RE: Automate a backup of a firewall
How often do you change the configuration? I would think backing them up after the change then storing the backup offsite. Phil From: Erik Goldoff [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 8:02 AM To: NT System Admin Issues Subject: RE: Automate a backup of a firewall maybe ftp scripts from a central site ? From: Fergal O'Connell [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 7:22 AM To: NT System Admin Issues Subject: Automate a backup of a firewall Hi Folks, I am looking for a way to automate the backup of our firewalls to a possible tftp location. They are Netscreen firewalls - is this possible? Regards Fergal O'Connell The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. If you are not the intended addressee please contact the sender and dispose of this e-mail. Thank you. No virus found in this incoming message. Checked by AVG - http://www.avg.com Version: 8.0.173 / Virus Database: 270.8.0/1726 - Release Date: 10/15/2008 8:02 PM ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DC changing time?
The only time Ive ever seen this is in a vm, where it auto syncs with the host. Outside of that someone accidentally changed it? -Original Message- From: Kurt Buff [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 19:16 To: NT System Admin Issues Subject: Re: DC changing time? You have an atomic clock at work? How cool is that! On Wed, Oct 15, 2008 at 4:05 PM, mqcarp [EMAIL PROTECTED] wrote: No that was not it. The source is the atomic clock. It is almost like it was physically changed by one day. I do not see that something like that would be logged in the event log if it occurred. On Tue, Oct 14, 2008 at 10:15 PM, Joseph L. Casale [EMAIL PROTECTED] wrote: Bad NTP Time source? Enumerate and check them. From: mqcarp [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 9:14 PM To: NT System Admin Issues Subject: DC changing time? We had a weird issue where apparently a DC rolled back exactly one day in time (6:30PM Monday became 6:30PM Sunday). This wreaked havoc on policy issues. All I can see in the event logs is the change in policy where it was denying log ins all of a sudden. The DC time was updated and we are back on track but I can not see what would cause something like this. No one was at the office in IT when this occurred. The only thing odd was an admin had left himself logged into the server at the end of the day. Has anyone seen this before? AD 2003 2003 Server Standard ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Automate a backup of a firewall
Hi Folks, I am looking for a way to automate the backup of our firewalls to a possible tftp location. They are Netscreen firewalls - is this possible? Regards Fergal O'Connell The information in this email is confidential and may be legally privileged. It is intended solely for the addressee. Access to this email by anyone else is unauthorized. If you are not the intended recipient, any disclosure, copying, distribution or any action taken or omitted to be taken in reliance on it, is prohibited and may be unlawful. If you are not the intended addressee please contact the sender and dispose of this e-mail. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Wattage Calculation
Why not use the watts from the UPS's. Phil From: RM [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 7:40 PM To: NT System Admin Issues Subject: RE: Wattage Calculation These days, I wouldn't worry too much about volt-amps versus watts. Pretty much every modern server has active power factor correction. VA will be within 2-3% of watts. RM On Wed, 15 Oct 2008 17:00:32 -0400, Ralph Smith [EMAIL PROTECTED] said: I took a look at the APC site and interestingly the numbers they have for VA for a couple of servers is much lower than I get doing the Amps * Volts calculation from the labels. I'm checking out Wikipedia and elsewhere so I can try and understand this stuff - I just want to be able to provide accurate information. Thanks for giving me a couple of places to look. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: exploit tests on security suites
+2 Z Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 From: HELP_PC [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 1:21 PM To: NT System Admin Issues Subject: RE: exploit tests on security suites Sure, i.e. I use Secunia to test OS and third party software. GuidoElia HELPPC Da: David Lum [mailto:[EMAIL PROTECTED] Inviato: mercoledì 15 ottobre 2008 18.49 A: NT System Admin Issues Oggetto: RE: exploit tests on security suites Well DUH! They don't focus on detecting vulnerabilities, they focus on detecting the payload. I don't use McAfee or Trend to test for my OS to be patched... Or am I reading this article wrong? I take that article as being aimed at Joe or Jane consumer, not admins. David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 From: John Hornbuckle [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 9:20 AM To: NT System Admin Issues Subject: RE: exploit tests on security suites No Vipre? From: René de Haas [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:11 PM To: NT System Admin Issues Subject: exploit tests on security suites Results are a little disappointing http://computerworld.com/action/article.do?command=viewArticleBasicarticleId=9117042intsrc=hm_list *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: exploit tests on security suites
Appears the article audience is the home consumer not admins, IMHO. Thomas From: Ziots, Edward [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 9:48 AM To: NT System Admin Issues Subject: RE: exploit tests on security suites +2 Z Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 From: HELP_PC [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 1:21 PM To: NT System Admin Issues Subject: RE: exploit tests on security suites Sure, i.e. I use Secunia to test OS and third party software. GuidoElia HELPPC Da: David Lum [mailto:[EMAIL PROTECTED] Inviato: mercoledì 15 ottobre 2008 18.49 A: NT System Admin Issues Oggetto: RE: exploit tests on security suites Well DUH! They don't focus on detecting vulnerabilities, they focus on detecting the payload. I don't use McAfee or Trend to test for my OS to be patched... Or am I reading this article wrong? I take that article as being aimed at Joe or Jane consumer, not admins. David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 From: John Hornbuckle [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 9:20 AM To: NT System Admin Issues Subject: RE: exploit tests on security suites No Vipre? From: René de Haas [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:11 PM To: NT System Admin Issues Subject: exploit tests on security suites Results are a little disappointing http://computerworld.com/action/article.do?command=viewArticleBasicarticleId=9117042intsrc=hm_list *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the Girl Scouts of Southwest Texas company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Wattage Calculation
I was able to get a reasonable estimate using the APC website tool and a tool on the Dell web site, plus some phone equipment that had watts on the tags. I'm gonna look into those Sears devices and/or the kill-a-watt so I can get some actual numbers. Thanks for all your tips and advice. -Original Message- From: Phillip Partipilo [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 7:59 PM I'd still go for that Sears Clamp-on digital Ammeter. In the comments, people have said it is well more accurate than the 3% stated. Those are also EXTREMELY useful here in FL when the hurricanes come, and we have to wire generators into the panels for a week or two, and need to balance the load without blowing the generators breakers. On Oct 15, 2008, at 7:14 PM, Kurt Buff wrote: No, they don't. But, they, if properly implemented by the manufacturer, will equally share the load of a running machine - nicht var? We're after actual consumption, after all... Kurt On Wed, Oct 15, 2008 at 3:37 PM, Phil Brutsche [EMAIL PROTECTED] wrote: Redundant power supplies don't necessarily double your power consumption. Kurt Buff wrote: I second the kill-a-watt. Heck, get two of them. And you don't even have to shut down the servers, if you've got redundant power supplies, right? Or just use the one, and double the reading, or triple it for machines with three power supplies. -- Phil Brutsche [EMAIL PROTECTED] Confidentiality Notice: -- This communication, including any attachments, may contain confidential information and is intended only for the individual or entity to whom it is addressed. Any review, dissemination, or copying of this communication by anyone other than the intended recipient is strictly prohibited. If you are not the intended recipient, please contact the sender by reply email, delete and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Watchguard firewall question
Is the unit currently on the same version it shipped with? IE, when you got it, did it come with version 9 installed or version 8? If it's got 9 on it, and it came with 9, I'd say reset the unit to factory, reapply the config and then try the update. Otherwise, I say call your Watchguard support (somebody with direct access to level 2 support and skip the Level 1 support). I'd offer, but I don't think you're in the area, and our rates are $125/hr. From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 10:30 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question I have a good copy of the config, but not of the flash image. Joe Heaton Employment Training Panel From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 9:58 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question I can tell you from experience, don't do the upgrade without the backup. The one time I decided to forgo the backup before doing an upgrade, the upgrade bombed. Recovery was a serious pain in the ass. Do you have a good copy of the current configuration? From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 8:38 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Yes, I'm on the forums all the time. I did find this issue there, and was about to post about it. It exists both in the go to 100% then back to 0, and what I'm seeing, go to 1%, then back to 0 and hang. At the moment, I'm trying to decide whether to do a wipe, and reconfig of current version, or simply do an upgrade. Joe Heaton Employment Training Panel From: Steve Burkett [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 8:07 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Is that a typo? 1%?If you meant progress bar goes to 100% then back to 0%, then that's a known bug with pre 10.2.2 firmwares. 10.2.2 solves the issue (or indeed 10.2.3 now). If you haven't used them before, get on the Watchguard support forums. There are a couple of guys on there that REALLY know the Watchguard stuff well, are very active in the forum, and are much much more useful then the official Watchguard Tech Support. Hope it helps, Steve. From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: 15 October 2008 15:38 To: NT System Admin Issues Subject: RE: Watchguard firewall question Ok, I opened another session, and was able to cancel the original backup. Tried the straight backup, and got the same results. The Backup window comes up, progress bar goes to 1%, back to 0% and stayed there. Got out of it again, rebooted the firewall, tried a straight backup again, and same results. I am not comfortable upgrading without a good flash image backup, so I'm now trying to figure out why the backup won't work. Joe Heaton Employment Training Panel From: Mark Boersma [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 7:13 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Negative. It should zip through it in a few seconds. I would cancel the upgrade and try to do a manual backup first. File Backup in the policy manager. Mark - Two rules to success in life: 1. Never tell people everything you know. From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 10:10 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Ok, quick question, may be paranoia. I'm having the box back up the image before upgrading, and it has been sitting at 0% for about 5 minutes now. Is that normal? Joe Heaton Employment Training Panel From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 4:01 PM To: NT System Admin Issues Subject: RE: Watchguard firewall question Well, then hopefully the upgrade will help. I'm running 10.0 at the moment, and plan to upgrade to 10.2.3 in the morning. Joe Heaton Employment Training Panel From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 3:36 PM To: NT System Admin Issues Subject: RE: Watchguard firewall question Just that getting a Firebox to actually search the right OU is a pain in the freaking ass. Of course, the two times I've configured such, I was using 9.1, so take that for what it's worth. It's suppose to just work in 10.2 and later, but I have not had to set that up from scratch, just updated the ones I did a year ago. From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 3:05 PM To: NT System Admin Issues Subject: RE: Watchguard firewall question Ok, so I've gotten a successful connection using the Firebox DB for authentication. I'd like, however, to use AD authentication, but I keep getting a PAP/CHAP error of Wrong username or password. I've created a security group, named VPN, I've put
R: exploit tests on security suites
?? GuidoElia HELPPC _ Da: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Inviato: giovedì 16 ottobre 2008 17.18 A: NT System Admin Issues Oggetto: RE: exploit tests on security suites Appears the article audience is the home consumer not admins, IMHO. Thomas From: Ziots, Edward [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 9:48 AM To: NT System Admin Issues Subject: RE: exploit tests on security suites +2 Z Edward E. Ziots Network Engineer Lifespan Organization MCSE,MCSA,MCP,Security+,Network+,CCA Phone: 401-639-3505 _ From: HELP_PC [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 1:21 PM To: NT System Admin Issues Subject: RE: exploit tests on security suites Sure, i.e. I use Secunia to test OS and third party software. GuidoElia HELPPC _ Da: David Lum [mailto:[EMAIL PROTECTED] Inviato: mercoledì 15 ottobre 2008 18.49 A: NT System Admin Issues Oggetto: RE: exploit tests on security suites Well DUH! They don't focus on detecting vulnerabilities, they focus on detecting the payload. I don't use McAfee or Trend to test for my OS to be patched... Or am I reading this article wrong? I take that article as being aimed at Joe or Jane consumer, not admins. David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 From: John Hornbuckle [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 9:20 AM To: NT System Admin Issues Subject: RE: exploit tests on security suites No Vipre? From: René de Haas [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:11 PM To: NT System Admin Issues Subject: exploit tests on security suites Results are a little disappointing http://computerworld.com/action/article.do?command=viewArticleBasic http://computerworld.com/action/article.do?command=viewArticleBasicarticleId=9117042intsrc=hm_list articleId=9117042intsrc=hm_list _ *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the Girl Scouts of Southwest Texas. Warning: Although precautions have been taken to make sure no viruses are present in this email, Girl Scouts of Southwest Texas cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Tax dollars hard at work!
Grr. Just had to vent here a little. I hate trying to comprehend government written drivel. It puts me to sleep. Trying to follow these military procedures for network security, and, WOW, like, I mean, WOW. The US Government listing the Wikipedia in OFFICIAL DOCUMENTATION. Page 21 of the ODAA Process Guide. That's fine accreditable bibliography work there! https://www.dss.mil/GW/ShowBinary/DSS/isp/odaa/documents/odaa_process_guide_ revised050908.pdf Phillip Partipilo Parametric Solutions Inc. Jupiter, Florida (561) 747-6107 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Label Matrix barcode printing
Anyone use this? I couldn't make it work w/o Admin privs using the usual File/Regmon analysis? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: WSUS Updates
Sorry for the delay, just wanted to see what happens after a small tweak. Everything is missing ~6 office updates that are set to install and some recent OS updates? Here is what I have: Allow Automatic Updates immediate installation Enabled Allow non-administrators to receive update notifications Enabled Allow signed content from intranet Microsoft update service location Enabled Automatic Updates detection Frequency Enabled Check For updates at the Following interval (hours): 6 Configure Automatic Updates Enabled Configure automatic updating: 4 - Auto download and schedule the install The following settings are only required and applicable if 4 is selected. Scheduled install day: 0 - Every day Scheduled install time: 11:00 Do not adjust default option to 'Install Updates and Shut Down' in Shut Down Windows dialog box Disabled Do not display 'Install Updates and Shut Down' option in Shut Down Windows dialog box Disabled Enable client-side targeting Enabled Target group name For this computer Desktops Enable recommended updates via Automatic Updates Enabled Enabling Windows Update Power Management to automatically wake up the system to install scheduled updates Enabled No auto-restart with logged on users for scheduled automatic updates installations Enabled Reschedule Automatic Updates scheduled installations Enabled Wait after system startup (minutes): 1 Specify intranet Microsoft update service location Enabled Set the intranet update service for detecting updates: http://server.domain.com:8530 Set the intranet statistics server: http://server.domain.com:8530 Thanks! jlc From: Miller Bonnie L. [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:32 PM To: NT System Admin Issues Subject: RE: WSUS Updates Non-admin notification shouldn't affect delayed update installation. In fact, we like to keep that disabled as I've found that if a non-admin can see the notification, they can also hide the updates by unchecking the boxes next to them. Can you list out which options you've set in the policy? I *think* what you said is that you have Reschedule automatic updates... enabled, with a wait time of 1. This works in conjunction with configure automatic updates enabled set to 4, with a scheduled installation time. If that is all set correctly, confirm that the workstations are getting the policy applied successfully. You might need to look at workstation event logs, and/or run GPResult. -Bonnie From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:44 PM To: NT System Admin Issues Subject: WSUS Updates I have a WSUS 3.0 SP1 machine under Windows 2003 AD that isn't forcing delayed updates. I just noticed that the GPO had been set not to alert non admins of pending updates, but it was set to start install 1 minute after start if delayed? What am I missing? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: PIX mungles SMTP headers
This was a few years ago and evidently I missed the 5321 update though. On Wed, Oct 15, 2008 at 5:39 PM, Phil Brutsche [EMAIL PROTECTED] wrote: RFC 2821 is obsolete BTW RFC 5321 is the successor http://www.rfc-editor.org/rfc/rfc5321.txt Steven Peck wrote: The Cisco PIX is proudly compliant with RFC821. When I pointed out to our network team that the rest of the world was on RFC2821 then Cisco support said, oh, then you might want to disable it. -- Phil Brutsche [EMAIL PROTECTED] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DC changing time?
The time service on the DC wouldn't accept an offset that big. From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 8:15 PM To: NT System Admin Issues Subject: RE: DC changing time? Bad NTP Time source? Enumerate and check them... From: mqcarp [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 9:14 PM To: NT System Admin Issues Subject: DC changing time? We had a weird issue where apparently a DC rolled back exactly one day in time (6:30PM Monday became 6:30PM Sunday). This wreaked havoc on policy issues. All I can see in the event logs is the change in policy where it was denying log ins all of a sudden. The DC time was updated and we are back on track but I can not see what would cause something like this. No one was at the office in IT when this occurred. The only thing odd was an admin had left himself logged into the server at the end of the day. Has anyone seen this before? AD 2003 2003 Server Standard ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DC changing time?
From: Free, Bob [mailto:[EMAIL PROTECTED] Subject: RE: DC changing time? The time service on the DC wouldn't accept an offset that big. I worked a call back in August where the point-to-point T3 went down for 8 hrs. When the link came back 1 DC on each side of the link each changed their dates from 08/11/08 to 01/02/09. Then 45 minutes later reset back to 08/11/08. On the west coast no one could then authenticate to the network. On the east coast, where the PDCE resided, there were no issues. Took Microsoft support many hours to fix that network. Webster From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Subject: RE: DC changing time? Bad NTP Time source? Enumerate and check them. From: mqcarp [mailto:[EMAIL PROTECTED] Subject: DC changing time? We had a weird issue where apparently a DC rolled back exactly one day in time (6:30PM Monday became 6:30PM Sunday). This wreaked havoc on policy issues. All I can see in the event logs is the change in policy where it was denying log ins all of a sudden. The DC time was updated and we are back on track but I can not see what would cause something like this. No one was at the office in IT when this occurred. The only thing odd was an admin had left himself logged into the server at the end of the day. Has anyone seen this before? AD 2003 2003 Server Standard ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Watchguard firewall question
Actually Jim, I'm kinda embarrassed now. Turns out my unit doesn't have the backup issue. It just didn't like the 19 character encryption key that I was using. Backed it down to 8 characters, and everything went smooth as buttah... I'm upgraded to 10.2.2 now, and have a good backup of the flash image, and the config. Joe Heaton Employment Training Panel From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 9:45 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Is the unit currently on the same version it shipped with? IE, when you got it, did it come with version 9 installed or version 8? If it's got 9 on it, and it came with 9, I'd say reset the unit to factory, reapply the config and then try the update. Otherwise, I say call your Watchguard support (somebody with direct access to level 2 support and skip the Level 1 support). I'd offer, but I don't think you're in the area, and our rates are $125/hr... From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 10:30 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question I have a good copy of the config, but not of the flash image. Joe Heaton Employment Training Panel From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 9:58 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question I can tell you from experience, don't do the upgrade without the backup. The one time I decided to forgo the backup before doing an upgrade, the upgrade bombed. Recovery was a serious pain in the ass. Do you have a good copy of the current configuration? From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 8:38 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Yes, I'm on the forums all the time. I did find this issue there, and was about to post about it. It exists both in the go to 100% then back to 0, and what I'm seeing, go to 1%, then back to 0 and hang. At the moment, I'm trying to decide whether to do a wipe, and reconfig of current version, or simply do an upgrade. Joe Heaton Employment Training Panel From: Steve Burkett [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 8:07 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Is that a typo? 1%?If you meant progress bar goes to 100% then back to 0%, then that's a known bug with pre 10.2.2 firmwares. 10.2.2 solves the issue (or indeed 10.2.3 now). If you haven't used them before, get on the Watchguard support forums. There are a couple of guys on there that REALLY know the Watchguard stuff well, are very active in the forum, and are much much more useful then the official Watchguard Tech Support. Hope it helps, Steve. From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: 15 October 2008 15:38 To: NT System Admin Issues Subject: RE: Watchguard firewall question Ok, I opened another session, and was able to cancel the original backup. Tried the straight backup, and got the same results. The Backup window comes up, progress bar goes to 1%, back to 0% and stayed there. Got out of it again, rebooted the firewall, tried a straight backup again, and same results. I am not comfortable upgrading without a good flash image backup, so I'm now trying to figure out why the backup won't work. Joe Heaton Employment Training Panel From: Mark Boersma [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 7:13 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Negative. It should zip through it in a few seconds. I would cancel the upgrade and try to do a manual backup first. File Backup in the policy manager. Mark - Two rules to success in life: 1. Never tell people everything you know. From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 10:10 AM To: NT System Admin Issues Subject: RE: Watchguard firewall question Ok, quick question, may be paranoia. I'm having the box back up the image before upgrading, and it has been sitting at 0% for about 5 minutes now. Is that normal? Joe Heaton Employment Training Panel From: Joe Heaton [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 4:01 PM To: NT System Admin Issues Subject: RE: Watchguard firewall question Well, then hopefully the upgrade will help. I'm running 10.0 at the moment, and plan to upgrade to 10.2.3 in the morning... Joe Heaton Employment Training Panel From: Jim Majorowicz [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 3:36 PM To: NT System Admin Issues Subject: RE: Watchguard firewall question Just that getting a Firebox to actually search the right OU is a pain in the freaking ass. Of course, the two times I've configured such, I was using 9.1, so take that for what it's worth. It's
VNC Problem
I'm using Real VNC Enterprise to manage my servers remotely and give a user access. On one of the servers randomly my user can't connect. She starts VNC and the window to select the server appears, she selects the server and the selection window disappears but the password window never appears. I have to go over and locally access the server. I log the user account out and back in, the icon in the system tray turns from black to white and back on the system where the user tried to log in the password window (from the previous connection attempt) appears and the user can then connect. Anyoe seen this before? THANKS Jim ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
MAK key licensing - does this work?
Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: WSUS Updates
The only setting I see that I have different, and might cause what you are seeing, is the: No auto-restart with logged on users for scheduled automatic updates installations Enabled Ours is set to disabled. If a user has logged on when the re-scheduled installation starts, setting it to enabled will prevent the automatic reboot. If that doesn't quite sound like what you are seeing, start digging in logs. Some things you might check: Run gpresult on a machine you think should have updates and confirm the policy is applying correctly according to AD. Client machine event logs WSUS Server event logs WSUS server IIS logs (check for client connections) Clients' Windowsupdate.log files Reports on those updates in WSUS console -Bonnie From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 10:08 AM To: NT System Admin Issues Subject: RE: WSUS Updates Sorry for the delay, just wanted to see what happens after a small tweak. Everything is missing ~6 office updates that are set to install and some recent OS updates? Here is what I have: Allow Automatic Updates immediate installation Enabled Allow non-administrators to receive update notifications Enabled Allow signed content from intranet Microsoft update service location Enabled Automatic Updates detection Frequency Enabled Check For updates at the Following interval (hours): 6 Configure Automatic Updates Enabled Configure automatic updating: 4 - Auto download and schedule the install The following settings are only required and applicable if 4 is selected. Scheduled install day: 0 - Every day Scheduled install time: 11:00 Do not adjust default option to 'Install Updates and Shut Down' in Shut Down Windows dialog box Disabled Do not display 'Install Updates and Shut Down' option in Shut Down Windows dialog box Disabled Enable client-side targeting Enabled Target group name For this computer Desktops Enable recommended updates via Automatic Updates Enabled Enabling Windows Update Power Management to automatically wake up the system to install scheduled updates Enabled No auto-restart with logged on users for scheduled automatic updates installations Enabled Reschedule Automatic Updates scheduled installations Enabled Wait after system startup (minutes): 1 Specify intranet Microsoft update service location Enabled Set the intranet update service for detecting updates: http://server.domain.com:8530 Set the intranet statistics server: http://server.domain.com:8530 Thanks! jlc From: Miller Bonnie L. [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:32 PM To: NT System Admin Issues Subject: RE: WSUS Updates Non-admin notification shouldn't affect delayed update installation. In fact, we like to keep that disabled as I've found that if a non-admin can see the notification, they can also hide the updates by unchecking the boxes next to them. Can you list out which options you've set in the policy? I *think* what you said is that you have Reschedule automatic updates... enabled, with a wait time of 1. This works in conjunction with configure automatic updates enabled set to 4, with a scheduled installation time. If that is all set correctly, confirm that the workstations are getting the policy applied successfully. You might need to look at workstation event logs, and/or run GPResult. -Bonnie From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:44 PM To: NT System Admin Issues Subject: WSUS Updates I have a WSUS 3.0 SP1 machine under Windows 2003 AD that isn't forcing delayed updates. I just noticed that the GPO had been set not to alert non admins of pending updates, but it was set to start install 1 minute after start if delayed? What am I missing? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAK key licensing - does this work?
Tom, I had to do the same thing when i went to get my mak key. The web site does not appear to work properly. Regards, David - Original Message From: Tom Miller [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, October 16, 2008 11:57:47 AM Subject: MAK key licensing - does this work? Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Label Matrix barcode printing
Skipped that one when reading the FAQ, but I did miss some steps in that! Thanks! jlc From: Jacob [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 12:53 PM To: NT System Admin Issues Subject: RE: Label Matrix barcode printing Yes... I use this. This help in my situation. http://www.teklynx.com/products/labels/faq/labelmatrix_faq_24.html From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 9:57 AM To: NT System Admin Issues Subject: Label Matrix barcode printing Anyone use this? I couldn't make it work w/o Admin privs using the usual File/Regmon analysis? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: WSUS Updates
Thanks, I'm on it! jlc From: Miller Bonnie L. [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 12:59 PM To: NT System Admin Issues Subject: RE: WSUS Updates The only setting I see that I have different, and might cause what you are seeing, is the: No auto-restart with logged on users for scheduled automatic updates installations Enabled Ours is set to disabled. If a user has logged on when the re-scheduled installation starts, setting it to enabled will prevent the automatic reboot. If that doesn't quite sound like what you are seeing, start digging in logs. Some things you might check: Run gpresult on a machine you think should have updates and confirm the policy is applying correctly according to AD. Client machine event logs WSUS Server event logs WSUS server IIS logs (check for client connections) Clients' Windowsupdate.log files Reports on those updates in WSUS console -Bonnie From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 10:08 AM To: NT System Admin Issues Subject: RE: WSUS Updates Sorry for the delay, just wanted to see what happens after a small tweak. Everything is missing ~6 office updates that are set to install and some recent OS updates? Here is what I have: Allow Automatic Updates immediate installation Enabled Allow non-administrators to receive update notifications Enabled Allow signed content from intranet Microsoft update service location Enabled Automatic Updates detection Frequency Enabled Check For updates at the Following interval (hours): 6 Configure Automatic Updates Enabled Configure automatic updating: 4 - Auto download and schedule the install The following settings are only required and applicable if 4 is selected. Scheduled install day: 0 - Every day Scheduled install time: 11:00 Do not adjust default option to 'Install Updates and Shut Down' in Shut Down Windows dialog box Disabled Do not display 'Install Updates and Shut Down' option in Shut Down Windows dialog box Disabled Enable client-side targeting Enabled Target group name For this computer Desktops Enable recommended updates via Automatic Updates Enabled Enabling Windows Update Power Management to automatically wake up the system to install scheduled updates Enabled No auto-restart with logged on users for scheduled automatic updates installations Enabled Reschedule Automatic Updates scheduled installations Enabled Wait after system startup (minutes): 1 Specify intranet Microsoft update service location Enabled Set the intranet update service for detecting updates: http://server.domain.com:8530 Set the intranet statistics server: http://server.domain.com:8530 Thanks! jlc From: Miller Bonnie L. [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:32 PM To: NT System Admin Issues Subject: RE: WSUS Updates Non-admin notification shouldn't affect delayed update installation. In fact, we like to keep that disabled as I've found that if a non-admin can see the notification, they can also hide the updates by unchecking the boxes next to them. Can you list out which options you've set in the policy? I *think* what you said is that you have Reschedule automatic updates... enabled, with a wait time of 1. This works in conjunction with configure automatic updates enabled set to 4, with a scheduled installation time. If that is all set correctly, confirm that the workstations are getting the policy applied successfully. You might need to look at workstation event logs, and/or run GPResult. -Bonnie From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:44 PM To: NT System Admin Issues Subject: WSUS Updates I have a WSUS 3.0 SP1 machine under Windows 2003 AD that isn't forcing delayed updates. I just noticed that the GPO had been set not to alert non admins of pending updates, but it was set to start install 1 minute after start if delayed? What am I missing? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: PIX mungles SMTP headers
Not surprising since the 5321 update is less than a month old. Steven Peck wrote: This was a few years ago and evidently I missed the 5321 update though. -- Phil Brutsche [EMAIL PROTECTED] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAK key licensing - does this work?
Thanks. That's a feature. David Baca [EMAIL PROTECTED] 10/16/2008 3:04 PM Tom, I had to do the same thing when i went to get my mak key. The web site does not appear to work properly. Regards, David - Original Message From: Tom Miller [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, October 16, 2008 11:57:47 AM Subject: MAK key licensing - does this work? Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAK key licensing - does this work?
You use different MAK keys from each server? When I use MAK keys for Vista, or Server 2008, I use the same key for all installs (a different 1 for each OS of course) and the licensing site tracks how many of each license I have used. Very slick actually. TVK From: Tom Miller [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 2:16 PM To: NT System Admin Issues Subject: Re: MAK key licensing - does this work? Thanks. That's a feature. David Baca [EMAIL PROTECTED] 10/16/2008 3:04 PM Tom, I had to do the same thing when i went to get my mak key. The web site does not appear to work properly. Regards, David - Original Message From: Tom Miller [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, October 16, 2008 11:57:47 AM Subject: MAK key licensing - does this work? Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Label Matrix barcode printing
Yes. I use this. This help in my situation. http://www.teklynx.com/products/labels/faq/labelmatrix_faq_24.html From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 9:57 AM To: NT System Admin Issues Subject: Label Matrix barcode printing Anyone use this? I couldn't make it work w/o Admin privs using the usual File/Regmon analysis? Thanks! jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAK key licensing - does this work?
I use MAK keys based on authorization and agreement numbers. I asked MS licensing if I could use a single MAK key for all my installs and the person on the line told me no. Where do you see usage on the MS site (eOpen, VLMS, or other site?) Tim Vander Kooi [EMAIL PROTECTED] 10/16/2008 3:20 PM You use different MAK keys from each server? When I use MAK keys for Vista, or Server 2008, I use the same key for all installs (a different 1 for each OS of course) and the licensing site tracks how many of each license I have used. Very slick actually. TVK From:Tom Miller [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 2:16 PM To: NT System Admin Issues Subject: Re: MAK key licensing - does this work? Thanks. That's a feature. David Baca [EMAIL PROTECTED] 10/16/2008 3:04 PM Tom, I had to do the same thing when i went to get my mak key. The web site does not appear to work properly. Regards, David - Original Message From: Tom Miller [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, October 16, 2008 11:57:47 AM Subject: MAK key licensing - does this work? Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAK key licensing - does this work?
I see it when I log in to MVLS and then select Volume License Keys. There it shows me the products and keys that I have broken out by agreement. The far right column is MAK Key Activations Used/Available which of course only displays results for those agreements that I have MAK Keys purchased for. TVK From: Tom Miller [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 2:26 PM To: NT System Admin Issues Subject: RE: MAK key licensing - does this work? I use MAK keys based on authorization and agreement numbers. I asked MS licensing if I could use a single MAK key for all my installs and the person on the line told me no. Where do you see usage on the MS site (eOpen, VLMS, or other site?) Tim Vander Kooi [EMAIL PROTECTED] 10/16/2008 3:20 PM You use different MAK keys from each server? When I use MAK keys for Vista, or Server 2008, I use the same key for all installs (a different 1 for each OS of course) and the licensing site tracks how many of each license I have used. Very slick actually. TVK From: Tom Miller [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 2:16 PM To: NT System Admin Issues Subject: Re: MAK key licensing - does this work? Thanks. That's a feature. David Baca [EMAIL PROTECTED] 10/16/2008 3:04 PM Tom, I had to do the same thing when i went to get my mak key. The web site does not appear to work properly. Regards, David - Original Message From: Tom Miller [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, October 16, 2008 11:57:47 AM Subject: MAK key licensing - does this work? Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAK key licensing - does this work?
Thanks I do see that. That column was always blank until recently. Tim Vander Kooi [EMAIL PROTECTED] 10/16/2008 3:55 PM I see it when I log in to MVLS and then select Volume License Keys. There it shows me the products and keys that I have broken out by agreement. The far right column is MAK Key Activations Used/Available which of course only displays results for those agreements that I have MAK Keys purchased for. TVK From:Tom Miller [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 2:26 PM To: NT System Admin Issues Subject: RE: MAK key licensing - does this work? I use MAK keys based on authorization and agreement numbers. I asked MS licensing if I could use a single MAK key for all my installs and the person on the line told me no. Where do you see usage on the MS site (eOpen, VLMS, or other site?) Tim Vander Kooi [EMAIL PROTECTED] 10/16/2008 3:20 PM You use different MAK keys from each server? When I use MAK keys for Vista, or Server 2008, I use the same key for all installs (a different 1 for each OS of course) and the licensing site tracks how many of each license I have used. Very slick actually. TVK From:Tom Miller [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 2:16 PM To: NT System Admin Issues Subject: Re: MAK key licensing - does this work? Thanks. That's a feature. David Baca [EMAIL PROTECTED] 10/16/2008 3:04 PM Tom, I had to do the same thing when i went to get my mak key. The web site does not appear to work properly. Regards, David - Original Message From: Tom Miller [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Thursday, October 16, 2008 11:57:47 AM Subject: MAK key licensing - does this work? Hi Folks, I'm slowing upgrading my Windows 2003 servers to Windows 2008, so I am using MAK volume licensing until I have enough servers for KMS licensing. On the Volume Product keys page, I am supposed to check the MAK Key Activations option and press Request MAK key. I do that and nothing happens. I end up having to call Microsoft each time to get keys e-mailed to me. Is this normal or am I missing something? Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply e-mail and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: exploit tests on security suites
Alex has some good observations in his Blog: http://sunbeltblog.blogspot.com/2008/10/another-useless-test-grabs-headlines.html Warm regards, Stu From: René de Haas [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:11 PM To: NT System Admin Issues Subject: exploit tests on security suites Results are a little disappointing http://computerworld.com/action/article.do?command=viewArticleBasicarticleId=9117042intsrc=hm_list *** The information in this e-mail is confidential and intended solely for the individual or entity to whom it is addressed. If you have received this e-mail in error please notify the sender by return e-mail delete this e-mail and refrain from any disclosure or action based on the information. *** .. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Wattage Calculation
On Thu, 16 Oct 2008 11:36:04 -0400, [1]Ralph Smith [EMAIL PROTECTED] said: I'm gonna look into those Sears devices and/or the kill-a-watt so I can get some actual numbers. I think the clamp-on Sears doohickeys require you to be able to separate the hot from the neutral leads -- You can't just jam the server's power cord in there. If you need a per-server reading, you'll need an in-line device or possibly a metered power strip. RM References 1. mailto:[EMAIL PROTECTED] ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: NOD32 - VIPRE
Fwiw, there are a LOT of fixes and enhancements in the new agent being released in several weeks. Alex Alex Eckelberry, CEO Sunbelt Software, Inc. 33 N. Garden Avenue, Clearwater, FL 33755 727.562.0101 x220 [EMAIL PROTECTED] mailto:[EMAIL PROTECTED] www.sunbeltsoftware.com http://www.sunbeltsoftware.com/ www.sunbeltblog.com http://www.sunbeltblog.com/ From: Jonathan Gruber [mailto:[EMAIL PROTECTED] Sent: Wednesday, October 15, 2008 12:58 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE I had/have this issue also. Only happens to me when sending email with attachments. I've also noticed a real slow-down when selecting many messages (read over 200) to delete. I'd be interested in what they say. Jonathan Gruber Network Administrator J.B. Long Inc. 610-944-8840 x.213 484-637-1978 direct From: Phil Thompson [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 3:06 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE I had the same issue but didn't relate it to be a Viper issue. I wrote Sunbelt about this and will let you know. Phil Thompson From: Chinnery, Paul [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:56 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE Yes. Paul Chinnery Network Administrator Memorial Medical Center 231-845-2319 -Original Message- From: Phil Thompson [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:42 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE Is that the error when sending and email? Phil Thompson From: Chinnery, Paul [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:38 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE He kept getting the Operation Failed error. Paul Chinnery Network Administrator Memorial Medical Center 231-845-2319 -Original Message- From: Richards, Brian D [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 2:32 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE I'm curious - what sort of trouble? I'm running the consumer version of Vipre on a Vista laptop with OL2007... From: Chinnery, Paul [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 1:19 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE Our Sys Admin has O2007 installed and it was causing him trouble. As I already have 2 layers of a/v defense with email, I just turned off Emaili protection. Paul Chinnery Network Administrator Memorial Medical Center 231-845-2319 -Original Message- From: David Lum [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 12:33 PM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE Nope no regrets, the bad me was more about not doing a thorough due diligence before moving them to Vipre - hadn't occurred to me to see if Trend had upgraded their product before shopping elsewhere is all. The Vipre move saved my clients money even if you factor in the new install and learning curve, and it works fine. As stated earlier... on one client I cranked up full paranoia mode and it nuked Outlook (Sunbelt didn't have that particular version of the outlook.exe on file yet) so be sure to test settings changes on a small group first J. Also as Phil said, Sunbelt's support is great, and on the Vipre list there's a couple guys who seem to know the product almost as well as Sunbelt. David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503.267.9764 From: Chinnery, Paul [mailto:[EMAIL PROTECTED] Sent: Tuesday, October 14, 2008 9:16 AM To: NT System Admin Issues Subject: RE: NOD32 - VIPRE So are you saying you regret moving to Vipre? Paul Chinnery Network Administrator Memorial Medical Center 231-845-2319
Issues combining the usual email domain with POP
Using Exchange 2003 we have combined the usual domain ([EMAIL PROTECTED]) with POP. For e.g., we have some of the same users doing business overseas using a different domain ([EMAIL PROTECTED]) pointing to the same Exchange server.albeit the Outlook client is configured using POP...again alongside Exchange. We now have an interesting phenomenon where the POP is downloading 12,000+ messages in over 1.89GB, again and again. The POP configuration is NOT set to Leave a copy of messages on the server Does anyone know where these POP emails reside.that we might manually delete them? What are we painfully overlooking?? Cheers. -Jeff ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DC changing time?
My point was that the time service wouldn't set the clock that far off because of a bad source because it won't accept an offset that large. Kind of like NTPd on a *NIX box will panic if you try to throw it an offset 1000 sec. You can certainly do it with the old date, time, or net time. It must have been a really interesting case you had with PSS From: Webster [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 10:52 AM To: NT System Admin Issues Subject: RE: DC changing time? From: Free, Bob [mailto:[EMAIL PROTECTED] Subject: RE: DC changing time? The time service on the DC wouldn't accept an offset that big. I worked a call back in August where the point-to-point T3 went down for 8 hrs. When the link came back 1 DC on each side of the link each changed their dates from 08/11/08 to 01/02/09. Then 45 minutes later reset back to 08/11/08. On the west coast no one could then authenticate to the network. On the east coast, where the PDCE resided, there were no issues. Took Microsoft support many hours to fix that network. Webster From: Joseph L. Casale [mailto:[EMAIL PROTECTED] Subject: RE: DC changing time? Bad NTP Time source? Enumerate and check them... From: mqcarp [mailto:[EMAIL PROTECTED] Subject: DC changing time? We had a weird issue where apparently a DC rolled back exactly one day in time (6:30PM Monday became 6:30PM Sunday). This wreaked havoc on policy issues. All I can see in the event logs is the change in policy where it was denying log ins all of a sudden. The DC time was updated and we are back on track but I can not see what would cause something like this. No one was at the office in IT when this occurred. The only thing odd was an admin had left himself logged into the server at the end of the day. Has anyone seen this before? AD 2003 2003 Server Standard ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Issues combining the usual email domain with POP
The POP emails are not kept on the exchange server they are on each computer that the email client resides. Depending on what client they use. Outlook is kept here, C:\Documents and Settings\USERNAME\Local Settings\Application Data\Microsoft\Outlook If you want to move them to the exchange server you can import the .pst file for each user. Phil Thompson From: Jeff Gottlieb [EMAIL PROTECTED] Sent: Thursday, October 16, 2008 5:59 PM To: NT System Admin Issues Subject: Issues combining the usual email domain with POP Using Exchange 2003 we have combined the usual domain ([EMAIL PROTECTED]mailto:[EMAIL PROTECTED]) with POP. For e.g., we have some of the same users doing business overseas using a different domain ([EMAIL PROTECTED]mailto:[EMAIL PROTECTED]) pointing to the same Exchange server…albeit the Outlook client is configured using POP...again alongside Exchange. We now have an interesting phenomenon where the POP is downloading 12,000+ messages in over 1.89GB, again and again. The POP configuration is NOT set to “Leave a copy of messages on the server” Does anyone know where these POP emails reside…that we might manually delete them? What are we painfully overlooking?? Cheers. -Jeff ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Issues combining the usual email domain with POP
erm..no. They reside in the exchange server otherwise he would not be downloading all those emails everytime he connects. The client is obviously not letting exchange know that the emails have been already downloaded. S From: Phil Thompson [mailto:[EMAIL PROTECTED] Sent: Thursday, October 16, 2008 7:43 PM To: NT System Admin Issues Subject: RE: Issues combining the usual email domain with POP The POP emails are not kept on the exchange server they are on each computer that the email client resides. Depending on what client they use. Outlook is kept here, C:\Documents and Settings\USERNAME\Local Settings\Application Data\Microsoft\Outlook If you want to move them to the exchange server you can import the .pst file for each user. Phil Thompson From: Jeff Gottlieb [EMAIL PROTECTED] Sent: Thursday, October 16, 2008 5:59 PM To: NT System Admin Issues Subject: Issues combining the usual email domain with POP Using Exchange 2003 we have combined the usual domain ([EMAIL PROTECTED]mailto:[EMAIL PROTECTED]) with POP. For e.g., we have some of the same users doing business overseas using a different domain ([EMAIL PROTECTED]mailto:[EMAIL PROTECTED]) pointing to the same Exchange server...albeit the Outlook client is configured using POP...again alongside Exchange. We now have an interesting phenomenon where the POP is downloading 12,000+ messages in over 1.89GB, again and again. The POP configuration is NOT set to Leave a copy of messages on the server Does anyone know where these POP emails reside...that we might manually delete them? What are we painfully overlooking?? Cheers. -Jeff ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: NOD32 - VIPRE
So when can we expect to see Vipre on a thumb drive? That would be a great selling point especially if it could be configured for booting. I know I have dealt with enough systems that if a reliable way could be found to boot a thumb and clean a system infected with bugs it would help me a lot and save my garage clients money or at least give them a real option to a wipe and reinstall of the OS. Jon On Thu, Oct 16, 2008 at 5:26 PM, Alex Eckelberry [EMAIL PROTECTED] wrote: Fwiw, there are a LOT of fixes and enhancements in the new agent being released in several weeks. Alex Alex Eckelberry, CEO Sunbelt Software, Inc. 33 N. Garden Avenue, Clearwater, FL 33755 727.562.0101 x220 [EMAIL PROTECTED] www.sunbeltsoftware.com www.sunbeltblog.com -- *From:* Jonathan Gruber [mailto:[EMAIL PROTECTED] *Sent:* Wednesday, October 15, 2008 12:58 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE I had/have this issue also. Only happens to me when sending email with attachments. I've also noticed a real slow-down when selecting many messages (read over 200) to delete. I'd be interested in what they say. Jonathan Gruber Network Administrator J.B. Long Inc. 610-944-8840 x.213 484-637-1978 direct *From:* Phil Thompson [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 3:06 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE I had the same issue but didn't relate it to be a Viper issue. I wrote Sunbelt about this and will let you know. Phil Thompson -- *From:* Chinnery, Paul [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 2:56 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE Yes. *Paul Chinnery* *Network Administrator* *Memorial Medical Center* *231-845-2319* -Original Message- *From:* Phil Thompson [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 2:42 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE Is that the error when sending and email? Phil Thompson -- *From:* Chinnery, Paul [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 2:38 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE He kept getting the Operation Failed error. *Paul Chinnery* *Network Administrator* *Memorial Medical Center* *231-845-2319* -Original Message- *From:* Richards, Brian D [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 2:32 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE I'm curious - what sort of trouble? I'm running the consumer version of Vipre on a Vista laptop with OL2007... -- *From:* Chinnery, Paul [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 1:19 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE Our Sys Admin has O2007 installed and it was causing him trouble. As I already have 2 layers of a/v defense with email, I just turned off Emaili protection. *Paul Chinnery* *Network Administrator* *Memorial Medical Center* *231-845-2319* -Original Message- *From:* David Lum [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 12:33 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE Nope no regrets, the bad me was more about not doing a thorough due diligence before moving them to Vipre – hadn't occurred to me to see if Trend had upgraded their product before shopping elsewhere is all. The Vipre move saved my clients money even if you factor in the new install and learning curve, and it works fine. As stated earlier… on one client I cranked up full paranoia mode and it nuked Outlook (Sunbelt didn't have that particular version of the outlook.exe on file yet) so be sure to test settings changes on a small group first J. Also as Phil said, Sunbelt's support is great, and on the Vipre list there's a couple guys who seem to know the product almost as well as Sunbelt. *David Lum** **// *SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 *// *(Cell) 503.267.9764 *From:* Chinnery, Paul [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 9:16 AM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE So are you saying you regret moving to Vipre? *Paul Chinnery* *Network Administrator* *Memorial Medical Center* *231-845-2319* -Original Message- *From:* David Lum [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, October 14, 2008 12:06 PM *To:* NT System Admin Issues *Subject:* RE: NOD32 - VIPRE As someone else said, load it up on a server and some systems (VM's maybe?) and subscribe to the Vipre Enterprise list. As you said, since NOD32 Is working well I think you'd just need to get a feel for what you think about Viper Enterprise vs NOD32. Speaking of AV, in my experience I have had very very low infection rates with both
RE: DC changing time?
From: Free, Bob [mailto:[EMAIL PROTECTED] Subject: RE: DC changing time? My point was that the time service wouldn't set the clock that far off because of a bad source because it won't accept an offset that large. Kind of like NTPd on a *NIX box will panic if you try to throw it an offset 1000 sec. You can certainly do it with the old date, time, or net time. It must have been a really interesting case you had with PSS.. Yes, it was a very educational call. Learned a lot about resetting secure channels, resetting Kerberos tickets and klist. One point was that the PDCE saw the time difference was so large and killed the secure channel between it and all other DCs to keep from getting itself hurt. Once it did that, the DCs on the left coast could no longer authenticate. The right coast users only had the PDCE DC to work with so they had no issues. Webster ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
