Re: Avast AV
If the system has any audio when it reports that the definations are updated it may cause issues with the less tech savy folks. I have a couple of home users who's kids report parents jumping up from the system and calling one of them when it happens. That is the home version so I don't know if the Pro does that as well or not. Jon On Fri, May 1, 2009 at 12:02 PM, Sam Cayze sam.ca...@rollouts.com wrote: That's the one thing I remember from back in the day of using it at home, it ALWAYS requested reboots. Highly annoying. -- *From:* gswe...@actsconsulting.net [mailto:gswe...@actsconsulting.net] *Sent:* Friday, May 01, 2009 10:57 AM *To:* NT System Admin Issues *Subject:* RE: Avast AV We had one client that was using it in the Enterprise and it worked, but the console was convoluted. Its updates required reboots constantly both server and workstation side and its performance drawbacks were not as bad as Symantec, but still very noticeable. Lots of home users were using it, and we installed it on a lot of them about 2 years ago now, but since then we have moved most of them to Vipre or AVG. *From:* Roger Wright [mailto:rwri...@evatone.com] *Sent:* Friday, May 01, 2009 11:48 AM *To:* NT System Admin Issues *Subject:* RE: Avast AV I’ve seen it on a couple home machines I’ve worked on. Both were eaten up with malware, and the Avast active protection really bogged the machines down. Roger Wright Network Administrator Evatone, Inc. 727.572.7076 x388 _ *From:* Joe Heaton [mailto:jhea...@etp.ca.gov] *Sent:* Friday, May 01, 2009 11:15 AM *To:* NT System Admin Issues *Subject:* RE: Avast AV I take it from the lack of replies that no one is using Avast? In a way, that’s good, as I really don’t want to do a lot of research into it, but on the other hand, I don’t have any ammo against it either… Joe Heaton Employment Training Panel *From:* Joe Heaton [mailto:jhea...@etp.ca.gov] *Sent:* Thursday, April 30, 2009 8:50 AM *To:* NT System Admin Issues *Subject:* Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I’ve forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well… Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
When the person telling you Mac's don't get virii and he is the one holding the purse strings I don't argue a whole lot. We have to keep a person on staff just to get his documents/presentations/worksheets converted to something the Windows users can work with. I dislike the situation but I do what I can. All the Windows systems he can talk to have AV the rest he can't talk to period. I am working on killing the last open share in the network which will cause a big enough fight with him to argue about his machine having AV or not just is not in the cards. Jon On Fri, May 1, 2009 at 11:26 AM, Blackman, Woody wblack...@occ.cccd.eduwrote: Do your macintosh users not share files and emails with your PC users? soapbox mode engaged I have been supporting a multi-platform environment for 15+ years. We have been running AV on our Macs for the last 10. Not only do Macs get exposed to viruses that they can be infected with, they are carriers for PC viruses. IMO it is irresponsible to have them on your internal network and not protected. Defense in depth - social responsibility.soapbox mode disengaged SOPHOS is a great multi-platform product that is managed on Windows servers. Small client footprint and easy to manage from an enterprise perspective. http://www.sophos.com http://www.sophos.com/ From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Fri 5/1/2009 7:55 AM To: NT System Admin Issues Subject: Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
DHCP 80-20 rule
I've read some about the DHCP 80-20 rule but I'm not sure I really understand it. Here are two questions. 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. DHCPserver1 doesn't know that a different address has been assigned to Client1 so Client1 has an active lease on both DHCP servers although only one of the addresses is functional. (Perhaps that's not what would happen?) What happens to DNS? Are there now two entries in DNS (192.168.0.1 and 192.168.0.129) for Client1? For the purpose of answering this question, please assume that I have Active Directory Integrated DNS on Server 2003 and DHCP on Windows Server 2008. Thanks for your help. Curt Finley ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Windows 2003 Terminal Services Server Question
Here is one that I hope I can get a bit of insight on: Desktop shortcut keeps disappearing from All Users/Desktop location The server is Windows 2003 R2 - Setup as Terminal Services Server No user will own up to deletion (of course...) How can i find out who/when the shortcut is being deleted/moved or otherwise? Any such tool to monitor the server for such actions? Thanks in advance to any and all solutions or recommendations David Elebute D.Tech Networking Services ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Windows 2003 Terminal Services Server Question
Wouldn't file access auditing be useful here? BTW why do your end users have local admin, and on a TS box no less! David Elebute wrote: Here is one that I hope I can get a bit of insight on: Desktop shortcut keeps disappearing from All Users/Desktop location The server is Windows 2003 R2 - Setup as Terminal Services Server No user will own up to deletion (of course...) How can i find out who/when the shortcut is being deleted/moved or otherwise? Any such tool to monitor the server for such actions? Thanks in advance to any and all solutions or recommendations -- Phil Brutsche p...@optimumdata.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Windows 2003 Terminal Services Server Question
Users DO NOT HAVE admin rights. Deleting a shortcut on a desktop does not require admin rights either. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Avast AV
Lol, I agree Sherry, but I have a very opinionated developer that I'm dealing with, and he also has the title of System Architect, which gives him more leverage when he suggests something. Not that it means he really knows much of anything on the subject, but there ya go... Thanks all for the responses, I'll probably be printing them out for sharing with my boss. Joe Heaton Employment Training Panel From: Sherry Abercrombie [mailto:saber...@gmail.com] Sent: Friday, May 01, 2009 8:37 AM To: NT System Admin Issues Subject: Re: Avast AV I would think that if no one is using it, then that would be ammo against it. On Fri, May 1, 2009 at 10:15 AM, Joe Heaton jhea...@etp.ca.gov wrote: I take it from the lack of replies that no one is using Avast? In a way, that's good, as I really don't want to do a lot of research into it, but on the other hand, I don't have any ammo against it either... Joe Heaton Employment Training Panel From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 8:50 AM To: NT System Admin Issues Subject: Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I've forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well... Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov -- Sherry Abercrombie Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke Sent from Haslet, TX, United States ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Windows 2003 Terminal Services Server Question
It does from the All Users/Desktop folder. It does not from their own Desktop. -Original Message- From: David Elebute [mailto:deleb...@traveltechnologyservices.net] Sent: Friday, May 01, 2009 2:04 PM To: NT System Admin Issues Subject: Re: Windows 2003 Terminal Services Server Question Users DO NOT HAVE admin rights. Deleting a shortcut on a desktop does not require admin rights either. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DHCP 80-20 rule
At half lease time, the client should request an address *renewal*. The renewal request would be sent to the DHCP server that provided the original lease, it is not broadcast to DHCPServer2. IIRC, it will not broadcast again until the lease actually expires. (someone will jump in to correct me if I'm wrong) Jeff On Fri, May 1, 2009 at 1:48 PM, Jim Dandy jda...@asmail.ucdavis.edu wrote: I've read some about the DHCP 80-20 rule but I'm not sure I really understand it. Here are two questions. 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. DHCPserver1 doesn't know that a different address has been assigned to Client1 so Client1 has an active lease on both DHCP servers although only one of the addresses is functional. (Perhaps that's not what would happen?) What happens to DNS? Are there now two entries in DNS (192.168.0.1 and 192.168.0.129) for Client1? For the purpose of answering this question, please assume that I have Active Directory Integrated DNS on Server 2003 and DHCP on Windows Server 2008. Thanks for your help. Curt Finley ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
-Original Message- From: Jim Dandy 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? The 20 is designed to keep you alive and running while you fix the 80 server. Certainly a full range on both servers to serve all your clients would be great, if your subnetting and available addresses allow it. 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. At 50 percent the client contacts the original leasing server directly to renew that lease. It does not do a brand new lease broadcast. It will continue to ask directly until it gets an answer. If it can't it will then broadcast for a brand new lease. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
No, you're correct. Ben M. Schorr Chief Executive Officer __ Roland Schorr Tower www.rolandschorr.com http://www.rolandschorr.com/ b...@rolandschorr.com mailto:b...@rolandschorr.com Twitter: http://www.twitter.com/bschorr From: Jeff Bunting [mailto:bunting.j...@gmail.com] Sent: Friday, May 01, 2009 8:17 AM To: NT System Admin Issues Subject: Re: DHCP 80-20 rule At half lease time, the client should request an address renewal. The renewal request would be sent to the DHCP server that provided the original lease, it is not broadcast to DHCPServer2. IIRC, it will not broadcast again until the lease actually expires. (someone will jump in to correct me if I'm wrong) Jeff On Fri, May 1, 2009 at 1:48 PM, Jim Dandy jda...@asmail.ucdavis.edu wrote: I've read some about the DHCP 80-20 rule but I'm not sure I really understand it. Here are two questions. 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. DHCPserver1 doesn't know that a different address has been assigned to Client1 so Client1 has an active lease on both DHCP servers although only one of the addresses is functional. (Perhaps that's not what would happen?) What happens to DNS? Are there now two entries in DNS (192.168.0.1 and 192.168.0.129) for Client1? For the purpose of answering this question, please assume that I have Active Directory Integrated DNS on Server 2003 and DHCP on Windows Server 2008. Thanks for your help. Curt Finley ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues
I recently got a new quad-core notebook with 8GB of ram, which forced me to move to Vista 64bit. Outlook is horribly slow to open, but once it does open, there are no issues. I suspect a similar issue, but have not had a chance to really troubleshoot it. I do know that it does not seem to occur on Vista 32bit and XP. I installed Office SP2 which did not resolve the issue. Google shows many hits on similar issues. Sorry to not be able to give better input, but just chiming in that there is obviously an issue that needs to be fixed. Bob Fronk From: Todd Arnett [mailto:tarn...@lastar.com] Sent: Thursday, April 30, 2009 11:22 AM To: NT System Admin Issues Subject: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues For the past few weeks, we've had a problem that the two of us in the office using Vista were unable to access Exchange over the VPN server. This was a new development we've been running vista for over a year now. Outlook would just hang for hours even. Occasionally I would get Microsoft exchange server is unavailable. After doing some troubleshooting we finally figured out the Outlook was trying to communicate on port 135 (RPC Endpoint Mapper) to our DCs. We had to make firewall changes to allow communication from our VPN server to our DCs on port 135.The thing that has left us scratching our head is why is it just these Vista clients? We have probably 30-40 other users running Office 2007 and they have no issues, and why did it work all that time before? It only seemed to be the vista clients. We do not use RPC over HTTP. Any thoughts? Thanks, Todd ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
My memory says: It retries at 50 percent of the original. If it does not get a renewal ACK then it retries at 50 percent of that 50 percent (25 percent of the original), then at 50 percent of that (12.5 of the original).. Soon someone will set us both straight :) From: Jeff Bunting [mailto:bunting.j...@gmail.com] Sent: Friday, May 01, 2009 2:17 PM To: NT System Admin Issues Subject: Re: DHCP 80-20 rule IIRC, it will not broadcast again until the lease actually expires. (someone will jump in to correct me if I'm wrong) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Windows 2003 Terminal Services Server Question
Perhaps it should (require admin rights). NTFS is your friend. Carl -Original Message- From: David Elebute [mailto:deleb...@traveltechnologyservices.net] Sent: Friday, May 01, 2009 2:04 PM To: NT System Admin Issues Subject: Re: Windows 2003 Terminal Services Server Question Users DO NOT HAVE admin rights. Deleting a shortcut on a desktop does not require admin rights either. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
Are you sure each TS Gateway user or device requires a TS CAL? I thought you only needed a CAL if you were going into a TS and that remote desktop connections to desktop computers were free. Curt From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Thursday, April 30, 2009 12:51 PM To: NT System Admin Issues Subject: RE: Remote access options Its really easy to set up and works quite well in my experience. There are only a couple of potential gotchas that I found. 1) Each TS Gateway user or device requires a TS CAL. 2) Wildcard certs work fine, but you need to have XP SPs RDP client on XP, or Service Pack 1 on Vista I dont think you can download the Vista SP1 RDP client by itself. From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Thursday, April 30, 2009 3:39 PM To: NT System Admin Issues Subject: Re: Remote access options TS 2008, Gateway Role, is over SSL only. I set up a nat on my firewall and https only to the gateway server and that's all you need to do (other than configuring the Gateway role, getting a certificate for the farm, blah blah blah.) Jeff Brown 2jbr...@gmail.com 4/30/2009 1:29 PM Our firewall allows for a relatively simple ssl connection, which then grants access to a TS server. Very simple to deploy and use, and (I think) more secure than a hole straight through to a TS server on network or DMZ. On Thu, Apr 30, 2009 at 11:37 AM, Tom Miller tmil...@hnncsb.org wrote: Terminal Server 2008 has the Gateway role for external users. Still clunky compared to Citrix, but much less costly. I have a Citrix farm for external users, and starting to use Terminal Server for internal users. I'd go 100% Citrix if it were not so ridiculously expensive. Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Erik Goldoff egold...@gmail.com 4/30/2009 12:23 PM You *could* try a quick rollout of Terminal Server, temporary licenses are good for 90 days ( still true I think ) Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 12:17 PM To: NT System Admin Issues Subject: RE: Remote access options Thats more the waym leaning as well, dont want to put more processing load than necessary on the firewall. But, push come to shove, if they demand something within a day or two, VPN would have to be used, as I dot have the web stuff for Citrix, or an Access Gateway setup. Joe Heaton Employment Training Panel From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, April 30, 2009 8:46 AM To: NT System Admin Issues Subject: RE: Remote access options my choice to connect a disparate collection of nonstandard home users from their own equipment would be Terminal Server / Citrix , *should* keep your interior network more secure than a VPN tunnel. And not being familiar with your firewall or quantities of tunnels needed, performance may be an issue. If you have large numbers of 3DES or better encrypted tunnels ( large relating to the capabilities of your firewall ) then you could overwhelm the firewall processor and buffers, impacting overall performance and reliability of network connections. RDP/ICA is simply traffic the firewall will process, and not spend time encrypting/decrypting with whatever VPN encryption engine it has Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 11:40 AM To: NT System Admin Issues Subject: Remote access options With thepandemi, ve been tasked with coming up with a plan for remote access, in order to keep the business running, in case of having to have people stay home. So, with that, ve decided to ask you guys what youre using/doing, for teleworking. A couple of options I thought of off the top of my head: 1) VPN simple, gives the user a good desktop experience. Slow, at least slower than working from your desk. 2) Citrix same as above, can publish specific apps, or entire desktop if needed. Low bandwidth requirements. I listed those two, as our firewall has built-in VPN capabilities, which we are currently using, and therefore would be the quickest option to implement. We also have Citrix already, although only a single server, running PS 4.0. I know Id want to implement an Access Gateway, etc with the Citrix option. Thanks, Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov pr pr pr pr Confidentiality Notice: This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please contact the
Re: DHCP 80-20 rule
My memory agrees with yours On Fri, May 1, 2009 at 2:19 PM, Kennedy, Jim kennedy...@elyriaschools.orgwrote: My memory says: It retries at 50 percent of the original. If it does not get a renewal ACK then it retries at 50 percent of that 50 percent (25 percent of the original), then at 50 percent of that (12.5 of the original)…… Soon someone will set us both straight J *From:* Jeff Bunting [mailto:bunting.j...@gmail.com] *Sent:* Friday, May 01, 2009 2:17 PM *To:* NT System Admin Issues *Subject:* Re: DHCP 80-20 rule IIRC, it will not broadcast again until the lease actually expires. (someone will jump in to correct me if I'm wrong) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
Yes, that is what it does. But it doesn't do a broadcast - it attempts a renewal with the original issuing DHCP server at those points. -Ben- Ben M. Schorr, MVP Roland Schorr Tower http://www.rolandschorr.com http://www.rolandschorr.com/ http://www.officeforlawyers.com http://www.officeforlawyers.com/onenote.htm Author - The Lawyer's Guide to Microsoft Outlook 2007: http://tinyurl.com/5m3f5q From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, May 01, 2009 8:20 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule My memory says: It retries at 50 percent of the original. If it does not get a renewal ACK then it retries at 50 percent of that 50 percent (25 percent of the original), then at 50 percent of that (12.5 of the original).. Soon someone will set us both straight J From: Jeff Bunting [mailto:bunting.j...@gmail.com] Sent: Friday, May 01, 2009 2:17 PM To: NT System Admin Issues Subject: Re: DHCP 80-20 rule IIRC, it will not broadcast again until the lease actually expires. (someone will jump in to correct me if I'm wrong) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Windows 2003 Terminal Services Server Question
Perhaps someone helpfully change the permissions so that Users have the ability to modify All Users folder? On Fri, May 1, 2009 at 2:14 PM, Joe Tinney jtin...@lastar.com wrote: It does from the All Users/Desktop folder. It does not from their own Desktop. -Original Message- From: David Elebute [mailto:deleb...@traveltechnologyservices.net] Sent: Friday, May 01, 2009 2:04 PM To: NT System Admin Issues Subject: Re: Windows 2003 Terminal Services Server Question Users DO NOT HAVE admin rights. Deleting a shortcut on a desktop does not require admin rights either. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
I still don't get the 80-20 thing. 50-50 would distribute the load better and would potentially give you more leases if one fails. Perhaps the hope is that the one that fails is the one with 20% and that 80% would give you adequate addresses to be fully functional while you fix the 20. Thanks for the info on the no-broadcast for renewals. Here is another question ... 3) Let's say you reboot your client before the lease expires. On reboot does it do a broadcast to get a new address or does it just try to renew from the DHCP server from which it got its original lease? Curt -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, May 01, 2009 11:17 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule -Original Message- From: Jim Dandy 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? The 20 is designed to keep you alive and running while you fix the 80 server. Certainly a full range on both servers to serve all your clients would be great, if your subnetting and available addresses allow it. 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. At 50 percent the client contacts the original leasing server directly to renew that lease. It does not do a brand new lease broadcast. It will continue to ask directly until it gets an answer. If it can't it will then broadcast for a brand new lease. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
I never bother with the 80-20 thing myself, if I have dual DHCP servers (which I like to) I always try to give each a large enough address pool to cover the entire network. The rare exception is if I have too many devices for the subnet to be completely split like that - i.e. 175 devices on a Class C subnet. That's pretty rare, though, because if I have that many devices I've probably chosen an IP addressing scheme that can more readily accommodate them. I'm actually sort of fond of using Class B schemes (172.23.x.x) for example. Regarding #3 - when your client boots it only needs to check that it still has an IP address. If it's still within the lease period there's no need to rebroadcast. It either quietly goes on using the address it already has, or if it's at the proper time in the lease (50%) it'll send out a routine renew request to the issuing server. Most of the time it doesn't have to do anything. Ben M. Schorr Chief Executive Officer __ Roland Schorr Tower www.rolandschorr.com b...@rolandschorr.com Twitter: http://www.twitter.com/bschorr -Original Message- From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 8:41 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule I still don't get the 80-20 thing. 50-50 would distribute the load better and would potentially give you more leases if one fails. Perhaps the hope is that the one that fails is the one with 20% and that 80% would give you adequate addresses to be fully functional while you fix the 20. Thanks for the info on the no-broadcast for renewals. Here is another question ... 3) Let's say you reboot your client before the lease expires. On reboot does it do a broadcast to get a new address or does it just try to renew from the DHCP server from which it got its original lease? Curt -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, May 01, 2009 11:17 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule -Original Message- From: Jim Dandy 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? The 20 is designed to keep you alive and running while you fix the 80 server. Certainly a full range on both servers to serve all your clients would be great, if your subnetting and available addresses allow it. 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. At 50 percent the client contacts the original leasing server directly to renew that lease. It does not do a brand new lease broadcast. It will continue to ask directly until it gets an answer. If it can't it will then broadcast for a brand new lease. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DHCP 80-20 rule
I do 100-100. Each of our two DHCP servers can service the entirety of our small network. FYI, there is a DHCP option to release the IP address on shutdown, but we don't use that. You might try it if you get bored. Devin On Fri, May 1, 2009 at 1:40 PM, Jim Dandy jda...@asmail.ucdavis.edu wrote: I still don't get the 80-20 thing. 50-50 would distribute the load better and would potentially give you more leases if one fails. Perhaps the hope is that the one that fails is the one with 20% and that 80% would give you adequate addresses to be fully functional while you fix the 20. Thanks for the info on the no-broadcast for renewals. Here is another question ... 3) Let's say you reboot your client before the lease expires. On reboot does it do a broadcast to get a new address or does it just try to renew from the DHCP server from which it got its original lease? Curt -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, May 01, 2009 11:17 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule -Original Message- From: Jim Dandy 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? The 20 is designed to keep you alive and running while you fix the 80 server. Certainly a full range on both servers to serve all your clients would be great, if your subnetting and available addresses allow it. 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. At 50 percent the client contacts the original leasing server directly to renew that lease. It does not do a brand new lease broadcast. It will continue to ask directly until it gets an answer. If it can't it will then broadcast for a brand new lease. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ -- Devin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Windows 2003 Terminal Services Server Question
That's a good point. You could start by using the Effective Permissions functionality by right-clicking on the All Users\Desktop folder and choosing Properties Security tab Advanced button Effective Permissions tab. Enter the username and see what permissions they have. From: Jonathan Link [mailto:jonathan.l...@gmail.com] Sent: Friday, May 01, 2009 2:33 PM To: NT System Admin Issues Subject: Re: Windows 2003 Terminal Services Server Question Perhaps someone helpfully change the permissions so that Users have the ability to modify All Users folder? On Fri, May 1, 2009 at 2:14 PM, Joe Tinney jtin...@lastar.com wrote: It does from the All Users/Desktop folder. It does not from their own Desktop. -Original Message- From: David Elebute [mailto:deleb...@traveltechnologyservices.net] Sent: Friday, May 01, 2009 2:04 PM To: NT System Admin Issues Subject: Re: Windows 2003 Terminal Services Server Question Users DO NOT HAVE admin rights. Deleting a shortcut on a desktop does not require admin rights either. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
Yeah, I was kinda bummed when I dug into it and found out. At least TS CALs aren���t too expensive��� You d�t need a TS CAL to remote directly into a workstation, but you do if you go through a TS Gateway. From ���Licensing Windows Server 2008 Terminal Services.doc��� @ http://download.microsoft.com/download/6/9/5/695ba00d-c790-4c90-813a-f10539d97991/Licensing%20Windows%20Server%202008%20Terminal%20Services.doc (http://tinyurl.com/64ykh7) Do I need a TS CAL if I am not running a multiuser environment but use functionality in Terminal Servicefor example, Terminal Services Gateway? Yes. A TS CAL is required for the use of any functionality included in the Terminal Services role in Windows Server. For example, if you are using TS Gateway and/or TS Web Access to provide access to a Windows Client operating system on an individual PC, both a TS CAL and Windows Server CAL are required. RS From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 2:25 PM To: NT System Admin Issues Subject: RE: Remote access options Are you sure each TS Gateway user or device requires a TS CA I thought you only needed a CAL if you were going into a TS and that remote desktop connections to desktop computers were free. Curt From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Thursday, April 30, 2009 12:51 PM To: NT System Admin Issues Subject: RE: Remote access options Its really easy to set up and works quite well in my experience. There are only a couple of potential gotchas that I found. 1) Each TS Gateway user or device requires a TS CAL. 2) Wildcard certs work fine, but you need to have XP SPs RDP client on XP, or Service Pack 1 on Vista I dont think you can download the Vista SP1 RDP client by itself. From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Thursday, April 30, 2009 3:39 PM To: NT System Admin Issues Subject: Re: Remote access options TS 2008, Gateway Role, is over SSL only. I set up a nat on my firewall and https only to the gateway server and that's all you need to do (other than configuring the Gateway role, getting a certificate for the farm, blah blah blah.) Jeff Brown 2jbr...@gmail.com 4/30/2009 1:29 PM Our firewall allows for a relatively simple ssl connection, which then grants access to a TS server. Very simple to deploy and use, and (I think) more secure than a hole straight through to a TS server on network or DMZ. On Thu, Apr 30, 2009 at 11:37 AM, Tom Miller tmil...@hnncsb.org wrote: Terminal Server 2008 has the Gateway role for external users. Still clunky compared to Citrix, but much less costly. I have a Citrix farm for external users, and starting to use Terminal Server for internal users. I'd go 100% Citrix if it were not so ridiculously expensive. Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Erik Goldoff egold...@gmail.com 4/30/2009 12:23 PM You *could* try a quick rollout of Terminal Server, temporary licenses are good for 90 days ( still true I think ) Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 12:17 PM To: NT System Admin Issues Subject: RE: Remote access options Thats more the waym leaning as well, dont want to put more processing load than necessary on the firewall. But, push come to shove, if they demand something within a day or two, VPN would have to be used, as I dot have the web stuff for Citrix, or an Access Gateway setup. Joe Heaton Employment Training Panel From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, April 30, 2009 8:46 AM To: NT System Admin Issues Subject: RE: Remote access options my choice to connect a disparate collection of nonstandard home users from their own equipment would be Terminal Server / Citrix , *should* keep your interior network more secure than a VPN tunnel. And not being familiar with your firewall or quantities of tunnels needed, performance may be an issue. If you have large numbers of 3DES or better encrypted tunnels ( large relating to the capabilities of your firewall ) then you could overwhelm the firewall processor and buffers, impacting overall performance and reliability of network connections. RDP/ICA is simply traffic the firewall will process, and not spend time encrypting/decrypting with whatever VPN encryption engine it has Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 11:40 AM To: NT System Admin Issues Subject: Remote access options With thepandemi, ve been tasked with coming up with a plan for remote access, in order to keep the business running, in case of having to have people stay home. So, with that, ve decided to ask you guys what youre using/doing, for
Re: DHCP 80-20 rule
hmmm, looks like I was incorrect according to this... From Lease Renewals http://technet.microsoft.com/en-us/library/cc958919.aspx If the client is unable to communicate with its original DHCP server, the client waits until 87.5 percent of its lease time elapses. Then the client enters a rebinding state, broadcasting (with a maximum of three retries at 4, 8, and 16 seconds) a DHCPDiscover message to any available DHCP server to update its current IP address lease. Jeff On Fri, May 1, 2009 at 2:17 PM, Jeff Bunting bunting.j...@gmail.com wrote: At half lease time, the client should request an address *renewal*. The renewal request would be sent to the DHCP server that provided the original lease, it is not broadcast to DHCPServer2. IIRC, it will not broadcast again until the lease actually expires. (someone will jump in to correct me if I'm wrong) Jeff On Fri, May 1, 2009 at 1:48 PM, Jim Dandy jda...@asmail.ucdavis.eduwrote: I've read some about the DHCP 80-20 rule but I'm not sure I really understand it. Here are two questions. 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. DHCPserver1 doesn't know that a different address has been assigned to Client1 so Client1 has an active lease on both DHCP servers although only one of the addresses is functional. (Perhaps that's not what would happen?) What happens to DNS? Are there now two entries in DNS (192.168.0.1 and 192.168.0.129) for Client1? For the purpose of answering this question, please assume that I have Active Directory Integrated DNS on Server 2003 and DHCP on Windows Server 2008. Thanks for your help. Curt Finley ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
On Fri, May 1, 2009 at 10:55 AM, Jon Harris jk.har...@gmail.com wrote: Haven't the Mac users in your network told you? Mac's don't get malware of any type. I had a client once who was an all Mac shop for a while. They believed that. We were hired to install a Windows server and some Windows desktops for stuff what was 'doze only. We, of course, installed a managed anti-virus solution. It was rather interesting to watch the Windows anti-virus quarantine every pre-existing Word document they tried to open, as every single last one was infected with a Word macro virus. But Mac's don't get viruses. They blamed the PCs. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: DHCP 80-20 rule
The address distribution isn't going to do much for load balancing. It is all determined by which server answers first. That will be the busy one. I am with the others that do 100 - 100. DHCP clients do try to renew on reboot. They always try to renew directly with the original server, they only broadcast if they have not gotten a renewal. You can control some of this through the dhcp scope options, for example you can have them release at shutdown. -Original Message- From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 2:41 PM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule I still don't get the 80-20 thing. 50-50 would distribute the load better and would potentially give you more leases if one fails. Perhaps the hope is that the one that fails is the one with 20% and that 80% would give you adequate addresses to be fully functional while you fix the 20. Thanks for the info on the no-broadcast for renewals. Here is another question ... 3) Let's say you reboot your client before the lease expires. On reboot does it do a broadcast to get a new address or does it just try to renew from the DHCP server from which it got its original lease? Curt -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, May 01, 2009 11:17 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule -Original Message- From: Jim Dandy 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? The 20 is designed to keep you alive and running while you fix the 80 server. Certainly a full range on both servers to serve all your clients would be great, if your subnetting and available addresses allow it. 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. At 50 percent the client contacts the original leasing server directly to renew that lease. It does not do a brand new lease broadcast. It will continue to ask directly until it gets an answer. If it can't it will then broadcast for a brand new lease. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
Since �re still running Server 2K3,�d be looking at Terminal Server 2k3 also, correct? Or can I run TS 2k8 on a 2k3 box? Joe Heaton Employment Training Panel From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Friday, May 01, 2009 11:53 AM To: NT System Admin Issues Subject: RE: Remote access options Yeah, I was kinda bummed when I dug into it and found out. At least TS CALs aret too expensiv You dont need a TS CAL to remote directly into a workstation, but you do if you go through a TS Gateway. From Licensing Windows Server 2008 Terminal Services.do @ http://download.microsoft.com/download/6/9/5/695ba00d-c790-4c90-813a-f10539d97991/Licensing%20Windows%20Server%202008%20Terminal%20Services.doc (http://tinyurl.com/64ykh7) Do I need a TS CAL if I am not running a multiuser environment but use functionality in Terminal Servicfor example, Terminal Services Gateway? Yes. A TS CAL is required for the use of any functionality included in the Terminal Services role in Windows Server. For example, if you are using TS Gateway and/or TS Web Access to provide access to a Windows Client operating system on an individual PC, both a TS CAL and Windows Server CAL are required. RS From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 2:25 PM To: NT System Admin Issues Subject: RE: Remote access options Are you sure each TS Gateway user or device requires a TS CA I thought you only needed a CAL if you were going into a TS and that remote desktop connections to desktop computers were free. Curt From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Thursday, April 30, 2009 12:51 PM To: NT System Admin Issues Subject: RE: Remote access options Its really easy to set up and works quite well in my experience. There are only a couple of potential gotchas that I found. 1) Each TS Gateway user or device requires a TS CAL. 2) Wildcard certs work fine, but you need to have XP SPs RDP client on XP, or Service Pack 1 on Vista I dont think you can download the Vista SP1 RDP client by itself. From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Thursday, April 30, 2009 3:39 PM To: NT System Admin Issues Subject: Re: Remote access options TS 2008, Gateway Role, is over SSL only. I set up a nat on my firewall and https only to the gateway server and that's all you need to do (other than configuring the Gateway role, getting a certificate for the farm, blah blah blah.) Jeff Brown 2jbr...@gmail.com 4/30/2009 1:29 PM Our firewall allows for a relatively simple ssl connection, which then grants access to a TS server. Very simple to deploy and use, and (I think) more secure than a hole straight through to a TS server on network or DMZ. On Thu, Apr 30, 2009 at 11:37 AM, Tom Miller tmil...@hnncsb.org wrote: Terminal Server 2008 has the Gateway role for external users. Still clunky compared to Citrix, but much less costly. I have a Citrix farm for external users, and starting to use Terminal Server for internal users. I'd go 100% Citrix if it were not so ridiculously expensive. Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Erik Goldoff egold...@gmail.com 4/30/2009 12:23 PM You *could* try a quick rollout of Terminal Server, temporary licenses are good for 90 days ( still true I think ) Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 12:17 PM To: NT System Admin Issues Subject: RE: Remote access options Thats more the waym leaning as well, dont want to put more processing load than necessary on the firewall. But, push come to shove, if they demand something within a day or two, VPN would have to be used, as I dot have the web stuff for Citrix, or an Access Gateway setup. Joe Heaton Employment Training Panel From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, April 30, 2009 8:46 AM To: NT System Admin Issues Subject: RE: Remote access options my choice to connect a disparate collection of nonstandard home users from their own equipment would be Terminal Server / Citrix , *should* keep your interior network more secure than a VPN tunnel. And not being familiar with your firewall or quantities of tunnels needed, performance may be an issue. If you have large numbers of 3DES or better encrypted tunnels ( large relating to the capabilities of your firewall ) then you could overwhelm the firewall processor and buffers, impacting overall performance and reliability of network connections. RDP/ICA is simply traffic the firewall will process, and not spend time encrypting/decrypting with whatever VPN encryption engine it has Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday,
RE: MAC AV
It's splitting hairs, but a Word macro virus is not a Mac virus. There were a handful of Mac virii back in the pre-OS X days, but they were all handled rather readily by the free Disinfectant. There have been sporadic claims of a virii that affect Mac OS X since it came out, but once you dug down into the details what you find is that they were more accurately classified as trojans. Sticking to the strict definition of a virus, I am fairly certain that there are no confirmed ones on Mac OS X (AV vendors sales tactics notwithstanding). That isn't to say that they aren't possible or that there aren't some clever folks that haven't been discovered, of course. There are vulnerabilities, as there are with any system, and I am certainly not saying that you have no need to ever be concerned if you have a Mac. However, when you compare the number of virii and other types of malware that affect Windows versus those that affect Mac OS X, it is a drop in the ocean. And as for the macro virus situation, I would point out that most of Word macro virii exposed other issues on Windows or targeted specific Windows files and were a non-issue if executed on a Mac. Nonetheless, there are a couple of solutions. My preferred solution is not use Microsoft Office at all (it is not standard on a Mac and ridiculously expensive). You can also use the free ClamAV, as I indicated before. I understand that this is a Windows administration list, and that is my job as well. But every time someone asks something about supporting a Mac, there is a lot of FUD thrown around. On this particular topic, yes it is true that there is a small amount of malware that can affect Macs. However, with a little bit of common sense, you can pretty much use a Mac and not have to worry about it. That may not be true a week or a month from now, but it is disingenous to suggest that there is some equivalency in the threats against Windows and Mac OS X. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, May 01, 2009 2:56 PM To: NT System Admin Issues Subject: Re: MAC AV On Fri, May 1, 2009 at 10:55 AM, Jon Harris jk.har...@gmail.com wrote: Haven't the Mac users in your network told you? Mac's don't get malware of any type. I had a client once who was an all Mac shop for a while. They believed that. We were hired to install a Windows server and some Windows desktops for stuff what was 'doze only. We, of course, installed a managed anti-virus solution. It was rather interesting to watch the Windows anti-virus quarantine every pre-existing Word document they tried to open, as every single last one was infected with a Word macro virus. But Mac's don't get viruses. They blamed the PCs. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAC AV
There is no equivalency, that's true, but that doesn't mean that we can ignore the issue either. It's not a pass/fail proposition. For my client the issue wasn't necessarily that the macro viruses affected the Macs themselves, but rather that the macro viruses impacted the company. There was a tremendous amount of embarrassment when they e-mailed a document to a client only to have the client contact them to say that the document was infected. And as for not using Office...since pretty much all of their clients ran Microsoft Office (on PCs) that wasn't really a decision they got to make. Your mileage may vary, of course. Ben M. Schorr Chief Executive Officer __ Roland Schorr Tower www.rolandschorr.com b...@rolandschorr.com Twitter: http://www.twitter.com/bschorr -Original Message- From: Mayo, Bill [mailto:bem...@pittcountync.gov] Sent: Friday, May 01, 2009 9:16 AM To: NT System Admin Issues Subject: RE: MAC AV It's splitting hairs, but a Word macro virus is not a Mac virus. There were a handful of Mac virii back in the pre-OS X days, but they were all handled rather readily by the free Disinfectant. There have been sporadic claims of a virii that affect Mac OS X since it came out, but once you dug down into the details what you find is that they were more accurately classified as trojans. Sticking to the strict definition of a virus, I am fairly certain that there are no confirmed ones on Mac OS X (AV vendors sales tactics notwithstanding). That isn't to say that they aren't possible or that there aren't some clever folks that haven't been discovered, of course. There are vulnerabilities, as there are with any system, and I am certainly not saying that you have no need to ever be concerned if you have a Mac. However, when you compare the number of virii and other types of malware that affect Windows versus those that affect Mac OS X, it is a drop in the ocean. And as for the macro virus situation, I would point out that most of Word macro virii exposed other issues on Windows or targeted specific Windows files and were a non-issue if executed on a Mac. Nonetheless, there are a couple of solutions. My preferred solution is not use Microsoft Office at all (it is not standard on a Mac and ridiculously expensive). You can also use the free ClamAV, as I indicated before. I understand that this is a Windows administration list, and that is my job as well. But every time someone asks something about supporting a Mac, there is a lot of FUD thrown around. On this particular topic, yes it is true that there is a small amount of malware that can affect Macs. However, with a little bit of common sense, you can pretty much use a Mac and not have to worry about it. That may not be true a week or a month from now, but it is disingenous to suggest that there is some equivalency in the threats against Windows and Mac OS X. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, May 01, 2009 2:56 PM To: NT System Admin Issues Subject: Re: MAC AV On Fri, May 1, 2009 at 10:55 AM, Jon Harris jk.har...@gmail.com wrote: Haven't the Mac users in your network told you? Mac's don't get malware of any type. I had a client once who was an all Mac shop for a while. They believed that. We were hired to install a Windows server and some Windows desktops for stuff what was 'doze only. We, of course, installed a managed anti-virus solution. It was rather interesting to watch the Windows anti-virus quarantine every pre-existing Word document they tried to open, as every single last one was infected with a Word macro virus. But Mac's don't get viruses. They blamed the PCs. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
It is baked into the OS so you would need to upgrade your Terminal Server(s) to 2008 or install a new one for the gateway role. From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 3:14 PM To: NT System Admin Issues Subject: RE: Remote access options Since wre still running Server 2K3, d be looking at Terminal Server 2k3 also, correct Or can I run TS 2k8 on a 2k3 box? Joe Heaton Employment Training Panel From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Friday, May 01, 2009 11:53 AM To: NT System Admin Issues Subject: RE: Remote access options Yeah, I was kinda bummed when I dug into it and found out. At least TS CALs aret too expensiv You dont need a TS CAL to remote directly into a workstation, but you do if you go through a TS Gateway. From Licensing Windows Server 2008 Terminal Services.do @ http://download.microsoft.com/download/6/9/5/695ba00d-c790-4c90-813a-f10539d97991/Licensing%20Windows%20Server%202008%20Terminal%20Services.doc (http://tinyurl.com/64ykh7) Do I need a TS CAL if I am not running a multiuser environment but use functionality in Terminal Servicfor example, Terminal Services Gateway? Yes. A TS CAL is required for the use of any functionality included in the Terminal Services role in Windows Server. For example, if you are using TS Gateway and/or TS Web Access to provide access to a Windows Client operating system on an individual PC, both a TS CAL and Windows Server CAL are required. RS From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 2:25 PM To: NT System Admin Issues Subject: RE: Remote access options Are you sure each TS Gateway user or device requires a TS CA I thought you only needed a CAL if you were going into a TS and that remote desktop connections to desktop computers were free. Curt From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Thursday, April 30, 2009 12:51 PM To: NT System Admin Issues Subject: RE: Remote access options Its really easy to set up and works quite well in my experience. There are only a couple of potential gotchas that I found. 1) Each TS Gateway user or device requires a TS CAL. 2) Wildcard certs work fine, but you need to have XP SPs RDP client on XP, or Service Pack 1 on Vista I dont think you can download the Vista SP1 RDP client by itself. From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Thursday, April 30, 2009 3:39 PM To: NT System Admin Issues Subject: Re: Remote access options TS 2008, Gateway Role, is over SSL only. I set up a nat on my firewall and https only to the gateway server and that's all you need to do (other than configuring the Gateway role, getting a certificate for the farm, blah blah blah.) Jeff Brown 2jbr...@gmail.com 4/30/2009 1:29 PM Our firewall allows for a relatively simple ssl connection, which then grants access to a TS server. Very simple to deploy and use, and (I think) more secure than a hole straight through to a TS server on network or DMZ. On Thu, Apr 30, 2009 at 11:37 AM, Tom Miller tmil...@hnncsb.org wrote: Terminal Server 2008 has the Gateway role for external users. Still clunky compared to Citrix, but much less costly. I have a Citrix farm for external users, and starting to use Terminal Server for internal users. I'd go 100% Citrix if it were not so ridiculously expensive. Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Erik Goldoff egold...@gmail.com 4/30/2009 12:23 PM You *could* try a quick rollout of Terminal Server, temporary licenses are good for 90 days ( still true I think ) Erik Goldoff IT Consultant Systems, Networks, Security From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 12:17 PM To: NT System Admin Issues Subject: RE: Remote access options Thats more the waym leaning as well, dont want to put more processing load than necessary on the firewall. But, push come to shove, if they demand something within a day or two, VPN would have to be used, as I dot have the web stuff for Citrix, or an Access Gateway setup. Joe Heaton Employment Training Panel From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, April 30, 2009 8:46 AM To: NT System Admin Issues Subject: RE: Remote access options my choice to connect a disparate collection of nonstandard home users from their own equipment would be Terminal Server / Citrix , *should* keep your interior network more secure than a VPN tunnel. And not being familiar with your firewall or quantities of tunnels needed, performance may be an issue. If you have large numbers of 3DES or better encrypted tunnels ( large relating to the capabilities of your firewall ) then you could overwhelm the firewall processor and buffers, impacting overall performance and reliability of network connections. RDP/ICA is simply traffic the firewall
RE: DHCP 80-20 rule
Thanks to all for your knowledgable and fast responses. Curt -Original Message- From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 11:41 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule I still don't get the 80-20 thing. 50-50 would distribute the load better and would potentially give you more leases if one fails. Perhaps the hope is that the one that fails is the one with 20% and that 80% would give you adequate addresses to be fully functional while you fix the 20. Thanks for the info on the no-broadcast for renewals. Here is another question ... 3) Let's say you reboot your client before the lease expires. On reboot does it do a broadcast to get a new address or does it just try to renew from the DHCP server from which it got its original lease? Curt -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, May 01, 2009 11:17 AM To: NT System Admin Issues Subject: RE: DHCP 80-20 rule -Original Message- From: Jim Dandy 1) Why 80-20? Why not 50-50? If one server fails, wouldn't it be better for the other server to have a larger range from which to distribute addresses? The 20 is designed to keep you alive and running while you fix the 80 server. Certainly a full range on both servers to serve all your clients would be great, if your subnetting and available addresses allow it. 2) Let's say everything is working perfectly and both DHCP servers are up. Client1 requests an address and receives address 192.168.0.1 from DHCPServer1. Time passes until half of the lease time has expired so Client1 requests an address. This time DHCPServer2 is a little faster and provides address 192.168.0.129. At 50 percent the client contacts the original leasing server directly to renew that lease. It does not do a brand new lease broadcast. It will continue to ask directly until it gets an answer. If it can't it will then broadcast for a brand new lease. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
Your AD version needs to match the highest Terminal Server version, so that licensing doesn't break Erik Goldoff IT Consultant Systems, Networks, Security _ From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 3:14 PM To: NT System Admin Issues Subject: RE: Remote access options Since wre still running Server 2K3, d be looking at Terminal Server 2k3 also, correct��� Or can I run TS 2k8 on a 2k3 box? Joe Heaton Employment Training Panel From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Friday, May 01, 2009 11:53 AM To: NT System Admin Issues Subject: RE: Remote access options Yeah, I was kinda bummed when I dug into it and found out. At least TS CALs aret too expensiv You dont need a TS CAL to remote directly into a workstation, but you do if you go through a TS Gateway. From Licensing Windows Server 2008 Terminal Services.do @ http://download.microsoft.com/download/6/9/5/695ba00d-c790-4c90-813a-f10539d97991/Licensing%20Windows%20Server%202008%20Terminal%20Services.doc (http://tinyurl.com/64ykh7) Do I need a TS CAL if I am not running a multiuser environment but use functionality in Terminal Servicfor example, Terminal Services Gateway? Yes. A TS CAL is required for the use of any functionality included in the Terminal Services role in Windows Server. For example, if you are using TS Gateway and/or TS Web Access to provide access to a Windows Client operating system on an individual PC, both a TS CAL and Windows Server CAL are required. RS From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] Sent: Friday, May 01, 2009 2:25 PM To: NT System Admin Issues Subject: RE: Remote access options Are you sure each TS Gateway user or device requires a TS CA I thought you only needed a CAL if you were going into a TS and that remote desktop connections to desktop computers were free. Curt From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Thursday, April 30, 2009 12:51 PM To: NT System Admin Issues Subject: RE: Remote access options Its really easy to set up and works quite well in my experience. There are only a couple of potential gotchas that I found. 1) Each TS Gateway user or device requires a TS CAL. 2) Wildcard certs work fine, but you need to have XP SPs RDP client on XP, or Service Pack 1 on Vista I dont think you can download the Vista SP1 RDP client by itself. From: Tom Miller [mailto:tmil...@hnncsb.org] Sent: Thursday, April 30, 2009 3:39 PM To: NT System Admin Issues Subject: Re: Remote access options TS 2008, Gateway Role, is over SSL only. I set up a nat on my firewall and https only to the gateway server and that's all you need to do (other than configuring the Gateway role, getting a certificate for the farm, blah blah blah.) Jeff Brown 2jbr...@gmail.com 4/30/2009 1:29 PM Our firewall allows for a relatively simple ssl connection, which then grants access to a TS server. Very simple to deploy and use, and (I think) more secure than a hole straight through to a TS server on network or DMZ. On Thu, Apr 30, 2009 at 11:37 AM, Tom Miller tmil...@hnncsb.org wrote: Terminal Server 2008 has the Gateway role for external users. Still clunky compared to Citrix, but much less costly. I have a Citrix farm for external users, and starting to use Terminal Server for internal users. I'd go 100% Citrix if it were not so ridiculously expensive. Tom Miller Engineer, Information Technology Hampton-Newport News Community Services Board 757-788-0528 Erik Goldoff egold...@gmail.com 4/30/2009 12:23 PM You *could* try a quick rollout of Terminal Server, temporary licenses are good for 90 days ( still true I think ) Erik Goldoff IT Consultant Systems, Networks, Security _ From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 12:17 PM To: NT System Admin Issues Subject: RE: Remote access options Thats more the waym leaning as well, dont want to put more processing load than necessary on the firewall. But, push come to shove, if they demand something within a day or two, VPN would have to be used, as I dot have the web stuff for Citrix, or an Access Gateway setup. Joe Heaton Employment Training Panel From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, April 30, 2009 8:46 AM To: NT System Admin Issues Subject: RE: Remote access options my choice to connect a disparate collection of nonstandard home users from their own equipment would be Terminal Server / Citrix , *should* keep your interior network more secure than a VPN tunnel. And not being familiar with your firewall or quantities of tunnels needed, performance may be an issue. If you have large numbers of 3DES or better encrypted tunnels ( large relating to the capabilities of your firewall ) then you could overwhelm the firewall processor and buffers, impacting overall performance and reliability of network
RE: Remote access options
oops, just re-read the question ... and Richard's response is definitely correct, the terminal server components must match the server core version to install properly Erik Goldoff IT Consultant Systems, Networks, Security _ From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 3:14 PM To: NT System Admin Issues Subject: RE: Remote access options Since wre still running Server 2K3, d be looking at Terminal Server 2k3 also, correct��� Or can I run TS 2k8 on a 2k3 box? Joe Heaton Employment Training Panel From: Richard Stovall [mailto:richard.stov...@researchdata.com] Sent: Friday, May 01, 2009 11:53 AM To: NT System Admin Issues Subject: RE: Remote access options ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
Never say never..back in the early 90's I was taking a class at our local junior college via modem. At the intro session, someone raised the question when told that we would be sharing documents about the possibility of getting a virus. The instructor informed him and the rest of the class that Word documents couldn't get viruses. Within a week of that session, the news hit about the first ever Word macro virus infecting Word documents. I emailed him the article about it, but he never responded..moral of the story, never ever say that XX OS or XX platform cannot be infected by a virus/malware/trojan. Eventually someone will take up the challenge and prove you wrong. On Fri, May 1, 2009 at 2:15 PM, Mayo, Bill bem...@pittcountync.gov wrote: It's splitting hairs, but a Word macro virus is not a Mac virus. There were a handful of Mac virii back in the pre-OS X days, but they were all handled rather readily by the free Disinfectant. There have been sporadic claims of a virii that affect Mac OS X since it came out, but once you dug down into the details what you find is that they were more accurately classified as trojans. Sticking to the strict definition of a virus, I am fairly certain that there are no confirmed ones on Mac OS X (AV vendors sales tactics notwithstanding). That isn't to say that they aren't possible or that there aren't some clever folks that haven't been discovered, of course. There are vulnerabilities, as there are with any system, and I am certainly not saying that you have no need to ever be concerned if you have a Mac. However, when you compare the number of virii and other types of malware that affect Windows versus those that affect Mac OS X, it is a drop in the ocean. And as for the macro virus situation, I would point out that most of Word macro virii exposed other issues on Windows or targeted specific Windows files and were a non-issue if executed on a Mac. Nonetheless, there are a couple of solutions. My preferred solution is not use Microsoft Office at all (it is not standard on a Mac and ridiculously expensive). You can also use the free ClamAV, as I indicated before. I understand that this is a Windows administration list, and that is my job as well. But every time someone asks something about supporting a Mac, there is a lot of FUD thrown around. On this particular topic, yes it is true that there is a small amount of malware that can affect Macs. However, with a little bit of common sense, you can pretty much use a Mac and not have to worry about it. That may not be true a week or a month from now, but it is disingenous to suggest that there is some equivalency in the threats against Windows and Mac OS X. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, May 01, 2009 2:56 PM To: NT System Admin Issues Subject: Re: MAC AV On Fri, May 1, 2009 at 10:55 AM, Jon Harris jk.har...@gmail.com wrote: Haven't the Mac users in your network told you? Mac's don't get malware of any type. I had a client once who was an all Mac shop for a while. They believed that. We were hired to install a Windows server and some Windows desktops for stuff what was 'doze only. We, of course, installed a managed anti-virus solution. It was rather interesting to watch the Windows anti-virus quarantine every pre-existing Word document they tried to open, as every single last one was infected with a Word macro virus. But Mac's don't get viruses. They blamed the PCs. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ -- Sherry Abercrombie Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke Sent from Haslet, TX, United States ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues
I'll try and let you know next week when I do the install on my office laptop. Jon On Fri, May 1, 2009 at 2:19 PM, Bob Fronk b...@btrfronk.com wrote: I recently got a new quad-core notebook with 8GB of ram, which forced me to move to Vista 64bit. Outlook is horribly slow to open, but once it does open, there are no issues. I suspect a similar issue, but have not had a chance to really troubleshoot it. I do know that it does not seem to occur on Vista 32bit and XP. I installed Office SP2 which did not resolve the issue. Google shows many hits on similar issues. Sorry to not be able to give better input, but just chiming in that there is obviously an issue that needs to be fixed. *Bob Fronk* *From:* Todd Arnett [mailto:tarn...@lastar.com] *Sent:* Thursday, April 30, 2009 11:22 AM *To:* NT System Admin Issues *Subject:* Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues For the past few weeks, we’ve had a problem that the two of us in the office using Vista were unable to access Exchange over the VPN server. This was a new development we’ve been running vista for over a year now. Outlook would just hang for hours even. Occasionally I would get “Microsoft exchange server is unavailable”. After doing some troubleshooting we finally figured out the Outlook was trying to communicate on port 135 (RPC Endpoint Mapper) to our DCs. We had to make firewall changes to allow communication from our VPN server to our DCs on port 135.The thing that has left us scratching our head is why is it just these Vista clients? We have probably 30-40 other users running Office 2007 and they have no issues, and why did it work all that time before? It only seemed to be the vista clients. We do not use RPC over HTTP. Any thoughts? Thanks, Todd ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues
Thanks guys. At least we know we're not alone. I'd appreciate any updates! From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 4:04 PM To: NT System Admin Issues Subject: Re: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues I'll try and let you know next week when I do the install on my office laptop. Jon On Fri, May 1, 2009 at 2:19 PM, Bob Fronk b...@btrfronk.com wrote: I recently got a new quad-core notebook with 8GB of ram, which forced me to move to Vista 64bit. Outlook is horribly slow to open, but once it does open, there are no issues. I suspect a similar issue, but have not had a chance to really troubleshoot it. I do know that it does not seem to occur on Vista 32bit and XP. I installed Office SP2 which did not resolve the issue. Google shows many hits on similar issues. Sorry to not be able to give better input, but just chiming in that there is obviously an issue that needs to be fixed. Bob Fronk From: Todd Arnett [mailto:tarn...@lastar.com] Sent: Thursday, April 30, 2009 11:22 AM To: NT System Admin Issues Subject: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues For the past few weeks, we've had a problem that the two of us in the office using Vista were unable to access Exchange over the VPN server. This was a new development we've been running vista for over a year now. Outlook would just hang for hours even. Occasionally I would get Microsoft exchange server is unavailable. After doing some troubleshooting we finally figured out the Outlook was trying to communicate on port 135 (RPC Endpoint Mapper) to our DCs. We had to make firewall changes to allow communication from our VPN server to our DCs on port 135.The thing that has left us scratching our head is why is it just these Vista clients? We have probably 30-40 other users running Office 2007 and they have no issues, and why did it work all that time before? It only seemed to be the vista clients. We do not use RPC over HTTP. Any thoughts? Thanks, Todd ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAC AV
I went out of my way to say that I was not saying never. Today, Mac OS X is not an attractive target for bad guys and that has a lot to do with it. It is also true that Mac OS X is built on a pretty solid foundation (BSD Unix, which has been around a very long time) and has a security model that limits the ability of things to do damage. If you look at the road map, they are building even more things into the OS to try and make it more secure. Is it perfect? Certainly not, but it is pretty doggone safe out of the box TODAY. I am not trying to protract any kind of disagreement. I am not saying all you guys should switch over, and I am not saying you should not run any kind of AV protection on your company's Macs should you have them (again...ClamAV). I am just trying to interject some perspective from someone who has been using the Mac OS (classic and then OS X) for going on 20 years now and also happens have been administering a decent sized Windows network for well over a decade. I hope that some of the conversation has been a help to the OP. From: Sherry Abercrombie [mailto:saber...@gmail.com] Sent: Friday, May 01, 2009 3:40 PM To: NT System Admin Issues Subject: Re: MAC AV Never say never..back in the early 90's I was taking a class at our local junior college via modem. At the intro session, someone raised the question when told that we would be sharing documents about the possibility of getting a virus. The instructor informed him and the rest of the class that Word documents couldn't get viruses. Within a week of that session, the news hit about the first ever Word macro virus infecting Word documents. I emailed him the article about it, but he never responded..moral of the story, never ever say that XX OS or XX platform cannot be infected by a virus/malware/trojan. Eventually someone will take up the challenge and prove you wrong. On Fri, May 1, 2009 at 2:15 PM, Mayo, Bill bem...@pittcountync.gov wrote: It's splitting hairs, but a Word macro virus is not a Mac virus. There were a handful of Mac virii back in the pre-OS X days, but they were all handled rather readily by the free Disinfectant. There have been sporadic claims of a virii that affect Mac OS X since it came out, but once you dug down into the details what you find is that they were more accurately classified as trojans. Sticking to the strict definition of a virus, I am fairly certain that there are no confirmed ones on Mac OS X (AV vendors sales tactics notwithstanding). That isn't to say that they aren't possible or that there aren't some clever folks that haven't been discovered, of course. There are vulnerabilities, as there are with any system, and I am certainly not saying that you have no need to ever be concerned if you have a Mac. However, when you compare the number of virii and other types of malware that affect Windows versus those that affect Mac OS X, it is a drop in the ocean. And as for the macro virus situation, I would point out that most of Word macro virii exposed other issues on Windows or targeted specific Windows files and were a non-issue if executed on a Mac. Nonetheless, there are a couple of solutions. My preferred solution is not use Microsoft Office at all (it is not standard on a Mac and ridiculously expensive). You can also use the free ClamAV, as I indicated before. I understand that this is a Windows administration list, and that is my job as well. But every time someone asks something about supporting a Mac, there is a lot of FUD thrown around. On this particular topic, yes it is true that there is a small amount of malware that can affect Macs. However, with a little bit of common sense, you can pretty much use a Mac and not have to worry about it. That may not be true a week or a month from now, but it is disingenous to suggest that there is some equivalency in the threats against Windows and Mac OS X. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, May 01, 2009 2:56 PM To: NT System Admin Issues Subject: Re: MAC AV On Fri, May 1, 2009 at 10:55 AM, Jon Harris jk.har...@gmail.com wrote: Haven't the Mac users in your network told you? Mac's don't get malware of any type. I had a client once who was an all Mac shop for a while. They believed that. We were hired to install a Windows server and some Windows desktops for stuff what was 'doze only. We, of course, installed a managed anti-virus solution. It was rather interesting to watch the Windows anti-virus quarantine every pre-existing Word document they tried to open, as every single last one was infected with a Word macro virus. But Mac's don't get viruses. They blamed the PCs. -- Ben
Re: MAC AV
However, when you compare the number of virii and other types of malware that affect Windows versus those that affect Mac OS X, it is a drop in the ocean. but it is disingenous to suggest that there is some equivalency in the threats against Windows and Mac OS X. If you compare the marketshare held by PCs (89.6% in November 2008) vs. Mac OS (9.63% in December 2008), the equivalency may be more apparent. I'm not experienced enough with OS X to determine whether or not it is as vulnerable/more secure than Windows. However, it's hard to ignore the fact those folks with malicious intent or going to focus their efforts where the most harm can be done. - Sean On Fri, May 1, 2009 at 11:15 AM, Mayo, Bill bem...@pittcountync.gov wrote: It's splitting hairs, but a Word macro virus is not a Mac virus. There were a handful of Mac virii back in the pre-OS X days, but they were all handled rather readily by the free Disinfectant. There have been sporadic claims of a virii that affect Mac OS X since it came out, but once you dug down into the details what you find is that they were more accurately classified as trojans. Sticking to the strict definition of a virus, I am fairly certain that there are no confirmed ones on Mac OS X (AV vendors sales tactics notwithstanding). That isn't to say that they aren't possible or that there aren't some clever folks that haven't been discovered, of course. There are vulnerabilities, as there are with any system, and I am certainly not saying that you have no need to ever be concerned if you have a Mac. However, when you compare the number of virii and other types of malware that affect Windows versus those that affect Mac OS X, it is a drop in the ocean. And as for the macro virus situation, I would point out that most of Word macro virii exposed other issues on Windows or targeted specific Windows files and were a non-issue if executed on a Mac. Nonetheless, there are a couple of solutions. My preferred solution is not use Microsoft Office at all (it is not standard on a Mac and ridiculously expensive). You can also use the free ClamAV, as I indicated before. I understand that this is a Windows administration list, and that is my job as well. But every time someone asks something about supporting a Mac, there is a lot of FUD thrown around. On this particular topic, yes it is true that there is a small amount of malware that can affect Macs. However, with a little bit of common sense, you can pretty much use a Mac and not have to worry about it. That may not be true a week or a month from now, but it is disingenous to suggest that there is some equivalency in the threats against Windows and Mac OS X. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, May 01, 2009 2:56 PM To: NT System Admin Issues Subject: Re: MAC AV On Fri, May 1, 2009 at 10:55 AM, Jon Harris jk.har...@gmail.com wrote: Haven't the Mac users in your network told you? Mac's don't get malware of any type. I had a client once who was an all Mac shop for a while. They believed that. We were hired to install a Windows server and some Windows desktops for stuff what was 'doze only. We, of course, installed a managed anti-virus solution. It was rather interesting to watch the Windows anti-virus quarantine every pre-existing Word document they tried to open, as every single last one was infected with a Word macro virus. But Mac's don't get viruses. They blamed the PCs. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues
I just received another Dell Precision Workstation M4400. Quad-core / 8GB Ram / Vista 64 bit. Outlook very slow to open, but works OK after. Same issue as on two other identical notebooks. I guess it could be a Dell issue, but seems hard to blame it on the hardware when everything else is fine. Bob Fronk From: Todd Arnett [mailto:tarn...@lastar.com] Sent: Friday, May 01, 2009 4:23 PM To: NT System Admin Issues Subject: RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues Thanks guys. At least we know we're not alone. I'd appreciate any updates! From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 4:04 PM To: NT System Admin Issues Subject: Re: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues I'll try and let you know next week when I do the install on my office laptop. Jon On Fri, May 1, 2009 at 2:19 PM, Bob Fronk b...@btrfronk.commailto:b...@btrfronk.com wrote: I recently got a new quad-core notebook with 8GB of ram, which forced me to move to Vista 64bit. Outlook is horribly slow to open, but once it does open, there are no issues. I suspect a similar issue, but have not had a chance to really troubleshoot it. I do know that it does not seem to occur on Vista 32bit and XP. I installed Office SP2 which did not resolve the issue. Google shows many hits on similar issues. Sorry to not be able to give better input, but just chiming in that there is obviously an issue that needs to be fixed. Bob Fronk From: Todd Arnett [mailto:tarn...@lastar.commailto:tarn...@lastar.com] Sent: Thursday, April 30, 2009 11:22 AM To: NT System Admin Issues Subject: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues For the past few weeks, we've had a problem that the two of us in the office using Vista were unable to access Exchange over the VPN server. This was a new development we've been running vista for over a year now. Outlook would just hang for hours even. Occasionally I would get Microsoft exchange server is unavailable. After doing some troubleshooting we finally figured out the Outlook was trying to communicate on port 135 (RPC Endpoint Mapper) to our DCs. We had to make firewall changes to allow communication from our VPN server to our DCs on port 135.The thing that has left us scratching our head is why is it just these Vista clients? We have probably 30-40 other users running Office 2007 and they have no issues, and why did it work all that time before? It only seemed to be the vista clients. We do not use RPC over HTTP. Any thoughts? Thanks, Todd ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Avast AV
You just tell him that the Grand Poobah of teh (sic) Internets said, ix-nay on the Avast-vay. -- ME2 On Fri, May 1, 2009 at 2:07 PM, Joe Heaton jhea...@etp.ca.gov wrote: Lol, I agree Sherry, but I have a very opinionated developer that I’m dealing with, and he also has the title of System Architect, which gives him more leverage when he suggests something. Not that it means he really knows much of anything on the subject, but there ya go… Thanks all for the responses, I’ll probably be printing them out for sharing with my boss. Joe Heaton Employment Training Panel *From:* Sherry Abercrombie [mailto:saber...@gmail.com] *Sent:* Friday, May 01, 2009 8:37 AM *To:* NT System Admin Issues *Subject:* Re: Avast AV I would think that if no one is using it, then that would be ammo against it. On Fri, May 1, 2009 at 10:15 AM, Joe Heaton jhea...@etp.ca.gov wrote: I take it from the lack of replies that no one is using Avast? In a way, that’s good, as I really don’t want to do a lot of research into it, but on the other hand, I don’t have any ammo against it either… Joe Heaton Employment Training Panel *From:* Joe Heaton [mailto:jhea...@etp.ca.gov] *Sent:* Thursday, April 30, 2009 8:50 AM *To:* NT System Admin Issues *Subject:* Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I’ve forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well… Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov -- Sherry Abercrombie Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke Sent from Haslet, TX, United States ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: malware killed a chip
Awesome close up of the chip! From: Alex Eckelberry [mailto:al...@sunbelt-software.com] Sent: Friday, May 01, 2009 5:09 PM To: NT System Admin Issues Subject: malware killed a chip http://sunbeltblog.blogspot.com/2009/05/malware-killed-this-chip.html ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Office Live Workspace
Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesn't give you any options to remove, etc. We didn't want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Office Live Workspace
Iirc, this was part of a recent update that I got from a pc that I turned on last night. Part of windows live perhaps? Sent from my hand held... -Original Message- From: Daniel Rodriguez drod...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 5:54 PM Subject: Re: Office Live Workspace Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.govmailto:jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doest give you any options to remove, etc. We didn���t want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.govmailto:jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Office Live Workspace
Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesn’t give you any options to remove, etc. We didn’t want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: malware killed a chip
That it is -- any notion of what the particular malware was?? Must've been a real killer! On Fri, May 1, 2009 at 2:32 PM, Steven Calvanese scalvan...@membersolutions.com wrote: Awesome close up of the chip! -- *From:* Alex Eckelberry [mailto:al...@sunbelt-software.com] *Sent:* Friday, May 01, 2009 5:09 PM *To:* NT System Admin Issues *Subject:* malware killed a chip http://sunbeltblog.blogspot.com/2009/05/malware-killed-this-chip.html -- David _ If you don't want to stand behind our troops, feel free to stand in front of them. ~ Redneck saying ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: malware killed a chip
Interesting! I thought the 2650 had about 6 thermo sensors? But, they can probably be disabled, or fail. From: Alex Eckelberry [mailto:al...@sunbelt-software.com] Sent: Friday, May 01, 2009 4:09 PM To: NT System Admin Issues Subject: malware killed a chip http://sunbeltblog.blogspot.com/2009/05/malware-killed-this-chip.html ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Office Live Workspace
I think is pretty shady, pushing an update without people having the chance to deny it. Joe Heaton Employment Training Panel From: Louis, Joe [mailto:jlo...@guardianalarm.com] Sent: Friday, May 01, 2009 3:11 PM To: NT System Admin Issues Subject: RE: Office Live Workspace Iirc, this was part of a recent update that I got from a pc that I turned on last night. Part of windows live perhaps? Sent from my hand held... -Original Message- From: Daniel Rodriguez drod...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 5:54 PM Subject: Re: Office Live Workspace Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesnt give you any options to remove, etc. We didnt want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Office Live Workspace
I think it was optional, and might have even been part of an O2k7 update. Sent from my hand held... -Original Message- From: Joe Heaton jhea...@etp.ca.gov To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 6:39 PM Subject: RE: Office Live Workspace I think �s pretty shady, pushing an update without people having the chance to deny it. Joe Heaton Employment Training Panel From: Louis, Joe [mailto:jlo...@guardianalarm.com] Sent: Friday, May 01, 2009 3:11 PM To: NT System Admin Issues Subject: RE: Office Live Workspace Iirc, this was part of a recent update that I got from a pc that I turned on last night. Part of windows live perhaps? Sent from my hand held... -Original Message- From: Daniel Rodriguez drod...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 5:54 PM Subject: Re: Office Live Workspace Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.govmailto:jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesnt give you any options to remove, etc. We didnt want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.govmailto:jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Office Live Workspace
Well, not to sound condensending, I usually set my laptop so that it does the download but I choose from Express to Manual and choose what I need installed. If you have a Restore Point you can choose from a point before the updates were installed. But, that is if you have Restore Point turned on. Sorry. Not sounding very helpful. On Fri, May 1, 2009 at 6:49 PM, Louis, Joe jlo...@guardianalarm.com wrote: I think it was optional, and might have even been part of an O2k7 update. Sent from my hand held... -Original Message- From: Joe Heaton jhea...@etp.ca.gov To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 6:39 PM Subject: RE: Office Live Workspace I think i���編 pretty shady, pushing an update without people having the chance to deny it. Joe Heaton Employment Training Panel *From:* Louis, Joe [mailto:jlo...@guardianalarm.com] *Sent:* Friday, May 01, 2009 3:11 PM *To:* NT System Admin Issues *Subject:* RE: Office Live Workspace Iirc, this was part of a recent update that I got from a pc that I turned on last night. Part of windows live perhaps? Sent from my hand held... -Original Message- From: Daniel Rodriguez drod...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 5:54 PM Subject: Re: Office Live Workspace Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesnt give you any options to remove, etc. We didnt want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Office Live Workspace
It is not one of the updates that loads by default (critical, etc.). It is one of the optional (extra) updates. Sounds like your PC guy has himself a happy clicking finger. TVK From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 5:40 PM To: NT System Admin Issues Subject: RE: Office Live Workspace I think is pretty shady, pushing an update without people having the chance to deny it. Joe Heaton Employment Training Panel From: Louis, Joe [mailto:jlo...@guardianalarm.com] Sent: Friday, May 01, 2009 3:11 PM To: NT System Admin Issues Subject: RE: Office Live Workspace Iirc, this was part of a recent update that I got from a pc that I turned on last night. Part of windows live perhaps? Sent from my hand held... -Original Message- From: Daniel Rodriguez drod...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 5:54 PM Subject: Re: Office Live Workspace Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.govmailto:jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesnt give you any options to remove, etc. We didnt want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.govmailto:jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Windows 7 RC
Whats the version #? I am on 7100 right now .. From: Jason Gauthier [mailto:jgauth...@lastar.com] Sent: Friday, May 01, 2009 9:52 AM To: NT System Admin Issues Subject: Windows 7 RC All, I've been waiting to see if any one reported. Will the beta keys work with the RC? Thanks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Office Live Workspace
+1 It was optional. But since we are on the subject, why did updates come out on the 28th? Isn't that 'out of band'? From: Tim Vander Kooi [tvanderk...@expl.com] Sent: Friday, May 01, 2009 8:33 PM To: NT System Admin Issues Subject: RE: Office Live Workspace It is not one of the updates that loads by default (critical, etc.). It is one of the optional (extra) updates. Sounds like your PC guy has himself a happy clicking finger. TVK From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 5:40 PM To: NT System Admin Issues Subject: RE: Office Live Workspace I think is pretty shady, pushing an update without people having the chance to deny it. Joe Heaton Employment Training Panel From: Louis, Joe [mailto:jlo...@guardianalarm.com] Sent: Friday, May 01, 2009 3:11 PM To: NT System Admin Issues Subject: RE: Office Live Workspace Iirc, this was part of a recent update that I got from a pc that I turned on last night. Part of windows live perhaps? Sent from my hand held... -Original Message- From: Daniel Rodriguez drod...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 5/1/09 5:54 PM Subject: Re: Office Live Workspace Can't you do a System Restore before this got installed? On Fri, May 1, 2009 at 5:38 PM, Joe Heaton jhea...@etp.ca.govmailto:jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesnt give you any options to remove, etc. We didnt want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.govmailto:jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Finding dupes
Check identical files 3 - 28 bucks shareware. http://www.freedownloadscenter.com/Utilities/Disk_Analysis_Utilities/Check_I dentical_Files.html I have a client that took 5 years of data into sharepoint ran it for a year hated it, extracted it and then wanted me to clean up dupes / versions. This worked like a champ on about 50,000+ files. From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] Sent: Thursday, April 30, 2009 10:23 AM To: NT System Admin Issues Subject: RE: Finding dupes Ok. Thanks John-AldrichTile-Tools From: Carol Fee [mailto:c...@massbar.org] Sent: Thursday, April 30, 2009 10:19 AM To: NT System Admin Issues Subject: RE: Finding dupes Storage Reports Management Schedule a new report task CFee _ From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] Sent: Thursday, April 30, 2009 10:06 AM To: NT System Admin Issues Subject: RE: Finding dupes Carol, could you be a bit more specific? Now that I've got it installed, what do I do? I've never used this utility before. John-AldrichTile-Tools From: Carol Fee [mailto:c...@massbar.org] Sent: Wednesday, April 29, 2009 4:48 PM To: NT System Admin Issues Subject: RE: Finding dupes W2K3 R2 File Server Resource Manager CFee _ From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] Sent: Wednesday, April 29, 2009 4:36 PM To: NT System Admin Issues Subject: Finding dupes Any suggestions for free/low-cost software to find duplicate files on a machine? I'm trying to clean up our file server and free up some space and I know how hard it is to find dupes manually, and I'm sure there's some really great software out there that'll do it in no time flat, but probably costs out the wazoo. Unfortunately with the economy in the tank, I'm on a VERY tight budget! John-AldrichTile-Tools No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.323 / Virus Database: 270.12.8/2086 - Release Date: 04/29/09 06:37:00 No virus found in this incoming message. Checked by AVG - www.avg.com Version: 8.5.323 / Virus Database: 270.12.8/2086 - Release Date: 04/30/09 06:01:00 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~image001.jpgimage002.jpg
RE: DHCP 80-20 rule
Don't forget also that when a broadcast goes out to a dhcp server whichever responds first is where that pc stays with, now, if too many hit the dhcp server you will simply 'get denied' it won't rebroadcast to another dhcp server. Just like dns, a negative response is still a response. For this reason, I'm not crazy about the 80-20 rule. The last company that set it up had the exact problem I described and couldn't figure out why a bunch of workstations were not getting IP's. I suppose in very large networks this could be an issue, but if your dhcp server is down for more than the 8 day default (in windows), you have other issues more important I would presume ;) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Windows 7 RC
The RC is build 7100. Benjamin Zachary - Lists wrote: Whats the version #? I am on 7100 right now .. -- Phil Brutsche p...@optimumdata.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Spam filters
Proxmox appliance, free for single domain. I use the pro version with about 20 clients, 50+ domains, and maybe 2,000 mailboxes. Runs without a hitch. Requires almost 0 maintenance and is offsite. From: Jay Dale [mailto:jd...@xpresstel.com] Sent: Wednesday, April 29, 2009 11:09 AM To: NT System Admin Issues Subject: Spam filters Hey guys, I am a pretty new customer of VIPRE and like what I've seen so far. Sold it to a couple of small customers with no complaints as of yet. My question is regarding email spam filtering. I know a lot of you VIPRE users perhaps are using Ninja, which I'm assuming is server-based. For years I have been using Katharion, which is similar to Postini as an offsite-based filter. I'm just curious as to what you guys prefer when it comes to these kinds of apps, or if you prefer appliance-based filtering. Thanks, Jay Jay Dale . I.T. Director Xpresstel, Inc . Telecom I.T. Solutions 8515 Jackrabbit Rd. Ste T. Houston, TX 77095 Office: 281-856-8335 . Fax: 281-856-8399 http://www.xpresstel.com THE INFORMATION CONTAINED IN THIS TRANSMISSION IS A PRIVILEGED FIRM-CLIENT COMMUNICATION, WORK PRODUCT AND/OR CONFIDENTIAL COMMUNICATION OF INFORMATION INTENDED FOR THE USE OF THE INDIVIDUAL OR ENTITY NAMED ABOVE. IF THE READER OF THIS MESSAGE IS NOT THE INTENDED RECIPIENT, YOU ARE HEREBY NOTIFIED THAT ANY DISSEMINATION, DISTRIBUTION OR COPYING OF THIS COMMUNICATION IS STRICTLY PROHIBITED. IF YOU HAVE RECEIVED THIS EMAIL IN ERROR, PLEASE IMMEDIATELY SEND A REPLY AND DELETE THE EMAIL PROMPTLY. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues
Are there any printers installed that Outlook might be trying to connect to when starting up? Any change it might be slow/fast network detection? Otherwise, maybe stick Process Explorer onto it, and see if the main outlook.exe thread is sitting waiting for something.. Cheers Ken From: Bob Fronk [...@btrfronk.com] Sent: Saturday, 2 May 2009 6:36 AM To: NT System Admin Issues Subject: RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues I just received another Dell Precision Workstation M4400. Quad-core / 8GB Ram / Vista 64 bit. Outlook very slow to open, but works OK after. Same issue as on two other identical notebooks. I guess it could be a Dell issue, but seems hard to blame it on the hardware when everything else is fine. Bob Fronk From: Todd Arnett [mailto:tarn...@lastar.com] Sent: Friday, May 01, 2009 4:23 PM To: NT System Admin Issues Subject: RE: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues Thanks guys. At least we know we’re not alone. I’d appreciate any updates! From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 4:04 PM To: NT System Admin Issues Subject: Re: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues I'll try and let you know next week when I do the install on my office laptop. Jon On Fri, May 1, 2009 at 2:19 PM, Bob Fronk b...@btrfronk.commailto:b...@btrfronk.com wrote: I recently got a new quad-core notebook with 8GB of ram, which forced me to move to Vista 64bit. Outlook is horribly slow to open, but once it does open, there are no issues. I suspect a similar issue, but have not had a chance to really troubleshoot it. I do know that it does not seem to occur on Vista 32bit and XP. I installed Office SP2 which did not resolve the issue. Google shows many hits on similar issues. Sorry to not be able to give better input, but just chiming in that there is obviously an issue that needs to be fixed. Bob Fronk From: Todd Arnett [mailto:tarn...@lastar.commailto:tarn...@lastar.com] Sent: Thursday, April 30, 2009 11:22 AM To: NT System Admin Issues Subject: Outlook 2007/Vista/ Exchange 2003/RPC Connection Issues For the past few weeks, we’ve had a problem that the two of us in the office using Vista were unable to access Exchange over the VPN server. This was a new development we’ve been running vista for over a year now. Outlook would just hang for hours even. Occasionally I would get “Microsoft exchange server is unavailable”. After doing some troubleshooting we finally figured out the Outlook was trying to communicate on port 135 (RPC Endpoint Mapper) to our DCs. We had to make firewall changes to allow communication from our VPN server to our DCs on port 135.The thing that has left us scratching our head is why is it just these Vista clients? We have probably 30-40 other users running Office 2007 and they have no issues, and why did it work all that time before? It only seemed to be the vista clients. We do not use RPC over HTTP. Any thoughts? Thanks, Todd ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Backing up windows workstations
Hi All, I am looking for a good solution to backup multiple windows workstations in a central and organized way. I am familiar with Retrospect, Veritas Netbackup and Amanda. I was wondering if the list had a preferred solution. Shawn ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Office Live Workspace
Just aguess... Perhaps you are logged in as a user that does not have permissions to uninstall?? On Sat, May 2, 2009 at 9:38 AM, Joe Heaton jhea...@etp.ca.gov wrote: Anyone know anything about this? It somehow got installed on a template machine, by our PC guy. It shows in the Add/Remove programs, but doesn’t give you any options to remove, etc. We didn’t want this, and would like to remove it. Any help would be appreciated. Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Monitoring Remotely
I have been using Servers Alive for a lot of my clients who I monitor their lan. However, its getting a little large and tedious to go in and out of remote clients and I was hoping for like a more centralized solution. The newest Servers Alive has a remote agent that talks over ssh that Im about to test, but was wondering if anyone else knew of something similar. Basically I would like to monitor cpu/ram/disk/a few services, and maybe event log would be nice. However, if the internet goes down I would like the central unit to determine that first (something that servers alive *does* but mostly for the LAN so far). Right now I simply ping and/or port test remotely and then SA runs internally so I have it covered but its too much at this point to manage effectively. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
We use Kaseya to manage client desktops and it has integrated remote support vie RDP/VNC/PCAnywhere depending on the client host and the what we set. While it's not as sophisticated as citrix/TS or a firewall based routed product we can deploy it to a site in 10 minute and have clients remotely vnc-ing into their boxes. There are 2 methods of connection, from the admin console we just choose the machine and we control it, or the end user gets a username and password and then they log on via that secure web page. We get this as a hosted product so the costs are on a per user per month basis, so the plumbing is all taken care of. The agents support Macs as well. The only hard bit is getting the agent installed on the end user machine, but there are remote tools for this, so with an admin password you can wake the network up, deploy the agents in a few clicks. Mike From: Andrew Laya [mailto:andrew.l...@gmail.com] Sent: 01 May 2009 01:20 To: NT System Admin Issues Subject: Re: Remote access options Hi Richard, Built-in Screen Sharing is one option, though I have only had luck with it if machines are close by (read, same subnet). VNC access is also built-in. I use Chicken of the VNC as a client to remote to other Mac workstations. As an alternative to these free options, have a look at Timbuktu Pro. hth, Andrew. On Thu, Apr 30, 2009 at 5:30 PM, Richard Stovall richard.stov...@researchdata.commailto:richard.stov...@researchdata.com wrote: Please forgive the thread hijack... I've had a question in my head for weeks. Never thought to ask it here. Duh. Is there a good Mac OS X solution for remoting from one Mac into another? Something like RDP for Macs, I guess? I'm not looking for VNC, etc. I'm really looking for the ability to take over a Mac session completely. Thanks, RS -Original Message- From: Ben Scott [mailto:mailvor...@gmail.commailto:mailvor...@gmail.com] Sent: Thursday, April 30, 2009 5:17 PM To: NT System Admin Issues Subject: Re: Remote access options On Thu, Apr 30, 2009 at 2:05 PM, Bill Songstad (WCUL) administra...@waleague.orgmailto:administra...@waleague.org wrote: Solution: existing VPN access through the firewall, using realvnc on windows desktops. (RDP wasn't an option due to Linux and Mac clients at the user's homes). FYI, there are several RDP client implementations available for Mac, Linux, and Unix. I use rdesktop from home (Linux) to work (Win 2000 and XP) all the time, and have for years. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Managing your passwords was (RE:Password Policy - - how do you handle this?)
On 28 Apr 2009 at 13:59, Kurt Buff wrote: Password Safe, or Keepass - and I believe each has a version available for PDAs. I wish ... Palm OS is unfortunately not on the list. Roboform's Palm support is not that great either, requires Goodsync and a Palm unit with an external memory card. For notw I use YAPS*, but I also use other apps that require Palm the current OS. * Yet Another Password Safe http://www.msbsoftware.ch/yaps.html ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Screen Saver not kicking in.
Good afternoon all - and happy bank holidays! I have a 2003 SBS network all with Dell Optiplex's running Windows XP SP3. There is a policy that should make all the PC's screensavers kick in after 10 minutes and then lock the machine, but its not working, I assume there is something preventing the machine from allowing this to happen, a process maybe that keeps the machine thinking its being worked on. I have seen the threads about wifi mice and then like, but thats not relevant. Is there a tool anywhere that will locate and show what might be stopping this from working - its quite important as the guys here are a little lax about locking their own PC's, I understand its an educational thing in that respect, but I want the autolock to work as well. -- Gavin Wilby, Twitter: http://twitter.com/gavin_wilby Blog: http://www.stoof.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Screen Saver not kicking in.
On Fri, May 1, 2009 at 6:16 AM, Gavin Wilby gavin.wi...@gmail.com wrote: Good afternoon all - and happy bank holidays! Happy Mailman Day! ;-) There is a policy that should make all the PC's screensavers kick in after 10 minutes and then lock the machine, but its not working, I assume there is something preventing the machine from allowing this to happen ... Have you checked the client to make sure the GPO actually got applied? Open up Display Properties, check the Screen Saver tab -- it should show what's actually in effect. If you've removed the Screen Saver tab via GP, check GPRESULT (command line) or RSOP.MSC (GUI). FWIW and FYI: I recently got a fancy Logitech mouse for my desktop. USB cord, not wireless. After I installed the SetPoint software, the screen saver stopped kicking in after my timeout. I toggled the screen saver off and on again in Display Properties, and it started worked again. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Forefront
Try and install a working version without the full SQL. Jon On Thu, Apr 30, 2009 at 4:52 PM, Joseph L. Casale jcas...@activenetwerx.com wrote: I was just not happen that our resellar did not make the SQL requirement clear up front. I am just reading the installation Guide and it suggests: “SQL Server 2005 Standard Edition (and above), SQL Server 2005 Express Edition, or SQL Server 2000” You have more than 2000 users? I saw somewhere that 2000 users was the limit I think for Express… That would make this cheap? $100.00 per console, and $13.00 per client. jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Screen Saver not kicking in.
Do you have all 3 of these enabled? If no screensaver is selected on the computer the timeout will not apply. If you set the policy as above, if there is no screensaver selected the computer will go straight into the Locked mode. From: Gavin Wilby [mailto:gavin.wi...@gmail.com] Sent: Friday, May 01, 2009 6:17 AM To: NT System Admin Issues Subject: Screen Saver not kicking in. Good afternoon all - and happy bank holidays! I have a 2003 SBS network all with Dell Optiplex's running Windows XP SP3. There is a policy that should make all the PC's screensavers kick in after 10 minutes and then lock the machine, but its not working, I assume there is something preventing the machine from allowing this to happen, a process maybe that keeps the machine thinking its being worked on. I have seen the threads about wifi mice and then like, but thats not relevant. Is there a tool anywhere that will locate and show what might be stopping this from working - its quite important as the guys here are a little lax about locking their own PC's, I understand its an educational thing in that respect, but I want the autolock to work as well. -- Gavin Wilby, Twitter: http://twitter.com/gavin_wilby Blog: http://www.stoof.co.uk Confidentiality Notice: -- This communication, including any attachments, may contain confidential information and is intended only for the individual or entity to whom it is addressed. Any review, dissemination, or copying of this communication by anyone other than the intended recipient is strictly prohibited. If you are not the intended recipient, please contact the sender by reply email, delete and destroy all copies of the original message. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~image002.jpg
Windows 7 RC
All, I've been waiting to see if any one reported. Will the beta keys work with the RC? Thanks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Forefront
Yeah, I read some more last night. The component that manages non server clients needs SQL 2005. The console that could only manage server components can use SQL2000+ and Express. What's worse is the Beta for the next version needs SQL and SCOM from what I read. Lame... jlc From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 6:50 AM To: NT System Admin Issues Subject: Re: Forefront Try and install a working version without the full SQL. Jon On Thu, Apr 30, 2009 at 4:52 PM, Joseph L. Casale jcas...@activenetwerx.commailto:jcas...@activenetwerx.com wrote: I was just not happen that our resellar did not make the SQL requirement clear up front. I am just reading the installation Guide and it suggests: SQL Server 2005 Standard Edition (and above), SQL Server 2005 Express Edition, or SQL Server 2000 You have more than 2000 users? I saw somewhere that 2000 users was the limit I think for Express... That would make this cheap? $100.00 per console, and $13.00 per client. jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
SAV PatternFileDate conversion on Parent server
I know some of you are probably doing this. Hoping for some help. I'm trying to pull some data from our SAV parent server (10.1.7). The data for each client is kept in the registry on the parent, here: HKEY_LOCAL_MACHINE\SOFTWARE\INTEL\LANDesk\VirusProtect6\CurrentVersion\Cli ents\ServerName_::_244ADBEC4186D091E2A320B30CF515FC The value I'm having issues with is PatternFileDate. On the Parent it's stored as REG_DWORD. On the clients it's REG_BINARY. I have a calculation to convert it from REG_BInARY but it doesn't look like that's how it's stored on the Parent. For example, everything I've read indicates the value is the amount of time from 1970 to Now, and you need to convert that into a date. Well the HEX and Decimal values don't correspond to that on the Parent server. I've got values like this: 0x381c Or 0x380d And if I convert those, it's nowhere near what the value should be. I'm thinking it's stored differently, and I can't find any documentation on what that is. Thank you, Chris Bodnar, MCSE Sr. Systems Engineer Distributed Systems Service Delivery - Intel Services Guardian Life Insurance Company of America Email: christopher_bod...@glic.com Phone: 610-807-6459 Fax: 610-807-6003 - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
Thank you all for the help. I'll look into Kaseya, Timbuktu and Apple remote desktop. RS From: Michael Hoffman [mailto:m...@drumbrae.net] Sent: Friday, May 01, 2009 2:35 AM To: NT System Admin Issues Subject: RE: Remote access options We use Kaseya to manage client desktops and it has integrated remote support vie RDP/VNC/PCAnywhere depending on the client host and the what we set. While it's not as sophisticated as citrix/TS or a firewall based routed product we can deploy it to a site in 10 minute and have clients remotely vnc-ing into their boxes. There are 2 methods of connection, from the admin console we just choose the machine and we control it, or the end user gets a username and password and then they log on via that secure web page. We get this as a hosted product so the costs are on a per user per month basis, so the plumbing is all taken care of. The agents support Macs as well. The only hard bit is getting the agent installed on the end user machine, but there are remote tools for this, so with an admin password you can wake the network up, deploy the agents in a few clicks. Mike From: Andrew Laya [mailto:andrew.l...@gmail.com] Sent: 01 May 2009 01:20 To: NT System Admin Issues Subject: Re: Remote access options Hi Richard, Built-in Screen Sharing is one option, though I have only had luck with it if machines are close by (read, same subnet). VNC access is also built-in. I use Chicken of the VNC as a client to remote to other Mac workstations. As an alternative to these free options, have a look at Timbuktu Pro. hth, Andrew. On Thu, Apr 30, 2009 at 5:30 PM, Richard Stovall richard.stov...@researchdata.com wrote: Please forgive the thread hijack... I've had a question in my head for weeks. Never thought to ask it here. Duh. Is there a good Mac OS X solution for remoting from one Mac into another? Something like RDP for Macs, I guess? I'm not looking for VNC, etc. I'm really looking for the ability to take over a Mac session completely. Thanks, RS -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Thursday, April 30, 2009 5:17 PM To: NT System Admin Issues Subject: Re: Remote access options On Thu, Apr 30, 2009 at 2:05 PM, Bill Songstad (WCUL) administra...@waleague.org wrote: Solution: existing VPN access through the firewall, using realvnc on windows desktops. (RDP wasn't an option due to Linux and Mac clients at the user's homes). FYI, there are several RDP client implementations available for Mac, Linux, and Unix. I use rdesktop from home (Linux) to work (Win 2000 and XP) all the time, and have for years. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Windows 7 RC
Yes. At least it did for me. From: Jason Gauthier [mailto:jgauth...@lastar.com] Sent: Friday, May 01, 2009 6:52 AM To: NT System Admin Issues Subject: Windows 7 RC All, I've been waiting to see if any one reported. Will the beta keys work with the RC? Thanks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Forefront
I was under the impression that like the current version of Forefront if you did not have one of the System Center products it would install a cut down version that only dealt with Forefront. From what I saw on my installation the reason for SQL WAS the MOM package. I just hope that Sterling will work with SCE. I have that up and running now. I would not mind doing a re-install when Streling is released IF it works well together. The down side is that Sterling is supposed to go Gold about the time for our renewal. Man I would really hate to be one of the first to roll that package. Jon On Fri, May 1, 2009 at 9:55 AM, Joseph L. Casale jcas...@activenetwerx.comwrote: Yeah, I read some more last night. The component that manages non server clients needs SQL 2005. The console that could only manage server components can use SQL2000+ and Express. What’s worse is the Beta for the next version needs SQL and SCOM from what I read. Lame… jlc *From:* Jon Harris [mailto:jk.har...@gmail.com] *Sent:* Friday, May 01, 2009 6:50 AM *To:* NT System Admin Issues *Subject:* Re: Forefront Try and install a working version without the full SQL. Jon On Thu, Apr 30, 2009 at 4:52 PM, Joseph L. Casale jcas...@activenetwerx.com wrote: I was just not happen that our resellar did not make the SQL requirement clear up front. I am just reading the installation Guide and it suggests: “SQL Server 2005 Standard Edition (and above), SQL Server 2005 Express Edition, or SQL Server 2000” You have more than 2000 users? I saw somewhere that 2000 users was the limit I think for Express… That would make this cheap? $100.00 per console, and $13.00 per client. jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Windows 7 RC
for what it's worth, on the technet download site, the keys are listed for 'Beta and RC' Erik Goldoff IT Consultant Systems, Networks, Security _ From: Jason Gauthier [mailto:jgauth...@lastar.com] Sent: Friday, May 01, 2009 9:52 AM To: NT System Admin Issues Subject: Windows 7 RC All, I've been waiting to see if any one reported. Will the beta keys work with the RC? Thanks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Windows 7 RC
Yes Sent from my BlackBerry device on the Rogers Wireless Network -Original Message- From: Jason Gauthier jgauth...@lastar.com Date: Fri, 01 May 2009 09:52:19 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Subject: Windows 7 RC All, I've been waiting to see if any one reported. Will the beta keys work with the RC? Thanks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Shadow Copy Management
Is there any tools, any scripts, etc. that will allow me to manage multiple snapshot schedules. What I would like to do is, keep 12 snap shots in a 24 hour period, 2 snaps in a 48 hour period, and than 1 snap going back each day for 1 week and than 1 snap per week going baclk 3 months. (will not exceed 64 snap max). But I need to make sure that it doesnt keep snaping once every 2 hours over and over again. Help! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
MAC AV
Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAC AV
We don't have any Macs on our network here, but I do use a Mac personally. It is essentially true that there is no malware on the Mac. The stuff that does pop up is almost always a trojan, and the person has to explicitly have permitted it to run (Do you want to install this pirated copy of iWork? Sure!). I personally find it sufficient to run ClamAV and be done with it, but then again I don't go around on torrent sites trying to get pirated software. The major AV companies offer Mac versions of their software, but they primarily look for Windows virii (which the Mac can pass on via email or file copy, but not be affected by). Bill Mayo From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 10:55 AM To: NT System Admin Issues Subject: Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
+1 ClamAV at home. On Fri, May 1, 2009 at 11:03 AM, Mayo, Bill bem...@pittcountync.gov wrote: We don't have any Macs on our network here, but I do use a Mac personally. It is essentially true that there is no malware on the Mac. The stuff that does pop up is almost always a trojan, and the person has to explicitly have permitted it to run (Do you want to install this pirated copy of iWork? Sure!). I personally find it sufficient to run ClamAV and be done with it, but then again I don't go around on torrent sites trying to get pirated software. The major AV companies offer Mac versions of their software, but they primarily look for Windows virii (which the Mac can pass on via email or file copy, but not be affected by). Bill Mayo -- *From:* Jon Harris [mailto:jk.har...@gmail.com] *Sent:* Friday, May 01, 2009 10:55 AM *To:* NT System Admin Issues *Subject:* Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
+2 ClamAV at our colo. On Fri, May 1, 2009 at 10:06 AM, Jonathan Link jonathan.l...@gmail.comwrote: +1 ClamAV at home. On Fri, May 1, 2009 at 11:03 AM, Mayo, Bill bem...@pittcountync.govwrote: We don't have any Macs on our network here, but I do use a Mac personally. It is essentially true that there is no malware on the Mac. The stuff that does pop up is almost always a trojan, and the person has to explicitly have permitted it to run (Do you want to install this pirated copy of iWork? Sure!). I personally find it sufficient to run ClamAV and be done with it, but then again I don't go around on torrent sites trying to get pirated software. The major AV companies offer Mac versions of their software, but they primarily look for Windows virii (which the Mac can pass on via email or file copy, but not be affected by). Bill Mayo -- *From:* Jon Harris [mailto:jk.har...@gmail.com] *Sent:* Friday, May 01, 2009 10:55 AM *To:* NT System Admin Issues *Subject:* Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill** -- Sherry Abercrombie Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Avast AV
I take it from the lack of replies that no one is using Avast? In a way, that's good, as I really don't want to do a lot of research into it, but on the other hand, I don't have any ammo against it either... Joe Heaton Employment Training Panel From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 8:50 AM To: NT System Admin Issues Subject: Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I've forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well... Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Server 2003 DNS issue
Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
We use McAfee. Centrally managed by corporate office through epo. Used to be a very manual install, but the software can now be push installed and updated to Macs as well as Windows pcs. On 5/1/09, Sherry Abercrombie saber...@gmail.com wrote: +2 ClamAV at our colo. On Fri, May 1, 2009 at 10:06 AM, Jonathan Link jonathan.l...@gmail.comwrote: +1 ClamAV at home. On Fri, May 1, 2009 at 11:03 AM, Mayo, Bill bem...@pittcountync.govwrote: We don't have any Macs on our network here, but I do use a Mac personally. It is essentially true that there is no malware on the Mac. The stuff that does pop up is almost always a trojan, and the person has to explicitly have permitted it to run (Do you want to install this pirated copy of iWork? Sure!). I personally find it sufficient to run ClamAV and be done with it, but then again I don't go around on torrent sites trying to get pirated software. The major AV companies offer Mac versions of their software, but they primarily look for Windows virii (which the Mac can pass on via email or file copy, but not be affected by). Bill Mayo -- *From:* Jon Harris [mailto:jk.har...@gmail.com] *Sent:* Friday, May 01, 2009 10:55 AM *To:* NT System Admin Issues *Subject:* Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill** -- Sherry Abercrombie Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ -- Sent from my mobile device ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue
How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAC AV
Do your macintosh users not share files and emails with your PC users? soapbox mode engaged I have been supporting a multi-platform environment for 15+ years. We have been running AV on our Macs for the last 10. Not only do Macs get exposed to viruses that they can be infected with, they are carriers for PC viruses. IMO it is irresponsible to have them on your internal network and not protected. Defense in depth - social responsibility.soapbox mode disengaged SOPHOS is a great multi-platform product that is managed on Windows servers. Small client footprint and easy to manage from an enterprise perspective. http://www.sophos.com http://www.sophos.com/ From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Fri 5/1/2009 7:55 AM To: NT System Admin Issues Subject: Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Forefront
I'm using it with WSUS and AD for about 2500 clients. I'm reasonably happy with it. I wish I could get better reports out of it though. It's very good about giving you all the information you want about a specific thing, but a report for all the blocked/cleaned files for all the machines for April just isn't happening. On Thu, Apr 30, 2009 at 9:25 AM, Joseph L. Casale jcas...@activenetwerx.com wrote: Anyone using Forefront? I have looked at F-Secure (don’t like it at all), looking at Kaspersky now (Seems ok so far) but I read up on Forefront and the AD integration and expected way of use and design of the app looks very nice. Thanks, jlc -- Not Jobbed ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: MAC AV
Trojans *are* malware. And, the first botnet for Macs has been activated: http://www.networkworld.com/news/2009/041709-first-mac-os-x-botnet.html On Fri, May 1, 2009 at 08:03, Mayo, Bill bem...@pittcountync.gov wrote: We don't have any Macs on our network here, but I do use a Mac personally. It is essentially true that there is no malware on the Mac. The stuff that does pop up is almost always a trojan, and the person has to explicitly have permitted it to run (Do you want to install this pirated copy of iWork? Sure!). I personally find it sufficient to run ClamAV and be done with it, but then again I don't go around on torrent sites trying to get pirated software. The major AV companies offer Mac versions of their software, but they primarily look for Windows virii (which the Mac can pass on via email or file copy, but not be affected by). Bill Mayo From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 10:55 AM To: NT System Admin Issues Subject: Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Shadow Copy Management
When you create the default snap schedule, I believe it just creates a scheduled task that shows up in control panel. You should be able to modify the schedule there to do what you want. You need to click the option to show multiple schedules and then with the advanced button you can make up any crazy schedule you want. Tom -Original Message- From: Steph Balog [mailto:validemai...@gmail.com] Sent: Friday, May 01, 2009 10:27 AM To: NT System Admin Issues Subject: Shadow Copy Management Is there any tools, any scripts, etc. that will allow me to manage multiple snapshot schedules. What I would like to do is, keep 12 snap shots in a 24 hour period, 2 snaps in a 48 hour period, and than 1 snap going back each day for 1 week and than 1 snap per week going baclk 3 months. (will not exceed 64 snap max). But I need to make sure that it doesnt keep snaping once every 2 hours over and over again. Help! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Avast AV
Sorry, no just use it at home...seems to be OK there. On Fri, May 1, 2009 at 10:15 AM, Joe Heaton jhea...@etp.ca.gov wrote: I take it from the lack of replies that no one is using Avast? In a way, that’s good, as I really don’t want to do a lot of research into it, but on the other hand, I don’t have any ammo against it either… Joe Heaton Employment Training Panel *From:* Joe Heaton [mailto:jhea...@etp.ca.gov] *Sent:* Thursday, April 30, 2009 8:50 AM *To:* NT System Admin Issues *Subject:* Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I’ve forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well… Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Shadow Copy Management
Thats the problem, i already created schedule but I need it to cycle out certain snaps. Like I take snaps every 2 hours each day, but the next day I want those snaps to go away. And then the ones I take every 6 hours, I want those to go away ever 2 days. And the ones I take once a day for a week, I want those to go away after a week. And then the ones I take once a week for 3 months, I want those to disappear when they are 3 months old. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Avast AV
I would think that if no one is using it, then that would be ammo against it. On Fri, May 1, 2009 at 10:15 AM, Joe Heaton jhea...@etp.ca.gov wrote: I take it from the lack of replies that no one is using Avast? In a way, that’s good, as I really don’t want to do a lot of research into it, but on the other hand, I don’t have any ammo against it either… Joe Heaton Employment Training Panel *From:* Joe Heaton [mailto:jhea...@etp.ca.gov] *Sent:* Thursday, April 30, 2009 8:50 AM *To:* NT System Admin Issues *Subject:* Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I’ve forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well… Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov -- Sherry Abercrombie Any sufficiently advanced technology is indistinguishable from magic. Arthur C. Clarke Sent from Haslet, TX, United States ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue
Forgot to mention. DNS is set to use Forwarders. Originally had Qwest DNS servers and switched to OpenDNS servers. Same result. I can ping forwarders by IP but not by name. No firewall rules changed. Internal DNS works fine. Ping a workstation by name and it resolves. I'll see what Netmon shows. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Server 2003 DNS issue
Can you do NSLookup and set server=the external server IP and get a DNS query reply? If not, the firewall may well be blocking the DNS traffic. What DNS servers are you using? Send an IP and I'll try a query from here to make sure the server is working... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:35 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue Forgot to mention. DNS is set to use Forwarders. Originally had Qwest DNS servers and switched to OpenDNS servers. Same result. I can ping forwarders by IP but not by name. No firewall rules changed. Internal DNS works fine. Ping a workstation by name and it resolves. I'll see what Netmon shows. -Original Message- From: Charlie Kaiser [mailto:charl...@golden-eagle.org] Sent: Friday, May 01, 2009 8:23 AM To: NT System Admin Issues Subject: RE: Server 2003 DNS issue How is external DNS set up? Forwarders? Root hints? I usually use forwarders. See if you can ping the listed forwarders; then try a Nslookup using those IPs as the server. Any firewall rules that might have been inadvertently changed? It sounds like DNS queries aren't getting replies from outside. Does internal DNS work? You might throw wireshark on the box and see what the DNS queries do... *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** -Original Message- From: Art DeKneef [mailto:art.dekn...@cox.net] Sent: Friday, May 01, 2009 8:16 AM To: NT System Admin Issues Subject: Server 2003 DNS issue Have a client that is having trouble with Internet connectivity and Exchange sending mail externally. Has a SBS 2003 server up to date as of two weeks ago, nothing changed since then that I know of or can see. They can send and receive internal Exchange just fine. Receiving mail externally works fine. Outbound external mail is sitting in the queue. Error message is Unable to bind to the destination server in DNS. Opening IE displays the Page can not be found error message. Nothing in the event logs. Rebooted server, no effect. Ping by IP works. Ping by name doesn't. Error can not find server. Nslookup fails. Checked out several KB articles and all suggestions shown have been configured correctly on the server. Reran the Connect to Internet wizard, no change. Anyone have any ideas while I look some more. It really looks like DNS is broke on this box. Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Avast AV
I've seen it on a couple home machines I've worked on. Both were eaten up with malware, and the Avast active protection really bogged the machines down. Roger Wright Network Administrator Evatone, Inc. 727.572.7076 x388 _ From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 11:15 AM To: NT System Admin Issues Subject: RE: Avast AV I take it from the lack of replies that no one is using Avast? In a way, that's good, as I really don't want to do a lot of research into it, but on the other hand, I don't have any ammo against it either... Joe Heaton Employment Training Panel From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 8:50 AM To: NT System Admin Issues Subject: Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I've forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well... Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Avast AV
We had one client that was using it in the Enterprise and it worked, but the console was convoluted. Its updates required reboots constantly both server and workstation side and its performance drawbacks were not as bad as Symantec, but still very noticeable. Lots of home users were using it, and we installed it on a lot of them about 2 years ago now, but since then we have moved most of them to Vipre or AVG. From: Roger Wright [mailto:rwri...@evatone.com] Sent: Friday, May 01, 2009 11:48 AM To: NT System Admin Issues Subject: RE: Avast AV I've seen it on a couple home machines I've worked on. Both were eaten up with malware, and the Avast active protection really bogged the machines down. Roger Wright Network Administrator Evatone, Inc. 727.572.7076 x388 _ From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 11:15 AM To: NT System Admin Issues Subject: RE: Avast AV I take it from the lack of replies that no one is using Avast? In a way, that's good, as I really don't want to do a lot of research into it, but on the other hand, I don't have any ammo against it either... Joe Heaton Employment Training Panel From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 8:50 AM To: NT System Admin Issues Subject: Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I've forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well... Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Avast AV
That's the one thing I remember from back in the day of using it at home, it ALWAYS requested reboots. Highly annoying. From: gswe...@actsconsulting.net [mailto:gswe...@actsconsulting.net] Sent: Friday, May 01, 2009 10:57 AM To: NT System Admin Issues Subject: RE: Avast AV We had one client that was using it in the Enterprise and it worked, but the console was convoluted. Its updates required reboots constantly both server and workstation side and its performance drawbacks were not as bad as Symantec, but still very noticeable. Lots of home users were using it, and we installed it on a lot of them about 2 years ago now, but since then we have moved most of them to Vipre or AVG. From: Roger Wright [mailto:rwri...@evatone.com] Sent: Friday, May 01, 2009 11:48 AM To: NT System Admin Issues Subject: RE: Avast AV I've seen it on a couple home machines I've worked on. Both were eaten up with malware, and the Avast active protection really bogged the machines down. Roger Wright Network Administrator Evatone, Inc. 727.572.7076 x388 _ From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Friday, May 01, 2009 11:15 AM To: NT System Admin Issues Subject: RE: Avast AV I take it from the lack of replies that no one is using Avast? In a way, that's good, as I really don't want to do a lot of research into it, but on the other hand, I don't have any ammo against it either... Joe Heaton Employment Training Panel From: Joe Heaton [mailto:jhea...@etp.ca.gov] Sent: Thursday, April 30, 2009 8:50 AM To: NT System Admin Issues Subject: Avast AV Anyone using the corporate level of this? Opinions? Also, for Stu, if you read this, how do your products compare to Avast, as far as CPU usage, overhead, etc.? Only reason I ask this is that I've forwarded the upcoming Sunbelt webinars to the rest of my IT group (6 people total) and one of the developers came back saying we should look at Avast as well... Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 jhea...@etp.ca.gov ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Forefront
Stirling does not require SCOM, but rather contains the SCOM agent (much the way that FFCS uses the MOM agent). If you are using SCOM already, then the SCOM agent that already exists on your clients will work with Stirling. I cannot get a straight answer from Microsoft regarding whether the already existing SCOM agent that SCE uses will work with Stirling. They have assured me however that Stirling will work with SCE, worst case you end up with 2 different versions of the SCOM agent on your clients. I'm still not convinced that they won't give the agents the same rev. number which would result in either Stirling or SCE overwriting the others agent during installation thereby nullifying the existing product. I'll definitely be checking it very closely in the lab before turning the Stirling/SCE combo loose on my little part of the world. TVK From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 9:13 AM To: NT System Admin Issues Subject: Re: Forefront I was under the impression that like the current version of Forefront if you did not have one of the System Center products it would install a cut down version that only dealt with Forefront. From what I saw on my installation the reason for SQL WAS the MOM package. I just hope that Sterling will work with SCE. I have that up and running now. I would not mind doing a re-install when Streling is released IF it works well together. The down side is that Sterling is supposed to go Gold about the time for our renewal. Man I would really hate to be one of the first to roll that package. Jon On Fri, May 1, 2009 at 9:55 AM, Joseph L. Casale jcas...@activenetwerx.commailto:jcas...@activenetwerx.com wrote: Yeah, I read some more last night. The component that manages non server clients needs SQL 2005. The console that could only manage server components can use SQL2000+ and Express. What's worse is the Beta for the next version needs SQL and SCOM from what I read. Lame... jlc From: Jon Harris [mailto:jk.har...@gmail.commailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 6:50 AM To: NT System Admin Issues Subject: Re: Forefront Try and install a working version without the full SQL. Jon On Thu, Apr 30, 2009 at 4:52 PM, Joseph L. Casale jcas...@activenetwerx.commailto:jcas...@activenetwerx.com wrote: I was just not happen that our resellar did not make the SQL requirement clear up front. I am just reading the installation Guide and it suggests: SQL Server 2005 Standard Edition (and above), SQL Server 2005 Express Edition, or SQL Server 2000 You have more than 2000 users? I saw somewhere that 2000 users was the limit I think for Express... That would make this cheap? $100.00 per console, and $13.00 per client. jlc ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: strange profiles on server
Any chance someone was running a migration tool like USMT in your environment? -Original Message- From: jesse-r...@wi.rr.com [mailto:jesse-r...@wi.rr.com] Sent: Thursday, April 30, 2009 7:45 AM To: NT System Admin Issues Subject: strange profiles on server Bit perplexed with this one. On one of my domain controllers which is used by approximately 2,000 users, there is a partial profile in the documents and settings directory. The user does not have access to the server. I have double checked user permissions and the default domain controller policy. User has no privilege to logon locally (interactive) or logon through terminal server. I also verified the user had no elevated access assigned to him (no domain admins, etc.) At the day/time the profile was created (based on the time stamps), the Security Log does NOT show a local logon (interactice) or a logon through terminal server session. It only shows a 'network' conection which is from drive mappings, etc. , the same logon type as all other users on the network. On the server's documenets and settings directory, the user's profile is NOT the same as what you normally see when logging into to the server. The profile contains ONLY the Application Data and Local Settings direction, all the other directories are missing. There is also a NTUSER.DAT and NTUSER.LOG file. It seems like an anomoly or something to me. Based on access rights, security logs, etc. and testing done, the user does NOT have access to logon to this server. So, how did this incomplete user profile get created? Seems odd. Thoughts welcome. mail2web.com - What can On Demand Business Solutions do for you? http://link.mail2web.com/Business/SharePoint ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Remote access options
{{{resists the urge to comment on government spending}}} Realize that it is all relative, the cost of Citrix isn't that bad. We deal with quite a few government agencies nationwide and I've been surprised by the number of them that are using Citrix already. It's easier on them because of the number of legacy systems they are using. From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, April 30, 2009 8:24 PM To: NT System Admin Issues Subject: RE: Remote access options Agreed, but not an inexpensive solution to say the least ... and I'm guessing that as a government agency, they no longer have an unlimited budget Erik Goldoff IT Consultant Systems, Networks, Security From: Louis, Joe [mailto:jlo...@guardianalarm.com] Sent: Thursday, April 30, 2009 2:11 PM To: NT System Admin Issues Subject: RE: Remote access options IMHO, Citrix is a great answer for remote users in a contingency like this. Roll out of new apps is pretty quick and you don't have to go worry about rolling out and app to a remote desktop. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: MAC AV
Essentially true. That was intended to mean that there is very little malware, and that is the case. With a little common sense, you can pretty much avoid it entirely. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, May 01, 2009 11:30 AM To: NT System Admin Issues Subject: Re: MAC AV Trojans *are* malware. And, the first botnet for Macs has been activated: http://www.networkworld.com/news/2009/041709-first-mac-os-x-botnet.html On Fri, May 1, 2009 at 08:03, Mayo, Bill bem...@pittcountync.gov wrote: We don't have any Macs on our network here, but I do use a Mac personally. It is essentially true that there is no malware on the Mac. The stuff that does pop up is almost always a trojan, and the person has to explicitly have permitted it to run (Do you want to install this pirated copy of iWork? Sure!). I personally find it sufficient to run ClamAV and be done with it, but then again I don't go around on torrent sites trying to get pirated software. The major AV companies offer Mac versions of their software, but they primarily look for Windows virii (which the Mac can pass on via email or file copy, but not be affected by). Bill Mayo From: Jon Harris [mailto:jk.har...@gmail.com] Sent: Friday, May 01, 2009 10:55 AM To: NT System Admin Issues Subject: Re: MAC AV Haven't the Mac users in your network told you? Mac's don't get malware of any type. Seriously that was what I keep getting told, so we don't buy any malware protection for them, but I think Symantec, MacAffe., and others of the big names might have some. Jon On Fri, May 1, 2009 at 10:49 AM, Bill Songstad (WCUL) administra...@waleague.org wrote: Since there are a number of folks apparently running Macs in their networks, I was wondering what everybody is using to protect them from Malware. Are some products better, easier to manage smaller footprint than others? Thanks for any insight. Bill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~