saves/sets, her 'documents and settings' folder gets deleted when she logs out. Not that she's lost rights to the DS folder, as her data/changes are there for as long as she's logged in...This doesn't happen to any other users. (total of about 40 or so users) Anyone run across this before ? -- Phil Brutsche [EMAIL PROTECTED] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.169 / Virus Database: 270.7.3/1693 - Release Date: 9/29/2008 7:40 AM ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.169 / Virus Database: 270.7.3/1693 - Release Date: 9/29/2008 7:40 AM ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Max LUN Size that Windows 2003 will see
FYI - I have a Dell PE 2900 with Win 2003 R2 / SP2 with a 3470 GB RAID5 disk. I created the disk at boot time in the PERC console, then in windows converted it to a a GPT disk. Sorry, I don't know about the SAN limits. hth-Devin On Mon, Sep 29, 2008 at 12:05 PM, Ziots, Edward [EMAIL PROTECTED] wrote: Hey all doing some research on what the largest LUN size Windows 2003 will see accordingly. I know I have run into a 2TB limit with a lot of my HP Servers due to the controllers being used, but what about if its SAN attached storage from a Clarion or DMX? Any ideas, or documentation, my Google-Fu is limited today. TIA EZ Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ -- Devin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Setting up notifications for Dell Server failures
We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~image001.png
RE: Setting up notifications for Dell Server failures
Do you have the Openmanage software installed? I am pretty sure it can automatically do this for you if you configure it correctly? -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:04 PM To: NT System Admin Issues Subject: Setting up notifications for Dell Server failures We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: External RAID HDD Enclosure Recomendations
Man we are so old... -Original Message- From: Steven M. Caesare [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 8:48 PM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations And HWSNBN. -sc -Original Message- From: Kurt Buff [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 6:39 PM To: NT System Admin Issues Subject: Re: External RAID HDD Enclosure Recomendations Not on this list IIRC, but another name from the past: Chthulu Jones On Fri, Sep 26, 2008 at 10:12 AM, Free, Bob [EMAIL PROTECTED] wrote: LOL, remember when it was common here to say I deaned the list for the last week From: Webb, Brian (Corp) [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 6:41 AM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations I long ago went to permanently deleting messages from the list and if I get too far behind I just delete everything but the last day or so and start from there. -Brian From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 7:32 AM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations Webb, Brian (Corp) [EMAIL PROTECTED] wrote on 09/25/2008 04:20:43 PM: I think I joined the list in late '98 or early '99 - but I may not count as a regular since I don't spend more than a few minutes a day on it... I probably signed up originally around 2000 or so ... and there are a lot of days I just can't get to look at the list. At the moment, I have something like 15K unread messages in my list folder -Brian -Original Message- From: Free, Bob [mailto:[EMAIL PROTECTED] Sent: Thursday, September 25, 2008 12:06 PM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations I think I first joined in 98. Micheal E Kurt were here then, don't see too many other regulars from that time frame. I was 39 for the 5th time then :-) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Setting up notifications for Dell Server failures
If the machine is still under warranty, I would have them replace the entire system. On Mon, Sep 29, 2008 at 2:04 PM, Jim Majorowicz [EMAIL PROTECTED] wrote: We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Backup for Workgroups by Lockstep
Yeah. I kinda though the same. I was asked to evaluate this software, so I did. I still need to see how to get some performance out of my backups to get it close to matching the drive's advertized throughput. -Original Message- From: Carl Houseman [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 3:37 PM To: NT System Admin Issues Subject: RE: Backup for Workgroups by Lockstep Haven't heard of it before but I can spot problems without using it. I also know the stove is hot without touching it. They are not doing brick level backups (they specifically disclaim any ability to do individual mailbox restores, which is what BLBs facilitate). They're doing file backups, plain and simple. Anything that relies on an open file manager is not backing up Exchange the way Microsoft intended. Could you restore one of their backups to a RSG? I doubt it. Get a backup product that is Exchange-aware. Carl -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Jim Majorowicz Sent: Friday, September 26, 2008 6:11 PM To: 'NT System Admin Issues'; [EMAIL PROTECTED] Subject: [sbs list] Backup for Workgroups by Lockstep Anybody heard of it and/or use it? It was recommended to me as a possible solution for speedier backups. I'm not sure I like how it backs up Exchange. Apparently it uses an open file manager to brick level the backup. Am I correct is this analysis? Regards, Jim Majorowicz, MCP Sr. Network Engineer Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Setting up notifications for Dell Server failures
OpenManage like Terry said, or a DRAC card if it has it installed. -Original Message- From: Terry Dickson [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:15 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures Do you have the Openmanage software installed? I am pretty sure it can automatically do this for you if you configure it correctly? -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:04 PM To: NT System Admin Issues Subject: Setting up notifications for Dell Server failures We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Hello????
I assume the list is experiencing some issues but if it's just me can somebody let me know! John W. Cook Systems Administrator Partnership For Strong Families CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Hello????
What kind of issues? -Original Message- From: John Cook [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 3:06 PM To: NT System Admin Issues Subject: Hello I assume the list is experiencing some issues but if it's just me can somebody let me know! John W. Cook Systems Administrator Partnership For Strong Families CONFIDENTIALITY STATEMENT: The information transmitted, or contained or attached to or with this Notice is intended only for the person or entity to which it is addressed and may contain Protected Health Information (PHI), confidential and/or privileged material. Any review, transmission, dissemination, or other use of, and taking any action in reliance upon this information by persons or entities other than the intended recipient without the express written consent of the sender are prohibited. This information may be protected by the Health Insurance Portability and Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. Improper or unauthorized use or disclosure of this information could result in civil and/or criminal penalties. Consider the environment. Please don't print this e-mail unless you really need to. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ This e-mail and any files transmitted with it are property of Indiana Members Credit Union, are confidential, and are intended solely for the use of the individual or entity to whom this e-mail is addressed. If you are not one of the named recipient(s) or otherwise have reason to believe that you have received this message in error, please notify the sender and delete this message immediately from your computer. Any other use, retention, dissemination, forwarding, printing, or copying of this email is strictly prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Two Enterprise Root CA's
We have two Enterprise Root CA's and need to remove one. The one I want to remove has only three computer certificates issued via an auto enrollment Group Policy, for VPN. After some googling, I see that I might be able to start the Cert Util on the bad CA, navigate to Certification Templates, then delete all of them. This should force the machines to renew them on the other root CA server. I ran certutil per http://support.microsoft.com/kb/29 to find that I have two of these. Per http://forums.techarena.in/microsoft-security/934673.htm and http://groups.google.com/group/microsoft.public.windows.server.security/browse_thread/thread/af6cb6614c34f88f/5414636b3d971257?hl=enlnk=stq=delete+%22enterprise+root+ca%22#5414636b3d971257 I can delete all templates and let them expire. This seems very heavy handed. Is this a safe way to proceed? This is an Enterprise Root CA for a 2003 Active Directory. I only have three certs to replace, I wonder if I can just revoke them one-by-one while I have the laptops in my possession, stop the cert service on the bad CA, then let the GPO issue a new computer cert on the good CA. Then after the three certs are reissued, uninstall Cert Services from the bad server (decomission it via http://support.microsoft.com/kb/889250). -Devin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: FTP though an F5 BigIP
Test Haven't gotten any emails since Saturday. From: Bob Smith [mailto:[EMAIL PROTECTED] Sent: Saturday, September 27, 2008 1:05 AM To: NT System Admin Issues Subject: Re: FTP though an F5 BigIP Michael, If I am FTP'ing from and inside server to and outside server, do I need to create a pool / virtual server for that FTP connection, I only have two HTTP and HTTPS Pools right now, FTP Server is not running, we are running a batch script that does FTP from a command line to an Outside FTP server.. Thanks again, Bob Smith - Original Message - From: Michael B. Smith mailto:[EMAIL PROTECTED] To: NT System Admin Issues mailto:ntsysadmin@lyris.sunbelt-software.com Sent: Friday, September 26, 2008 6:50 PM Subject: RE: FTP though an F5 BigIP Well, that's what you want to change. Regards, Michael B. Smith, MCITP:SA,EMA/MCSE/Exchange MVP My blog: http://TheEssentialExchange.com/blogs/michael Link with me at: http://www.linkedin.com/in/theessentialexchange From: Bob Smith [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 6:39 PM To: NT System Admin Issues Subject: Re: FTP though an F5 BigIP Hi Michael, No persistence and no stickiness. Thanks for the reply, Bob Smith - Original Message - From: Michael B. Smith mailto:[EMAIL PROTECTED] To: NT System Admin Issues mailto:ntsysadmin@lyris.sunbelt-software.com Sent: Friday, September 26, 2008 6:12 PM Subject: RE: FTP though an F5 BigIP Do you have connections to the F5 set to sticky? (That is, IP persistence.) Regards, Michael B. Smith, MCITP:SA,EMA/MCSE/Exchange MVP My blog: http://TheEssentialExchange.com/blogs/michael Link with me at: http://www.linkedin.com/in/theessentialexchange From: Bob Smith [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 6:09 PM To: NT System Admin Issues Subject: FTP though an F5 BigIP Hello All, We implement an active/passive F5 BigIP last weekend for 2 webservers, since then a daily FTP Job on the webserver to offload the log files has failed, nothing else has changed in the environment, same firewall, same servers, these were previously connected to Kemp LB's (through the kemps it worked fine) and we replaced the Kemp with F5's, has anyone run into this. Thank you in advance, Bob Smith *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Setting up notifications for Dell Server failures
I use OpenManage Server Administrator (5.4.0 installed) all the time. I don't think I've ever gotten it to email me notifications though. I can get it to manually send one, but it seems to not do them automatically. -Original Message- From: Terry Dickson [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 11:15 AM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures Do you have the Openmanage software installed? I am pretty sure it can automatically do this for you if you configure it correctly? -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:04 PM To: NT System Admin Issues Subject: Setting up notifications for Dell Server failures We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Setting up notifications for Dell Server failures
They won't do that. I've tried that with them twice now. Both times it's We may do that the next time a drive fails, but replacing this drive solved the problem, so you're good. -Original Message- From: Candee Vaglica [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 11:15 AM To: NT System Admin Issues Subject: Re: Setting up notifications for Dell Server failures If the machine is still under warranty, I would have them replace the entire system. On Mon, Sep 29, 2008 at 2:04 PM, Jim Majorowicz [EMAIL PROTECTED] wrote: We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Setting up notifications for Dell Server failures
I guess I'm missing where I configure this to send the message when an Alert occurs. -Original Message- From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 12:01 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures OpenManage like Terry said, or a DRAC card if it has it installed. -Original Message- From: Terry Dickson [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:15 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures Do you have the Openmanage software installed? I am pretty sure it can automatically do this for you if you configure it correctly? -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:04 PM To: NT System Admin Issues Subject: Setting up notifications for Dell Server failures We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: wwwroot shared?! Concern?
There's no magic with the NTFS permission on the wwwroot folder. And the simple act of sharing a folder doesn't change the NTFS permissions either. That said, enabling SMB sharing on a production web server is a bit of a security risk. Why have these things enabled if you don't need them? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 1:36 AM To: NT System Admin Issues Subject: wwwroot shared?! Concern? During a scan/audit, I found a webserver in which my developer turned on sharing for the wwwroot folder. I remember reading that this was a big no-no, since permissions on that folder should never be modified... However, I can't find anything to back up that claim right now. Any arguments I can use to for justification to not allow this? Tia, Sam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Setting up notifications for Dell Server failures
There is no automatic email option in OpenManage - I don't know why, but there isn't. However, there is a run a program option, and it is dead easy to configure a canned VBscript to send you an email. -- Durf On Mon, Sep 29, 2008 at 5:57 PM, Jim Majorowicz [EMAIL PROTECTED] wrote: I guess I'm missing where I configure this to send the message when an Alert occurs. -Original Message- From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 12:01 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures OpenManage like Terry said, or a DRAC card if it has it installed. -Original Message- From: Terry Dickson [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:15 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures Do you have the Openmanage software installed? I am pretty sure it can automatically do this for you if you configure it correctly? -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:04 PM To: NT System Admin Issues Subject: Setting up notifications for Dell Server failures We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ -- -- Give a man a fish, and he'll eat for a day. Give a fish a man, and he'll eat for weeks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
list test
Havent received an email since Friday . Just testing .. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Setting up notifications for Dell Server failures
That's why the DRAC cards are a must. run a program is pointless if the server crashes, or a raid array falls offline and the script is on that drive, etc... -Original Message- From: Durf [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 6:17 PM To: NT System Admin Issues Subject: Re: Setting up notifications for Dell Server failures There is no automatic email option in OpenManage - I don't know why, but there isn't. However, there is a run a program option, and it is dead easy to configure a canned VBscript to send you an email. -- Durf On Mon, Sep 29, 2008 at 5:57 PM, Jim Majorowicz [EMAIL PROTECTED] wrote: I guess I'm missing where I configure this to send the message when an Alert occurs. -Original Message- From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 12:01 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures OpenManage like Terry said, or a DRAC card if it has it installed. -Original Message- From: Terry Dickson [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:15 PM To: NT System Admin Issues Subject: RE: Setting up notifications for Dell Server failures Do you have the Openmanage software installed? I am pretty sure it can automatically do this for you if you configure it correctly? -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 1:04 PM To: NT System Admin Issues Subject: Setting up notifications for Dell Server failures We have a customer with a Dell PowerEdge 1800 tower that has had a bad habit of failing a particular SCSI drive. This server has managed to kill 4 drives in slot 0:1 and one drive each in 0:2 and 0:4. Dell has been great with the warranty replacements, even went as far as to replace the entire subsystem, but it didn't solve the problem. I got Dell to agree to sell me an additional drive at cost to add to the array as a spare. (One of the failures included two drives over the weekend, prompting a real emergency when the server went offline.) What I need help with is after I install and configure the array spare how to notify myself or my office that a drive has failed? Always before, we've relied on the customer to notify us when buzzer alarm noise sounds. It is my understanding that after the spare is installed, the buzzer won't sound until a second drive fails and there is no spare to take up the slack. I need to be able to know when a drive fails so I can start the warranty process with Dell hopefully before a second drive fails. Regards, Jim Majorowicz, MCP Sr. Network Engineer SBPI_US_rgb Whitsell Computer Services (503) 297-8440x12 www.whitsell.com We can support you no matter where you are. Ask me for details. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ -- -- Give a man a fish, and he'll eat for a day. Give a fish a man, and he'll eat for weeks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: wwwroot shared?! Concern?
Why, not sure... I'm sure it made my developers life easy so she can access it from here PC. (It's not in a DMZ). From: Ken Schaefer [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 6:02 PM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? There's no magic with the NTFS permission on the wwwroot folder. And the simple act of sharing a folder doesn't change the NTFS permissions either. That said, enabling SMB sharing on a production web server is a bit of a security risk. Why have these things enabled if you don't need them? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 1:36 AM To: NT System Admin Issues Subject: wwwroot shared?! Concern? During a scan/audit, I found a webserver in which my developer turned on sharing for the wwwroot folder. I remember reading that this was a big no-no, since permissions on that folder should never be modified... However, I can't find anything to back up that claim right now. Any arguments I can use to for justification to not allow this? Tia, Sam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: wwwroot shared?! Concern?
Do you have a source control/build system? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 10:11 AM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? Why, not sure... I'm sure it made my developers life easy so she can access it from here PC. (It's not in a DMZ). From: Ken Schaefer [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 6:02 PM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? There's no magic with the NTFS permission on the wwwroot folder. And the simple act of sharing a folder doesn't change the NTFS permissions either. That said, enabling SMB sharing on a production web server is a bit of a security risk. Why have these things enabled if you don't need them? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 1:36 AM To: NT System Admin Issues Subject: wwwroot shared?! Concern? During a scan/audit, I found a webserver in which my developer turned on sharing for the wwwroot folder. I remember reading that this was a big no-no, since permissions on that folder should never be modified... However, I can't find anything to back up that claim right now. Any arguments I can use to for justification to not allow this? Tia, Sam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: wwwroot shared?! Concern?
No good can ever come of that statement From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 5:11 PM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? Why, not sure... I'm sure it made my developers life easy so she can access it from here PC. (It's not in a DMZ). From: Ken Schaefer [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 6:02 PM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? There's no magic with the NTFS permission on the wwwroot folder. And the simple act of sharing a folder doesn't change the NTFS permissions either. That said, enabling SMB sharing on a production web server is a bit of a security risk. Why have these things enabled if you don't need them? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 1:36 AM To: NT System Admin Issues Subject: wwwroot shared?! Concern? During a scan/audit, I found a webserver in which my developer turned on sharing for the wwwroot folder. I remember reading that this was a big no-no, since permissions on that folder should never be modified... However, I can't find anything to back up that claim right now. Any arguments I can use to for justification to not allow this? Tia, Sam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: wwwroot shared?! Concern?
SVN, yes... From: Ken Schaefer [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 7:18 PM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? Do you have a source control/build system? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 10:11 AM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? Why, not sure... I'm sure it made my developers life easy so she can access it from here PC. (It's not in a DMZ). From: Ken Schaefer [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 6:02 PM To: NT System Admin Issues Subject: RE: wwwroot shared?! Concern? There's no magic with the NTFS permission on the wwwroot folder. And the simple act of sharing a folder doesn't change the NTFS permissions either. That said, enabling SMB sharing on a production web server is a bit of a security risk. Why have these things enabled if you don't need them? Cheers Ken From: Sam Cayze [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 1:36 AM To: NT System Admin Issues Subject: wwwroot shared?! Concern? During a scan/audit, I found a webserver in which my developer turned on sharing for the wwwroot folder. I remember reading that this was a big no-no, since permissions on that folder should never be modified... However, I can't find anything to back up that claim right now. Any arguments I can use to for justification to not allow this? Tia, Sam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Sunbelt and CBL issues
The list got recognition on CBL again :) http://cbl.abuseat.org/lookup.cgi?ip=64.128.133.151 Wondered why I wasn't getting any mail! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
re: list test
Likewise - though I'm not even getting any of the messages that are showing in the web-interface of the list for today. Same on your end? - Amer. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Website security checking service
It is nice to see some conversation around the topic of web security and specifically SQL injection. I mentioned months ago now this is the most critical security problem that most IT organizations currently face. Most of you have already been hit with SQL injection and it is luck of the draw whether your system is already compromised or not. Most organizations are still relying simply on perimeter firewalls and host based anti-virus and neither of these will protect you. I have done over 10 investigations of web compromises, because of SQL injection, in which most companies had been compromised for more than 6 months before *accidently* discovering the compromise. There are a few options: * Send developers to secure coding courses and hope they retain the information and will not make mistakes in the future. * Buy a *web* specific vulnerability assessment scanner such as: Retina Web Security Scanner http://www.eeye.com/html/products/RetinaWebScanner/index.html Acunetix http://www.acunetix.com/vulnerability-scanner/ HP WebInspect https://h10078.www1.hp.com/cda/hpms/display/main/hpms_content.jsp?zn=btocp= 1-11-201-200%5E9570_4000_100__ Cenzic https://www.cenzic.com/ IBM Rational AppScan http://www-01.ibm.com/software/awdtools/appscan/ * Hire a consulting company to perform regular scans and assessments using MORE than traditional VA tools The DigiTrust Group http://www.digitrustgroup.com/assessment.html#webapp WhiteHat Security http://www.whitehatsec.com/home/index.html * Buy a WAF Web Application Firewall and find time to manage it yourself Breach WebDefend http://www.breach.com/ Imperva http://www.imperva.com/ * WAF Web App Security Managed Security Services, have someone else manage the hassle of keeping your site secure from attacks including SQL injection. Notifications of not just blocked attacks and fine tuned configuration but also any defects stemming from specific code failures so that your developers can remediate and learn from the process. http://www.digitrustgroup.com/managed.html#web A few things that will NOT protect you from SQL injection: * Using only traditional vulnerability assessment software * Performing server configuration hardening * Telling your admins to simply read SANS or OWASP * Any of those lame site protected/site scanned by X type certifications, most are only looking for known web vulns (which traditional vulnerability assessment software will fine) however they do not find custom coded web sql injection bugs. - Marc Maiffret Director of Professional Services The DigiTrust Group, LLC. 5757 W. Century Blvd, Ste. 700 Los Angeles, CA 90045 p: 310.348.2901 f: 310.469.0103 w: http://www.thedigitrustgroup.com -Original Message- From: Oliver Marshall [mailto:[EMAIL PROTECTED] Sent: Thursday, September 25, 2008 5:19 AM To: NT System Admin Issues Subject: Website security checking service Hi chaps, Can anyone recommend a website checking service that will check websites on a regular basis for security issues and report back ? One of our clients suffered an SQL injection attack this week, and on their new rebuilt server they are keen to get some element of reporting as to when any possible issues may be presented to visitors, or to be made aware as to when flaws are found in the sites. The sites change regularly and multiple teams work on any one site so a site that was once tight-as-a-nut may, the next week, be made in-secure by the action of another team. Olly -- G2 Support Email: [EMAIL PROTECTED] Web:http://www.g2support.com http://www.g2support.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Website security checking service
Have your organisation, if it's writing custom code, use an established, proven data access framework. If you're writing your own, then enforce some architectural standards that your developers have to follow. I haven't seen many SQL injection bugs in, say, the native SqlClient and OleDb providers that Microsoft provides - so simply use parametised queries (even if you build them dynamically in ASP.NET). Cheers Ken -Original Message- From: Marc Maiffret [mailto:[EMAIL PROTECTED] Sent: Tuesday, 30 September 2008 11:44 AM To: NT System Admin Issues Subject: RE: Website security checking service It is nice to see some conversation around the topic of web security and specifically SQL injection. I mentioned months ago now this is the most critical security problem that most IT organizations currently face. Most of you have already been hit with SQL injection and it is luck of the draw whether your system is already compromised or not. Most organizations are still relying simply on perimeter firewalls and host based anti-virus and neither of these will protect you. I have done over 10 investigations of web compromises, because of SQL injection, in which most companies had been compromised for more than 6 months before *accidently* discovering the compromise. There are a few options: * Send developers to secure coding courses and hope they retain the information and will not make mistakes in the future. * Buy a *web* specific vulnerability assessment scanner such as: Retina Web Security Scanner http://www.eeye.com/html/products/RetinaWebScanner/index.html Acunetix http://www.acunetix.com/vulnerability-scanner/ HP WebInspect https://h10078.www1.hp.com/cda/hpms/display/main/hpms_content.jsp?zn=btocp= 1-11-201-200%5E9570_4000_100__ Cenzic https://www.cenzic.com/ IBM Rational AppScan http://www-01.ibm.com/software/awdtools/appscan/ * Hire a consulting company to perform regular scans and assessments using MORE than traditional VA tools The DigiTrust Group http://www.digitrustgroup.com/assessment.html#webapp WhiteHat Security http://www.whitehatsec.com/home/index.html * Buy a WAF Web Application Firewall and find time to manage it yourself Breach WebDefend http://www.breach.com/ Imperva http://www.imperva.com/ * WAF Web App Security Managed Security Services, have someone else manage the hassle of keeping your site secure from attacks including SQL injection. Notifications of not just blocked attacks and fine tuned configuration but also any defects stemming from specific code failures so that your developers can remediate and learn from the process. http://www.digitrustgroup.com/managed.html#web A few things that will NOT protect you from SQL injection: * Using only traditional vulnerability assessment software * Performing server configuration hardening * Telling your admins to simply read SANS or OWASP * Any of those lame site protected/site scanned by X type certifications, most are only looking for known web vulns (which traditional vulnerability assessment software will fine) however they do not find custom coded web sql injection bugs. - Marc Maiffret Director of Professional Services The DigiTrust Group, LLC. 5757 W. Century Blvd, Ste. 700 Los Angeles, CA 90045 p: 310.348.2901 f: 310.469.0103 w: http://www.thedigitrustgroup.com -Original Message- From: Oliver Marshall [mailto:[EMAIL PROTECTED] Sent: Thursday, September 25, 2008 5:19 AM To: NT System Admin Issues Subject: Website security checking service Hi chaps, Can anyone recommend a website checking service that will check websites on a regular basis for security issues and report back ? One of our clients suffered an SQL injection attack this week, and on their new rebuilt server they are keen to get some element of reporting as to when any possible issues may be presented to visitors, or to be made aware as to when flaws are found in the sites. The sites change regularly and multiple teams work on any one site so a site that was once tight-as-a-nut may, the next week, be made in-secure by the action of another team. Olly -- G2 Support Email: [EMAIL PROTECTED] Web:http://www.g2support.com http://www.g2support.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
re: list test
Me too. Haven't received any of the messages from a few different lists. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: External RAID HDD Enclosure Recomendations
I believe the list shorthand for that was OF, and one Jon Harris was nominated Resident OF. -sc -Original Message- From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Monday, September 29, 2008 2:12 PM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations Man we are so old... -Original Message- From: Steven M. Caesare [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 8:48 PM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations And HWSNBN. -sc -Original Message- From: Kurt Buff [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 6:39 PM To: NT System Admin Issues Subject: Re: External RAID HDD Enclosure Recomendations Not on this list IIRC, but another name from the past: Chthulu Jones On Fri, Sep 26, 2008 at 10:12 AM, Free, Bob [EMAIL PROTECTED] wrote: LOL, remember when it was common here to say I deaned the list for the last week From: Webb, Brian (Corp) [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 6:41 AM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations I long ago went to permanently deleting messages from the list and if I get too far behind I just delete everything but the last day or so and start from there. -Brian From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Sent: Friday, September 26, 2008 7:32 AM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations Webb, Brian (Corp) [EMAIL PROTECTED] wrote on 09/25/2008 04:20:43 PM: I think I joined the list in late '98 or early '99 - but I may not count as a regular since I don't spend more than a few minutes a day on it... I probably signed up originally around 2000 or so ... and there are a lot of days I just can't get to look at the list. At the moment, I have something like 15K unread messages in my list folder -Brian -Original Message- From: Free, Bob [mailto:[EMAIL PROTECTED] Sent: Thursday, September 25, 2008 12:06 PM To: NT System Admin Issues Subject: RE: External RAID HDD Enclosure Recomendations I think I first joined in 98. Micheal E Kurt were here then, don't see too many other regulars from that time frame. I was 39 for the 5th time then :-) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: External RAID HDD Enclosure Recomendations
LOL On Mon, Sep 29, 2008 at 10:36 PM, Steven M. Caesare [EMAIL PROTECTED] wrote: I believe the list shorthand for that was OF, and one Jon Harris was nominated Resident OF. -- ME2 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Sunbelt and CBL issues
Quality always shows... Heh. On Mon, Sep 29, 2008 at 5:53 PM, Joseph L. Casale [EMAIL PROTECTED] wrote: The list got recognition on CBL again J http://cbl.abuseat.org/lookup.cgi?ip=64.128.133.151 Wondered why I wasn't getting any mail! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~