Re: RE: Split Word document by page number

[Andrew S. Baker]

That's another old school trick brought you by Office 4.x and the myriad of
slightly compatible competing apps back in the day.

-ASB: http://XeeSM.com/AndrewBaker

Sent from my Motorola Droid

On Jul 26, 2010 4:28 PM, "Robert LeBlanc"  wrote:

 You can try this I know it works in 2007 and 2003. Back up the word
document first. Open in your Word 2007, then go to open “new” and choose new
from existing document. It should open another copy but much smaller in
size. Save as doc and then have your user try and open that one.



Robert



*From:* John Aldrich [mailto:jaldr...@blueridgecarpet.com]
*Sent:* Monday, July 26, 2010 2:07 PM


To: NT System Admin Issues
Subject: RE: Split Word document by page number





We’re trying to become NSF1000 certified. Part of that involves filling out
a bunch of paperwor...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: RE: Split Word document by page number (Solved?)

[Andrew S. Baker]

Since you could open it without problems, did you try saving it as a 2007
doc, and them saving it back as a 2003 file?  I'll bet that would have been
easier...

-ASB: http://XeeSM.com/AndrewBaker

Sent from my Motorola Droid

On Jul 26, 2010 4:26 PM, "John Aldrich" 
wrote:

 Ok. I went to an online service to convert the PDF to a word document.
Zamzar was no help. They converted it to an image file. J I found another
place, pdftoword.com that did a good job of converting the file and it
appears to work on the user’s PC. I logged into their PC from remote and
downloaded the file from their email (I emailed the converted file to them)
and opened it in Word. It got way past the point the Word file I created
locked up, so I think I’m good! Gonna have to remember that site, though! J



[image: John-Aldrich][image: Tile-Tools]



*From:* John Aldrich [mailto:jaldr...@blueridgecarpet.com]
*Sent:* Monday, July 26, 2010 4:07 PM
*To:* NT System Admin Issues
*Subject:* RE: Split Word document by page number



We’re trying to become NSF1000 certified. Part of that involves filling out
a bunch of paperwork. This is one of those files that needs to be filled out
and it’s more of a “template” that we need to modify to fit our organization
than just a straight form. He was trying to use Adobe Acrobat (I think the
full version) and it wouldn’t let him make changes, so I used MY copy of
Acrobat to export the whole thing to a Word 97-2003 file. Obviously not
everything exported perfectly (some tables didn’t make it intact.)



I can open it just fine in Word 2007, but his Word 2000 chokes on it.



[image: John-Aldrich][image: Tile-Tools]



*From:* Andrew S. Baker [mailto:asbz...@gmail.com]
*Sent:* Monday, July 26, 2010 4:02 PM
*To:* NT System Admin Issues
*Subject:* Re: Split Word document by page number



What did you use to create the PDF?  Does this doc have any pictures or
images?



What is the user using to read the PDF?


-ASB: http://XeeSM.com/AndrewBaker

On Mon, Jul 26, 2010 at 3:55 PM, John Aldrich 
wrote:

Unfortunately, the user has Office 2000, ( I think…it’s not 2007, and I
don’t think it’s XP/2003.)



[image: John-Aldrich][image: Tile-Tools]



*From:* Terry Dickson [mailto:te...@treasurer.state.ks.us]
*Sent:* Monday, July 26, 2010 3:53 PM


*To:* NT System Admin Issues
*Subject:* RE: Split Word document by page number



What Version of Office do they have?  I have found this problem is less in
2007/2010.  Just save it as a Docx and some of the time is solves the
problem.



*From:* Kim Longenbaugh [mailto:k...@colonialsavings.com]
*Sent:* Monday, July 26, 2010 2:50 PM
*To:* NT System Admin Issues
*Subject:* RE: Split Word document by page number



Other than opening the original and saving portions of it to new docs,
sorry, nope.



*From:* John Aldrich [mailto:jaldr...@blueridgecarpet.com]
*Sent:* Monday, July 26, 2010 2:47 PM
*To:* NT System Admin Issues
*Subject:* Split Word document by page number



I’ve got a huge (50+ page) word document that I created by exporting from a
PDF and now it’s too big (17+ megs) for one of my users who I exported it
for. It keeps locking up his computer, apparently due to the file size.



Anyone know how to make multiple smaller documents from a single Word
document?



[image: John-Aldrich][image: Tile-Tools]

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: setspn persistence

[greg.sweers]

Richard,

That is exactly what we had to do for a migration to make Kerberos work and 
stay working for 3 months while the vendor upgraded some software code.  Worked 
great.

Its primary use is for renaming domain controllers, during the process netdom 
will copy the old name of the server into this additionaldns field.

Disabling strict name checking and using this "hack" works as well to allow 
Kerberos to continue to function and when the spn's are rewritten voila, they 
both stay..

Greg

From: Richard Stovall [mailto:rich...@gmail.com]
Sent: Monday, July 26, 2010 4:36 PM
To: NT System Admin Issues
Subject: Re: setspn persistence

Your machine wouldn't happen to be a domain controller, would it?

See the last 4 comments to a very interesting article.

http://blogs.technet.com/b/askds/archive/2008/05/29/kerberos-authentication-problems-service-principal-name-spn-issues-part-1.aspx
On Mon, Jul 26, 2010 at 3:31 PM, Phillip Partipilo 
mailto:p...@psnet.com>> wrote:
I'm decommissioning some servers, and to ease the transition, since we have 
some old code that is hardcoded with old server names, I'm going through the 
motions of setting up CNAME DNS records to point any queries to the old server 
to the new server, set up the key in 
HKLM\System\CurrentControlSet\Services\lanmanserver for 
DisableStrictNameChecking to 0x1, set up the key in 
HKLM\System\CurrentControlSet\Control\Lsa for DisableLoopBackCheck to 0x1, and 
then finally used the setspn tool to add SPNs to the new replacement server so 
it will happily accept and authenticate clients that are asking for resources 
and generating Kerberos tickets for the old server name.

Problem is that the setspn additions aren't holding as persistent... Every so 
often they just disappear...  During this transition I don't want to make this 
really ugly by having a scheduled task to run a batch file every minute to add 
these SPNs, so is there a way to force these entries as persistent?

I know this is a severe hack but I'm trying to make my job easy with this 
transition, I'm stretched pretty thin these days :-(



Phillip Partipilo
Parametric Solutions Inc.
Jupiter, Florida
(561) 747-6107



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~






~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: setspn persistence

[Richard Stovall]

Your machine wouldn't happen to be a domain controller, would it?

See the last 4 comments to a very interesting article.

http://blogs.technet.com/b/askds/archive/2008/05/29/kerberos-authentication-problems-service-principal-name-spn-issues-part-1.aspx

On Mon, Jul 26, 2010 at 3:31 PM, Phillip Partipilo  wrote:

> I'm decommissioning some servers, and to ease the transition, since we have
> some old code that is hardcoded with old server names, I'm going through the
> motions of setting up CNAME DNS records to point any queries to the old
> server to the new server, set up the key in
> HKLM\System\CurrentControlSet\Services\lanmanserver for
> DisableStrictNameChecking to 0x1, set up the key in
> HKLM\System\CurrentControlSet\Control\Lsa for DisableLoopBackCheck to 0x1,
> and then finally used the setspn tool to add SPNs to the new replacement
> server so it will happily accept and authenticate clients that are asking
> for resources and generating Kerberos tickets for the old server name.
>
> Problem is that the setspn additions aren't holding as persistent... Every
> so often they just disappear...  During this transition I don't want to make
> this really ugly by having a scheduled task to run a batch file every minute
> to add these SPNs, so is there a way to force these entries as persistent?
>
> I know this is a severe hack but I'm trying to make my job easy with this
> transition, I'm stretched pretty thin these days :-(
>
>
>
> Phillip Partipilo
> Parametric Solutions Inc.
> Jupiter, Florida
> (561) 747-6107
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Split Word document by page number

[Robert LeBlanc]

You can try this I know it works in 2007 and 2003. Back up the word document 
first. Open in your Word 2007, then go to open "new" and choose new from 
existing document. It should open another copy but much smaller in size. Save 
as doc and then have your user try and open that one.

Robert

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
Sent: Monday, July 26, 2010 2:07 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

We're trying to become NSF1000 certified. Part of that involves filling out a 
bunch of paperwork. This is one of those files that needs to be filled out and 
it's more of a "template" that we need to modify to fit our organization than 
just a straight form. He was trying to use Adobe Acrobat (I think the full 
version) and it wouldn't let him make changes, so I used MY copy of Acrobat to 
export the whole thing to a Word 97-2003 file. Obviously not everything 
exported perfectly (some tables didn't make it intact.)

I can open it just fine in Word 2007, but his Word 2000 chokes on it.

[cid:image001.jpg@01CB2CCE.9C7A58A0][cid:image002@01cb2cce.9c7a58a0]

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Monday, July 26, 2010 4:02 PM
To: NT System Admin Issues
Subject: Re: Split Word document by page number

What did you use to create the PDF?  Does this doc have any pictures or images?

What is the user using to read the PDF?

-ASB: http://XeeSM.com/AndrewBaker
On Mon, Jul 26, 2010 at 3:55 PM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
Unfortunately, the user has Office 2000, ( I think...it's not 2007, and I don't 
think it's XP/2003.)

[cid:image001.jpg@01CB2CCE.9C7A58A0][cid:image002@01cb2cce.9c7a58a0]

From: Terry Dickson 
[mailto:te...@treasurer.state.ks.us]
Sent: Monday, July 26, 2010 3:53 PM

To: NT System Admin Issues
Subject: RE: Split Word document by page number

What Version of Office do they have?  I have found this problem is less in 
2007/2010.  Just save it as a Docx and some of the time is solves the problem.

From: Kim Longenbaugh 
[mailto:k...@colonialsavings.com]
Sent: Monday, July 26, 2010 2:50 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

Other than opening the original and saving portions of it to new docs, sorry, 
nope.

From: John Aldrich 
[mailto:jaldr...@blueridgecarpet.com]
Sent: Monday, July 26, 2010 2:47 PM
To: NT System Admin Issues
Subject: Split Word document by page number

I've got a huge (50+ page) word document that I created by exporting from a PDF 
and now it's too big (17+ megs) for one of my users who I exported it for. It 
keeps locking up his computer, apparently due to the file size.

Anyone know how to make multiple smaller documents from a single Word document?

[cid:image001.jpg@01CB2CCE.9C7A58A0][cid:image002@01cb2cce.9c7a58a0]



























~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: Split Word document by page number (Solved?)

[John Aldrich]

Ok. I went to an online service to convert the PDF to a word document.
Zamzar was no help. They converted it to an image file. J I found another
place, pdftoword.com that did a good job of converting the file and it
appears to work on the user's PC. I logged into their PC from remote and
downloaded the file from their email (I emailed the converted file to them)
and opened it in Word. It got way past the point the Word file I created
locked up, so I think I'm good! Gonna have to remember that site, though! J

 

John-AldrichTile-Tools

 

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Monday, July 26, 2010 4:07 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

We're trying to become NSF1000 certified. Part of that involves filling out
a bunch of paperwork. This is one of those files that needs to be filled out
and it's more of a "template" that we need to modify to fit our organization
than just a straight form. He was trying to use Adobe Acrobat (I think the
full version) and it wouldn't let him make changes, so I used MY copy of
Acrobat to export the whole thing to a Word 97-2003 file. Obviously not
everything exported perfectly (some tables didn't make it intact.)

 

I can open it just fine in Word 2007, but his Word 2000 chokes on it.

 

John-AldrichTile-Tools

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Monday, July 26, 2010 4:02 PM
To: NT System Admin Issues
Subject: Re: Split Word document by page number

 

What did you use to create the PDF?  Does this doc have any pictures or
images?

 

What is the user using to read the PDF?


-ASB: http://XeeSM.com/AndrewBaker

On Mon, Jul 26, 2010 at 3:55 PM, John Aldrich 
wrote:

Unfortunately, the user has Office 2000, ( I think.it's not 2007, and I
don't think it's XP/2003.)

 

John-AldrichTile-Tools

 

From: Terry Dickson [mailto:te...@treasurer.state.ks.us] 
Sent: Monday, July 26, 2010 3:53 PM


To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

What Version of Office do they have?  I have found this problem is less in
2007/2010.  Just save it as a Docx and some of the time is solves the
problem.

 

From: Kim Longenbaugh [mailto:k...@colonialsavings.com] 
Sent: Monday, July 26, 2010 2:50 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

Other than opening the original and saving portions of it to new docs,
sorry, nope.

 

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Monday, July 26, 2010 2:47 PM
To: NT System Admin Issues
Subject: Split Word document by page number

 

I've got a huge (50+ page) word document that I created by exporting from a
PDF and now it's too big (17+ megs) for one of my users who I exported it
for. It keeps locking up his computer, apparently due to the file size.

 

Anyone know how to make multiple smaller documents from a single Word
document?

 

John-AldrichTile-Tools

 

 

 

 

 

 

 

 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: setspn persistence

[Richard Stovall]

Perhaps I should note that I was only moving file shares and no Kerberized
services.

On Mon, Jul 26, 2010 at 4:08 PM, Richard Stovall  wrote:

> What OS?  I had to do this about a year ago on a 2003 Server and I did not
> have to use the setspn tool that I recall.  I did have to create a string
> value at HKLM\System\CurrentControlSet\Services\lanmanserver\parameters
> called OptionalNames, and put the secondary names there (each on its own
> line).
>
> On Mon, Jul 26, 2010 at 3:31 PM, Phillip Partipilo  wrote:
>
>> I'm decommissioning some servers, and to ease the transition, since we
>> have some old code that is hardcoded with old server names, I'm going
>> through the motions of setting up CNAME DNS records to point any queries to
>> the old server to the new server, set up the key in
>> HKLM\System\CurrentControlSet\Services\lanmanserver for
>> DisableStrictNameChecking to 0x1, set up the key in
>> HKLM\System\CurrentControlSet\Control\Lsa for DisableLoopBackCheck to 0x1,
>> and then finally used the setspn tool to add SPNs to the new replacement
>> server so it will happily accept and authenticate clients that are asking
>> for resources and generating Kerberos tickets for the old server name.
>>
>> Problem is that the setspn additions aren't holding as persistent... Every
>> so often they just disappear...  During this transition I don't want to make
>> this really ugly by having a scheduled task to run a batch file every minute
>> to add these SPNs, so is there a way to force these entries as persistent?
>>
>> I know this is a severe hack but I'm trying to make my job easy with this
>> transition, I'm stretched pretty thin these days :-(
>>
>>
>>
>> Phillip Partipilo
>> Parametric Solutions Inc.
>> Jupiter, Florida
>> (561) 747-6107
>>
>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: setspn persistence

[Richard Stovall]

What OS?  I had to do this about a year ago on a 2003 Server and I did not
have to use the setspn tool that I recall.  I did have to create a string
value at HKLM\System\CurrentControlSet\Services\lanmanserver\parameters
called OptionalNames, and put the secondary names there (each on its own
line).

On Mon, Jul 26, 2010 at 3:31 PM, Phillip Partipilo  wrote:

> I'm decommissioning some servers, and to ease the transition, since we have
> some old code that is hardcoded with old server names, I'm going through the
> motions of setting up CNAME DNS records to point any queries to the old
> server to the new server, set up the key in
> HKLM\System\CurrentControlSet\Services\lanmanserver for
> DisableStrictNameChecking to 0x1, set up the key in
> HKLM\System\CurrentControlSet\Control\Lsa for DisableLoopBackCheck to 0x1,
> and then finally used the setspn tool to add SPNs to the new replacement
> server so it will happily accept and authenticate clients that are asking
> for resources and generating Kerberos tickets for the old server name.
>
> Problem is that the setspn additions aren't holding as persistent... Every
> so often they just disappear...  During this transition I don't want to make
> this really ugly by having a scheduled task to run a batch file every minute
> to add these SPNs, so is there a way to force these entries as persistent?
>
> I know this is a severe hack but I'm trying to make my job easy with this
> transition, I'm stretched pretty thin these days :-(
>
>
>
> Phillip Partipilo
> Parametric Solutions Inc.
> Jupiter, Florida
> (561) 747-6107
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Split Word document by page number

[John Aldrich]

We're trying to become NSF1000 certified. Part of that involves filling out
a bunch of paperwork. This is one of those files that needs to be filled out
and it's more of a "template" that we need to modify to fit our organization
than just a straight form. He was trying to use Adobe Acrobat (I think the
full version) and it wouldn't let him make changes, so I used MY copy of
Acrobat to export the whole thing to a Word 97-2003 file. Obviously not
everything exported perfectly (some tables didn't make it intact.)

 

I can open it just fine in Word 2007, but his Word 2000 chokes on it.

 

John-AldrichTile-Tools

 

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Monday, July 26, 2010 4:02 PM
To: NT System Admin Issues
Subject: Re: Split Word document by page number

 

What did you use to create the PDF?  Does this doc have any pictures or
images?

 

What is the user using to read the PDF?


-ASB: http://XeeSM.com/AndrewBaker



On Mon, Jul 26, 2010 at 3:55 PM, John Aldrich 
wrote:

Unfortunately, the user has Office 2000, ( I think.it's not 2007, and I
don't think it's XP/2003.)

 

John-AldrichTile-Tools

 

From: Terry Dickson [mailto:te...@treasurer.state.ks.us] 
Sent: Monday, July 26, 2010 3:53 PM


To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

What Version of Office do they have?  I have found this problem is less in
2007/2010.  Just save it as a Docx and some of the time is solves the
problem.

 

From: Kim Longenbaugh [mailto:k...@colonialsavings.com] 
Sent: Monday, July 26, 2010 2:50 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

Other than opening the original and saving portions of it to new docs,
sorry, nope.

 

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Monday, July 26, 2010 2:47 PM
To: NT System Admin Issues
Subject: Split Word document by page number

 

I've got a huge (50+ page) word document that I created by exporting from a
PDF and now it's too big (17+ megs) for one of my users who I exported it
for. It keeps locking up his computer, apparently due to the file size.

 

Anyone know how to make multiple smaller documents from a single Word
document?

 

John-AldrichTile-Tools

 

 

 

 

 

 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Split Word document by page number

[Andrew S. Baker]

What did you use to create the PDF?  Does this doc have any pictures or
images?

What is the user using to read the PDF?

-ASB: http://XeeSM.com/AndrewBaker


On Mon, Jul 26, 2010 at 3:55 PM, John Aldrich
wrote:

>  Unfortunately, the user has Office 2000, ( I think…it’s not 2007, and I
> don’t think it’s XP/2003.)
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
> *From:* Terry Dickson [mailto:te...@treasurer.state.ks.us]
> *Sent:* Monday, July 26, 2010 3:53 PM
>
> *To:* NT System Admin Issues
> *Subject:* RE: Split Word document by page number
>
>
>
> What Version of Office do they have?  I have found this problem is less in
> 2007/2010.  Just save it as a Docx and some of the time is solves the
> problem.
>
>
>
> *From:* Kim Longenbaugh [mailto:k...@colonialsavings.com]
> *Sent:* Monday, July 26, 2010 2:50 PM
> *To:* NT System Admin Issues
> *Subject:* RE: Split Word document by page number
>
>
>
> Other than opening the original and saving portions of it to new docs,
> sorry, nope.
>
>
>
> *From:* John Aldrich [mailto:jaldr...@blueridgecarpet.com]
> *Sent:* Monday, July 26, 2010 2:47 PM
> *To:* NT System Admin Issues
> *Subject:* Split Word document by page number
>
>
>
> I’ve got a huge (50+ page) word document that I created by exporting from a
> PDF and now it’s too big (17+ megs) for one of my users who I exported it
> for. It keeps locking up his computer, apparently due to the file size.
>
>
>
> Anyone know how to make multiple smaller documents from a single Word
> document?
>
>
>
> [image: John-Aldrich][image: Tile-Tools]
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: Split Word document by page number

[John Aldrich]

Unfortunately, the user has Office 2000, ( I think.it's not 2007, and I
don't think it's XP/2003.)

 

John-AldrichTile-Tools

 

From: Terry Dickson [mailto:te...@treasurer.state.ks.us] 
Sent: Monday, July 26, 2010 3:53 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

What Version of Office do they have?  I have found this problem is less in
2007/2010.  Just save it as a Docx and some of the time is solves the
problem.

 

From: Kim Longenbaugh [mailto:k...@colonialsavings.com] 
Sent: Monday, July 26, 2010 2:50 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

 

Other than opening the original and saving portions of it to new docs,
sorry, nope.

 

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Monday, July 26, 2010 2:47 PM
To: NT System Admin Issues
Subject: Split Word document by page number

 

I've got a huge (50+ page) word document that I created by exporting from a
PDF and now it's too big (17+ megs) for one of my users who I exported it
for. It keeps locking up his computer, apparently due to the file size.

 

Anyone know how to make multiple smaller documents from a single Word
document?

 

John-AldrichTile-Tools

 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: Split Word document by page number

[Terry Dickson]

What Version of Office do they have?  I have found this problem is less in 
2007/2010.  Just save it as a Docx and some of the time is solves the problem.

From: Kim Longenbaugh [mailto:k...@colonialsavings.com]
Sent: Monday, July 26, 2010 2:50 PM
To: NT System Admin Issues
Subject: RE: Split Word document by page number

Other than opening the original and saving portions of it to new docs, sorry, 
nope.

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
Sent: Monday, July 26, 2010 2:47 PM
To: NT System Admin Issues
Subject: Split Word document by page number

I've got a huge (50+ page) word document that I created by exporting from a PDF 
and now it's too big (17+ megs) for one of my users who I exported it for. It 
keeps locking up his computer, apparently due to the file size.

Anyone know how to make multiple smaller documents from a single Word document?

[John-Aldrich][Tile-Tools]










~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: Split Word document by page number

[Kim Longenbaugh]

Other than opening the original and saving portions of it to new docs,
sorry, nope.

 

From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Monday, July 26, 2010 2:47 PM
To: NT System Admin Issues
Subject: Split Word document by page number

 

I've got a huge (50+ page) word document that I created by exporting
from a PDF and now it's too big (17+ megs) for one of my users who I
exported it for. It keeps locking up his computer, apparently due to the
file size.

 

Anyone know how to make multiple smaller documents from a single Word
document?

 

  

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Split Word document by page number

[John Aldrich]

I've got a huge (50+ page) word document that I created by exporting from a
PDF and now it's too big (17+ megs) for one of my users who I exported it
for. It keeps locking up his computer, apparently due to the file size.

 

Anyone know how to make multiple smaller documents from a single Word
document?

 

John-AldrichTile-Tools

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: This might prove useful

[Erik Goldoff]

Thanks !


Erik Goldoff
IT  Consultant
Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '


-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Monday, July 26, 2010 1:22 PM
To: NT System Admin Issues
Subject: This might prove useful

http://isc.sans.edu/diary.html?storyid=9268

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: setspn persistence

[Joseph Heaton]

I take it that it would be too difficult to have your developers go back and do 
away with the hardcoded names?

>>> Phillip Partipilo  7/26/2010 12:31 PM >>>
I'm decommissioning some servers, and to ease the transition, since we have 
some old code that is hardcoded with old server names, I'm going through the 
motions of setting up CNAME DNS records to point any queries to the old server 
to the new server, set up the key in 
HKLM\System\CurrentControlSet\Services\lanmanserver for 
DisableStrictNameChecking to 0x1, set up the key in 
HKLM\System\CurrentControlSet\Control\Lsa for DisableLoopBackCheck to 0x1, and 
then finally used the setspn tool to add SPNs to the new replacement server so 
it will happily accept and authenticate clients that are asking for resources 
and generating Kerberos tickets for the old server name.

Problem is that the setspn additions aren't holding as persistent... Every so 
often they just disappear...  During this transition I don't want to make this 
really ugly by having a scheduled task to run a batch file every minute to add 
these SPNs, so is there a way to force these entries as persistent?

I know this is a severe hack but I'm trying to make my job easy with this 
transition, I'm stretched pretty thin these days :-(



Phillip Partipilo
Parametric Solutions Inc.
Jupiter, Florida
(561) 747-6107



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

setspn persistence

[Phillip Partipilo]

I'm decommissioning some servers, and to ease the transition, since we have 
some old code that is hardcoded with old server names, I'm going through the 
motions of setting up CNAME DNS records to point any queries to the old server 
to the new server, set up the key in 
HKLM\System\CurrentControlSet\Services\lanmanserver for 
DisableStrictNameChecking to 0x1, set up the key in 
HKLM\System\CurrentControlSet\Control\Lsa for DisableLoopBackCheck to 0x1, and 
then finally used the setspn tool to add SPNs to the new replacement server so 
it will happily accept and authenticate clients that are asking for resources 
and generating Kerberos tickets for the old server name.

Problem is that the setspn additions aren't holding as persistent... Every so 
often they just disappear...  During this transition I don't want to make this 
really ugly by having a scheduled task to run a batch file every minute to add 
these SPNs, so is there a way to force these entries as persistent?

I know this is a severe hack but I'm trying to make my job easy with this 
transition, I'm stretched pretty thin these days :-(



Phillip Partipilo
Parametric Solutions Inc.
Jupiter, Florida
(561) 747-6107



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: This might prove useful

[RichardMcClary]

Agreed!  The videos are informative as well.
--
richard

"Steven M. Caesare"  wrote on 07/26/2010 02:26:17 
PM:

> Indeed... thanks Kurt!
> 
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com] 
> Sent: Monday, July 26, 2010 1:22 PM
> To: NT System Admin Issues
> Subject: This might prove useful
> 
> http://isc.sans.edu/diary.html?storyid=9268
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: This might prove useful

[Steven M. Caesare]

Indeed... thanks Kurt!

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Monday, July 26, 2010 1:22 PM
To: NT System Admin Issues
Subject: This might prove useful

http://isc.sans.edu/diary.html?storyid=9268

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: TCPVIEW has been updated

[Stringham, Steven]

Now that is a nice improvement! Thanks for the heads up.
 



From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Monday, July 26, 2010 9:12 AM
To: NT System Admin Issues
Cc: ADMIN_MISC; COMPUTING
Subject: TCPVIEW has been updated


http://technet.microsoft.com/en-us/sysinternals/bb842062.aspx
  


 And it
looks very good.  Now captures sent/received stats.

-ASB: http://XeeSM.com/AndrewBaker
 Exploiting Technology for Business Advantage...


For more information about Lewis and Roca LLP, please go to
www.lewisandroca.com.
Phoenix (602) 262-5311
Tucson (520) 622-2090
Las Vegas (702) 949-8200
Reno (775) 823-2900
Minden (775) 586-9500
Albuquerque (505) 764-5400
Silicon Valley (650) 391-1380

This message is intended only for the use of the individual or entity to which 
it is addressed. If the reader of this message is not the intended recipient, 
or the employee or agent responsible for delivering the message to the intended 
recipient, you are hereby notified that any dissemination, distribution or 
copying of this message is strictly prohibited. If you have received this 
communication in error, please notify us immediately by replying to the sender 
of this E-Mail by return E-Mail or by telephone. 

In accordance with Internal Revenue Service Circular 230, we advise you that if 
this email contains any tax advice, such tax advice was not intended or written 
to be used, and it cannot be used, by any taxpayer for the purpose of avoiding 
penalties that may be imposed on the taxpayer.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: No upcoming password expiration notice for VPN users

[Michael B. Smith]

HOSTING_OU is used here:

Set objContainer = GetObject ("LDAP://OU=" & HOSTING_OU & "," & strDomainDN)

So it shortcuts the OU for the most specific OU. If your primary OU is Main and 
the sub-OU is SubOU, then set

Const HOSTING_OU = "SubOU,OU=Main"

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Monday, July 26, 2010 1:08 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

Fail

Const HOSTING_OU  = "OU=Users,OU=Main,dc=myinternaldomain,dc=org"

I've tried variations too, like just "OU=Users, OU=Main"

Looks like it's failing on this line:
Set objRoot = GetObject ("LDAP://RootDSE")
 strDomainDN = objRoot.Get ("defaultNamingContext")

Going back to just "main" (not OU=Main, just 'main') always works but it's too 
broad for my needs.

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, July 23, 2010 7:18 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

You have to do it in LDAP format, not x500 format.

OU=Users,OU=Main etc.etc.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Friday, July 23, 2010 6:50 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

Thanks!  I tried to specify a 2nd level OU and it didn't work

This works:
Const HOSTING_OU  = "Main"

This doesn't:
Const HOSTING_OU  = "Main\Users"

Dave

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, July 23, 2010 12:20 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

Correct.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Friday, July 23, 2010 3:18 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

So it doesn't need to run on an Exchange server, just a box with CDO?
http://www.microsoft.com/downloads/details.aspx?familyid=e17e7f31-079a-43a9-bff2-0a110307611e&displaylang=en#Requirements


Dave

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, July 23, 2010 12:07 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users



You need CDO installed on the computer where you run the script.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Friday, July 23, 2010 3:02 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users


  *   Anyone know if this one: 
http://www.windowsitpro.com/article/passwords/how-can-i-use-a-script-to-determine-password-expiration-dates-for-users-in-a-domain-or-an-organizational-unit-ou-and-send-an-email-message-to-accounts-whose-passwords-expire-soon-.aspx
Works on E2K7?

Dave

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Thursday, July 08, 2010 7:51 AM
To: NT System Admin Issues
Subject: Re: No upcoming password expiration notice for VPN users

See also:  http://support.microsoft.com/kb/937011

You can script password expiration notices to your users, or provide them with 
alternate solutions:

  *   
http://www.sharewareconnection.com/netwrix-password-expiration-notifier.htm
  *   
http://pcwin.com/Utilities/System_Utilities/JiJi_Password_Expiration_Notification/screen.htm
  *   
http://www.windowsitpro.com/article/passwords/how-can-i-use-a-script-to-determine-password-expiration-dates-for-users-in-a-domain-or-an-organizational-unit-ou-and-send-an-email-message-to-accounts-whose-passwords-expire-soon-.aspx


-ASB: http://XeeSM.com/AndrewBaker
On Thu, Jul 8, 2010 at 10:31 AM, David Lum 
mailto:david@nwea.org>> wrote:
How do you guys handle VPN users not getting a "password will expire in xx 
days", or have any of you seen this behavior? Someone on Expert's Exchange 
describes our issue perfectly: "I have remote user's running Windows XP Home 
and they use VPN to connect to my Win2000 Server running Small Business Server 
2000.  When they connect they enter their username/password.  All of this works 
just fine.  The problem I'm having is that they don't get notified that their 
password is going to expire until it is expired.  They can change it at that 
time, but I want them to get the warning. "

Which took me here: http://support.microsoft.com/kb/221977

We have Exchange 2007 and I'm wondering if this still applies.
David Lum // SYSTEMS ENGINEER
NORTHWEST EVALUATION ASSOCIATION
(Desk) 971.222.1025 // (Cell) 503.267.9764


































~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

Weird user issue in a lab domain

[Joseph Heaton]

We've brought up a 2008R2 domain in our lab, to simulate our production 
environment.  The first user account created was my boss creating his account, 
setting it as a God account, with memberships in all the high level admin 
groups (Domain Admins, Enterprise Admins, etc.)

When he uses this account, he is unable to edit the default domain policy.  The 
Edit button is grayed out.  In his troubleshooting, he made a Copy of that 
account, and using that, he is able to edit GPOs.

He hasn't been able to find anything about this on the internet, so I figured 
I'd come here and ask all you gurus out there.  So has anyone else seen this 
issue?  Is it just some weird "feature" of Server 2008 R2?  Or is his account 
possibly corrupt somehow, even though it was just created?

Thanks in advance for any ideas you guys may have.

Joe Heaton



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

This might prove useful

[Kurt Buff]

http://isc.sans.edu/diary.html?storyid=9268

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: OT : Streaming Video Site for Wireless IP Camera ?

[Carl Houseman]

OK, so you want to emulate a webcam with an IP camera.  Google for "use IP
camera with x" substituting Skype or Messenger or some other frequently
webcam'd application.

 

Carl

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Monday, July 26, 2010 12:55 PM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

Ustream *doesn't* recognize any  IP camera, it recognizes a direct attached
USB camera only ( I haven't tried firewire, but same limitation on camera
location I'd suppose )

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Carl Houseman [mailto:c.house...@gmail.com] 
Sent: Monday, July 26, 2010 12:43 PM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

How does ustream.tv recognize the difference between a wireless and wired IP
camera?  As far as the application is concerned, it's just an IP address.

 

Carl

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Monday, July 26, 2010 12:31 PM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

Thanks, but from my phone is not the primary choice, I'd like to use a
wireless IP camera, that can be mounted in a location to provide best
angle/shot.

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: N Parr [mailto:npar...@mortonind.com] 
Sent: Monday, July 26, 2010 11:17 AM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

QIK

Stream live from your phone, view live from their web site.  Save and
publish to wherever later.  Free

 

  _  

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Saturday, July 24, 2010 4:33 PM
To: NT System Admin Issues
Subject: OT : Streaming Video Site for Wireless IP Camera ?

Sorry for the OT .

 

Occasionally for some non profit fund raising events, I use a USB webcam and
ustream.tv to allow remote folks to 'attend' the auctions and other
festivities.

Ustream.tv does not work with wireless IP cameras, has to be a direct
connect.

 

So my question :

 

Does anyone know of a site that I can use for streaming video like this that
DOES work with a wireless IP camera ???

 

p.s.  activities are usually at different hotel sites, so I cannot simply
setup a direct route back to NAT'd IP for the camera, needs to be a hosted
site.

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

 

 

 

 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Open letter to Adobe

[Angus Scott-Fleming]

On 26 Jul 2010 at 12:15, Andrew S. Baker  wrote:

> Foxit is still a pretty good alternative for me...

And here's my Foxit-NoAds.reg:

= Included Stuff Follows =
Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\Software\Foxit Software\Foxit Reader\MainFrame]
"ShowAd"="0"
"DisplayInBrowser"="0"
"JavaScript"="0"
"HideQuickSearchBar"="1"
"DisabledQuickSearch"="1"

= Included Stuff Follows =

--
Angus Scott-Fleming
GeoApps, Tucson, Arizona
1-520-290-5038
Security Blog: http://geoapps.com/





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: No upcoming password expiration notice for VPN users

[David Lum]

Fail

Const HOSTING_OU  = "OU=Users,OU=Main,dc=myinternaldomain,dc=org"

I've tried variations too, like just "OU=Users, OU=Main"

Looks like it's failing on this line:
Set objRoot = GetObject ("LDAP://RootDSE")
 strDomainDN = objRoot.Get ("defaultNamingContext")

Going back to just "main" (not OU=Main, just 'main') always works but it's too 
broad for my needs.

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, July 23, 2010 7:18 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

You have to do it in LDAP format, not x500 format.

OU=Users,OU=Main etc.etc.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Friday, July 23, 2010 6:50 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

Thanks!  I tried to specify a 2nd level OU and it didn't work

This works:
Const HOSTING_OU  = "Main"

This doesn't:
Const HOSTING_OU  = "Main\Users"

Dave

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, July 23, 2010 12:20 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

Correct.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Friday, July 23, 2010 3:18 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users

So it doesn't need to run on an Exchange server, just a box with CDO?
http://www.microsoft.com/downloads/details.aspx?familyid=e17e7f31-079a-43a9-bff2-0a110307611e&displaylang=en#Requirements


Dave

From: Michael B. Smith [mailto:mich...@smithcons.com]
Sent: Friday, July 23, 2010 12:07 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users



You need CDO installed on the computer where you run the script.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: David Lum [mailto:david@nwea.org]
Sent: Friday, July 23, 2010 3:02 PM
To: NT System Admin Issues
Subject: RE: No upcoming password expiration notice for VPN users


 *   Anyone know if this one: 
http://www.windowsitpro.com/article/passwords/how-can-i-use-a-script-to-determine-password-expiration-dates-for-users-in-a-domain-or-an-organizational-unit-ou-and-send-an-email-message-to-accounts-whose-passwords-expire-soon-.aspx
Works on E2K7?

Dave

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Thursday, July 08, 2010 7:51 AM
To: NT System Admin Issues
Subject: Re: No upcoming password expiration notice for VPN users

See also:  http://support.microsoft.com/kb/937011

You can script password expiration notices to your users, or provide them with 
alternate solutions:

 *   http://www.sharewareconnection.com/netwrix-password-expiration-notifier.htm
 *   
http://pcwin.com/Utilities/System_Utilities/JiJi_Password_Expiration_Notification/screen.htm
 *   
http://www.windowsitpro.com/article/passwords/how-can-i-use-a-script-to-determine-password-expiration-dates-for-users-in-a-domain-or-an-organizational-unit-ou-and-send-an-email-message-to-accounts-whose-passwords-expire-soon-.aspx


-ASB: http://XeeSM.com/AndrewBaker
On Thu, Jul 8, 2010 at 10:31 AM, David Lum 
mailto:david@nwea.org>> wrote:
How do you guys handle VPN users not getting a "password will expire in xx 
days", or have any of you seen this behavior? Someone on Expert's Exchange 
describes our issue perfectly: "I have remote user's running Windows XP Home 
and they use VPN to connect to my Win2000 Server running Small Business Server 
2000.  When they connect they enter their username/password.  All of this works 
just fine.  The problem I'm having is that they don't get notified that their 
password is going to expire until it is expired.  They can change it at that 
time, but I want them to get the warning. "

Which took me here: http://support.microsoft.com/kb/221977

We have Exchange 2007 and I'm wondering if this still applies.
David Lum // SYSTEMS ENGINEER
NORTHWEST EVALUATION ASSOCIATION
(Desk) 971.222.1025 // (Cell) 503.267.9764






























~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: OT : Streaming Video Site for Wireless IP Camera ?

[Erik Goldoff]

Ustream *doesn’t* recognize any  IP camera, it recognizes a direct attached
USB camera only ( I haven’t tried firewire, but same limitation on camera
location I’d suppose )

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Carl Houseman [mailto:c.house...@gmail.com] 
Sent: Monday, July 26, 2010 12:43 PM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

How does ustream.tv recognize the difference between a wireless and wired IP
camera?  As far as the application is concerned, it’s just an IP address.

 

Carl

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Monday, July 26, 2010 12:31 PM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

Thanks, but from my phone is not the primary choice, I’d like to use a
wireless IP camera, that can be mounted in a location to provide best
angle/shot.

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: N Parr [mailto:npar...@mortonind.com] 
Sent: Monday, July 26, 2010 11:17 AM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

QIK

Stream live from your phone, view live from their web site.  Save and
publish to wherever later.  Free

 

  _  

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Saturday, July 24, 2010 4:33 PM
To: NT System Admin Issues
Subject: OT : Streaming Video Site for Wireless IP Camera ?

Sorry for the OT …

 

Occasionally for some non profit fund raising events, I use a USB webcam and
ustream.tv to allow remote folks to ‘attend’ the auctions and other
festivities.

Ustream.tv does not work with wireless IP cameras, has to be a direct
connect.

 

So my question :

 

Does anyone know of a site that I can use for streaming video like this that
DOES work with a wireless IP camera ???

 

p.s.  activities are usually at different hotel sites, so I cannot simply
setup a direct route back to NAT’d IP for the camera, needs to be a hosted
site.

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

 

 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: OT : Streaming Video Site for Wireless IP Camera ?

[Carl Houseman]

How does ustream.tv recognize the difference between a wireless and wired IP
camera?  As far as the application is concerned, it's just an IP address.

 

Carl

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Monday, July 26, 2010 12:31 PM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

Thanks, but from my phone is not the primary choice, I'd like to use a
wireless IP camera, that can be mounted in a location to provide best
angle/shot.

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: N Parr [mailto:npar...@mortonind.com] 
Sent: Monday, July 26, 2010 11:17 AM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

QIK

Stream live from your phone, view live from their web site.  Save and
publish to wherever later.  Free

 

  _  

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Saturday, July 24, 2010 4:33 PM
To: NT System Admin Issues
Subject: OT : Streaming Video Site for Wireless IP Camera ?

Sorry for the OT .

 

Occasionally for some non profit fund raising events, I use a USB webcam and
ustream.tv to allow remote folks to 'attend' the auctions and other
festivities.

Ustream.tv does not work with wireless IP cameras, has to be a direct
connect.

 

So my question :

 

Does anyone know of a site that I can use for streaming video like this that
DOES work with a wireless IP camera ???

 

p.s.  activities are usually at different hotel sites, so I cannot simply
setup a direct route back to NAT'd IP for the camera, needs to be a hosted
site.

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: OT : Streaming Video Site for Wireless IP Camera ?

[Erik Goldoff]

Thanks, but from my phone is not the primary choice, I’d like to use a
wireless IP camera, that can be mounted in a location to provide best
angle/shot.

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: N Parr [mailto:npar...@mortonind.com] 
Sent: Monday, July 26, 2010 11:17 AM
To: NT System Admin Issues
Subject: RE: OT : Streaming Video Site for Wireless IP Camera ?

 

QIK

Stream live from your phone, view live from their web site.  Save and
publish to wherever later.  Free

 

  _  

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Saturday, July 24, 2010 4:33 PM
To: NT System Admin Issues
Subject: OT : Streaming Video Site for Wireless IP Camera ?

Sorry for the OT …

 

Occasionally for some non profit fund raising events, I use a USB webcam and
ustream.tv to allow remote folks to ‘attend’ the auctions and other
festivities.

Ustream.tv does not work with wireless IP cameras, has to be a direct
connect.

 

So my question :

 

Does anyone know of a site that I can use for streaming video like this that
DOES work with a wireless IP camera ???

 

p.s.  activities are usually at different hotel sites, so I cannot simply
setup a direct route back to NAT’d IP for the camera, needs to be a hosted
site.

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Anyone using Forefront UAG and Direct Access

[Kurt Buff]

This does make some sense. The issue with VOIP might well be a problem
at some point - we have a Shoretel system, and it's desired at some
point to have remote folks use a soft phone remotely. I don't know if
it uses IPv4 only, or if it can use v6, or even if it uses SIP for its
native implementation. IIRC, it needs a SIP gateway to work with COTS
SIP phones, so it might not be affected by that.

I'm not terribly worried about apps that don't use name resolution, as
we don't have any. I'm actually a fan of disabling split tunneling,
but I do recognize the drawbacks - especially when remote bandwidth is
limited.

However, I have to wonder if this starts to highlight problems with
split DNS. That could prove, erm, interesting for us.

Kurt

On Mon, Jul 26, 2010 at 07:12, Malcolm Reitz  wrote:
> Smart cards are optional for DirectAccess, not required. What I was trying 
> (poorly) to say was that Microsoft's internal implementation of DirectAccess 
> is set up to require smart card authentication (e.g. MSFT employees must use 
> smart cards). Our DirectAccess implementation currently does not require the 
> users to have a smart card. Smart cards (we use .NET cards - Gemalto is the 
> major vendor in the market) are a quite useful security tool, but they 
> require a distribution/maintenance infrastructure that complicates their use.
>
> Applications that don't work across a DirectAccess link are those which won't 
> work over IPv6. The first one I came across was the Communicator IM client. I 
> think VoIP apps that rely on the SIP protocol fall in to this category as 
> well.
>
> Also, internal applications that you access by IP address only will be a 
> problem. This is because DirectAccess makes it routing decisions based on 
> name resolution, not IP destination. Say your corporate network is using the 
> 10.x.x.x IPv4 address space and a domain name of "internal.mycorp.com". You 
> can tell DirectAccess to send all traffic to *.internal.mycorp.com over the 
> tunnel to your corporate network, but you can't tell it to route all traffic 
> to any 10.x.x.x address across the tunnel. The only way around this is to 
> force all communications across the tunnel (that is, disable 
> split-tunneling). Unfortunately, this has performance implications, as it 
> makes DirectAccess use a less-efficient protocol and increases the load on 
> the DirectAccess servers, not to mention it sends all Internet-bound traffic 
> from the client "the long way" through the corporate network and out the 
> corporate Internet connection.
>
> Hope that makes sense...
>
> -Malcolm
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Friday, July 23, 2010 17:43
> To: NT System Admin Issues
> Subject: Re: Anyone using Forefront UAG and Direct Access
>
> O...
>
> Actual field experience!
>
> Did not know about the smart card requirement. That's good to know.
> What smart card technology are you using, if you can say?
>
> What kind of apps have you run into that don't play nice with it?
>
> Kurt
>
> On Fri, Jul 23, 2010 at 13:29, Malcolm Reitz  wrote:
>> I won’t say DirectAccess is just another VPN, because it isn’t, but it
>> is a VPN technology with pretty robust security. It isn’t an easy
>> setup, as it requires working with IPv6 and certificates, however,
>> once it is running, it is really slick in operation. Just connecting
>> your laptop to the Internet and being instantly able to map corporate
>> file shares and open intranet web apps or RDP sessions is great.
>> Downsides to it are that not everything works with it, as not
>> everything plays nice with IPv6, and the hardware requirements are
>> more significant than for a traditional IPsec VPN. It also only works with 
>> Windows 7 clients.
>>
>>
>>
>> Microsoft has enhanced security on their DirectAccess implementation
>> by requiring their people to use smart cards for DirectAccess authentication.
>> We may do that as well.
>>
>>
>>
>> I can say that everyone using my DirectAccess POC setup is liking it so far.
>> Because of its “always on” nature, I think it will be a great boon to
>> our management of remote computers (they always be connected for
>> patching, AV updates, inventory, etc.).
>>
>>
>>
>> -Malcolm
>>
>>
>>
>> From: Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com]
>> Sent: Friday, July 23, 2010 14:51
>> To: NT System Admin Issues
>> Subject: Anyone using Forefront UAG and Direct Access
>>
>>
>>
>> Thoughts?
>>
>> Is it a big security hole?
>>
>>
>>
>>
>>
>> Luke L. Brumbaugh
>>
>> Network Engineer
>>
>> Butler Animal Health Supply
>>
>> Ph:(614) 659-1736
>>
>>
>>
>> **
>>
>> CONFIDENTIALITY NOTICE - The information transmitted in this message
>> is intended only for the person or entity to which it is addressed and
>> may contain confidential and/or privileged material. Any review,
>> retransmission, dissemination or other use of this information by
>

Re: RE: Open letter to Adobe

[Andrew S. Baker]

Foxit is still a pretty good alternative for me...

-ASB: http://XeeSM.com/AndrewBaker


On Mon, Jul 26, 2010 at 11:29 AM, Matthew W. Ross
wrote:

> For those who want a decent, small and fast alternative to Reader, may I
> suggest Evince.
>
> http://projects.gnome.org/evince/
>
> There is a windows version, and it has been an excellent little PDF reader,
> and a good alternative for the old Foxit Reader alternative that has gone to
> bloat. Only problem I know of is an UAC unaware installer. An install as
> admin required.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Andrew S. Baker
> [mailto:asbz...@gmail.com]
> To: NT System Admin Issues
> [mailto:ntsysad...@lyris.sunbelt-software.com]
> Sent: Mon, 26 Jul 2010
> 05:03:38 -0700
> Subject: Re: RE: Open letter to Adobe
>
>
> > Obviously not a high priority with them, unfortunately. Not until we have
> > more competition, perhaps
> >
> > -ASB: http://XeeSM.com/AndrewBaker
> >
> > Sent from my Motorola Droid
> >
> > On Jul 25, 2010 10:09 PM, "Steven M. Caesare" 
> wrote:
> >
> > It’s still broken. They need to fix it.
> >
> >
> >
> > -sc
> >
> >
> >
> >
> >
> > From: Simon Butler [mailto:si...@sembee.co.uk]
> > Sent: Sunday, July 25, 2010 5:44 PM
> > To: NT Syst...
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

TCPVIEW has been updated

[Andrew S. Baker]

http://technet.microsoft.com/en-us/sysinternals/bb842062.aspx

And it looks
very good.  Now captures sent/received stats.

-ASB: http://XeeSM.com/AndrewBaker
 Exploiting Technology for Business Advantage...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Vipre false positives?

[Angus Scott-Fleming]

On 26 Jul 2010 at 10:09, John Aldrich  wrote:

> I got notifications for .lnk files that are harmless. L I´m not
> particularly worried about it, but I think Vipre is a little *too* cautious
> on .lnk files. 

Agree.

I'll bet none of these is a real exploit.

= Included Stuff Follows =

Machine:  (192.168.1.48)
Scan Date:7/25/2010 12:56 AM
Software Version: 4.0.3275
ThreatDB Version: 6634
Policy:   Default-Office

-

Threat: Exploit.LNK.CVE-2010-2568 (v)
Category:   Exploit
Severity:   Severe Risk
Action: Quarantined

Traces Found:

File:  C:\Documents and Settings\Administrator\Desktop\NVIDIA
nView Desktop Manager.lnk 
File:  C:\Documents and
Settings\Administrator\Desktop\Shortcut to Add or Remove Programs.lnk
File:  C:\Documents and Settings\Administrator\Desktop\System.lnk

=

Machine:   (192.168.1.52)
Scan Date:7/25/2010 12:00 AM
Software Version: 4.0.3275
ThreatDB Version: 6634
Policy:   Default-Office

-

Threat: Exploit.LNK.CVE-2010-2568 (v)
Category:   Exploit
Severity:   Severe Risk
Action: Quarantined

Traces Found:

File:  C:\projects\bin\Mouse.lnk


-

=
Machine:  xx (192.168.1.18)
Scan Date:7/24/2010 11:56 PM
Software Version: 4.0.3275
ThreatDB Version: 6634
Policy:   Default-Office

-

Threat: Exploit.LNK.CVE-2010-2568 (v)
Category:   Exploit
Severity:   Severe Risk
Action: Quarantined

Traces Found:

File:  C:\backups\95\c\RECYCLED\DC26.LNK
File:  C:\backups\95\c\RECYCLED\DC29.LNK


-

= Included Stuff Ends =


--
Angus Scott-Fleming
GeoApps, Tucson, Arizona
1-520-290-5038
Security Blog: http://geoapps.com/





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: RE: Open letter to Adobe

[Matthew W. Ross]

For those who want a decent, small and fast alternative to Reader, may I 
suggest Evince.

http://projects.gnome.org/evince/

There is a windows version, and it has been an excellent little PDF reader, and 
a good alternative for the old Foxit Reader alternative that has gone to bloat. 
Only problem I know of is an UAC unaware installer. An install as admin 
required.


--Matt Ross
Ephrata School District


- Original Message -
From: Andrew S. Baker
[mailto:asbz...@gmail.com]
To: NT System Admin Issues
[mailto:ntsysad...@lyris.sunbelt-software.com]
Sent: Mon, 26 Jul 2010
05:03:38 -0700
Subject: Re: RE: Open letter to Adobe


> Obviously not a high priority with them, unfortunately. Not until we have
> more competition, perhaps
> 
> -ASB: http://XeeSM.com/AndrewBaker
> 
> Sent from my Motorola Droid
> 
> On Jul 25, 2010 10:09 PM, "Steven M. Caesare"  wrote:
> 
> It’s still broken. They need to fix it.
> 
> 
> 
> -sc
> 
> 
> 
> 
> 
> From: Simon Butler [mailto:si...@sembee.co.uk]
> Sent: Sunday, July 25, 2010 5:44 PM
> To: NT Syst...
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: OT : Streaming Video Site for Wireless IP Camera ?

[N Parr]

QIK
Stream live from your phone, view live from their web site.  Save and
publish to wherever later.  Free



From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Saturday, July 24, 2010 4:33 PM
To: NT System Admin Issues
Subject: OT : Streaming Video Site for Wireless IP Camera ?



Sorry for the OT ...

 

Occasionally for some non profit fund raising events, I use a USB webcam
and ustream.tv to allow remote folks to 'attend' the auctions and other
festivities.

Ustream.tv does not work with wireless IP cameras, has to be a direct
connect.

 

So my question :

 

Does anyone know of a site that I can use for streaming video like this
that DOES work with a wireless IP camera ???

 

p.s.  activities are usually at different hotel sites, so I cannot
simply setup a direct route back to NAT'd IP for the camera, needs to be
a hosted site.

 

Thanks in advance

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

 

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

OT: How to get off this list, by Clubber Lang

[Maglinger, Paul]

Back by popular request:

You need to unsubscribe. Here's how:

First, ask your Internet Provider to mail you an Unsubscribing Kit.
Then follow these directions.

The kit will most likely be the standard no-fault type. Depending on
requirements, System A and/or System B can be used. When operating
System A, depress lever and a plastic dalkron unsubscriber will be
dispensed through the slot immediately underneath. When you have
fastened the adhesive lip, attach connection marked by the large "X"
outlet hose. Twist the silver-colored ring one inch below the
connection point until you feel it lock. The kit is now ready for use.
The List-Eliminator is activated by the small switch on the lip. When
securing, twist the ring back to its initial condition, so that the
two orange lines meet. Disconnect. Place the dalkron unsubscriber in
the vacuum receptacle to the rear. Activate by pressing the blue
button. The controls for System B are located on the opposite side.
The red release switch places the List-Eliminator into position; it
can be adjusted manually up or down by pressing the blue manual
release
button. The opening is self- adjusting. To secure after use, press the
green button, which simultaneously activates the evaporator and
returns the List-Eliminator to its storage position. You may log off
if the green exit light is on over the evaporator . If the red light
is illuminated, one of the List-Eliminator requirements has not been
properly implemented. Press the "List Guy" call button on the right of
the evaporator . He will secure all facilities from his control panel.

To use the Auto-Unsub, first undress and place all your clothes in the
clothes rack. Put on the velcro slippers located in the cabinet
immediately below. Enter the shower, taking the entire kit with you.
On the control panel to your upper right upon entering you will see a
"Shower seal" button. Press to activate. A green light will then be
illuminated immediately below. On the intensity knob, select the
desired setting. Now depress the Auto-Unsub activation lever. Bathe
normally.

The Auto-Unsub will automatically go off after three minutes unless
you activate the "Manual off" override switch by flipping it up. When
you are ready to leave, press the blue "Shower seal" release button.
The door will open and you may leave. Please remove the Velcro
slippers and place them in their container.

If you prefer the ultrasonic log-off mode, press the indicated blue
button. When the twin panels open, pull forward by rings A & B. The
knob to the left, just below the blue light, has three settings, low,
medium or high. For normal use, the medium setting is suggested.

After these settings have been made, you can activate the device by
switching to the "ON" position the clearly marked red switch. If
during the unsubscribing operation, you wish to change the settings,
place the "manual off" override switch in the "OFF" position. You may
now make the change and repeat the cycle. When the green exit light
goes on, you may log off and have lunch. Please close the door behind
you.



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Anyone using Forefront UAG and Direct Access

[Steven M. Caesare]

Oh man, that was awesome.

 

If you have saved away... either please re-post, or send me a copy!

 

-sc

 

From: Maglinger, Paul [mailto:pmaglin...@scvl.com] 
Sent: Monday, July 26, 2010 9:29 AM
To: NT System Admin Issues
Subject: RE: Anyone using Forefront UAG and Direct Access

 

I need to tuck this one away for the next... what is it called?
Va-ca-tion?  Right along with Clubber Lang's instructions for removing
yourself from the Exchange list.  Priceless...

 

From: Steven M. Caesare [mailto:scaes...@caesare.com] 
Sent: Saturday, July 24, 2010 8:40 AM
To: NT System Admin Issues
Subject: RE: Anyone using Forefront UAG and Direct Access

 

Best. OoO. Reply. Ever.

 

-sc

 

From: Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com] 
Sent: Friday, July 23, 2010 3:53 PM
To: NT System Admin Issues
Subject: FW: Anyone using Forefront UAG and Direct Access

 

This is a new one, 22 OOO's and this.

 

From: greg.swe...@actsconsulting.net
[mailto:greg.swe...@actsconsulting.net] 
Sent: Friday, July 23, 2010 3:51 PM
To: Brumbaugh, Luke
Subject: Automatic reply: Anyone using Forefront UAG and Direct Access

 

Warning...If you see a blond headed, pale white man wandering around
mumbling comments about ISCSI, server migrations, ticket SLA's and has a
crazed look in his eyes...do not attempt to apprehend this man.   He has
escaped from his job and is thought to be attempting what was once known
as vacation.  This is a long ago forgotten ritual and we dont know what
to expect from him.  Best course of action is to offer him a coke and a
smile and back away slowly.   Rumor has it that vacations lasted a week
so you might try to reach him on the 26th.   We have no futher
information on this man but his team can be reached at 813-657-0849 and
can handle any issues while Greg is missing.



**

CONFIDENTIALITY NOTICE - The information transmitted in this message is
intended only for the person or entity to which it is addressed and may
contain confidential and/or privileged material. Any review,
retransmission, dissemination or other use of this information by
persons or entities other than the intended recipient is prohibited. If
you received this in error, please contact the sender and destroy all
copies of this document. Thank you.

Butler Schein Animal Health

** 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Anyone using Forefront UAG and Direct Access

[Jonathan Link]

I've lost thos directions, could you repost for my edification? :-)

On Mon, Jul 26, 2010 at 9:29 AM, Maglinger, Paul wrote:

>  I need to tuck this one away for the next… what is it called?
> Va-ca-tion?  Right along with Clubber Lang’s instructions for removing
> yourself from the Exchange list.  Priceless…
>
>
>
> *From:* Steven M. Caesare [mailto:scaes...@caesare.com]
> *Sent:* Saturday, July 24, 2010 8:40 AM
> *To:* NT System Admin Issues
> *Subject:* RE: Anyone using Forefront UAG and Direct Access
>
>
>
> Best. OoO. Reply. Ever.
>
>
>
> -sc
>
>
>
> *From:* Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com]
> *Sent:* Friday, July 23, 2010 3:53 PM
> *To:* NT System Admin Issues
> *Subject:* FW: Anyone using Forefront UAG and Direct Access
>
>
>
> This is a new one, 22 OOO’s and this.
>
>
>
> *From:* greg.swe...@actsconsulting.net [mailto:
> greg.swe...@actsconsulting.net]
> *Sent:* Friday, July 23, 2010 3:51 PM
> *To:* Brumbaugh, Luke
> *Subject:* Automatic reply: Anyone using Forefront UAG and Direct Access
>
>
>
> Warning...If you see a blond headed, pale white man wandering around
> mumbling comments about ISCSI, server migrations, ticket SLA's and has a
> crazed look in his eyes...do not attempt to apprehend this man.   He has
> escaped from his job and is thought to be attempting what was once known as
> vacation.  This is a long ago forgotten ritual and we dont know what to
> expect from him.  Best course of action is to offer him a coke and a smile
> and back away slowly.   Rumor has it that vacations lasted a week so you
> might try to reach him on the 26th.   We have no futher information on this
> man but his team can be reached at 813-657-0849 and can handle any issues
> while Greg is missing.
>
>
>
> **
>
> CONFIDENTIALITY NOTICE - The information transmitted in this message is
> intended only for the person or entity to which it is addressed and may
> contain confidential and/or privileged material. Any review, retransmission,
> dissemination or other use of this information by persons or entities other
> than the intended recipient is prohibited. If you received this in error,
> please contact the sender and destroy all copies of this document. Thank
> you.
>
> Butler Schein Animal Health
>
> **
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Vipre false positives?

[Alex Eckelberry]

Fwiw, there is a very serious zero day .lnk exploit going around.

http://www.computerworld.com/s/article/9179339/Windows_shortcut_attack_code_goes_public

Apparently our heuristics were a little too aggressive...




Alex


From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
Sent: Monday, July 26, 2010 10:09 AM
To: NT System Admin Issues
Subject: RE: Vipre false positives?

I got notifications for .lnk files that are harmless. :( I'm not particularly 
worried about it, but I think Vipre is a little *too* cautious on .lnk files.

[cid:343474514@26072010-07C0][cid:343474...@26072010-07c7]

From: Eric Wittersheim [mailto:eric.wittersh...@gmail.com]
Sent: Monday, July 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: Re: Vipre false positives?

Same here
On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall 
mailto:rich...@gmail.com>> wrote:
You are not alone...

On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller 
mailto:tmil...@hnncsb.org>> wrote:
Anyone having issue with Vipre false positives on their Windows 2008 servers?  
Last weekend, Friday night's scan reported a virus on each of my 2008 servers.  
The Sunbelt team investigated and it was a false positive.  Same thing this 
weekend, and again a false positive.  I have a third I'm working on with 
support now that looks like another false positive.  I am wondering if this is 
Vipre or possibly my policy configuration for my servers?  I run deep scan 
several times a week on those systems in any case.  The first thing I do not 
want to see in my Inbox on Saturday and Sunday morning is pages of Vipre 
notifications.

I have not seen false positives on our XP/Win 7 machines or 2003 Servers.  This 
is getting really old.  Nothing special about these servers.  Some are DCs, 
others member servers, others just for apps or storage.  Most don't have 
anything other than the Windows 2008 NOS installed.






Tom Miller
Engineer, Information Technology
Hampton-Newport News Community Services Board
757-788-0528

Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.



















~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

RE: Anyone using Forefront UAG and Direct Access

[Malcolm Reitz]

Smart cards are optional for DirectAccess, not required. What I was trying 
(poorly) to say was that Microsoft's internal implementation of DirectAccess is 
set up to require smart card authentication (e.g. MSFT employees must use smart 
cards). Our DirectAccess implementation currently does not require the users to 
have a smart card. Smart cards (we use .NET cards - Gemalto is the major vendor 
in the market) are a quite useful security tool, but they require a 
distribution/maintenance infrastructure that complicates their use.

Applications that don't work across a DirectAccess link are those which won't 
work over IPv6. The first one I came across was the Communicator IM client. I 
think VoIP apps that rely on the SIP protocol fall in to this category as well.

Also, internal applications that you access by IP address only will be a 
problem. This is because DirectAccess makes it routing decisions based on name 
resolution, not IP destination. Say your corporate network is using the 
10.x.x.x IPv4 address space and a domain name of "internal.mycorp.com". You can 
tell DirectAccess to send all traffic to *.internal.mycorp.com over the tunnel 
to your corporate network, but you can't tell it to route all traffic to any 
10.x.x.x address across the tunnel. The only way around this is to force all 
communications across the tunnel (that is, disable split-tunneling). 
Unfortunately, this has performance implications, as it makes DirectAccess use 
a less-efficient protocol and increases the load on the DirectAccess servers, 
not to mention it sends all Internet-bound traffic from the client "the long 
way" through the corporate network and out the corporate Internet connection.

Hope that makes sense...

-Malcolm
-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Friday, July 23, 2010 17:43
To: NT System Admin Issues
Subject: Re: Anyone using Forefront UAG and Direct Access

O...

Actual field experience!

Did not know about the smart card requirement. That's good to know.
What smart card technology are you using, if you can say?

What kind of apps have you run into that don't play nice with it?

Kurt

On Fri, Jul 23, 2010 at 13:29, Malcolm Reitz  wrote:
> I won’t say DirectAccess is just another VPN, because it isn’t, but it 
> is a VPN technology with pretty robust security. It isn’t an easy 
> setup, as it requires working with IPv6 and certificates, however, 
> once it is running, it is really slick in operation. Just connecting 
> your laptop to the Internet and being instantly able to map corporate 
> file shares and open intranet web apps or RDP sessions is great. 
> Downsides to it are that not everything works with it, as not 
> everything plays nice with IPv6, and the hardware requirements are 
> more significant than for a traditional IPsec VPN. It also only works with 
> Windows 7 clients.
>
>
>
> Microsoft has enhanced security on their DirectAccess implementation 
> by requiring their people to use smart cards for DirectAccess authentication.
> We may do that as well.
>
>
>
> I can say that everyone using my DirectAccess POC setup is liking it so far.
> Because of its “always on” nature, I think it will be a great boon to 
> our management of remote computers (they always be connected for 
> patching, AV updates, inventory, etc.).
>
>
>
> -Malcolm
>
>
>
> From: Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com]
> Sent: Friday, July 23, 2010 14:51
> To: NT System Admin Issues
> Subject: Anyone using Forefront UAG and Direct Access
>
>
>
> Thoughts?
>
> Is it a big security hole?
>
>
>
>
>
> Luke L. Brumbaugh
>
> Network Engineer
>
> Butler Animal Health Supply
>
> Ph:(614) 659-1736
>
>
>
> **
>
> CONFIDENTIALITY NOTICE - The information transmitted in this message 
> is intended only for the person or entity to which it is addressed and 
> may contain confidential and/or privileged material. Any review, 
> retransmission, dissemination or other use of this information by 
> persons or entities other than the intended recipient is prohibited. 
> If you received this in error, please contact the sender and destroy 
> all copies of this document. Thank you.
>
> Butler Schein Animal Health
>
> **
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
  ~



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Vipre false positives?

[Jeff Cain]

Everyone,

   AV Lab is aware of the FPs and they should be resolved late this 
morning.

Thanks,

Jeff Cain – supp...@sunbeltsoftware.com
Technical Support Analyst

Sunbelt Software, part of the GFI Software family
www.sunbeltsoftware.com
Tel: 1-877-757-4094
Fax: +1 727-562-3402

From: Tom Miller [mailto:tmil...@hnncsb.org]
Sent: Monday, July 26, 2010 9:11 AM
To: NT System Admin Issues
Subject: RE: Vipre false positives?

Working on the second on this weekend now Jeff.  Here are sample details:

Machine:  RVSDWIN  (10.40.1.9)
User:
Scan Date:7/26/2010 6:28 AM
Software Version: 4.0.3275
ThreatDB Version: 6640
Policy:   Servers

-

Threat: Trojan.Win32.Generic!BT
Category:   Trojan
Severity:   High Risk
Action: UnKnown

Traces Found:

File:  C:\Windows\System32\Oobe.exe


-

Threat: Trojan.Win32.Generic!BT
Category:   Trojan
Severity:   High Risk
Action: UnKnown

Traces Found:

File:  C:\Windows\System32\ProvisionStorage.exe


>>> Jeff Cain mailto:je...@sunbelt-software.com>> 
>>> 7/26/2010 9:08 AM >>>
These should have been addressed in def version 6636. If not please let us know 
right away.

Thanks,

Jeff Cain – supp...@sunbeltsoftware.com
Technical Support Analyst

Sunbelt Software, part of the GFI Software family
www.sunbeltsoftware.com
Tel: 1-877-757-4094
Fax: +1 727-562-3402

From: Eric Wittersheim [mailto:eric.wittersh...@gmail.com]
Sent: Monday, July 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: Re: Vipre false positives?

Same here
On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall 
mailto:rich...@gmail.com>> wrote:
You are not alone...

On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller 
mailto:tmil...@hnncsb.org>> wrote:
Anyone having issue with Vipre false positives on their Windows 2008 servers?  
Last weekend, Friday night's scan reported a virus on each of my 2008 servers.  
The Sunbelt team investigated and it was a false positive.  Same thing this 
weekend, and again a false positive.  I have a third I'm working on with 
support now that looks like another false positive.  I am wondering if this is 
Vipre or possibly my policy configuration for my servers?  I run deep scan 
several times a week on those systems in any case.  The first thing I do not 
want to see in my Inbox on Saturday and Sunday morning is pages of Vipre 
notifications.

I have not seen false positives on our XP/Win 7 machines or 2003 Servers.  This 
is getting really old.  Nothing special about these servers.  Some are DCs, 
others member servers, others just for apps or storage.  Most don't have 
anything other than the Windows 2008 NOS installed.






Tom Miller
Engineer, Information Technology
Hampton-Newport News Community Services Board
757-788-0528

Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.




















Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Vipre false positives?

[John Aldrich]

I got notifications for .lnk files that are harmless. L I'm not particularly
worried about it, but I think Vipre is a little *too* cautious on .lnk
files.

 

John-AldrichTile-Tools

 

From: Eric Wittersheim [mailto:eric.wittersh...@gmail.com] 
Sent: Monday, July 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: Re: Vipre false positives?

 

Same here

On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall  wrote:

You are not alone...

 

On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller  wrote:

Anyone having issue with Vipre false positives on their Windows 2008
servers?  Last weekend, Friday night's scan reported a virus on each of my
2008 servers.  The Sunbelt team investigated and it was a false positive.
Same thing this weekend, and again a false positive.  I have a third I'm
working on with support now that looks like another false positive.  I am
wondering if this is Vipre or possibly my policy configuration for my
servers?  I run deep scan several times a week on those systems in any case.
The first thing I do not want to see in my Inbox on Saturday and Sunday
morning is pages of Vipre notifications.

 

I have not seen false positives on our XP/Win 7 machines or 2003 Servers.
This is getting really old.  Nothing special about these servers.  Some are
DCs, others member servers, others just for apps or storage.  Most don't
have anything other than the Windows 2008 NOS installed.  

 

 

 

 

 

 

Tom Miller
Engineer, Information Technology
Hampton-Newport News Community Services Board
757-788-0528 

Confidentiality Notice: This e-mail message, including attachments, is for
the sole use of the intended recipient(s) and may contain confidential and
privileged information. Any unauthorized review, use, disclosure, or
distribution is prohibited. If you are not the intended recipient, please
contact the sender by reply e-mail and destroy all copies of the original
message. 

 

 

 

 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~<><>

Re: Anyone using Forefront UAG and Direct Access

[Andrew S. Baker]

Indeed. :)

-ASB: http://XeeSM.com/AndrewBaker


On Sat, Jul 24, 2010 at 9:40 AM, Steven M. Caesare wrote:

> Best. OoO. Reply. Ever.
>
>
>
> -sc
>
>
>
> *From:* Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com]
> *Sent:* Friday, July 23, 2010 3:53 PM
>
> *To:* NT System Admin Issues
> *Subject:* FW: Anyone using Forefront UAG and Direct Access
>
>
>
> This is a new one, 22 OOO’s and this.
>
>
>
> *From:* greg.swe...@actsconsulting.net [mailto:
> greg.swe...@actsconsulting.net]
> *Sent:* Friday, July 23, 2010 3:51 PM
> *To:* Brumbaugh, Luke
> *Subject:* Automatic reply: Anyone using Forefront UAG and Direct Access
>
>
>
> Warning...If you see a blond headed, pale white man wandering around
> mumbling comments about ISCSI, server migrations, ticket SLA's and has a
> crazed look in his eyes...do not attempt to apprehend this man.   He has
> escaped from his job and is thought to be attempting what was once known as
> vacation.  This is a long ago forgotten ritual and we dont know what to
> expect from him.  Best course of action is to offer him a coke and a smile
> and back away slowly.   Rumor has it that vacations lasted a week so you
> might try to reach him on the 26th.   We have no futher information on this
> man but his team can be reached at 813-657-0849 and can handle any issues
> while Greg is missing.
>
>
>
> **
>
> CONFIDENTIALITY NOTICE - The information transmitted in this message is
> intended only for the person or entity to which it is addressed and may
> contain confidential and/or privileged material. Any review, retransmission,
> dissemination or other use of this information by persons or entities other
> than the intended recipient is prohibited. If you received this in error,
> please contact the sender and destroy all copies of this document. Thank
> you.
>
> Butler Schein Animal Health
>
> **
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Open letter to Adobe

[Maglinger, Paul]

Open letter to Adobe, condensed version:

 

Dear Adobe:

 

Foxit Reader

 

 

 

From: Steven M. Caesare [mailto:scaes...@caesare.com] 
Sent: Sunday, July 25, 2010 12:25 PM
To: NT System Admin Issues
Subject: Open letter to Adobe

 

Dear Adobe-

 

You suck.

 

Allow me to expand: Your software installer is broken. It has been for
years. It's broken across many of the packages in your product line.
It's documented in your knowledge base. Confirmation on the brokenness
of your installer is only a Google search away. It's a known issue
that's been known for a LOOONG time. Yet you have done nothing about it.


 

Given the abundance of the fine print, and the considerable length of
your EULA, I have to assume that the art of reading has been mastered
somewhere there at Adobe, and I must assume that occasionally somebody
cracks your own KB and is aware of this?

 

On Windows machines with a Documents & Settings folder redirected to a
network drive, your installer erroneously complains that the network
drive letter is "invalid". I know... it just happened to me while trying
to update Read (and please don't' get me started on your software update
virus that manages to reinstall itself to run at startup no matter how
many times I try to squash it.

 

. "Invalid Drive H:", you say installer? That's funny, I'm browsing the
contents of that directory right now.  Now I'm not the sharpest tool in
the shed, but I do have a pretty good handle on the alphabet... so when
I see the output of a "dir /s h:" pouring past me in a CMD window at the
same time your installer is telling me there is no drive H:, I have to
assume somebody's lying to me... and I have a pretty good idea who.

 

Now, your KB has all sorts of suggestions like editing the registry,
modifying directory permissions, etc... but quite frankly, it's much
easier to just temporarily unmap the network drive, plug in a thumb
drive, and temporarily change the drive letter to H:, so that way your
installer can go on its merry way. However, that's the kicker: YOUR
INSTALLER DOESN'T EVEN NOTICE THAT THE SETTINGS DIRECTORY ISN'T ON DRIVE
H: AND IN FACT WRITES NOTHING THERE AT ALL! Yup... that's right, your
installer complains about a network drive existing where it wants a
physical drive for... NO REASON WHATSOEVER. Awesome.

 

Now, you will say that you license the installer from another company.
OK. You will also say that  there are software packages form other
companies that also suffer from that same 3rd-party licensed installer
bug. To which I say: "Yeah, you're right... they suck too.". Here's the
response to all of that: there's a buttload of software packages out
there that DON'T suffer from that bug... so it can be done. Take
somebody off the team that is in charge of confusing us with the
different packages of Acrobat, Reader, Professional, that deal with
PDF's, and have them look at this for a couple of days.

 

So in summary: PLEASE FIX YOUR FRIGGIN' INSTALLER. You guys can write
some great software. The new CS5 suite rocks... particularly the Mercury
engine in Premiere Pro So I know you guys can do it. And while
you're at it think about 64 bit flash... it's only been what... 5+ years
we've had 64bit windows now? 

 

Sincerely-

 

-Steven Caesare

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Anyone using Forefront UAG and Direct Access

[Maglinger, Paul]

I need to tuck this one away for the next... what is it called?
Va-ca-tion?  Right along with Clubber Lang's instructions for removing
yourself from the Exchange list.  Priceless...

 

From: Steven M. Caesare [mailto:scaes...@caesare.com] 
Sent: Saturday, July 24, 2010 8:40 AM
To: NT System Admin Issues
Subject: RE: Anyone using Forefront UAG and Direct Access

 

Best. OoO. Reply. Ever.

 

-sc

 

From: Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com] 
Sent: Friday, July 23, 2010 3:53 PM
To: NT System Admin Issues
Subject: FW: Anyone using Forefront UAG and Direct Access

 

This is a new one, 22 OOO's and this.

 

From: greg.swe...@actsconsulting.net
[mailto:greg.swe...@actsconsulting.net] 
Sent: Friday, July 23, 2010 3:51 PM
To: Brumbaugh, Luke
Subject: Automatic reply: Anyone using Forefront UAG and Direct Access

 

Warning...If you see a blond headed, pale white man wandering around
mumbling comments about ISCSI, server migrations, ticket SLA's and has a
crazed look in his eyes...do not attempt to apprehend this man.   He has
escaped from his job and is thought to be attempting what was once known
as vacation.  This is a long ago forgotten ritual and we dont know what
to expect from him.  Best course of action is to offer him a coke and a
smile and back away slowly.   Rumor has it that vacations lasted a week
so you might try to reach him on the 26th.   We have no futher
information on this man but his team can be reached at 813-657-0849 and
can handle any issues while Greg is missing.



**

CONFIDENTIALITY NOTICE - The information transmitted in this message is
intended only for the person or entity to which it is addressed and may
contain confidential and/or privileged material. Any review,
retransmission, dissemination or other use of this information by
persons or entities other than the intended recipient is prohibited. If
you received this in error, please contact the sender and destroy all
copies of this document. Thank you.

Butler Schein Animal Health

** 

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Vipre false positives?

[Tom Miller]

Working on the second on this weekend now Jeff.  Here are sample
details: 
 
Machine:  RVSDWIN  (10.40.1.9)
User: 
Scan Date:7/26/2010 6:28 AM
Software Version: 4.0.3275
ThreatDB Version: 6640
Policy:   Servers
  
-
 
Threat: Trojan.Win32.Generic!BT
Category:   Trojan
Severity:   High Risk
Action: UnKnown
 
Traces Found:
 
File:  C:\Windows\System32\Oobe.exe
 

-
 
Threat: Trojan.Win32.Generic!BT
Category:   Trojan
Severity:   High Risk
Action: UnKnown
 
Traces Found:
 
File:  C:\Windows\System32\ProvisionStorage.exe
 

>>> Jeff Cain  7/26/2010 9:08 AM >>>

These should have been addressed in def version 6636. If not please let
us know right away.
 
Thanks,
 
Jeff Cain – supp...@sunbeltsoftware.com
Technical Support Analyst
 
Sunbelt Software, part of the GFI Software family
www.sunbeltsoftware.com
Tel: 1-877-757-4094
Fax: +1 727-562-3402
 
From:Eric Wittersheim [mailto:eric.wittersh...@gmail.com] 
Sent: Monday, July 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: Re: Vipre false positives?
 
Same here

On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall 
wrote:
You are not alone...

 

On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller 
wrote:

Anyone having issue with Vipre false positives on their Windows 2008
servers?  Last weekend, Friday night's scan reported a virus on each of
my 2008 servers.  The Sunbelt team investigated and it was a false
positive.  Same thing this weekend, and again a false positive.  I have
a third I'm working on with support now that looks like another false
positive.  I am wondering if this is Vipre or possibly my policy
configuration for my servers?  I run deep scan several times a week on
those systems in any case.  The first thing I do not want to see in my
Inbox on Saturday and Sunday morning is pages of Vipre notifications.

 

I have not seen false positives on our XP/Win 7 machines or 2003
Servers.  This is getting really old.  Nothing special about these
servers.  Some are DCs, others member servers, others just for apps or
storage.  Most don't have anything other than the Windows 2008 NOS
installed.  

 

 

 

 

 

 

Tom Miller
Engineer, Information Technology
Hampton-Newport News Community Services Board
757-788-0528 
Confidentiality Notice: This e-mail message, including attachments, is
for the sole use of the intended recipient(s) and may contain
confidential and privileged information. Any unauthorized review, use,
disclosure, or distribution is prohibited. If you are not the intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the original message.
  

 
  

 
  

 
 

Confidentiality Notice:  This e-mail message, including attachments, is
for the sole use of the intended recipient(s) and may contain
confidential and privileged information.  Any unauthorized review, use,
disclosure, or distribution is prohibited.  If you are not the intended
recipient, please contact the sender by reply e-mail and destroy all
copies of the original message.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Vipre false positives?

[Jeff Cain]

These should have been addressed in def version 6636. If not please let us know 
right away.

Thanks,

Jeff Cain - supp...@sunbeltsoftware.com
Technical Support Analyst

Sunbelt Software, part of the GFI Software family
www.sunbeltsoftware.com
Tel: 1-877-757-4094
Fax: +1 727-562-3402

From: Eric Wittersheim [mailto:eric.wittersh...@gmail.com]
Sent: Monday, July 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: Re: Vipre false positives?

Same here
On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall 
mailto:rich...@gmail.com>> wrote:
You are not alone...

On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller 
mailto:tmil...@hnncsb.org>> wrote:
Anyone having issue with Vipre false positives on their Windows 2008 servers?  
Last weekend, Friday night's scan reported a virus on each of my 2008 servers.  
The Sunbelt team investigated and it was a false positive.  Same thing this 
weekend, and again a false positive.  I have a third I'm working on with 
support now that looks like another false positive.  I am wondering if this is 
Vipre or possibly my policy configuration for my servers?  I run deep scan 
several times a week on those systems in any case.  The first thing I do not 
want to see in my Inbox on Saturday and Sunday morning is pages of Vipre 
notifications.

I have not seen false positives on our XP/Win 7 machines or 2003 Servers.  This 
is getting really old.  Nothing special about these servers.  Some are DCs, 
others member servers, others just for apps or storage.  Most don't have 
anything other than the Windows 2008 NOS installed.






Tom Miller
Engineer, Information Technology
Hampton-Newport News Community Services Board
757-788-0528

Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.















~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Vipre false positives?

[Eric Wittersheim]

Same here

On Mon, Jul 26, 2010 at 7:43 AM, Richard Stovall  wrote:

> You are not alone...
>
> On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller  wrote:
>
>>  Anyone having issue with Vipre false positives on their Windows 2008
>> servers?  Last weekend, Friday night's scan reported a virus on each of my
>> 2008 servers.  The Sunbelt team investigated and it was a false positive.
>> Same thing this weekend, and again a false positive.  I have a third I'm
>> working on with support now that looks like another false positive.  I am
>> wondering if this is Vipre or possibly my policy configuration for my
>> servers?  I run deep scan several times a week on those systems in any
>> case.  The first thing I do not want to see in my Inbox on Saturday and
>> Sunday morning is pages of Vipre notifications.
>>
>> I have not seen false positives on our XP/Win 7 machines or 2003 Servers.
>> This is getting really old.  Nothing special about these servers.  Some are
>> DCs, others member servers, others just for apps or storage.  Most don't
>> have anything other than the Windows 2008 NOS installed.
>>
>>
>>
>>
>>
>>
>> Tom Miller
>> Engineer, Information Technology
>> Hampton-Newport News Community Services Board
>> 757-788-0528
>>
>> Confidentiality Notice: This e-mail message, including attachments, is for
>> the sole use of the intended recipient(s) and may contain confidential and
>> privileged information. Any unauthorized review, use, disclosure, or
>> distribution is prohibited. If you are not the intended recipient, please
>> contact the sender by reply e-mail and destroy all copies of the original
>> message.
>>
>>
>>
>>
>>
>>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Vipre false positives?

[Richard Stovall]

You are not alone...

On Mon, Jul 26, 2010 at 8:40 AM, Tom Miller  wrote:

>  Anyone having issue with Vipre false positives on their Windows 2008
> servers?  Last weekend, Friday night's scan reported a virus on each of my
> 2008 servers.  The Sunbelt team investigated and it was a false positive.
> Same thing this weekend, and again a false positive.  I have a third I'm
> working on with support now that looks like another false positive.  I am
> wondering if this is Vipre or possibly my policy configuration for my
> servers?  I run deep scan several times a week on those systems in any
> case.  The first thing I do not want to see in my Inbox on Saturday and
> Sunday morning is pages of Vipre notifications.
>
> I have not seen false positives on our XP/Win 7 machines or 2003 Servers.
> This is getting really old.  Nothing special about these servers.  Some are
> DCs, others member servers, others just for apps or storage.  Most don't
> have anything other than the Windows 2008 NOS installed.
>
>
>
>
>
>
> Tom Miller
> Engineer, Information Technology
> Hampton-Newport News Community Services Board
> 757-788-0528
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Vipre false positives?

[Tom Miller]

Anyone having issue with Vipre false positives on their Windows 2008 servers?  
Last weekend, Friday night's scan reported a virus on each of my 2008 servers.  
The Sunbelt team investigated and it was a false positive.  Same thing this 
weekend, and again a false positive.  I have a third I'm working on with 
support now that looks like another false positive.  I am wondering if this is 
Vipre or possibly my policy configuration for my servers?  I run deep scan 
several times a week on those systems in any case.  The first thing I do not 
want to see in my Inbox on Saturday and Sunday morning is pages of Vipre 
notifications.
 
I have not seen false positives on our XP/Win 7 machines or 2003 Servers.  This 
is getting really old.  Nothing special about these servers.  Some are DCs, 
others member servers, others just for apps or storage.  Most don't have 
anything other than the Windows 2008 NOS installed.  
 
 
 
 
 
 
Tom Miller
Engineer, Information Technology
Hampton-Newport News Community Services Board
757-788-0528 
Confidentiality Notice:  This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information.  Any unauthorized review, use, disclosure, or 
distribution is prohibited.  If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: RE: Password Access Windows 2003 and Above Servers

[Andrew S. Baker]

As long as you properly attribute them, there's no problem :)

-ASB: http://XeeSM.com/AndrewBaker

Sent from my Motorola Droid

On Jul 21, 2010 1:39 PM, "Free, Bob"  wrote:

Indeed, that is why some folks referred to lophtcrack as password auditing
software vs a password cracking mechanismit's somehow more
palatable...lol.

At the end of the day, the lowest common denominator is that you are
cracking them.

Other reasons are to see if default passwords are being used across multiple
accounts/environments or someone is using the same password multiple places
etc etc etc. Security teams can find lots of reasons to justify it :-]

We ran lophtcrack against an NT SAM with ~25K user accounts back in the day
and the results were indeed illuminating.

/apologies to ASB for the 2 "indeeds" :-)


-Original Message-
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Wednesday, July ...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: Password Access Windows 2003 and Above Servers

[Ken Schaefer]

It will reset the AD Restore Mode password. You can then boot the machine into 
AD restore mode. Then create a task/service that runs as LocalSystem that can 
reset one of the Domain Administrator passwords.

Cheers
Ken

-Original Message-
From: David Elebute [mailto:deleb...@traveltechnologyservices.net] 
Sent: Friday, 23 July 2010 5:17 AM
To: NT System Admin Issues
Subject: Re: Password Access Windows 2003 and Above Servers

OK here it is, they brought someone else in and still no luck! they called me 
back and have a bit more info. It is a DC; how does this affect the use of the  
http://pogostick.net/~pnh/ntpasswd/ boot disk i made?


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: RE: Open letter to Adobe

[Andrew S. Baker]

Obviously not a high priority with them, unfortunately. Not until we have
more competition, perhaps

-ASB: http://XeeSM.com/AndrewBaker

Sent from my Motorola Droid

On Jul 25, 2010 10:09 PM, "Steven M. Caesare"  wrote:

It’s still broken. They need to fix it.



-sc





From: Simon Butler [mailto:si...@sembee.co.uk]
Sent: Sunday, July 25, 2010 5:44 PM
To: NT Syst...

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

RE: TSWeb Via HTTPS

[Ken Schaefer]

You couldn’t get it to run on Windows? You were asked whether you had a 
certificate installed on the Windows server (and have configured IIS to use 
that certificate). You never got around to answering that question…

As Tom has mentioned, you are in a non-supported configuration. Why not try to 
get it running on the Windows server you have?

Cheers
Ken

From: Robert Jackson [mailto:r...@walkermartyn.co.uk]
Sent: Monday, 26 July 2010 5:26 PM
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

Couldn’t get it to run on Windows and our certificate for the domain is on the 
Apache server anyway. So I thought I would just add an alias for TSWeb in the 
Apache configuration and give it a go.

From: Tom Miller [mailto:tmil...@hnncsb.org]
Sent: Saturday 24 July 2010 22:26
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

Another question, why run it on Apache?  It works fine on Windows and good luck 
getting support from Microsoft cause it won't happen in that config.
Tiny fonts?  What tiny fonts?  Must be your trifocals.

>>> "Erik Goldoff" mailto:egold...@gmail.com>> 7/24/2010 
>>> 11:39 AM >>>
Ok, first , why are you using such a TINY font ???
Second, if you’re running a TSWeb page from Apache, I have no experience to 
help you further
Last , why are you using such a TINY font 

Erik Goldoff
IT  Consultant
Systems, Networks, & Security
'  Security is an ongoing process, not a one time event ! '
From: Robert Jackson [mailto:r...@walkermartyn.co.uk]
Sent: Saturday, July 24, 2010 11:32 AM
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

Actually I do have a certificate for the domain URL, but this is on a Red Hat 
Linux (Apache server). So what I’ve done is take the TSWeb pages that get 
installed on the W2K3 server and copy them onto the Apache server. Set-up a 
“tsweb” alias and managed to get it working. Only thing is that it keeps 
prompting to install the ActiveX component. But that apart it seems to work!



From: Erik Goldoff [mailto:egold...@gmail.com]
Sent: Saturday 24 July 2010 13:22
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

OK, dumb question, but do you have the certificate setup already for the URL ?

Erik Goldoff
IT  Consultant
Systems, Networks, & Security
'  Security is an ongoing process, not a one time event ! '
From: Robert Jackson [mailto:r...@walkermartyn.co.uk]
Sent: Saturday, July 24, 2010 4:34 AM
To: NT System Admin Issues
Subject: TSWeb Via HTTPS

I’m having some major issues at the moment trying to get TSWeb running on a 
Windows 2003 R2 Server. I’m using the URL: https://localhost/tsweb at the 
moment as a test to get it running. If it runs locally I’ll get it running 
external to the box. I’ve set port 443 against the default web site on the 
server, but can only access it via http://localhost/tsweb (port 80). Anyone 
have any ideas why it won’t run via port 443?

Windows firewall is off on the W2K3 Server.

Regards,
Rab.
=
Robert Jackson  Phone: +44 (0) 141 332 7999
IT Manager   Fax: +44 (0) 141 331 2820
Walker Martyn Ltd
1 Park Circus PlaceEmail: 
r...@walkermartyn.co.uk
Glasgow G3 6AH, Scotland   Web: 
http://www.walkermartyn.co.uk
=





The information in this internet E-mail is confidential and is intended solely 
for the addressee. Access, copying or re-use of information in it by anyone 
else is unauthorised. Any views or opinions presented are solely those of the 
author and do not necessarily represent those of Walker Martyn Ltd or any of 
its affiliates. If you are not the intended recipient please contact 
administra...@walkermartyn.co.uk.

Walker Martyn Ltd, company number SC197533. Company is registered in Scotland 
and has its registered office at 1 Park Circus Place, Glasgow G3 6AH, UK.













The information in this internet E-mail is confidential and is intended solely 
for the addressee. Access, copying or re-use of information in it by anyone 
else is unauthorised. Any views or opinions presented are solely those of the 
author and do not necessarily represent those of Walker Martyn Ltd or any of 
its affiliates. If you are not the intended recipient please contact 
administra...@walkermartyn.co.uk.

Walker Martyn Ltd, company number SC197533. Company is registered in Scotland 
and has its registered office at 1 Park Circus Place, Glasgow G3 6AH, UK.












Confidentiality Notice: This e-ma

RE: TSWeb Via HTTPS

[Robert Jackson]

Couldn’t get it to run on Windows and our certificate for the domain is on the 
Apache server anyway. So I thought I would just add an alias for TSWeb in the 
Apache configuration and give it a go.

 

From: Tom Miller [mailto:tmil...@hnncsb.org] 
Sent: Saturday 24 July 2010 22:26
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

 

Another question, why run it on Apache?  It works fine on Windows and good luck 
getting support from Microsoft cause it won't happen in that config.  

Tiny fonts?  What tiny fonts?  Must be your trifocals.

>>> "Erik Goldoff"  7/24/2010 11:39 AM >>>

Ok, first , why are you using such a TINY font ???

Second, if you’re running a TSWeb page from Apache, I have no experience to 
help you further

Last , why are you using such a TINY font 

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Robert Jackson [mailto:r...@walkermartyn.co.uk] 
Sent: Saturday, July 24, 2010 11:32 AM
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

 

Actually I do have a certificate for the domain URL, but this is on a Red Hat 
Linux (Apache server). So what I’ve done is take the TSWeb pages that get 
installed on the W2K3 server and copy them onto the Apache server. Set-up a 
“tsweb” alias and managed to get it working. Only thing is that it keeps 
prompting to install the ActiveX component. But that apart it seems to work!

 

 

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Saturday 24 July 2010 13:22
To: NT System Admin Issues
Subject: RE: TSWeb Via HTTPS

 

OK, dumb question, but do you have the certificate setup already for the URL ?

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Robert Jackson [mailto:r...@walkermartyn.co.uk] 
Sent: Saturday, July 24, 2010 4:34 AM
To: NT System Admin Issues
Subject: TSWeb Via HTTPS

 

I’m having some major issues at the moment trying to get TSWeb running on a 
Windows 2003 R2 Server. I’m using the URL: https://localhost/tsweb at the 
moment as a test to get it running. If it runs locally I’ll get it running 
external to the box. I’ve set port 443 against the default web site on the 
server, but can only access it via http://localhost/tsweb (port 80). Anyone 
have any ideas why it won’t run via port 443?

 

Windows firewall is off on the W2K3 Server.

 

Regards,

Rab.

=

Robert Jackson  Phone: +44 (0) 141 332 7999

IT Manager   Fax: +44 (0) 141 331 2820

Walker Martyn Ltd

1 Park Circus PlaceEmail: r...@walkermartyn.co.uk 
 

Glasgow G3 6AH, Scotland   Web: http://www.walkermartyn.co.uk 
 

=

 

 

 

The information in this internet E-mail is confidential and is intended solely 
for the addressee. Access, copying or re-use of information in it by anyone 
else is unauthorised. Any views or opinions presented are solely those of the 
author and do not necessarily represent those of Walker Martyn Ltd or any of 
its affiliates. If you are not the intended recipient please contact 
administra...@walkermartyn.co.uk.

Walker Martyn Ltd, company number SC197533. Company is registered in Scotland 
and has its registered office at 1 Park Circus Place, Glasgow G3 6AH, UK.

 

 

 

 

 

 

The information in this internet E-mail is confidential and is intended solely 
for the addressee. Access, copying or re-use of information in it by anyone 
else is unauthorised. Any views or opinions presented are solely those of the 
author and do not necessarily represent those of Walker Martyn Ltd or any of 
its affiliates. If you are not the intended recipient please contact 
administra...@walkermartyn.co.uk.

Walker Martyn Ltd, company number SC197533. Company is registered in Scotland 
and has its registered office at 1 Park Circus Place, Glasgow G3 6AH, UK.

 

 

 

 

 

 

Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message. 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~