RE: Split Scope DHCP on 2008 R2?
Noted and thanks. Hopefully not an issue for us. I'm sure there are plenty of other reasons to upgrade our DC's but in terms of core functionality this is a big one. From: Level 5 Lists [li...@levelfive.us] Sent: 10 August 2011 1:35 AM To: NT System Admin Issues Subject: RE: Split Scope DHCP on 2008 R2? Remember the delay is just so the primary DHCP ack’s first. This is the work around so they don’t compete. If your DHCP server is sluggish or busy you may have to up the time period a little, and at the same time make sure the clients don’t give up (this is quite a while for pc’s but sometimes printers/voip devices give up quicker). From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk] Sent: Tuesday, August 09, 2011 2:52 PM To: NT System Admin Issues Subject: Split Scope DHCP on 2008 R2? I just want to be sure that I understand this feature correctly before I get too excited and look at upgrading our DC's to 2008 R2. I have 2 DHCP servers, let's call them PRI and SEC. I also want to use reservations but in an outage the reservations are something I could live without having available. So I setup DHCP on PRI and configure the reservations. I setup DHCP on SEC with no reservations. I then configure split-scope on PRI using the wizard, and tell it to set the delay on SEC to 1000ms. I now have two DHCP servers, but so long as PRI is running it will always service requests first? Paul MIRA Ltd Watling Street, Nuneaton, Warwickshire, CV10 0TU, England Registered in England and Wales No. 402570 VAT Registration GB 100 1464 84 The contents of this e-mail are confidential and are solely for the use of the intended recipient. If you receive this e-mail in error, please delete it and notify us either by e-mail, telephone or fax. You should not copy, forward or otherwise disclose the content of the e-mail as this is prohibited. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Barebones Server based on Sandy Bridge (LGA 1155)
+1, thats what I like about Supermicro. They are solid and you just need to add the parts you mentioned. On Tue, Aug 9, 2011 at 9:07 PM, Mike Gill lis...@canbyfoursquare.comwrote: You only add hard drives which are external via hotswap trays in many of the SM barebone units, processor and RAM. It’s hardly “building” compared to a whitebox. To each their own. ** ** -- Mike Gill ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Sunday, August 07, 2011 3:00 PM *To:* NT System Admin Issues *Subject:* Re: Barebones Server based on Sandy Bridge (LGA 1155) ** ** I did spec one out, but I'm really not interested in building it out. As it is, I've just ordered a few motherboards to replace some motherboard issues in other systems, so I'll have quite enough system building to go around. *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* On Sun, Aug 7, 2011 at 1:26 PM, Mike Gill lis...@canbyfoursquare.com wrote: It’s a Supermicro. Plenty of those on Newegg. Hit them up and spec it yourself. -- Mike *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Thursday, August 04, 2011 4:52 PM *To:* NT System Admin Issues *Subject:* Re: Barebones Server based on Sandy Bridge (LGA 1155) Getting closer: http://www.globalcomputer.com/applications/SearchTools/item-details.asp?EdpNo=411709csid=ITDbody=MAIN#productresources *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ** ** On Thu, Aug 4, 2011 at 7:37 PM, Andrew S. Baker asbz...@gmail.com wrote: I'm trying to put together a new server for the home network based on the Sandy Bridge processor (say, Xeon E3-12xx series). I'm feeling lazy and would prefer to go with a barebones systems, but I'm pretty much finding older combinations for the motherboards (LGA 1366 / 1156) Anyone still regularly putting together their own servers and have a recommendation for a vendor? Even SuperMicro has slim pickings right now. I'm building these primarily for virtualization, and will be putting 16GB RAM and a pair of mirrored SATA drives. The problem might be my insistence on a tower chassis... Or, I might have to build myself a server from desktop parts. Sigh. *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Dell PowerConnect iSCSI
He was the lost 6th half-brother. And as an update: it appears that as Enterasys switches and Dell switches don't play nicely together under some circumstances. Taking the Dell PowerConnect off their uplinks to the Enterasys S4's improved thruput on the SSD-based EqualLogic's we are testing by better than 25x ... -sc From: Doug Hampshire [mailto:dhampsh...@gmail.com] Sent: Tuesday, August 09, 2011 9:42 AM To: NT System Admin Issues Subject: Re: Dell PowerConnect iSCSI Isn't germane one of the Jackson 5? On Mon, Aug 8, 2011 at 6:08 PM, Steven M. Caesare scaes...@caesare.com wrote: Gotta give me points for at least trying to make it germane... -sc From: Eldridge, Dave [mailto:d...@parkviewmc.com] Sent: Monday, August 08, 2011 6:06 PM To: NT System Admin Issues Subject: RE: Dell PowerConnect iSCSI That's a stretch there Steve for not being way OT: :-) Wow do let us know how it goes. I don't use power connect switches anymore but I have plenty of equallogics. Good luck. dave From: Steven M. Caesare [mailto:scaes...@caesare.com] Sent: Monday, August 08, 2011 3:44 PM To: NT System Admin Issues Subject: Dell PowerConnect iSCSI Just to advise the list: Dell has pulled their 4.x.x.x versions of firmware for their 10Gb PowerConnect switches. There are known issues with flow control, and they can fail under high load after having been in service for extended periods of time. This is particularly triggered in iSCSI environments. In our case it was Dell's own EqualLogic SAN's that killed them for us. For some time the EqualLogic and PowerConnect groups disagreed on which firmware was good. We finally got them to talk and v3.1.4.16 has their blessing. Of course, the syntax was changed significantly between v3.x.x.x and 4.x.x.x, thus if you are already at 4 you cannot export your current configuration and re-import on the downgraded v3 chassis. You must manually reconfigure. Here's pulling for a successful downgrade tonight... -sc PS- I claim this is NT related because we have NT boxen mounting iSCSI LUN's via these switches :-) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail contains the thoughts and opinions of the sender and does not represent official Parkview Medical Center policy. This communication is intended only for the recipient(s) named above, may be confidential and/or legally privileged: and, must be treated as such in accordance with state and federal laws. If you are not the intended recipient, you are hereby notified that any use of this communication, or any of its contents, is prohibited. If you have received this communication in error, please return to sender and delete the message from your computer system.{token} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Dell PowerConnect iSCSI
Demerits for knowing that. -sc From: Jonathan Link [mailto:jonathan.l...@gmail.com] Sent: Tuesday, August 09, 2011 9:47 AM To: NT System Admin Issues Subject: Re: Dell PowerConnect iSCSI And he's Dynamite. http://www.youtube.com/watch?v=FQtxVT39fSc On Tue, Aug 9, 2011 at 9:41 AM, Doug Hampshire dhampsh...@gmail.com wrote: Isn't germane one of the Jackson 5? On Mon, Aug 8, 2011 at 6:08 PM, Steven M. Caesare scaes...@caesare.com wrote: Gotta give me points for at least trying to make it germane... -sc From: Eldridge, Dave [mailto:d...@parkviewmc.com] Sent: Monday, August 08, 2011 6:06 PM To: NT System Admin Issues Subject: RE: Dell PowerConnect iSCSI That's a stretch there Steve for not being way OT: :-) Wow do let us know how it goes. I don't use power connect switches anymore but I have plenty of equallogics. Good luck. dave From: Steven M. Caesare [mailto:scaes...@caesare.com] Sent: Monday, August 08, 2011 3:44 PM To: NT System Admin Issues Subject: Dell PowerConnect iSCSI Just to advise the list: Dell has pulled their 4.x.x.x versions of firmware for their 10Gb PowerConnect switches. There are known issues with flow control, and they can fail under high load after having been in service for extended periods of time. This is particularly triggered in iSCSI environments. In our case it was Dell's own EqualLogic SAN's that killed them for us. For some time the EqualLogic and PowerConnect groups disagreed on which firmware was good. We finally got them to talk and v3.1.4.16 has their blessing. Of course, the syntax was changed significantly between v3.x.x.x and 4.x.x.x, thus if you are already at 4 you cannot export your current configuration and re-import on the downgraded v3 chassis. You must manually reconfigure. Here's pulling for a successful downgrade tonight... -sc PS- I claim this is NT related because we have NT boxen mounting iSCSI LUN's via these switches :-) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail contains the thoughts and opinions of the sender and does not represent official Parkview Medical Center policy. This communication is intended only for the recipient(s) named above, may be confidential and/or legally privileged: and, must be treated as such in accordance with state and federal laws. If you are not the intended recipient, you are hereby notified that any use of this communication, or any of its contents, is prohibited. If you have received this communication in error, please return to sender and delete the message from your computer system.{token} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Dell PowerConnect iSCSI
I just implemented some powerconnect 6224's and a PS4000XV today actually and wondering what you're using to monitor read/write performance and just speed of the array in general ? SANHQ or IOMeter ? Thanks for the information Steven...those SSD drives must fly. On Wed, Aug 10, 2011 at 4:31 PM, Steven M. Caesare scaes...@caesare.comwrote: He was the lost 6th half-brother. ** ** And as an update: it appears that as Enterasys switches and Dell switches don’t play nicely together under some circumstances. Taking the Dell PowerConnect off their uplinks to the Enterasys S4’s improved thruput on the SSD-based EqualLogic’s we are testing by better than 25x … ** ** -sc ** ** *From:* Doug Hampshire [mailto:dhampsh...@gmail.com] *Sent:* Tuesday, August 09, 2011 9:42 AM *To:* NT System Admin Issues *Subject:* Re: Dell PowerConnect iSCSI ** ** Isn't germane one of the Jackson 5? On Mon, Aug 8, 2011 at 6:08 PM, Steven M. Caesare scaes...@caesare.com wrote: Gotta give me points for at least trying to make it germane… -sc *From:* Eldridge, Dave [mailto:d...@parkviewmc.com] *Sent:* Monday, August 08, 2011 6:06 PM *To:* NT System Admin Issues *Subject:* RE: Dell PowerConnect iSCSI That’s a stretch there Steve for not being way OT: J Wow do let us know how it goes. I don’t use power connect switches anymore but I have plenty of equallogics. Good luck. dave *From:* Steven M. Caesare [mailto:scaes...@caesare.com] *Sent:* Monday, August 08, 2011 3:44 PM *To:* NT System Admin Issues *Subject:* Dell PowerConnect iSCSI Just to advise the list: Dell has pulled their 4.x.x.x versions of firmware for their 10Gb PowerConnect switches. There are known issues with flow control, and they can fail under high load after having been in service for extended periods of time. This is particularly triggered in iSCSI environments. In our case it was Dell’s own EqualLogic SAN’s that killed them for us. For some time the EqualLogic and PowerConnect groups disagreed on which firmware was “good”. We finally got them to talk and v3.1.4.16 has their blessing. Of course, the syntax was changed significantly between v3.x.x.x and 4.x.x.x, thus if you are already at 4 you cannot export your current configuration and re-import on the downgraded v3 chassis. You must manually reconfigure. Here’s pulling for a successful downgrade tonight… -sc PS- I claim this is NT related because we have NT boxen mounting iSCSI LUN’s via these switches J ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail contains the thoughts and opinions of the sender and does not represent official Parkview Medical Center policy. This communication is intended only for the recipient(s) named above, may be confidential and/or legally privileged: and, must be treated as such in accordance with state and federal laws. If you are not the intended recipient, you are hereby notified that any use of this communication, or any of its contents, is prohibited. If you have received this communication in error, please return to sender and delete the message from your computer system.{token} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful
RE: Dell PowerConnect iSCSI
At the moment just IOmeter. We were scratching our heads wondering why we were seeing ~9MB/sec on the SSD’s. The last test ran at 267MB/sec. Not sure if the 6224’s are affected… but flow control is broken on all firmware for the 8024’s. Dell has pulled it form the website and is urging customers to downgrade. -sc From: Harry Singh [mailto:hbo...@gmail.com] Sent: Wednesday, August 10, 2011 4:36 PM To: NT System Admin Issues Subject: Re: Dell PowerConnect iSCSI I just implemented some powerconnect 6224's and a PS4000XV today actually and wondering what you're using to monitor read/write performance and just speed of the array in general ? SANHQ or IOMeter ? Thanks for the information Steven...those SSD drives must fly. On Wed, Aug 10, 2011 at 4:31 PM, Steven M. Caesare scaes...@caesare.com wrote: He was the lost 6th half-brother. And as an update: it appears that as Enterasys switches and Dell switches don’t play nicely together under some circumstances. Taking the Dell PowerConnect off their uplinks to the Enterasys S4’s improved thruput on the SSD-based EqualLogic’s we are testing by better than 25x … -sc From: Doug Hampshire [mailto:dhampsh...@gmail.com] Sent: Tuesday, August 09, 2011 9:42 AM To: NT System Admin Issues Subject: Re: Dell PowerConnect iSCSI Isn't germane one of the Jackson 5? On Mon, Aug 8, 2011 at 6:08 PM, Steven M. Caesare scaes...@caesare.com wrote: Gotta give me points for at least trying to make it germane… -sc From: Eldridge, Dave [mailto:d...@parkviewmc.com] Sent: Monday, August 08, 2011 6:06 PM To: NT System Admin Issues Subject: RE: Dell PowerConnect iSCSI That’s a stretch there Steve for not being way OT: :-) Wow do let us know how it goes. I don’t use power connect switches anymore but I have plenty of equallogics. Good luck. dave From: Steven M. Caesare [mailto:scaes...@caesare.com] Sent: Monday, August 08, 2011 3:44 PM To: NT System Admin Issues Subject: Dell PowerConnect iSCSI Just to advise the list: Dell has pulled their 4.x.x.x versions of firmware for their 10Gb PowerConnect switches. There are known issues with flow control, and they can fail under high load after having been in service for extended periods of time. This is particularly triggered in iSCSI environments. In our case it was Dell’s own EqualLogic SAN’s that killed them for us. For some time the EqualLogic and PowerConnect groups disagreed on which firmware was “good”. We finally got them to talk and v3.1.4.16 has their blessing. Of course, the syntax was changed significantly between v3.x.x.x and 4.x.x.x, thus if you are already at 4 you cannot export your current configuration and re-import on the downgraded v3 chassis. You must manually reconfigure. Here’s pulling for a successful downgrade tonight… -sc PS- I claim this is NT related because we have NT boxen mounting iSCSI LUN’s via these switches :-) ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail contains the thoughts and opinions of the sender and does not represent official Parkview Medical Center policy. This communication is intended only for the recipient(s) named above, may be confidential and/or legally privileged: and, must be treated as such in accordance with state and federal laws. If you are not the intended recipient, you are hereby notified that any use of this communication, or any of its contents, is prohibited. If you have received this communication in error, please return to sender and delete the message from your computer system.{token} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To
Strange Disk i VMware server
I just applied the Windows patches this PM and I usually check Event viewer and making sure all services that starts Automatic are started, I found an error in the System folder: Event Type: Error Event Source: dmboot Event Category: None Event ID: 3 Description: dmboot: Failed to start volume Volume2 (S:) Strange, so I checked Disk Management and lo and behold there is 3rd Disk, Failed 512Gb Dynamic disk!! But when I check the VMware setting there are only the 2 Disks that are supposed to be there. I even booted to the BIOS to see but no clues there. If I right click on the drive it has the option to Delete Volume but should I do that? Anyone with any ideas what’s going on? Server 2003 -- Stefan Jafs ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Dell PowerConnect iSCSI
That's odd. My first guess is Jumbo Frames...which I'm sure you and your team have addressed. I presume you're running IOMeter from inside a Windows VM? On Wed, Aug 10, 2011 at 4:45 PM, Steven M. Caesare scaes...@caesare.comwrote: At the moment just IOmeter. We were scratching our heads wondering why we were seeing ~9MB/sec on the SSD’s. The last test ran at 267MB/sec. ** ** Not sure if the 6224’s are affected… but flow control is broken on all firmware for the 8024’s. Dell has pulled it form the website and is urging customers to downgrade. ** ** -sc ** ** *From:* Harry Singh [mailto:hbo...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:36 PM *To:* NT System Admin Issues *Subject:* Re: Dell PowerConnect iSCSI ** ** I just implemented some powerconnect 6224's and a PS4000XV today actually and wondering what you're using to monitor read/write performance and just speed of the array in general ? SANHQ or IOMeter ? ** ** Thanks for the information Steven...those SSD drives must fly. ** ** ** ** On Wed, Aug 10, 2011 at 4:31 PM, Steven M. Caesare scaes...@caesare.com wrote: He was the lost 6th half-brother. And as an update: it appears that as Enterasys switches and Dell switches don’t play nicely together under some circumstances. Taking the Dell PowerConnect off their uplinks to the Enterasys S4’s improved thruput on the SSD-based EqualLogic’s we are testing by better than 25x … -sc *From:* Doug Hampshire [mailto:dhampsh...@gmail.com] *Sent:* Tuesday, August 09, 2011 9:42 AM *To:* NT System Admin Issues *Subject:* Re: Dell PowerConnect iSCSI Isn't germane one of the Jackson 5? On Mon, Aug 8, 2011 at 6:08 PM, Steven M. Caesare scaes...@caesare.com wrote: Gotta give me points for at least trying to make it germane… -sc *From:* Eldridge, Dave [mailto:d...@parkviewmc.com] *Sent:* Monday, August 08, 2011 6:06 PM *To:* NT System Admin Issues *Subject:* RE: Dell PowerConnect iSCSI That’s a stretch there Steve for not being way OT: J Wow do let us know how it goes. I don’t use power connect switches anymore but I have plenty of equallogics. Good luck. dave *From:* Steven M. Caesare [mailto:scaes...@caesare.com] *Sent:* Monday, August 08, 2011 3:44 PM *To:* NT System Admin Issues *Subject:* Dell PowerConnect iSCSI Just to advise the list: Dell has pulled their 4.x.x.x versions of firmware for their 10Gb PowerConnect switches. There are known issues with flow control, and they can fail under high load after having been in service for extended periods of time. This is particularly triggered in iSCSI environments. In our case it was Dell’s own EqualLogic SAN’s that killed them for us. For some time the EqualLogic and PowerConnect groups disagreed on which firmware was “good”. We finally got them to talk and v3.1.4.16 has their blessing. Of course, the syntax was changed significantly between v3.x.x.x and 4.x.x.x, thus if you are already at 4 you cannot export your current configuration and re-import on the downgraded v3 chassis. You must manually reconfigure. Here’s pulling for a successful downgrade tonight… -sc PS- I claim this is NT related because we have NT boxen mounting iSCSI LUN’s via these switches J ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail contains the thoughts and opinions of the sender and does not represent official Parkview Medical Center policy. This communication is intended only for the recipient(s) named above, may be confidential and/or legally privileged: and, must be treated as such in accordance with state and federal laws. If you are not the intended recipient, you are hereby notified that any use of this communication, or any of its contents, is prohibited. If you have received this communication in error, please return to sender and delete the message from your computer system.{token} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here:
The U in UPS stands for...?
The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
Ouch :-( T Typed slowly on HTC Desire On Aug 10, 2011 10:17 PM, Ben Scott mailvor...@gmail.com wrote: The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
I had a what the heck moment after reading the first line. It's so ridiculous, you almost have to think you're misunderstanding something. I guess the assumption is that the power fails more often than the battery so it's a net gain for uptime. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 4:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Strange Disk i VMware server
H. I remember something like that with 2000. Was it a reinstall? Here is an old note: http://support.microsoft.com/kb/236086 Thanks, Mathew From: Stefan Jafs [mailto:stefan.j...@gmail.com] Sent: Wednesday, August 10, 2011 2:09 PM To: NT System Admin Issues Subject: Strange Disk i VMware server I just applied the Windows patches this PM and I usually check Event viewer and making sure all services that starts Automatic are started, I found an error in the System folder: Event Type: Error Event Source: dmboot Event Category: None Event ID: 3 Description: dmboot: Failed to start volume Volume2 (S:) Strange, so I checked Disk Management and lo and behold there is 3rd Disk, Failed 512Gb Dynamic disk!! But when I check the VMware setting there are only the 2 Disks that are supposed to be there. I even booted to the BIOS to see but no clues there. If I right click on the drive it has the option to Delete Volume but should I do that? Anyone with any ideas what's going on? Server 2003 -- Stefan Jafs ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
Same here, I've had it happen. Sucks. Just pulled out a battery this morning that looks like this: http://i.imgur.com/42gPp.jpg Could barely get it out, thought for sure I was going to have to buy another UPS. -Original Message- From: Crawford, Scott [mailto:crawfo...@evangel.edu] Sent: Wednesday, August 10, 2011 4:32 PM To: NT System Admin Issues Subject: RE: The U in UPS stands for...? I had a what the heck moment after reading the first line. It's so ridiculous, you almost have to think you're misunderstanding something. I guess the assumption is that the power fails more often than the battery so it's a net gain for uptime. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 4:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
I have had this happen before but usually it was shortly before the entire UPS died. -Original Message- From: Crawford, Scott [mailto:crawfo...@evangel.edu] Sent: Wednesday, August 10, 2011 4:32 PM To: NT System Admin Issues Subject: RE: The U in UPS stands for...? I had a what the heck moment after reading the first line. It's so ridiculous, you almost have to think you're misunderstanding something. I guess the assumption is that the power fails more often than the battery so it's a net gain for uptime. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 4:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin CONFIDENTIALITY NOTICE: This e-mail and any attachments are confidential. If you are not the intended recipient, you do not have permission to disclose, copy, distribute, or open any attachments. If you have received this e-mail in error, please notify us immediately by returning it to the sender and delete this copy from your system. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
The U stands for U Sucka. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 4:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self- test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt- software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.eduwrote: Interesting. I’d like to understand how the bits of entropy are calculated though. ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:06 PM *To:* NT System Admin Issues *Subject:* Almost, but not quite OT: Passwords ** ** http://xkcd.com/936/# http://xkcd.com/936/ ** ** Yet, very pertinent. ** ** ** ** ** ** ** ** *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
And is short for I'm Gonna Get U, Sucka. On Wed, Aug 10, 2011 at 6:03 PM, Webster webs...@carlwebster.com wrote: The U stands for U Sucka. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com http://www.carlwebster.com/ -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 4:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self- test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt- software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
If the in-house team ever got a round to it both could be kept happy but using something like Horses like 2 fly, like bugs like to be stepped on! Complex and easy to remember. How long would that take for a brute force attack or a dictionary attack to get the password? FYI that is NOT one of my passwords! Jon On Wed, Aug 10, 2011 at 6:10 PM, Webster webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required – check. My job is done. ** ** Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com http://www.carlwebster.com/ ** ** ** ** *From:* Steve Kradel [mailto:skra...@zetetic.net] *Sent:* Wednesday, August 10, 2011 5:06 PM *To:* NT System Admin Issues *Subject:* Re: Almost, but not quite OT: Passwords ** ** It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... ** ** On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. ** ** It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? ** ** --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu wrote: Interesting. I’d like to understand how the bits of entropy are calculated though. *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:06 PM *To:* NT System Admin Issues *Subject:* Almost, but not quite OT: Passwords http://xkcd.com/936/# http://xkcd.com/936/ Yet, very pertinent. *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
My last two password were in this form: X xxx'x xx xx. and Xxx xx xx, xxx . Simple, straightforward sentences of 29 and 31 characters respectively. Easy to type and remember, and while I don't have the time to calculate their bits of entropy, I'll bet it's fairly high. Kurt On Wed, Aug 10, 2011 at 15:06, Steve Kradel skra...@zetetic.net wrote: It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.eduwrote: Interesting. I’d like to understand how the bits of entropy are calculated though. ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:06 PM *To:* NT System Admin Issues *Subject:* Almost, but not quite OT: Passwords ** ** http://xkcd.com/936/# http://xkcd.com/936/ ** ** Yet, very pertinent. ** ** ** ** ** ** ** ** *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
Agreed using sentences makes sense and with simple replacement of a couple of words I would think make them very hard to break without social engineering. User training will help with even that aspect. Jon On Wed, Aug 10, 2011 at 6:47 PM, Kurt Buff kurt.b...@gmail.com wrote: My last two password were in this form: X xxx'x xx xx. and Xxx xx xx, xxx . Simple, straightforward sentences of 29 and 31 characters respectively. Easy to type and remember, and while I don't have the time to calculate their bits of entropy, I'll bet it's fairly high. Kurt On Wed, Aug 10, 2011 at 15:06, Steve Kradel skra...@zetetic.net wrote: It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.eduwrote: Interesting. I’d like to understand how the bits of entropy are calculated though. ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:06 PM *To:* NT System Admin Issues *Subject:* Almost, but not quite OT: Passwords ** ** http://xkcd.com/936/# http://xkcd.com/936/ ** ** Yet, very pertinent. ** ** ** ** ** ** ** ** *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
Thx. Now, I realize that the little gray boxes are the bits...I feel dumb. :) Not, that I disagree with the sentiment, but this assumes that the only way passwords are being generated is through modifying some word. To me, this is a reason not to assume that a password is complex simply because it *looks* complex or because it has a wide sample of characters. Building a complex looking password is not the same as a real complex password. As an example, an 8 character password built from a truly random mix of upper/lower/numeric characters is 62^8 or ~47 bits of entropy. And, that's before adding symbols. The problem with passphrases is that they take a relatively long time to type. Definitely easier to remember, but muscle memory makes remembering 8 character random alphanumeric passwords pretty easy too. From: Steve Kradel [mailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
Damn ! I friggin' HATE when a disaster recovery solution *causes* a disaster you need to recover from Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 5:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
Ever since APC's sh!tty software that used Java way back in the day got caught in that time/date issue and hung my e2k3 server, I have hated them:) If I am using apc gear, I only use apcupsd now... -Original Message- From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Wednesday, August 10, 2011 4:57 PM To: NT System Admin Issues Subject: RE: The U in UPS stands for...? Damn ! I friggin' HATE when a disaster recovery solution *causes* a disaster you need to recover from Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 5:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
I'm not going to argue the point too strongly, but building a short, complex password probably requires using a mental template of some sort. Perhaps the initial letters of a set of song titles, or addresses, or something like that. I think that the mental effort of remembering the template and then making the translation to the keyboard is more difficult than choosing a meaningful sentence. And, for touch typists (like me), it's even easier, since the naturalness of typing a sentence is more comfortable than trying to type rather random sequences. But, whatever works, I suppose. Kurt On Wed, Aug 10, 2011 at 15:52, Crawford, Scott crawfo...@evangel.eduwrote: Thx. Now, I realize that the little gray boxes are the bits…I feel dumb. J ** ** Not, that I disagree with the sentiment, but this assumes that the only way passwords are being generated is through modifying some word. To me, this is a reason not to assume that a password is complex simply because it ** looks** complex or because it has a wide sample of characters. Building a complex looking password is not the same as a real complex password. As an example, an 8 character password built from a truly random mix of upper/lower/numeric characters is 62^8 or ~47 bits of entropy. And, that’s before adding symbols. ** ** The problem with passphrases is that they take a relatively long time to type. Definitely easier to remember, but muscle memory makes remembering 8 character random alphanumeric passwords pretty easy too. ** ** *From:* Steve Kradel [mailto:skra...@zetetic.net] *Sent:* Wednesday, August 10, 2011 5:06 PM *To:* NT System Admin Issues *Subject:* Re: Almost, but not quite OT: Passwords ** ** It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... ** ** On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. ** ** It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? ** ** --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu wrote: Interesting. I’d like to understand how the bits of entropy are calculated though. *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:06 PM *To:* NT System Admin Issues *Subject:* Almost, but not quite OT: Passwords http://xkcd.com/936/# http://xkcd.com/936/ Yet, very pertinent. *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Aug 10, 2011 6:10 PM, Webster webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu mailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto: listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
Unfortunately way too many. Jon On Wed, Aug 10, 2011 at 8:22 PM, Andrew S. Baker asbz...@gmail.com wrote: And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Aug 10, 2011 6:10 PM, Webster webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu mailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.com ] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto: listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
Most financial sites (many banks and investment sites [Vanguard, eTrade]) do not allow complex passwords! Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 7:23 PM To: NT System Admin Issues Subject: RE: Almost, but not quite OT: Passwords And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Aug 10, 2011 6:10 PM, Webster webs...@carlwebster.commailto:webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.netmailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edumailto:crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.commailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/http://xkcd.com/936/ Yet, very pertinent. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
Most likely they will change their tune once one of them get bit by a hacker getting in and the resulting lawsuits start flying, but that figures. Jon On Wed, Aug 10, 2011 at 8:49 PM, Webster webs...@carlwebster.com wrote: Most financial sites (many banks and investment sites [Vanguard, eTrade]) do not allow complex passwords! ** ** Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.com http://www.carlwebster.com/ ** ** ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 7:23 PM *To:* NT System Admin Issues *Subject:* RE: Almost, but not quite OT: Passwords ** ** And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Aug 10, 2011 6:10 PM, Webster webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu mailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.com ] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/# http://xkcd.com/936/http://xkcd.com/936/ Yet, very pertinent. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
When I opened my eTrade account years ago, it limited me to a max of 6 chars.http://chars.It It's not like it's protecting anything important. /sarcasm Sent from my Palm Pre on the Now Network from Sprint On Aug 10, 2011 7:23 PM, Andrew S. Baker asbz...@gmail.com wrote: And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Aug 10, 2011 6:10 PM, Webster webs...@carlwebster.commailto:webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.netmailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edumailto:crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.commailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The U in UPS stands for...?
I am convinced APC is secretly owned by Symantec. From: Ben Scott [mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 5:17 PM To: NT System Admin Issues Subject: The U in UPS stands for...? The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu wrote: Interesting. I’d like to understand how the bits of entropy are calculated though. As a rule of thumb, English has about one bit of entropy per character. (It's more complicated than that, of course, and figures and formulas vary, but it's each to remember that 1 char == 1 bit.) This is because English (like most/all human languages) has a lot of redundancy, rules, patterns, etc. An 8 character truly random password is hugely different than an 8 character English word. So, a 16 character pure English language password is roughly equivalent to a 16 bit key private key. The deliberately broken crypto used in US export approved software in the 1990s, generally considered to be worthless, still had a 40 bit keyspace. Kind of puts things in perspective. Again as a rule of thumb, it's more useful to have a long password than a complicated one. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
On Wed, Aug 10, 2011 at 8:59 PM, Kennedy, Jim kennedy...@elyriaschools.org wrote: I am convinced APC is secretly owned by Symantec. ROTFL. The only problem is, all their competitors are *also* owned by Symantec. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
+1 I used to have a 21 character password, bit our IBM blade servers will only accept 20chars or less. IIRC their error message is NOT your password exceeds maximum length either. Yeah, and the 10-12 character limit and some don't allow spaces. Please... Dave From: Webster [mailto:webs...@carlwebster.com] Sent: Wednesday, August 10, 2011 5:49 PM To: NT System Admin Issues Subject: RE: Almost, but not quite OT: Passwords Most financial sites (many banks and investment sites [Vanguard, eTrade]) do not allow complex passwords! Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 7:23 PM To: NT System Admin Issues Subject: RE: Almost, but not quite OT: Passwords And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Aug 10, 2011 6:10 PM, Webster webs...@carlwebster.commailto:webs...@carlwebster.com wrote: Because the security team and or auditor are simply following a check list. Complex passwords required - check. My job is done. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Steve Kradel [mailto:skra...@zetetic.netmailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edumailto:crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.commailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/http://xkcd.com/936/ Yet, very pertinent. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
So far, I'm liking CyberPower devices. Tis a shame, though... I remember when APC was synonymous with unquestioned quality. * * *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market… * On Wed, Aug 10, 2011 at 9:07 PM, Ben Scott mailvor...@gmail.com wrote: On Wed, Aug 10, 2011 at 8:59 PM, Kennedy, Jim kennedy...@elyriaschools.org wrote: I am convinced APC is secretly owned by Symantec. ROTFL. The only problem is, all their competitors are *also* owned by Symantec. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
On Wed, Aug 10, 2011 at 9:22 PM, Andrew S. Baker asbz...@gmail.com wrote: So far, I'm liking CyberPower devices. What model(s)? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
I'll have to check when I get to work. At home, I still have mostly APCs * * *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market… * On Wed, Aug 10, 2011 at 9:30 PM, Ben Scott mailvor...@gmail.com wrote: On Wed, Aug 10, 2011 at 9:22 PM, Andrew S. Baker asbz...@gmail.com wrote: So far, I'm liking CyberPower devices. What model(s)? -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: The U in UPS stands for...?
Unweildly? drod...@gmail.com Sent via Dell Streak 7 On Aug 10, 2011 5:18 PM, Ben Scott mailvor...@gmail.com wrote: The UPS has an automatic self-test feature which periodically tests the battery. When the battery needs to be replaced, the UPS will indicate this by dropping the load. We lost all phones and networking for a few minutes in one of our buildings today. The APC Smart-UPS powering the comm rack did a self-test; apparently it didn't like the battery and dropped the load during the test. It re-powered itself after, but with Replace Battery lit now. This is the second time this year I've had a Smart-UPS do that. I've had it happen to me before, too. What's the point of a self-test if the behavior is identical to failing during operation? F'ing APC. I bet the batteries are swollen and stuck in the unit, too. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
ETrade: It's easy to change the password you use to log on to your account at E*TRADE FINANCIAL. Go to our Change Log-on Password page and select a new password that is between six and 32 characters long and contain at least one letter and one number. Your new password may contain letters and numbers, but no special characters (such as # or %). My bank: Passwords must contain 8-13 characters, of which you must have at least one number and one letter. (and no special characters allowed either: Webster) Vanguard: Your password must have 6 to 10 characters, including at least 2 letters and 2 numbers. Don't use spaces. (and no special characters allowed either: Webster) Absolutely stupid IMNSHO. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Webster [mailto:webs...@carlwebster.com] Subject: RE: Almost, but not quite OT: Passwords Most financial sites (many banks and investment sites [Vanguard, eTrade]) do not allow complex passwords! Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Andrew S. Baker [mailto:asbz...@gmail.com]mailto:[mailto:asbz...@gmail.com] Subject: RE: Almost, but not quite OT: Passwords And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Almost, but not quite OT: Passwords
+1 for stupid. It seems like it'd be harder to code in the limitations than to just let you use as long of a password using any characters desired. From: Webster [mailto:webs...@carlwebster.com] Sent: Wednesday, August 10, 2011 9:17 PM To: NT System Admin Issues Subject: RE: Almost, but not quite OT: Passwords ETrade: It's easy to change the password you use to log on to your account at E*TRADE FINANCIAL. Go to our Change Log-on Password page and select a new password that is between six and 32 characters long and contain at least one letter and one number. Your new password may contain letters and numbers, but no special characters (such as # or %). My bank: Passwords must contain 8-13 characters, of which you must have at least one number and one letter. (and no special characters allowed either: Webster) Vanguard: Your password must have 6 to 10 characters, including at least 2 letters and 2 numbers. Don't use spaces. (and no special characters allowed either: Webster) Absolutely stupid IMNSHO. Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Webster [mailto:webs...@carlwebster.com]mailto:[mailto:webs...@carlwebster.com] Subject: RE: Almost, but not quite OT: Passwords Most financial sites (many banks and investment sites [Vanguard, eTrade]) do not allow complex passwords! Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: Andrew S. Baker [mailto:asbz...@gmail.com]mailto:[mailto:asbz...@gmail.com] Subject: RE: Almost, but not quite OT: Passwords And, many apps *still*have limits on password length that hamper passwords above 10 or 12 characters. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Strange Time issue
A swap to new hardware resolved the issue. Thanks everyone. Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849 Office 813-758-6850 Cell 813-341-1270 Fax From: Cameron [mailto:cameron.orl...@gmail.com] Sent: Tuesday, August 09, 2011 1:09 PM To: NT System Admin Issues Subject: Re: Strange Time issue Is the clock on the host running fast? If it's not, then it can't be physically running fast on the guest. On Tue, Aug 9, 2011 at 12:15 PM, Greg Sweers gswe...@acts360.commailto:gswe...@acts360.com wrote: Pinky swear?? As my two year old came home for the first time last week and said to me when I promised him a snack... I will turn on the logging and let you know, I am really curious to see what is changing that. Am I wrong in thinking this is 2 issues. 1.The clock physically running fast. Independent of time sync 2. Time sync changing from external to Local CMOS when running a w32tm /resync /rediscover commands. Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849tel:813-657-0849 Office 813-758-6850tel:813-758-6850 Cell 813-341-1270tel:813-341-1270 Fax From: Michael B. Smith [mailto:mich...@smithcons.commailto:mich...@smithcons.com] Sent: Tuesday, August 09, 2011 12:09 PM To: NT System Admin Issues Subject: RE: Strange Time issue So? Every time the source changes, something gets logged on 2008 and above. And you can turn on logging for 2003. The change doesn't happen by itself. I promise. :) Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.comhttp://theessentialexchange.com/ From: Greg Sweers [mailto:gswe...@acts360.com]mailto:[mailto:gswe...@acts360.com] Sent: Tuesday, August 09, 2011 12:04 PM To: NT System Admin Issues Subject: RE: Strange Time issue Well dang..If that doesn't beat all. Everytime I run the resync command the stupid thing goes back to Local CMOS when I run a /query /source. So I set it again, run the /query /source shows the time.windows.comhttp://time.windows.com/. Run the update, restart services, run the resync..bam back to local cmos. Its just my week for random MS issues... Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849tel:813-657-0849 Office 813-758-6850tel:813-758-6850 Cell 813-341-1270tel:813-341-1270 Fax From: Michael B. Smith [mailto:mich...@smithcons.com]mailto:[mailto:mich...@smithcons.com] Sent: Tuesday, August 09, 2011 11:55 AM To: NT System Admin Issues Subject: RE: Strange Time issue The definitive document. :) http://theessentialexchange.com/blogs/michael/archive/2010/01/29/a-brief-history-of-time-ok-ok-let-s-go-with-quot-an-introduction-to-the-windows-time-service-quot.aspx Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.comhttp://theessentialexchange.com/ From: Andrew S. Baker [mailto:asbz...@gmail.com]mailto:[mailto:asbz...@gmail.com] Sent: Tuesday, August 09, 2011 11:50 AM To: NT System Admin Issues Subject: Re: Strange Time issue Exactly the problem I've seen at two locations. That's why we moved away from the hosts managing the clock for the guests. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... On Tue, Aug 9, 2011 at 11:24 AM, Senter, John john.sen...@etrade.commailto:john.sen...@etrade.com wrote: We kept getting time issues when we had ESX set the time on Windows servers because the domain will adjust the server time and then the ESX system adjust it back. This kept causing the time to go back and forth and it turned out the ESX systems were getting skewed from the NTP source at a greater rate. So let the domain do its thing with the servers by setting time. From: John Cook [mailto:john.c...@pfsf.orgmailto:john.c...@pfsf.org] Sent: Tuesday, August 09, 2011 11:18 AM To: NT System Admin Issues Subject: RE: Strange Time issue All domain machines. All VM guests sync to the ESX hosts. All workstations sync to physical DC's that use standard Windows time service. John W. Cook System Administrator Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Office (352) 244-1610tel:%28352%29%20244-1610 Cell (352) 215-6944tel:%28352%29%20215-6944 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4 From: David Lum [mailto:david@nwea.orgmailto:david@nwea.org] Sent: Tuesday, August 09, 2011 10:49 AM To: NT System Admin Issues Subject: RE: Strange Time issue Are these domain machines? You don't sync them to a DC and sync the DC out to an external NTP server? David Lum Systems Engineer // NWEATM Office 503.548.5229tel:503.548.5229 // Cell (voice/text) 503.267.9764tel:503.267.9764 From: John Cook [mailto:john.c...@pfsf.orgmailto:john.c...@pfsf.org] Sent: Tuesday, August 09, 2011 7:21 AM To: NT System Admin Issues Subject: RE: Strange Time issue I actually use the VMWare tools time sync function on the guests and have my
RE: Almost, but not quite OT: Passwords
I’d encourage you to pick one of those random password generating web sites, get an 8 char password and practice typing it 15-20 times. It’s really not that difficult to memorize. Now, memorizing a dozen of them for various websites will be quite a bit more difficult, but that’s where things like lastpass come in. Typing faster would prolly benefit me quite a bit, as has been pointed out support, for pass phrases is limited. My point is simply that vast improvements can be made to a typical P@$$w0Rd by true randomization without needing to resort to long pass phrases. From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, August 10, 2011 7:22 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords I'm not going to argue the point too strongly, but building a short, complex password probably requires using a mental template of some sort. Perhaps the initial letters of a set of song titles, or addresses, or something like that. I think that the mental effort of remembering the template and then making the translation to the keyboard is more difficult than choosing a meaningful sentence. And, for touch typists (like me), it's even easier, since the naturalness of typing a sentence is more comfortable than trying to type rather random sequences. But, whatever works, I suppose. Kurt On Wed, Aug 10, 2011 at 15:52, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Thx. Now, I realize that the little gray boxes are the bits…I feel dumb. ☺ Not, that I disagree with the sentiment, but this assumes that the only way passwords are being generated is through modifying some word. To me, this is a reason not to assume that a password is complex simply because it *looks* complex or because it has a wide sample of characters. Building a complex looking password is not the same as a real complex password. As an example, an 8 character password built from a truly random mix of upper/lower/numeric characters is 62^8 or ~47 bits of entropy. And, that’s before adding symbols. The problem with passphrases is that they take a relatively long time to type. Definitely easier to remember, but muscle memory makes remembering 8 character random alphanumeric passwords pretty easy too. From: Steve Kradel [mailto:skra...@zetetic.netmailto:skra...@zetetic.net] Sent: Wednesday, August 10, 2011 5:06 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edumailto:crawfo...@evangel.edu wrote: Interesting. I’d like to understand how the bits of entropy are calculated though. From: Andrew S. Baker [mailto:asbz...@gmail.commailto:asbz...@gmail.com] Sent: Wednesday, August 10, 2011 4:06 PM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market… ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
RE: Almost, but not quite OT: Passwords
Thanks for the info. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, August 10, 2011 8:07 PM To: NT System Admin Issues Subject: Re: Almost, but not quite OT: Passwords On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu wrote: Interesting. I'd like to understand how the bits of entropy are calculated though. As a rule of thumb, English has about one bit of entropy per character. (It's more complicated than that, of course, and figures and formulas vary, but it's each to remember that 1 char == 1 bit.) This is because English (like most/all human languages) has a lot of redundancy, rules, patterns, etc. An 8 character truly random password is hugely different than an 8 character English word. So, a 16 character pure English language password is roughly equivalent to a 16 bit key private key. The deliberately broken crypto used in US export approved software in the 1990s, generally considered to be worthless, still had a 40 bit keyspace. Kind of puts things in perspective. Again as a rule of thumb, it's more useful to have a long password than a complicated one. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Strange Time issue
Was cpu scaling enabled on the old hardware by any chance? eg: AMD Cool 'n' Quiet or Intel SpeedStep Nearly every time I've had this happen it was the cpu scaling up and down and the guest not handling the cpu clock cycle changes properly. The time jumping is a symptom of this. Disableing the feature in the host BIOS should fix that. Another cause, I only saw this once, was the guest process jumping from core to core every few seconds and the guest, again, not handling it quite right. I ended up having to manually assign cpu cores in the config files for that box. :( Kevin On 8/10/2011 7:20 PM, Greg Sweers wrote: A swap to new hardware resolved the issue. Thanks everyone. Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849 Office 813-758-6850 Cell 813-341-1270 Fax From: Cameron [mailto:cameron.orl...@gmail.com] Sent: Tuesday, August 09, 2011 1:09 PM To: NT System Admin Issues Subject: Re: Strange Time issue Is the clock on the host running fast? If it's not, then it can't be physically running fast on the guest. On Tue, Aug 9, 2011 at 12:15 PM, Greg Sweersgswe...@acts360.commailto:gswe...@acts360.com wrote: Pinky swear?? As my two year old came home for the first time last week and said to me when I promised him a snack... I will turn on the logging and let you know, I am really curious to see what is changing that. Am I wrong in thinking this is 2 issues. 1.The clock physically running fast. Independent of time sync 2. Time sync changing from external to Local CMOS when running a w32tm /resync /rediscover commands. Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849tel:813-657-0849 Office 813-758-6850tel:813-758-6850 Cell 813-341-1270tel:813-341-1270 Fax From: Michael B. Smith [mailto:mich...@smithcons.commailto:mich...@smithcons.com] Sent: Tuesday, August 09, 2011 12:09 PM To: NT System Admin Issues Subject: RE: Strange Time issue So? Every time the source changes, something gets logged on 2008 and above. And you can turn on logging for 2003. The change doesn't happen by itself. I promise. :) Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.comhttp://theessentialexchange.com/ From: Greg Sweers [mailto:gswe...@acts360.com]mailto:[mailto:gswe...@acts360.com] Sent: Tuesday, August 09, 2011 12:04 PM To: NT System Admin Issues Subject: RE: Strange Time issue Well dang..If that doesn't beat all. Everytime I run the resync command the stupid thing goes back to Local CMOS when I run a /query /source. So I set it again, run the /query /source shows the time.windows.comhttp://time.windows.com/. Run the update, restart services, run the resync..bam back to local cmos. Its just my week for random MS issues... Greg Sweers CEO ACTS360.comhttp://www.acts360.com/ P.O. Box 1193 Brandon, FL 33509 813-657-0849tel:813-657-0849 Office 813-758-6850tel:813-758-6850 Cell 813-341-1270tel:813-341-1270 Fax From: Michael B. Smith [mailto:mich...@smithcons.com]mailto:[mailto:mich...@smithcons.com] Sent: Tuesday, August 09, 2011 11:55 AM To: NT System Admin Issues Subject: RE: Strange Time issue The definitive document. :) http://theessentialexchange.com/blogs/michael/archive/2010/01/29/a-brief-history-of-time-ok-ok-let-s-go-with-quot-an-introduction-to-the-windows-time-service-quot.aspx Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.comhttp://theessentialexchange.com/ From: Andrew S. Baker [mailto:asbz...@gmail.com]mailto:[mailto:asbz...@gmail.com] Sent: Tuesday, August 09, 2011 11:50 AM To: NT System Admin Issues Subject: Re: Strange Time issue Exactly the problem I've seen at two locations. That's why we moved away from the hosts managing the clock for the guests. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... On Tue, Aug 9, 2011 at 11:24 AM, Senter, Johnjohn.sen...@etrade.commailto:john.sen...@etrade.com wrote: We kept getting time issues when we had ESX set the time on Windows servers because the domain will adjust the server time and then the ESX system adjust it back. This kept causing the time to go back and forth and it turned out the ESX systems were getting skewed from the NTP source at a greater rate. So let the domain do its thing with the servers by setting time. From: John Cook [mailto:john.c...@pfsf.orgmailto:john.c...@pfsf.org] Sent: Tuesday, August 09, 2011 11:18 AM To: NT System Admin Issues Subject: RE: Strange Time issue All domain machines. All VM guests sync to the ESX hosts. All workstations sync to physical DC's that use standard Windows time service. John W. Cook System Administrator Partnership For Strong Families 5950 NW 1st Place Gainesville, Fl 32607 Office (352) 244-1610tel:%28352%29%20244-1610 Cell (352) 215-6944tel:%28352%29%20215-6944 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
Re: MS VDI client OS question
http://download.microsoft.com/download/7/8/4/78480C7D-DC7E-492E-8567-F5DD5644774D/VDA_Brochure.pdf any help? On Tue, Aug 9, 2011 at 7:30 PM, Oliver Marshall oliver.marsh...@g2support.com wrote: Hi Chaps, ** ** Can anyone confirm for me whether the MS implementation of VDI supports only Windows 7 as the client? That’s what I’m getting from reading some of the sites, and that non-7 OS’s are supported via a web based version. This then leads me to wonder what requirements are there for the web browser on these non-7 clients, and whether older clients or non-MS clients will work. ** ** Anyone know? ** ** Olly ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: MS VDI client OS question
in that pdf link Access to a virtual copy of Windowsclient OS (Windows 7, Windows Vista, Windows XP) in the datacenter ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
windows 7 - sysprep and domains
I want to apply domain security to a couple of folders/files in a sysprep image. Is this supported? (i doubt it...) I assume I will have to do it at client PC install time or through GPO? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: windows 7 - sysprep and domains
I do it in oobeSystem with FirstLogonCommands and setacl. Can't see how it would be possible outside the domain, no way to reference the account info. From: Dean Cunningham [mailto:dean.cunning...@gmail.com] Sent: Wednesday, August 10, 2011 10:09 PM To: NT System Admin Issues Subject: windows 7 - sysprep and domains I want to apply domain security to a couple of folders/files in a sysprep image. Is this supported? (i doubt it...) I assume I will have to do it at client PC install time or through GPO? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Almost, but not quite OT: Passwords
I type my 3-5 different passwords (collectively, not individually) as many as 200 times a day. I'm a fast typist (relatively speaking, at ~45wpm, or ~225cpm). Long passwords that are easy to remember and easy to type (not too many oddball characters, but definitely a few) work much better for me. Long and simple works for me. If short and complex works for you - awesome. On Wed, Aug 10, 2011 at 19:41, Crawford, Scott crawfo...@evangel.eduwrote: I’d encourage you to pick one of those random password generating web sites, get an 8 char password and practice typing it 15-20 times. It’s really not that difficult to memorize. Now, memorizing a dozen of them for various websites will be quite a bit more difficult, but that’s where things like lastpass come in. ** ** Typing faster would prolly benefit me quite a bit, as has been pointed out support, for pass phrases is limited. My point is simply that vast improvements can be made to a typical P@$$w0Rd by true randomization without needing to resort to long pass phrases. ** ** *From:* Kurt Buff [mailto:kurt.b...@gmail.com] *Sent:* Wednesday, August 10, 2011 7:22 PM *To:* NT System Admin Issues *Subject:* Re: Almost, but not quite OT: Passwords ** ** I'm not going to argue the point too strongly, but building a short, complex password probably requires using a mental template of some sort. Perhaps the initial letters of a set of song titles, or addresses, or something like that. I think that the mental effort of remembering the template and then making the translation to the keyboard is more difficult than choosing a meaningful sentence. And, for touch typists (like me), it's even easier, since the naturalness of typing a sentence is more comfortable than trying to type rather random sequences. But, whatever works, I suppose. Kurt On Wed, Aug 10, 2011 at 15:52, Crawford, Scott crawfo...@evangel.edu wrote: Thx. Now, I realize that the little gray boxes are the bits…I feel dumb. J Not, that I disagree with the sentiment, but this assumes that the only way passwords are being generated is through modifying some word. To me, this is a reason not to assume that a password is complex simply because it ** looks** complex or because it has a wide sample of characters. Building a complex looking password is not the same as a real complex password. As an example, an 8 character password built from a truly random mix of upper/lower/numeric characters is 62^8 or ~47 bits of entropy. And, that’s before adding symbols. The problem with passphrases is that they take a relatively long time to type. Definitely easier to remember, but muscle memory makes remembering 8 character random alphanumeric passwords pretty easy too. *From:* Steve Kradel [mailto:skra...@zetetic.net] *Sent:* Wednesday, August 10, 2011 5:06 PM *To:* NT System Admin Issues *Subject:* Re: Almost, but not quite OT: Passwords It looks like Randall @ xkcd supposes each word in correct horse battery staple has 11 bits of entropy, which is to say, the person choosing the password has a comfortable vocabulary of 2^11 (2,048) words from which he will pick four at random. (2048^4 is the same as 2^44.) I think 2,048 words is a pretty low estimate, at least in English, but that's not really the point... On the other hand, he suggests forcing people to choose strong passwords presses humans into a doofy pattern that is actually much *less* random than four dictionary words. 16 bits of uncertainty for the uncommon base word means the user has possibly picked a difficult dictionary word (from a vocabulary of 2^16 = 65,536 words -- generously more than a normal person knows), and then mangles it up a little bit in semi-predictable ways to satisfy the password strength checker. It definitely raises an interesting question... why do so many organizations elect for minimum 8-character complex passwords, instead of non-complex passphrases of at least 16 or 20 characters, when the latter would be easier to remember and probably stronger? --Steve On Wed, Aug 10, 2011 at 5:33 PM, Crawford, Scott crawfo...@evangel.edu wrote: Interesting. I’d like to understand how the bits of entropy are calculated though. *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, August 10, 2011 4:06 PM *To:* NT System Admin Issues *Subject:* Almost, but not quite OT: Passwords http://xkcd.com/936/# http://xkcd.com/936/ Yet, very pertinent. *ASB* *http://about.me/Andrew.S.Baker* *Harnessing the Advantages of Technology for the SMB market…* ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions
RE: Almost, but not quite OT: Passwords
The overall answer is that eventually passwords have to go and other forms of authentication take over. ID10t proof options, if such a thing will ever exist. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Thursday, 11 August 2011 7:06 AM To: NT System Admin Issues Subject: Almost, but not quite OT: Passwords http://xkcd.com/936/#http://xkcd.com/936/ Yet, very pertinent. ASB http://about.me/Andrew.S.Baker Harnessing the Advantages of Technology for the SMB market... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin