Re: Windows 8 dev preview video

[Steven Peck]

I don't remember that part, but it is a dev build, not even beta.  I thought
the part where Steve was longing for the 'bing' app and she said, 'skip it'
which I thought was pretty funny.  Having been involved in a demo once where
one of the parts broke the day before the demo and we had to step past it I
fully sympathized. :)

The memory foot print part was demo'd on the same netbook that Steve Sinosky
used to demo/introduce Windows 7 a few years ago.  Much of it's strength is
the flexibility of the new interface with the availability of the old
desktop style desktop for those situations where it makes sense (power
users, corporations, etc).

The cross section of processers that it will be available for make me
wonder if new metro style apps that will be portable to the new xbox this
fall.  They did some demo's and show portability to the Windows Phone and
several things (compiled right) will run on the phone and xbox.  Apps
written in xaml, html, javascript will run across all cpu platforms, they
will provide tools to cross compile other code bases across cpu
architectures.

One of the demo's tried to boot with a boot sector virus on a USB stick, the
system had UFEI which stopped the boot.  They had various hw demo's as
well.  (insane start and shutdown).I liked one 'extreme system'  with 3
nvidia's in SLI and water cooled :).  Their emphasis was that all native
code would take advantage of hardware grapics accelleration by default.

Best joke while demo'ing the the metro IE10, "Nothing better then a chrome
free browsing experience".

Support for acceleromers, magnatrometer, NFC.  A lot of what they seem to be
doing is about exposing one apps tools and capabilities to other apps on the
system.  Much like the Windows Phone does.

They were seriously into 'stickiness' and wasted no opertunity to show how
responsive the touch UI was.

3 of the ultrabook models Intel is pimping lately. (Asus, Acer, Toshiba)

They made people really happy with the mention of 5000 Samsung slates to
hand out.  These things look like my wife's next system.  That or something
remarkably like it when it's real production for us normal people :)

They've improved the old desktop where wallpaper will finally stretch across
dual monitors.  Run metro on one and regular desktop on the other, etc.
Task manager much improved.  They added an App History tab, a 'startup tab
(start up porgrams listed centrally in task manager)  Task bar improved as
well.

They talked about new 'recovery' environment.
Resest and refresh.  - Files and personalization will not change but system
defaults will be refreshed
Reset your PC and start over - nukes files and apps and restarts the system
to 'out of box experience'
-mentioned additional tools to set the baseline image.

They showed the Remote Desktop client
- it goes to the Start screen to the other system and it brings your 'screen
capabilities with it (i.e. your system has touch screen, the other doesn't)
HyperV on the desktop
Mounting ISO's into file system

They went through keyboard shortcuts to show us they are still with us then
did a multi-finger html5 browser demo.
Some remote access capabilities crossing 'the cloud' and accessing your home
or work systems depending on firewall configuration.  This was with a
windows live ID.  New Windows Live applications as well.

The presentation was 3 and 1/2 hours.  It was full of overview information.
I am seriously looking forward to it's evolution and the release next year.


Steven Peck
http://www.blkmtn.org










On Tue, Sep 13, 2011 at 7:53 PM, Sam Cayze  wrote:

> I quit watching when she couldn't get IE working and had to change
> machines... I lol'd.
> But seriously, there is some cool stuff going on in Windows 8 so far.  I
> was
> really impressed.
> The memory footprint is smaller, the boot times are insane...
>
> -Original Message-
> From: Ben Scott [mailto:mailvor...@gmail.com]
> Sent: Tuesday, September 13, 2011 9:35 PM
> To: NT System Admin Issues
> Subject: Re: Windows 8 dev preview video
>
> On Tue, Sep 13, 2011 at 6:26 PM, Steve Ens  wrote:
> > I streamed it today.  Pretty impressive
>
>  Oh?  Do tell.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To m

Re: RDS Q - Webster?

[Dean Cunningham]

Its all relative.. :D

On Wed, Sep 14, 2011 at 3:26 PM, Sean Martin  wrote:

>  C'mon now, it warmed up a bit later this afternoon.
>
> - Sean
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: RDS Q - Webster?

[Sean Martin]

C'mon now, it warmed up a bit later this afternoon.

- Sean

On Sep 13, 2011, at 1:27 PM, Webster  wrote:

> Greetings from Anchorage, Alaska where it is cold and wet.
> 
>  
> 
> My apologies, I do not use RDS and have never set it up beyond what is 
> necessary to install XenApp 6 or XenApp 6.5.
> 
>  
> 
> Sorry
> 
>  
> 
>  
> 
> Webster
> 
>  
> 
> From: David Lum [mailto:david@nwea.org] 
> Subject: RDS Q - Webster?
> 
>  
> 
> My RDS servers are part of our internal domain, (internal.nwea.org).
> 
> From my desk inside the network If I enter 
> https://myrdswebserver.internal.nwea.org and then try to launch an app I do 
> not get prompted and the app works fine.
> 
>  
> 
> If I enter https://myrdswebserver.nwea.org (A URL I would also use if not 
> inside our perimeter) I get the app list via RD Web server (populated from my 
> RDS all server), but when I try to launch any app I get prompted for domain 
> credentials. Entering my credentials works but that’s now an extra 
> authentication step.
> 
>  
> 
> The internal.nwea.org is a subdomain of nwea.org, so I need to figure out how 
> to pass the credentials from the RD Web server to the app server. All RDS 
> servers are in the internal.nwea.org domain.
> 
>  
> 
> Is there a trust that needs to be set up for this to work? Do the RDS servers 
> need to be part of our external domain? Perhaps I have this architected 
> wrong…?
> 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
> 
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: RDS Q - Webster?

[Dean Cunningham]

further info
http://blogs.msdn.com/b/rds/archive/2009/08/11/introducing-web-single-sign-on-for-remoteapp-and-desktop-connections.aspx

http://social.technet.microsoft.com/Forums/en/winserverTS/thread/a7c106c3-67fa-41bf-9f43-b1296bf266e5

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Windows 8 dev preview video

[Sam Cayze]

I quit watching when she couldn't get IE working and had to change
machines... I lol'd.
But seriously, there is some cool stuff going on in Windows 8 so far.  I was
really impressed.
The memory footprint is smaller, the boot times are insane...

-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com] 
Sent: Tuesday, September 13, 2011 9:35 PM
To: NT System Admin Issues
Subject: Re: Windows 8 dev preview video

On Tue, Sep 13, 2011 at 6:26 PM, Steve Ens  wrote:
> I streamed it today.  Pretty impressive

  Oh?  Do tell.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Windows 8 dev preview video

[Ben Scott]

On Tue, Sep 13, 2011 at 6:26 PM, Steve Ens  wrote:
> I streamed it today.  Pretty impressive

  Oh?  Do tell.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Early Friday funny

[Ben Scott]

On Tue, Sep 13, 2011 at 6:17 PM, Andrew S. Baker  wrote:
>>  The voice synthesizer those videos use makes my brain hurt.
>> Seriously, my eyes start twitching after ten seconds or so.  I can't
>> stand it and have to stop, every time.
>
> And yet you try -- every time. :)

  Yah, I can't tell what the sound is without actually starting
playback.  It's a limitation of the whole time/causality thing.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Adobe Reader 10.1.1

[Carl Houseman]

This is the target of my download shortcut for Reader:

 

http://www.adobe.com/support/downloads/product.jsp?platform=windows&product=
10

 

Carl

 

From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] 
Sent: Tuesday, September 13, 2011 6:47 PM
To: NT System Admin Issues
Subject: Adobe Reader 10.1.1

 

It looks like Adobe Reader 10.1.1 is out.  I usually download either the
.msi or .msp from ftp://ftp.adobe.com/pub/adobe/ and install from that.
There is only an .exe on that site.  Does anyone know where the .msi or .msp
can be found or how it can be created from the .exe?  Thanks for your help.

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Adobe Reader 10.1.1

[Sam Cayze]

And, I guess they stuffed it in the MISC folder:

ftp://ftp.adobe.com/pub/adobe/reader/win/10.x/10.1.1/misc/

 

 

From: Sam Cayze [mailto:sca...@gmail.com] 
Sent: Tuesday, September 13, 2011 7:14 PM
To: NT System Admin Issues
Subject: RE: Adobe Reader 10.1.1

 

MSP:

http://www.adobe.com/support/downloads/detail.jsp?ftpID=5241

 

Note, it's a quarterly update so we can update Admin Points.

 

Release notes:

http://kb2.adobe.com/cps/837/cpsid_83708.html

 

 

From: Jimmy Tran [mailto:jt...@teachtci.com] 
Sent: Tuesday, September 13, 2011 5:56 PM
To: NT System Admin Issues
Subject: RE: Adobe Reader 10.1.1

 

I haven't tried but you should be able to extract the .exe file.  Trying
using 7-zip.  You should see the MSI in there?

 

From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] 
Sent: Tuesday, September 13, 2011 3:47 PM
To: NT System Admin Issues
Subject: Adobe Reader 10.1.1

 

It looks like Adobe Reader 10.1.1 is out.  I usually download either the
.msi or .msp from ftp://ftp.adobe.com/pub/adobe/ and install from that.
There is only an .exe on that site.  Does anyone know where the .msi or .msp
can be found or how it can be created from the .exe?  Thanks for your help.

 

Curt

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Windows 8 dev preview video

[Sam Cayze]

ISOs are avail:

http://msdn.microsoft.com/en-us/windows/home/

 

 

 

From: Steven Peck [mailto:sep...@gmail.com] 
Sent: Tuesday, September 13, 2011 5:08 PM
To: NT System Admin Issues
Subject: Windows 8 dev preview video

 

For those under a rock.  Here's the video

http://www.buildwindows.com/

 

I believe they said dev downloads would be available tonight I could be
remembering it wrong.

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Adobe Reader 10.1.1

[Sam Cayze]

MSP:

http://www.adobe.com/support/downloads/detail.jsp?ftpID=5241

 

Note, it's a quarterly update so we can update Admin Points.

 

Release notes:

http://kb2.adobe.com/cps/837/cpsid_83708.html

 

 

From: Jimmy Tran [mailto:jt...@teachtci.com] 
Sent: Tuesday, September 13, 2011 5:56 PM
To: NT System Admin Issues
Subject: RE: Adobe Reader 10.1.1

 

I haven't tried but you should be able to extract the .exe file.  Trying
using 7-zip.  You should see the MSI in there?

 

From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] 
Sent: Tuesday, September 13, 2011 3:47 PM
To: NT System Admin Issues
Subject: Adobe Reader 10.1.1

 

It looks like Adobe Reader 10.1.1 is out.  I usually download either the
.msi or .msp from ftp://ftp.adobe.com/pub/adobe/ and install from that.
There is only an .exe on that site.  Does anyone know where the .msi or .msp
can be found or how it can be created from the .exe?  Thanks for your help.

 

Curt

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Folder search by date.

[Micheal Espinola Jr]

LOL

--
Espi





On Wed, Aug 31, 2011 at 10:49 AM, Webster  wrote:

>  Andrew is Michael’s son.  Don’t know if Saint Michael’s son is into
> PowerShell yet! J
>
> ** **
>
> Carl Webster
>
> Consultant and Citrix Technology Professional
>
> http://www.CarlWebster.com 
>
> ** **
>
> ** **
>
> *From:* Christopher Bodnar [mailto:christopher_bod...@glic.com]
> *Sent:* Wednesday, August 31, 2011 12:47 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Folder search by date.
>
>  ** **
>
> Sorry, meant Michael.
>
>
> Chris Bodnar, MCSE, MCITP
> Technical Support III
> Distributed Systems Service Delivery - Intel Services
> Guardian Life Insurance Company of America
> Email: christopher_bod...@glic.com
> Phone: 610-807-6459
> Fax: 610-807-6003
>
>
>
> From:Christopher Bodnar 
> To:"NT System Admin Issues"  >
> Date:08/31/2011 01:46 PM
> Subject:Re: Folder search by date. 
>  --
>
>
>
>
> I agree with Andrew, this is very scriptable. but if you require a GUI, how
> about this?
>
>
>
>
>
> Chris Bodnar, MCSE, MCITP
> Technical Support III
> Distributed Systems Service Delivery - Intel Services
> Guardian Life Insurance Company of America
> Email: christopher_bod...@glic.com
> Phone: 610-807-6459
> Fax: 610-807-6003
>
>
>
> From:David Lum 
> To:"NT System Admin Issues"  >
> Date:08/31/2011 01:18 PM
> Subject:Folder search by date. 
>  --
>
>
>
>
> Here’s one for you. I need a tool that can search a folder structure and
> tell me which folders have contents that haven’t been touched in xx days
> (months, years).
>
> Example: We have user folders here that haven’t been managed very well as
> they were configured just using a name, and specific security wasn’t set, so
> we have 200 first name, last initial folders and I need to know which of
> those folders have contents that haven’t been touched in six months.
>
> Anyone know of a tool or command line I can use? *
> David Lum*
> Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764
>   
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin 
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin 
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: RDS Q - Webster?

[Micheal Espinola Jr]

Sounds like my wife...

--
Espi





On Tue, Sep 13, 2011 at 2:27 PM, Webster  wrote:

> Greetings from Anchorage, Alaska where it is cold and wet.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Adobe Reader 10.1.1

[Jimmy Tran]

I haven't tried but you should be able to extract the .exe file.  Trying
using 7-zip.  You should see the MSI in there?

 

From: Jim Dandy [mailto:jda...@asmail.ucdavis.edu] 
Sent: Tuesday, September 13, 2011 3:47 PM
To: NT System Admin Issues
Subject: Adobe Reader 10.1.1

 

It looks like Adobe Reader 10.1.1 is out.  I usually download either the
.msi or .msp from ftp://ftp.adobe.com/pub/adobe/ and install from that.
There is only an .exe on that site.  Does anyone know where the .msi or
.msp can be found or how it can be created from the .exe?  Thanks for
your help.

 

Curt

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Windows 8 dev preview video

[Steve Ens]

I streamed it today.  Pretty impressive

On Tue, Sep 13, 2011 at 5:07 PM, Steven Peck  wrote:

> For those under a rock.  Here's the video
> http://www.buildwindows.com/
>
> I believe they said dev downloads would be available tonight I could be
> remembering it wrong.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: RDS Q - Webster?

[Dean Cunningham]

I think you will find that as you are connecting from a user/machine that is
already domain authenticated (NTLM) to those credentials are transparently
submitted to the webpage
When connecting externally, you need to log into the website and then
(depending on the certificates you use) at least once more. Once you have
run one app up, you should no longer be prompted for subsequent remote apps
you run

On Wed, Sep 14, 2011 at 9:17 AM, David Lum  wrote:

>  My RDS servers are part of our internal domain, (internal.nwea.org). 
>
> From my desk inside the network If I enter
> https://myrdswebserver.internal.nwea.org and then try to launch an app I
> do not get prompted and the app works fine.
>
> ** **
>
> If I enter https://myrdswebserver.nwea.org (A URL I would also use if not
> inside our perimeter) I get the app list via RD Web server (populated from
> my RDS all server), but when I try to launch any app I get prompted for
> domain credentials. Entering my credentials works but that’s now an extra
> authentication step.
>
> ** **
>
> The internal.nwea.org is a subdomain of nwea.org, so I need to figure out
> how to pass the credentials from the RD Web server to the app server. All
> RDS servers are in the internal.nwea.org domain.
>
> ** **
>
> Is there a trust that needs to be set up for this to work? Do the RDS
> servers need to be part of our external domain? Perhaps I have this
> architected wrong…?
>
> *David Lum*
> Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Early Friday funny

[Andrew S. Baker]

And yet you try -- every time. :)

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Tue, Sep 13, 2011 at 5:50 PM, Ben Scott  wrote:

> On Tue, Sep 13, 2011 at 2:50 PM, Ziots, Edward 
> wrote:
> > OMG I think I am going to cry, too funny.
> > IPAD2 vs the Library.
> > http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu
>
>   The voice synthesizer those videos use makes my brain hurt.
> Seriously, my eyes start twitching after ten seconds or so.  I can't
> stand it and have to stop, every time.
>
> -- Ben
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Jon Harris]

I have a SD converter for a microSD chip that has write protection bought it
at Radio Shack.  I also have an SD chip to USB converter so if I ever get
into a crunch I have a way to do this now.

Jon

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich
wrote:

> There are USB sticks with a switch that is supposed to make them read-only
> until you flip the switch again. I don't know how that works or how well,
> but I know that there are flash drives with a write-protect switch on 'em.
> You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
> to make sure I wasn't misremembering.
>
>
>
> From: John Cook [mailto:john.c...@pfsf.org]
> Sent: Tuesday, September 13, 2011 8:59 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Did not and here’s why – I have yet to hear about any guaranteed way to
> make
> a USB drive unwriteable on any machine you plug it into short of having a
> manufacturer burn the data to one and ship it to you in which case you’re
> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
> anyone knows of a way to do it (and I’m not talking about a reg hack on a
> machine or a program that disables the functionality on a computer) please
> share.
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: Ziots, Edward [mailto:ezi...@lifespan.org]
> Sent: Tuesday, September 13, 2011 8:27 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Thanks, anyone tried this on a USB stick?
>
> Z
>
> Edward E. Ziots
> CISSP, Network +, Security +
> Security Engineer
> Lifespan Organization
> Email:ezi...@lifespan.org
> Cell:401-639-3505
>
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 3:18 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> Excellent!
>
> Thank you.
>
> On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
> The Microsoft system sweeper standalone seemed to work well when I tested
> it.
> http://connect.microsoft.com/systemsweeper
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 2:13 PM
> To: NT System Admin Issues
> Subject: Anti-virus boot-up disks?
>
> Best boot-to virus clean-up options.
>
> Friends like to bring me their contaminated laptops, and I mostly
> clean-install over them.
>
> I know AV exists that let you boot to a clean-up disk, who has favorites?
>
> Thanks
>
>
> --
> G. Waleed Kavalec
> -
> Whether you are talking engineering, electricity, or human beings... the
> place where the most power is concentrated is the place where the worst
> things happen.
> Ask any 10 pound plutonium sphere.
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> 
> CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
> attached to or with this Notice is intended only for the person or entity
> to
> which it is addressed and may contain Protected Health Information (PHI),
> confidential and/or privileged material. Any review, transmission,
> dissemination, or other use of, and taking any action in reliance upon this
> information by persons or entities other than the intended recipient
> without
> the express written consent of the sender are prohibited. This information
> may be protected by the Health Insurance Portability and Accountability Act
> of 1996 (HIPAA), and other Federal and Florida laws. Improper or
> unauthorized use or disclosure of this information could result in civil
> and/or criminal penalties.
> Consider the environment. Please don't print this e-mail unless you really
> need to.
> This email and any attached files are confidential and intended solely for
> the intended recipient(s). If you are not the named recipient you should
> not
> read, distribute, copy or alter this email. Any views or opinions expressed
> in this email are those of the author and do not represent those of the
> company. Warning: Although precautions have been taken to make sure no
> viruses are present in this email, the company cannot accept responsibility
> for any loss or damage that arise from the use of this email or
> attachments.
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 

Windows 8 dev preview video

[Steven Peck]

For those under a rock.  Here's the video
http://www.buildwindows.com/

I believe they said dev downloads would be available tonight I could be
remembering it wrong.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Early Friday funny

[Ben Scott]

On Tue, Sep 13, 2011 at 2:50 PM, Ziots, Edward  wrote:
> OMG I think I am going to cry, too funny.
> IPAD2 vs the Library.
> http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu

  The voice synthesizer those videos use makes my brain hurt.
Seriously, my eyes start twitching after ten seconds or so.  I can't
stand it and have to stop, every time.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Ben Scott]

On Tue, Sep 13, 2011 at 4:35 PM, Kurt Buff  wrote:
> Um, whoever owns the guns owns the means of production.

  You confuse ownership with control.  I expect you also confuse "can
control" with "does control".

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: RDS Q - Webster?

[Webster]

Greetings from Anchorage, Alaska where it is cold and wet.

My apologies, I do not use RDS and have never set it up beyond what is 
necessary to install XenApp 6 or XenApp 6.5.

Sorry


Webster

From: David Lum [mailto:david@nwea.org]
Subject: RDS Q - Webster?

My RDS servers are part of our internal domain, (internal.nwea.org).
>From my desk inside the network If I enter 
>https://myrdswebserver.internal.nwea.org and then try to launch an app I do 
>not get prompted and the app works fine.

If I enter https://myrdswebserver.nwea.org (A URL I would also use if not 
inside our perimeter) I get the app list via RD Web server (populated from my 
RDS all server), but when I try to launch any app I get prompted for domain 
credentials. Entering my credentials works but that's now an extra 
authentication step.

The internal.nwea.org is a subdomain of nwea.org, so I need to figure out how 
to pass the credentials from the RD Web server to the app server. All RDS 
servers are in the internal.nwea.org domain.

Is there a trust that needs to be set up for this to work? Do the RDS servers 
need to be part of our external domain? Perhaps I have this architected 
wrong...?

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Q about AD sites

[Kurt Buff]

We're working hard to get an MPLS solution in that will keep latency
down and up the bandwidth considerably. However, it's going to be
quite costly, and we won't be able to make the justification on the
price of DCs alone. Centralizing Exchange will be a chunk of that,
though, and we may find other ways to justify it - probably including
at least some centralization of file service.

Kurt

On Tue, Sep 13, 2011 at 13:46, Brian Desmond  wrote:
> Well, RPC doesn’t jive real well with latency so GP application is where 
> you're likely going to pay if you don’t have a DC in that site. Bandwidth is 
> more of an issue depending on saturation or number of PCs at the site logging 
> on concurrently.
>
> I'd look at what you're going to pay for the DC every 3-4 years and then see 
> how much the WAN upgrade will cost you.
>
> Thanks,
> Brian Desmond
> br...@briandesmond.com
>
> w – 312.625.1438 | c   – 312.731.3132
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Tuesday, September 13, 2011 1:05 PM
> To: NT System Admin Issues
> Subject: Re: Q about AD sites
>
> Will this improvement obtain in high-latency and/or low-bandwidth sites?
>
> Our US and UK offices have sucky (that's a technical term, ya know) 
> bandwidth. The UK office has a consumer grade ADSL link (128 down,
> IIRC) and the AU office has a 4mbit SDSL, but latency is horrid.
>
> Kurt
>
> On Mon, Sep 12, 2011 at 18:13, Brian Desmond  wrote:
>> Well, I would use this opportunity to re-evaluate the need for DCs in the 
>> sites (really all of them) before you are unhappy about it. The WAN 
>> connectivity, performance, and costs of 2003 (or even 1999 ala Win2k) is 
>> nothing compared to today. The drivers we had 7 - 10 years ago for DC 
>> placement often aren't a factor anymore which means that we can save a lot 
>> of $$$ by retiring branch office DCs rather than refreshing them.
>>
>> Thanks,
>> Brian Desmond
>> br...@briandesmond.com
>>
>> w – 312.625.1438 | c   – 312.731.3132
>>
>>
>> -Original Message-
>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> Sent: Monday, September 12, 2011 4:25 PM
>> To: NT System Admin Issues
>> Subject: Re: Q about AD sites
>>
>> The two magic words: No Money. I understand all too well.
>>
>> My sympathies.
>>
>> On Mon, Sep 12, 2011 at 13:58, John Cook  wrote:
>>> Two servers that are way past EOL (and running 2003) and no money to 
>>> replace them plus the desire to simplify replication.
>>>
>>>  John W. Cook
>>> System Administrator
>>> Partnership For Strong Families
>>> 5950 NW 1st Place
>>> Gainesville, Fl 32607
>>> Office (352) 244-1610
>>> Cell     (352) 215-6944
>>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>>
>>>
>>> -Original Message-
>>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>>> Sent: Monday, September 12, 2011 4:57 PM
>>> To: NT System Admin Issues
>>> Subject: Re: Q about AD sites
>>>
>>> So, why the reduction in DCs?
>>>
>>> Kurt
>>>
>>> On Mon, Sep 12, 2011 at 13:52, John Cook  wrote:
 Which is what I was considering but I wasn't sure if it would FUBAR the 
 connectivity (knowing that the DC is behind a different router 
 altogether). One of these sites is already up but GPO processing is spotty 
 at best.

  John W. Cook
 System Administrator
 Partnership For Strong Families
 5950 NW 1st Place
 Gainesville, Fl 32607
 Office (352) 244-1610
 Cell     (352) 215-6944
 MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4


 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Monday, September 12, 2011 4:40 PM
 To: NT System Admin Issues
 Subject: Re: Q about AD sites

 On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
> We’re about to do a restructuring of our sites and two of them will
> not have a DC on site anymore. I know you can have multiple subnets
> in a site that contains a DC but is it possible (or even necessary)
> to link these standalone sites to a DC in another site?

 AIUI, if you don't link a subnet to a site to with a DC in it,
 logons (workstation and user) in that subnet will randomly connect
 to any site that responds, and there will exist the potential for
 some random weirdness that will frustrate folks.

 If I were in your shoes, I'd choose a site with a DC that has a
 relatively high capacity link between it and the orphan subnet, and
 make the orphan subnet a part of the that site.

 But, someone with more experience will probably chime in with better 
 advice.

 Kurt

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
   ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


>>

RE: Q about AD sites

[Brian Desmond]

Well, RPC doesn’t jive real well with latency so GP application is where you're 
likely going to pay if you don’t have a DC in that site. Bandwidth is more of 
an issue depending on saturation or number of PCs at the site logging on 
concurrently. 

I'd look at what you're going to pay for the DC every 3-4 years and then see 
how much the WAN upgrade will cost you.

Thanks,
Brian Desmond
br...@briandesmond.com

w – 312.625.1438 | c   – 312.731.3132

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Tuesday, September 13, 2011 1:05 PM
To: NT System Admin Issues
Subject: Re: Q about AD sites

Will this improvement obtain in high-latency and/or low-bandwidth sites?

Our US and UK offices have sucky (that's a technical term, ya know) bandwidth. 
The UK office has a consumer grade ADSL link (128 down,
IIRC) and the AU office has a 4mbit SDSL, but latency is horrid.

Kurt

On Mon, Sep 12, 2011 at 18:13, Brian Desmond  wrote:
> Well, I would use this opportunity to re-evaluate the need for DCs in the 
> sites (really all of them) before you are unhappy about it. The WAN 
> connectivity, performance, and costs of 2003 (or even 1999 ala Win2k) is 
> nothing compared to today. The drivers we had 7 - 10 years ago for DC 
> placement often aren't a factor anymore which means that we can save a lot of 
> $$$ by retiring branch office DCs rather than refreshing them.
>
> Thanks,
> Brian Desmond
> br...@briandesmond.com
>
> w – 312.625.1438 | c   – 312.731.3132
>
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Monday, September 12, 2011 4:25 PM
> To: NT System Admin Issues
> Subject: Re: Q about AD sites
>
> The two magic words: No Money. I understand all too well.
>
> My sympathies.
>
> On Mon, Sep 12, 2011 at 13:58, John Cook  wrote:
>> Two servers that are way past EOL (and running 2003) and no money to replace 
>> them plus the desire to simplify replication.
>>
>>  John W. Cook
>> System Administrator
>> Partnership For Strong Families
>> 5950 NW 1st Place
>> Gainesville, Fl 32607
>> Office (352) 244-1610
>> Cell     (352) 215-6944
>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>
>>
>> -Original Message-
>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> Sent: Monday, September 12, 2011 4:57 PM
>> To: NT System Admin Issues
>> Subject: Re: Q about AD sites
>>
>> So, why the reduction in DCs?
>>
>> Kurt
>>
>> On Mon, Sep 12, 2011 at 13:52, John Cook  wrote:
>>> Which is what I was considering but I wasn't sure if it would FUBAR the 
>>> connectivity (knowing that the DC is behind a different router altogether). 
>>> One of these sites is already up but GPO processing is spotty at best.
>>>
>>>  John W. Cook
>>> System Administrator
>>> Partnership For Strong Families
>>> 5950 NW 1st Place
>>> Gainesville, Fl 32607
>>> Office (352) 244-1610
>>> Cell     (352) 215-6944
>>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>>
>>>
>>> -Original Message-
>>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>>> Sent: Monday, September 12, 2011 4:40 PM
>>> To: NT System Admin Issues
>>> Subject: Re: Q about AD sites
>>>
>>> On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
 We’re about to do a restructuring of our sites and two of them will 
 not have a DC on site anymore. I know you can have multiple subnets 
 in a site that contains a DC but is it possible (or even necessary) 
 to link these standalone sites to a DC in another site?
>>>
>>> AIUI, if you don't link a subnet to a site to with a DC in it, 
>>> logons (workstation and user) in that subnet will randomly connect 
>>> to any site that responds, and there will exist the potential for 
>>> some random weirdness that will frustrate folks.
>>>
>>> If I were in your shoes, I'd choose a site with a DC that has a 
>>> relatively high capacity link between it and the orphan subnet, and 
>>> make the orphan subnet a part of the that site.
>>>
>>> But, someone with more experience will probably chime in with better advice.
>>>
>>> Kurt
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>>>   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>>
>>> CONFIDENTIALITY STATEMENT: The information transmitted, or contained or 
>>> attached to or with this Notice is intended only for the person or entity 
>>> to which it is addressed and may contain Protected Health Information 
>>> (PHI), confidential and/or privileged material. Any review, transmission, 
>>> dissemination, or other use of, and taking any action in reliance upon this 
>>> information by persons or entities other than the intended recipient 
>>> without the express written consent of the sender are prohibited. This 
>>> information may be protected by the Health Insurance

Re: Unix Backups

[Kurt Buff]

Um, whoever owns the guns owns the means of production.

Mao was correct on that point.

Kurt

On Tue, Sep 13, 2011 at 12:26, Jonathan Link  wrote:
> Yes, technically that could be a dictatorship or any sort of despotic
> government.
>
> In socialism the state own or control the means of production.  They may or
> may not determine who owns the guns, too, but that is separate from the
> govenmental authority over enterprises.
>
> On Tue, Sep 13, 2011 at 3:21 PM, Ben Scott  wrote:
>>
>> On Tue, Sep 13, 2011 at 2:16 PM, Kurt Buff  wrote:
>> > Socialism requires that some folks have guns and that others can't.
>>
>>  Incorrect.
>>
>> -- Ben
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Q about AD sites

[Kurt Buff]

Isn't that what Brian's books are? :)

On Tue, Sep 13, 2011 at 13:07, Michael B. Smith  wrote:
> Forget the manuals. Buy Brian's book.
>
> Regards,
>
> Michael B. Smith
> Consultant and Exchange MVP
> http://TheEssentialExchange.com
>
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Tuesday, September 13, 2011 4:06 PM
> To: NT System Admin Issues
> Subject: Re: Q about AD sites
>
> Clearly it's time to break out some manuals and update my knowledge.
>
> On Mon, Sep 12, 2011 at 18:13, Brian Desmond  wrote:
>> Well, if the subnet is linked to a site which does not contain any DCs, the 
>> Auto Site Coverage process will kick in, and AD will look at site link costs 
>> and so forth to determine what DCs from another site should cover this 
>> DC-less site. This means you just need site links in place that match what 
>> you want. You can work around auto site coverage by disabling it and 
>> manually populating the site coverage reg key on the DCs you want to cover 
>> this site, but, that's obviously a less than ideal solution.
>>
>> Thanks,
>> Brian Desmond
>> br...@briandesmond.com
>>
>> w – 312.625.1438 | c   – 312.731.3132
>>
>> -Original Message-
>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> Sent: Monday, September 12, 2011 3:40 PM
>> To: NT System Admin Issues
>> Subject: Re: Q about AD sites
>>
>> On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
>>> We’re about to do a restructuring of our sites and two of them will
>>> not have a DC on site anymore. I know you can have multiple subnets in
>>> a site that contains a DC but is it possible (or even necessary) to
>>> link these standalone sites to a DC in another site?
>>
>> AIUI, if you don't link a subnet to a site to with a DC in it, logons 
>> (workstation and user) in that subnet will randomly connect to any site that 
>> responds, and there will exist the potential for some random weirdness that 
>> will frustrate folks.
>>
>> If I were in your shoes, I'd choose a site with a DC that has a relatively 
>> high capacity link between it and the orphan subnet, and make the orphan 
>> subnet a part of the that site.
>>
>> But, someone with more experience will probably chime in with better advice.
>>
>> Kurt
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>>   ~
>>
>> ---
>> To manage subscriptions click here: 
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>>
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here: 
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Early Friday funny

[Micheal Espinola Jr]

I don't care.

--
Espi





On Tue, Sep 13, 2011 at 11:50 AM, Ziots, Edward  wrote:

>  OMG I think I am going to cry, too funny. 
>
> ** **
>
> IPAD2 vs the Library. 
>
> ** **
>
> http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu
>
> ** **
>
> Z
>
> ** **
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Security Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org
>
> Cell:401-639-3505
>
> [image: CISSP_logo]
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

RE: Q about AD sites

[Michael B. Smith]

Forget the manuals. Buy Brian's book.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com


-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Tuesday, September 13, 2011 4:06 PM
To: NT System Admin Issues
Subject: Re: Q about AD sites

Clearly it's time to break out some manuals and update my knowledge.

On Mon, Sep 12, 2011 at 18:13, Brian Desmond  wrote:
> Well, if the subnet is linked to a site which does not contain any DCs, the 
> Auto Site Coverage process will kick in, and AD will look at site link costs 
> and so forth to determine what DCs from another site should cover this 
> DC-less site. This means you just need site links in place that match what 
> you want. You can work around auto site coverage by disabling it and manually 
> populating the site coverage reg key on the DCs you want to cover this site, 
> but, that's obviously a less than ideal solution.
>
> Thanks,
> Brian Desmond
> br...@briandesmond.com
>
> w – 312.625.1438 | c   – 312.731.3132
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Monday, September 12, 2011 3:40 PM
> To: NT System Admin Issues
> Subject: Re: Q about AD sites
>
> On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
>> We’re about to do a restructuring of our sites and two of them will
>> not have a DC on site anymore. I know you can have multiple subnets in
>> a site that contains a DC but is it possible (or even necessary) to
>> link these standalone sites to a DC in another site?
>
> AIUI, if you don't link a subnet to a site to with a DC in it, logons 
> (workstation and user) in that subnet will randomly connect to any site that 
> responds, and there will exist the potential for some random weirdness that 
> will frustrate folks.
>
> If I were in your shoes, I'd choose a site with a DC that has a relatively 
> high capacity link between it and the orphan subnet, and make the orphan 
> subnet a part of the that site.
>
> But, someone with more experience will probably chime in with better advice.
>
> Kurt
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Q about AD sites

[Kurt Buff]

Clearly it's time to break out some manuals and update my knowledge.

On Mon, Sep 12, 2011 at 18:13, Brian Desmond  wrote:
> Well, if the subnet is linked to a site which does not contain any DCs, the 
> Auto Site Coverage process will kick in, and AD will look at site link costs 
> and so forth to determine what DCs from another site should cover this 
> DC-less site. This means you just need site links in place that match what 
> you want. You can work around auto site coverage by disabling it and manually 
> populating the site coverage reg key on the DCs you want to cover this site, 
> but, that's obviously a less than ideal solution.
>
> Thanks,
> Brian Desmond
> br...@briandesmond.com
>
> w – 312.625.1438 | c   – 312.731.3132
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Monday, September 12, 2011 3:40 PM
> To: NT System Admin Issues
> Subject: Re: Q about AD sites
>
> On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
>> We’re about to do a restructuring of our sites and two of them will
>> not have a DC on site anymore. I know you can have multiple subnets in
>> a site that contains a DC but is it possible (or even necessary) to
>> link these standalone sites to a DC in another site?
>
> AIUI, if you don't link a subnet to a site to with a DC in it, logons 
> (workstation and user) in that subnet will randomly connect to any site that 
> responds, and there will exist the potential for some random weirdness that 
> will frustrate folks.
>
> If I were in your shoes, I'd choose a site with a DC that has a relatively 
> high capacity link between it and the orphan subnet, and make the orphan 
> subnet a part of the that site.
>
> But, someone with more experience will probably chime in with better advice.
>
> Kurt
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
>   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here: 
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Q about AD sites

[Kurt Buff]

Will this improvement obtain in high-latency and/or low-bandwidth sites?

Our US and UK offices have sucky (that's a technical term, ya know)
bandwidth. The UK office has a consumer grade ADSL link (128 down,
IIRC) and the AU office has a 4mbit SDSL, but latency is horrid.

Kurt

On Mon, Sep 12, 2011 at 18:13, Brian Desmond  wrote:
> Well, I would use this opportunity to re-evaluate the need for DCs in the 
> sites (really all of them) before you are unhappy about it. The WAN 
> connectivity, performance, and costs of 2003 (or even 1999 ala Win2k) is 
> nothing compared to today. The drivers we had 7 - 10 years ago for DC 
> placement often aren't a factor anymore which means that we can save a lot of 
> $$$ by retiring branch office DCs rather than refreshing them.
>
> Thanks,
> Brian Desmond
> br...@briandesmond.com
>
> w – 312.625.1438 | c   – 312.731.3132
>
>
> -Original Message-
> From: Kurt Buff [mailto:kurt.b...@gmail.com]
> Sent: Monday, September 12, 2011 4:25 PM
> To: NT System Admin Issues
> Subject: Re: Q about AD sites
>
> The two magic words: No Money. I understand all too well.
>
> My sympathies.
>
> On Mon, Sep 12, 2011 at 13:58, John Cook  wrote:
>> Two servers that are way past EOL (and running 2003) and no money to replace 
>> them plus the desire to simplify replication.
>>
>>  John W. Cook
>> System Administrator
>> Partnership For Strong Families
>> 5950 NW 1st Place
>> Gainesville, Fl 32607
>> Office (352) 244-1610
>> Cell     (352) 215-6944
>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>
>>
>> -Original Message-
>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>> Sent: Monday, September 12, 2011 4:57 PM
>> To: NT System Admin Issues
>> Subject: Re: Q about AD sites
>>
>> So, why the reduction in DCs?
>>
>> Kurt
>>
>> On Mon, Sep 12, 2011 at 13:52, John Cook  wrote:
>>> Which is what I was considering but I wasn't sure if it would FUBAR the 
>>> connectivity (knowing that the DC is behind a different router altogether). 
>>> One of these sites is already up but GPO processing is spotty at best.
>>>
>>>  John W. Cook
>>> System Administrator
>>> Partnership For Strong Families
>>> 5950 NW 1st Place
>>> Gainesville, Fl 32607
>>> Office (352) 244-1610
>>> Cell     (352) 215-6944
>>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>>
>>>
>>> -Original Message-
>>> From: Kurt Buff [mailto:kurt.b...@gmail.com]
>>> Sent: Monday, September 12, 2011 4:40 PM
>>> To: NT System Admin Issues
>>> Subject: Re: Q about AD sites
>>>
>>> On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
 We’re about to do a restructuring of our sites and two of them will
 not have a DC on site anymore. I know you can have multiple subnets
 in a site that contains a DC but is it possible (or even necessary)
 to link these standalone sites to a DC in another site?
>>>
>>> AIUI, if you don't link a subnet to a site to with a DC in it, logons
>>> (workstation and user) in that subnet will randomly connect to any
>>> site that responds, and there will exist the potential for some
>>> random weirdness that will frustrate folks.
>>>
>>> If I were in your shoes, I'd choose a site with a DC that has a
>>> relatively high capacity link between it and the orphan subnet, and
>>> make the orphan subnet a part of the that site.
>>>
>>> But, someone with more experience will probably chime in with better advice.
>>>
>>> Kurt
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>>   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the body: unsubscribe ntsysadmin
>>>
>>>
>>> CONFIDENTIALITY STATEMENT: The information transmitted, or contained or 
>>> attached to or with this Notice is intended only for the person or entity 
>>> to which it is addressed and may contain Protected Health Information 
>>> (PHI), confidential and/or privileged material. Any review, transmission, 
>>> dissemination, or other use of, and taking any action in reliance upon this 
>>> information by persons or entities other than the intended recipient 
>>> without the express written consent of the sender are prohibited. This 
>>> information may be protected by the Health Insurance Portability and 
>>> Accountability Act of 1996 (HIPAA), and other Federal and Florida laws. 
>>> Improper or unauthorized use or disclosure of this information could result 
>>> in civil and/or criminal penalties.
>>>  Consider the environment. Please don't print this e-mail unless you really 
>>> need to.
>>>
>>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>>>   ~
>>>
>>> ---
>>> To manage subscriptions click here:
>>> http://lyris.sunbelt-software.com/read/my_forums/
>>> or send an email to listmana...@lyris.sunbeltsoftware.com
>>> with the bo

Re: Unix Backups

[Jonathan Link]

Yes, technically that could be a dictatorship or any sort of despotic
government.

In socialism the state own or control the means of production.  They may or
may not determine who owns the guns, too, but that is separate from the
govenmental authority over enterprises.

On Tue, Sep 13, 2011 at 3:21 PM, Ben Scott  wrote:

> On Tue, Sep 13, 2011 at 2:16 PM, Kurt Buff  wrote:
> > Socialism requires that some folks have guns and that others can't.
>
>   Incorrect.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Ben Scott]

On Tue, Sep 13, 2011 at 2:16 PM, Kurt Buff  wrote:
> Socialism requires that some folks have guns and that others can't.

  Incorrect.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Early Friday funny

[William Robbins]

Now I *have* to look.  :)

 - WJR


On Tue, Sep 13, 2011 at 13:56, Jonathan Link wrote:

> NSFW!
>
>
> On Tue, Sep 13, 2011 at 2:50 PM, Ziots, Edward wrote:
>
>>  OMG I think I am going to cry, too funny. 
>>
>> ** **
>>
>> IPAD2 vs the Library. 
>>
>> ** **
>>
>> http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu
>>
>> ** **
>>
>> Z
>>
>> ** **
>>
>> Edward E. Ziots
>>
>> CISSP, Network +, Security +
>>
>> Security Engineer
>>
>> Lifespan Organization
>>
>> Email:ezi...@lifespan.org
>>
>> Cell:401-639-3505
>>
>> [image: CISSP_logo]
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: Early Friday funny

[Jonathan Link]

I was lucky I had headphones in. The f-bomb dropped at like 4 seconds or
some other riduclously short interval.

On Tue, Sep 13, 2011 at 3:12 PM, Sherry Abercrombie <
sabercrom...@nhdallas.com> wrote:

>  Thanks for the warning Jonathan!
>
> ** **
>
> *From:* Jonathan Link [mailto:jonathan.l...@gmail.com]
> *Sent:* Tuesday, September 13, 2011 1:57 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Early Friday funny
>
> ** **
>
> NSFW!
>
> On Tue, Sep 13, 2011 at 2:50 PM, Ziots, Edward 
> wrote:
>
> OMG I think I am going to cry, too funny. 
>
>  
>
> IPAD2 vs the Library. 
>
>  
>
> http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu
>
>  
>
> Z
>
>  
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Security Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org
>
> Cell:401-639-3505
>
> [image: CISSP_logo]
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> --
> This information may contain information that is privileged, confidential
> and exempt from disclosure under applicable law. If you are not the intended
> recipient, you are hereby notified that any disclosure, photocopying or
> distribution of these contents is unauthorized and prohibited. If you have
> received this in error, please notify the sender immediately and destroy all
> copies.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

RE: Early Friday funny

[Sherry Abercrombie]

Thanks for the warning Jonathan!

From: Jonathan Link [mailto:jonathan.l...@gmail.com]
Sent: Tuesday, September 13, 2011 1:57 PM
To: NT System Admin Issues
Subject: Re: Early Friday funny

NSFW!
On Tue, Sep 13, 2011 at 2:50 PM, Ziots, Edward 
mailto:ezi...@lifespan.org>> wrote:
OMG I think I am going to cry, too funny.

IPAD2 vs the Library.

http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
[cid:image001.jpg@01CC721F.32ED0AD0]

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


This information may contain information that is privileged, confidential and 
exempt from disclosure under applicable law. If you are not the intended 
recipient, you are hereby notified that any disclosure, photocopying or 
distribution of these contents is unauthorized and prohibited. If you have 
received this in error, please notify the sender immediately and destroy all 
copies.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: Early Friday funny

[Jonathan Link]

NSFW!

On Tue, Sep 13, 2011 at 2:50 PM, Ziots, Edward  wrote:

>  OMG I think I am going to cry, too funny. 
>
> ** **
>
> IPAD2 vs the Library. 
>
> ** **
>
> http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu
>
> ** **
>
> Z
>
> ** **
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Security Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org
>
> Cell:401-639-3505
>
> [image: CISSP_logo]
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Early Friday funny

[Ziots, Edward]

OMG I think I am going to cry, too funny. 

 

IPAD2 vs the Library. 

 

http://www.youtube.com/watch?v=h0UZDOFiHyQ&feature=relmfu

 

Z

 

Edward E. Ziots

CISSP, Network +, Security +

Security Engineer

Lifespan Organization

Email:ezi...@lifespan.org

Cell:401-639-3505

 


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

RE: Anti-virus boot-up disks?

[John Cook]

We don't use RW media
A Microsoft package is creating the scanner so it's a moot point no matter what 
media you're putting it on, if it's compromised (however unlikely) it's 
compromised

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Steven M. Caesare [mailto:scaes...@caesare.com]
Sent: Tuesday, September 13, 2011 2:05 PM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

"My point exactly - a CD/DVD is 100% safe"

What if you accidentally use a CD-RW?

What if the payload is already present in the image?

;)

-sc

From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 11:41 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

My point exactly - a CD/DVD is 100% safe. I can't tell you how many times I've 
had users call in telling me their wireless isn't working on their laptop only 
to find out they've accidentally hit the slider on the side of the computer 
that turns it off. It happens, even to IT people (especially when they are 
under pressure to fix several high priority things). I'm not against using a 
USB drive but for safety it's my second choice. And a DVD costs me about $.20, 
maybe less.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>>
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gai

Re: Unix Backups

[Kurt Buff]

No, the only fail here is memory.

It's hell getting old...

Kurt

On Mon, Sep 12, 2011 at 17:08, Jonathan Link  wrote:
> Perhaps it's an example of von Mises theories in action?  Free software
> cannot continue to be free, since it is socialistic in nature.  It must
> inevitably fail.
>
> On Mon, Sep 12, 2011 at 7:59 PM, Joseph L. Casale
>  wrote:
>>
>> >Amanda, now known as Zmanda, might fill your bill.
>>
>> Amanda is not "now known" as Zmanda. One is the Open Source project, the
>> other
>> is the commercial offering based on it.
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Kurt Buff]

On Mon, Sep 12, 2011 at 16:59, Joseph L. Casale
 wrote:
>>Amanda, now known as Zmanda, might fill your bill.
>
> Amanda is not "now known" as Zmanda. One is the Open Source project, the other
> is the commercial offering based on it.

Sorry - it's been quite a while since I looked a this stuff, and was
going off memory.

For FreeBSD I just use dump/restore.

Kurt

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anti-virus boot-up disks?

[John Cook]

Not if you only use that disk to create the scanner, how is the virus going to 
get on there if the Windows application monitors the burn process, surely it 
does checksum comparisons.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Steven M. Caesare [mailto:scaes...@caesare.com]
Sent: Tuesday, September 13, 2011 2:06 PM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Wouldn't that apply to a virus on the optical disc as well?

-sc

From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 11:57 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

You're telling me that a virus on the USB drive can't infect the boot sector of 
the HD on the machine if the drive is visible to the PE environment?

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Steven Peck [mailto:sep...@gmail.com]
Sent: Tuesday, September 13, 2011 11:51 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

You are booting into a completely different OS and not launching any 
applictions to do this scan.  I am not sure I understand the level of paronoia.
Steven Peck
http://www.blkmtn.org


On Tue, Sep 13, 2011 at 8:41 AM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
My point exactly - a CD/DVD is 100% safe. I can't tell you how many times I've 
had users call in telling me their wireless isn't working on their laptop only 
to find out they've accidentally hit the slider on the side of the computer 
that turns it off. It happens, even to IT people (especially when they are 
under pressure to fix several high priority things). I'm not against using a 
USB drive but for safety it's my second choice. And a DVD costs me about $.20, 
maybe less.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM

To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>>
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From:

RE: Anti-virus boot-up disks?

[Steven M. Caesare]

Wouldn't that apply to a virus on the optical disc as well?

 

-sc

 

From: John Cook [mailto:john.c...@pfsf.org] 
Sent: Tuesday, September 13, 2011 11:57 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

 

You're telling me that a virus on the USB drive can't infect the boot
sector of the HD on the machine if the drive is visible to the PE
environment?

 

 John W. Cook

System Administrator

Partnership For Strong Families

5950 NW 1st Place

Gainesville, Fl 32607

Office (352) 244-1610

Cell (352) 215-6944

MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

 

From: Steven Peck [mailto:sep...@gmail.com] 
Sent: Tuesday, September 13, 2011 11:51 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

 

You are booting into a completely different OS and not launching any
applictions to do this scan.  I am not sure I understand the level of
paronoia.

Steven Peck

http://www.blkmtn.org


 

On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:

My point exactly - a CD/DVD is 100% safe. I can't tell you how many
times I've had users call in telling me their wireless isn't working on
their laptop only to find out they've accidentally hit the slider on the
side of the computer that turns it off. It happens, even to IT people
(especially when they are under pressure to fix several high priority
things). I'm not against using a USB drive but for safety it's my second
choice. And a DVD costs me about $.20, maybe less. 

 

 John W. Cook

System Administrator

Partnership For Strong Families

5950 NW 1st Place

Gainesville, Fl 32607

Office (352) 244-1610  

Cell (352) 215-6944  

MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

 

From: James Rankin [mailto:kz2...@googlemail.com] 
Sent: Tuesday, September 13, 2011 11:31 AM


To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

 

Well, I guess if it's read-only, a virus would have a hell of a job
copying itself to it. But if the virus is already present when you set
the switch to read-only, then it will still execute, I should think.

On 13 September 2011 16:28, John Aldrich 
wrote:

I have never used a flash drive with a write-protect switch. Does anyone
on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I
don't
really see a huge issue as you're not going to be running anything off
the
hard drive, so at least in theory, you shouldn't need to worry about
viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM

To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref
=pd_
cp_e_4
 

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp
/B00
2G9TWUM
 

Sure, you can get a DVD for less than a dollar, but for the prices
above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less
portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich

wrote:
There are USB sticks with a switch that is supposed to make them
read-only
until you flip the switch again. I don't know how that works or how
well,
but I know that there are flash drives with a write-protect switch on
'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on
NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to
make
a USB drive unwriteable on any machine you plug it into short of having
a
manufacturer burn the data to one and ship it to you in which case
you're
paying 25x more for the same effect a non rewritable CD/DVD gives you.
If
anyone knows of a way to do it (and I'm not talking about a reg hack on
a
machine or a program that disables the functionality on a computer)
please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st

RE: Anti-virus boot-up disks?

[Steven M. Caesare]

"My point exactly - a CD/DVD is 100% safe"

 

What if you accidentally use a CD-RW?

 

What if the payload is already present in the image?

 

;)

 

-sc

 

From: John Cook [mailto:john.c...@pfsf.org] 
Sent: Tuesday, September 13, 2011 11:41 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

 

My point exactly - a CD/DVD is 100% safe. I can't tell you how many
times I've had users call in telling me their wireless isn't working on
their laptop only to find out they've accidentally hit the slider on the
side of the computer that turns it off. It happens, even to IT people
(especially when they are under pressure to fix several high priority
things). I'm not against using a USB drive but for safety it's my second
choice. And a DVD costs me about $.20, maybe less. 

 

 John W. Cook

System Administrator

Partnership For Strong Families

5950 NW 1st Place

Gainesville, Fl 32607

Office (352) 244-1610

Cell (352) 215-6944

MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

 

From: James Rankin [mailto:kz2...@googlemail.com] 
Sent: Tuesday, September 13, 2011 11:31 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

 

Well, I guess if it's read-only, a virus would have a hell of a job
copying itself to it. But if the virus is already present when you set
the switch to read-only, then it will still execute, I should think.

On 13 September 2011 16:28, John Aldrich 
wrote:

I have never used a flash drive with a write-protect switch. Does anyone
on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I
don't
really see a huge issue as you're not going to be running anything off
the
hard drive, so at least in theory, you shouldn't need to worry about
viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM

To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref
=pd_
cp_e_4
 

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp
/B00
2G9TWUM
 

Sure, you can get a DVD for less than a dollar, but for the prices
above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less
portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich

wrote:
There are USB sticks with a switch that is supposed to make them
read-only
until you flip the switch again. I don't know how that works or how
well,
but I know that there are flash drives with a write-protect switch on
'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on
NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to
make
a USB drive unwriteable on any machine you plug it into short of having
a
manufacturer burn the data to one and ship it to you in which case
you're
paying 25x more for the same effect a non rewritable CD/DVD gives you.
If
anyone knows of a way to do it (and I'm not talking about a reg hack on
a
machine or a program that disables the functionality on a computer)
please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610  
Cell (352) 215-6944  
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org  
Cell:401-639-3505
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

O

Re: Anti-virus boot-up disks?

[Jonathan Link]

As do I (philosophical discussions about how to do the work).  But, I always
check the switch, and while I am capable of doing multiple things at one
time, I find that if I want something done well (without having to redo it
or wondering if I got it done) I generally have to slow down and pay
attention to the task at hand.  Checking a write protect switch is a simple
ritual that alters my frame of mind and says, pay attention dumba$$.

Reading a DVD with a live file system on it isn't a fast task in computing,
and I prefer not having to wait for something any longer than I must.  The
longer I wait to do a task, the more likely I'm off on another unrelated
task and that is a common condition in instances where I make mistakes.

As with all things in life, YMMV.

On Tue, Sep 13, 2011 at 12:26 PM, John Cook  wrote:

> I love these discussions! But seriously, the time it takes to
> create/read/write a DVD is really trivial, I'm usually doing 3 other things
> at the same time. I don't have the luxury of being on the server team or the
> storage team - I AM the team and am also human so a mistake is not out of
> the realm of possibility, I prefer to avoid future stress by playing it safe
> and being paranoid.
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
>
> -Original Message-
> From: Ben Scott [mailto:mailvor...@gmail.com]
> Sent: Tuesday, September 13, 2011 12:19 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> On Tue, Sep 13, 2011 at 12:08 PM, Ken Schaefer 
> wrote:
> >> You are booting into a completely different OS and not launching any
> >> applictions to do this scan.  I am not sure I understand the level of
> >> paronoia.
> >
> > Entirely possible that during a scan of the drive, the virus exploits a
> > buffer overflow in the AV application.
>
>  Or exploits one of the various vulnerabilities in Windows over the
> years that have lead to supposedly passive content being loaded and
> executed simply by mounting or browsing it.
>
>  Or the operator accidentally runs a compromised executable on the
> target computer.  Either because they're not careful, or because
> Windows always considers the current directory first when looking for
> an executable to run.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
> attached to or with this Notice is intended only for the person or entity to
> which it is addressed and may contain Protected Health Information (PHI),
> confidential and/or privileged material. Any review, transmission,
> dissemination, or other use of, and taking any action in reliance upon this
> information by persons or entities other than the intended recipient without
> the express written consent of the sender are prohibited. This information
> may be protected by the Health Insurance Portability and Accountability Act
> of 1996 (HIPAA), and other Federal and Florida laws. Improper or
> unauthorized use or disclosure of this information could result in civil
> and/or criminal penalties.
>  Consider the environment. Please don't print this e-mail unless you really
> need to.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Ben Scott]

[aggregate reply to multiple messages]

On Tue, Sep 13, 2011 at 9:48 AM, Cameron  wrote:
> IBM P520 - 2 LPARs - 1 - AIX 5.3, 2 - AIX 6.1
> Need to backup approx 80GB (roughly 40GB per LPAR)
>
> I was using BE2010 to backup (to tape) my Windows boxes as well as the Unix
> clients but I don't *have* to stick with this. I have a spare server
> (Windows) that has a tape library attached that I could use (gigbit backbone
> for the whole network).

  I would generally prefer to do a disk-to-disk backup to the one
server, and then backup that one server to tape for offline/offsite
backups.

> Email of completion status, ease of use for backup/restore.

  Email is super-easy.  Most scheduled things in Unix-land are kicked
off from cron, and cron automatically emails job output to the job
owner.

  You will have to be more specific for "ease of use".  In particular,
note that "easy to use" and "easy to learn" are often inversely
proportional, and different people find different UIs easy/hard.

  The most common drawbacks with a simple tar involve restores:

* tar is a sequential format.  If the file you want is near the end of
the archive, it has to read through everything else first to find it.
It is simple and robust, but slow.

* Cherry-picking files during a restore can be tedious, if you don't
know the exact name.  You have to list the archive to get the exact
name, then run it again to extract.

On Tue, Sep 13, 2011 at 10:38 AM, Cameron  wrote:
> It's a combination of Pro Isam/Oracle databases and our ERP application and
> a few other apps...

  If the applications keep their files "hot" all the time, you will
have to find a way to get said apps to either (1) do an online backup
to separate files which you can then backup or (2) temporarily quiesce
and make consistent their files on-disk during the backup.

> Am I reading correctly that with 'tar', if you wanted to exclude
> directories you have to create a file and within that file list them out?

  It depends on the variant of tar you're using.  I'm not familiar
with the one that comes with AIX, but GNU tar supports wildcards in
its exclusions.

> What I wonder is how the performance would be
> doing it that way. Would it be better performance to tar on the box and then
> copy it to the windows share?

  It will likely be overall faster to tar directly to the target
system.  That way you're reading from a local disk and writing to the
network, once each.  Doing it to local disk first would mean twice as
many read operations (once to create the tar archive, then to copy
it), and will also cause I/O contention unless you have separate
spindles (it will be writing to the same disks it's reading from).

> I may have missed reading it, but is there a
> way to produce a text file listing of all the files that were sucessfully
> tarred?

  Add the --verbose (-v) switch.

  Here is an example, using GNU tar and GNU date.  AIX variants may
not support all the GNU features.  However, the GNU variants are
available for AIX, so if you don't already have them, get them.  :)

TODAY=$(date --iso-8601)
tar --create --gzip --verbose --totals \
--file=/mnt/backupserver/${HOSTNAME}_${TODAY}.tar.gz \
--files-from=/etc/backup/include \
--exclude-from=/etc/backup/exclude \
> /mnt/backupserver/${HOSTNAME}_${TODAY}.log

  The first command just saves the date, in -MM-DD format.  The
second command does the backup.  The option switches are:

--createcreate archive (as opposed to --list, --extract, 
--diff, etc.)
--gzip  compress with GNU gzip (if you have more I/O than you do CPU,
omit this for speed)
--verbose   list file paths as they are written (use twice to get 
file details)
--totalsprint total bytes written and performance at end

  The last part of the command rewrites output to a file, so you get a
log with the file list.  Significant messages (errors, etc.) will
still print to standard error, so you'll get those on the console or
in the cron job email, without being flooded with every single file
backed up.

  The /etc/backup/include file could look like:

/etc/
/home/
/usr/local/

  The /etc/backup/exclude file could look like:

/usr/local/tmp/
*.mp3
*~

  You get the idea.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anti-virus boot-up disks?

[Glen Johnson]

I'm with you guys.  I tried it on a flash drive over the weekend and it worked 
well.
BTW, the target machine came back clean.  Later found the hard drive was on 
its' way out.
If my understanding is correct, then even a badly infected machine wouldn't 
infect the flash drive since the code on the infected machine is never executed.


-Original Message-
From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Tuesday, September 13, 2011 12:03 PM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Exactly... You shut down the PC in question, disable writing on the Flash Drive 
(moot point, but still...for those paranoid people out there *grin*) boot off 
the flash drive and do your scan. Where's the danger???



From: Steven Peck [mailto:sep...@gmail.com]
Sent: Tuesday, September 13, 2011 11:51 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

You are booting into a completely different OS and not launching any 
applictions to do this scan.  I am not sure I understand the level of paronoia.
Steven Peck
http://www.blkmtn.org

 
On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:
My point exactly - a CD/DVD is 100% safe. I can't tell you how many times I've 
had users call in telling me their wireless isn't working on their laptop only 
to find out they've accidentally hit the slider on the side of the computer 
that turns it off. It happens, even to IT people (especially when they are 
under pressure to fix several high priority things). I'm not against using a 
USB drive but for safety it's my second choice. And a DVD costs me about $.20, 
maybe less. 
 
 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
 
From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM

To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?
 
Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
wrote:
I have never used a flash drive with a write-protect switch. Does anyone on the 
list have any experience with those and know whether or not a virus would be 
able to bypass that? Just curious how effective it would be in keeping viruses 
at bay. That being said, if you're booting off it, I don't really see a huge 
issue as you're not going to be running anything off the hard drive, so at 
least in theory, you shouldn't need to worry about viruses that may be on the 
hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above, I'd 
just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is 
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market.

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
wrote:
There are USB sticks with a switch that is supposed to make them read-only 
until you flip the switch again. I don't know how that works or how well, but I 
know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg to 
make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make a 
USB drive unwriteable on any machine you plug it into short of having a 
manufacturer burn the data to one and ship it to you in which case you're 
paying 25x more for the same effect a non rewritable CD/DVD gives you. If 
anyone knows of a way to do it (and I'm not talking about a reg hack on a 
machine or a program that disables the functionality on a computer) please 
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Offic

RE: Anti-virus boot-up disks?

[John Cook]

I love these discussions! But seriously, the time it takes to create/read/write 
a DVD is really trivial, I'm usually doing 3 other things at the same time. I 
don't have the luxury of being on the server team or the storage team - I AM 
the team and am also human so a mistake is not out of the realm of possibility, 
I prefer to avoid future stress by playing it safe and being paranoid.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4


-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Tuesday, September 13, 2011 12:19 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

On Tue, Sep 13, 2011 at 12:08 PM, Ken Schaefer  wrote:
>> You are booting into a completely different OS and not launching any
>> applictions to do this scan.  I am not sure I understand the level of
>> paronoia.
>
> Entirely possible that during a scan of the drive, the virus exploits a
> buffer overflow in the AV application.

  Or exploits one of the various vulnerabilities in Windows over the
years that have lead to supposedly passive content being loaded and
executed simply by mounting or browsing it.

  Or the operator accidentally runs a compromised executable on the
target computer.  Either because they're not careful, or because
Windows always considers the current directory first when looking for
an executable to run.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

CONFIDENTIALITY STATEMENT: The information transmitted, or contained or 
attached to or with this Notice is intended only for the person or entity to 
which it is addressed and may contain Protected Health Information (PHI), 
confidential and/or privileged material. Any review, transmission, 
dissemination, or other use of, and taking any action in reliance upon this 
information by persons or entities other than the intended recipient without 
the express written consent of the sender are prohibited. This information may 
be protected by the Health Insurance Portability and Accountability Act of 1996 
(HIPAA), and other Federal and Florida laws. Improper or unauthorized use or 
disclosure of this information could result in civil and/or criminal penalties.
 Consider the environment. Please don't print this e-mail unless you really 
need to.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Ben Scott]

On Tue, Sep 13, 2011 at 12:08 PM, Ken Schaefer  wrote:
>> You are booting into a completely different OS and not launching any
>> applictions to do this scan.  I am not sure I understand the level of
>> paronoia.
>
> Entirely possible that during a scan of the drive, the virus exploits a
> buffer overflow in the AV application.

  Or exploits one of the various vulnerabilities in Windows over the
years that have lead to supposedly passive content being loaded and
executed simply by mounting or browsing it.

  Or the operator accidentally runs a compromised executable on the
target computer.  Either because they're not careful, or because
Windows always considers the current directory first when looking for
an executable to run.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Jonathan Link]

Thanks Ben, this is exactly where I was heading.

On Tue, Sep 13, 2011 at 12:15 PM, Ben Scott  wrote:

> On Tue, Sep 13, 2011 at 11:41 AM, John Cook  wrote:
> > My point exactly – a CD/DVD is 100% safe. I can’t tell you how many times
> > I’ve had users call in telling me their wireless isn’t working on their
> > laptop only to find out they’ve accidentally hit the slider on the side
> of
> > the computer that turns it off. It happens, even to IT people (especially
> > when they are under pressure to fix several high priority things). I’m
> not
> > against using a USB drive but for safety it’s my second choice. And a DVD
> > costs me about $.20, maybe less.
>
>   How much is your time worth?  Flash is a *lot* faster, both for
> writing and when running.
>
>  I, for one, check write protect switches/tabs every single time I
> mount something, and am confident in my ability to do so.
>
>  The scenario you're defending against would appear to be (1) you
> accidentally hit the switch to write enable (2) you don't check it
> before plugging in, and (3) the compromised software on the computer
> somehow manages to execute despite the fact that you've booted from
> trusted media.
>
>  At that point, it seems like I wouldn't trust myself to work on the
> PC anymore.  I might accidentally format the hard drive or something.
>
>  An argument you haven't made but which I would consider more valid:
> With an optical disc, they're cheap enough that you don't care if you
> forget/lose/drop-and-break/etc it.  You can also hand them out like
> candy.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Ben Scott]

On Tue, Sep 13, 2011 at 11:41 AM, John Cook  wrote:
> My point exactly – a CD/DVD is 100% safe. I can’t tell you how many times
> I’ve had users call in telling me their wireless isn’t working on their
> laptop only to find out they’ve accidentally hit the slider on the side of
> the computer that turns it off. It happens, even to IT people (especially
> when they are under pressure to fix several high priority things). I’m not
> against using a USB drive but for safety it’s my second choice. And a DVD
> costs me about $.20, maybe less.

  How much is your time worth?  Flash is a *lot* faster, both for
writing and when running.

  I, for one, check write protect switches/tabs every single time I
mount something, and am confident in my ability to do so.

  The scenario you're defending against would appear to be (1) you
accidentally hit the switch to write enable (2) you don't check it
before plugging in, and (3) the compromised software on the computer
somehow manages to execute despite the fact that you've booted from
trusted media.

  At that point, it seems like I wouldn't trust myself to work on the
PC anymore.  I might accidentally format the hard drive or something.

  An argument you haven't made but which I would consider more valid:
With an optical disc, they're cheap enough that you don't care if you
forget/lose/drop-and-break/etc it.  You can also hand them out like
candy.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anti-virus boot-up disks?

[John Cook]

As long as you're 100% sure that the write function is turned off then no 
danger. I simply don't have to consider this step with a DVD. And yes I'm 
paranoid, I get to work on random peoples computers from time to time so I 
never know what they have been exposed to. Apparently they keep making better 
ID10Ts   ;-)

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4


-Original Message-
From: John Aldrich [mailto:jaldr...@blueridgecarpet.com]
Sent: Tuesday, September 13, 2011 12:03 PM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Exactly... You shut down the PC in question, disable writing on the Flash
Drive (moot point, but still...for those paranoid people out there *grin*)
boot off the flash drive and do your scan. Where's the danger???



From: Steven Peck [mailto:sep...@gmail.com]
Sent: Tuesday, September 13, 2011 11:51 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

You are booting into a completely different OS and not launching any
applictions to do this scan.  I am not sure I understand the level of
paronoia.
Steven Peck
http://www.blkmtn.org


On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:
My point exactly - a CD/DVD is 100% safe. I can't tell you how many times
I've had users call in telling me their wireless isn't working on their
laptop only to find out they've accidentally hit the slider on the side of
the computer that turns it off. It happens, even to IT people (especially
when they are under pressure to fix several high priority things). I'm not
against using a USB drive but for safety it's my second choice. And a DVD
costs me about $.20, maybe less.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM

To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying
itself to it. But if the virus is already present when you set the switch to
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the func

RE: Anti-virus boot-up disks?

[Ken Schaefer]

Entirely possible that during a scan of the drive, the virus exploits a buffer 
overflow in the AV application. This then causes the AV application to then 
write something to the boot sector on the USB drive, or do something else to 
the USB drive. Most likely improbable, given that the virus would need to know 
about both the AV application, and a vulnerability in the application. But as 
the RSA break in, Google break in, Stuxnet have shown - if you are protecting a 
high value client, you need to take more precautions.

I have had a client where we had an email quarantine extraction system. Once 
the "virus" has bypassed the email gateway system, and reached Exchange. 
Forefront has quarantined the "virus" - so it's aware of the payload. We then 
need a non-domain joined machine, with a different AV client, plus a separate 
VLAN, plus custom FW rules. The extraction machine is used to transfer the 
"virus" to another machine running a separate OS and then can be sent on for 
analysis, and the extraction machine is wiped. These are just the precautions 
for a "known virus"

From: Steven Peck [mailto:sep...@gmail.com]
Sent: Tuesday, 13 September 2011 11:51 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

You are booting into a completely different OS and not launching any 
applictions to do this scan.  I am not sure I understand the level of paronoia.
Steven Peck
http://www.blkmtn.org


On Tue, Sep 13, 2011 at 8:41 AM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
My point exactly - a CD/DVD is 100% safe. I can't tell you how many times I've 
had users call in telling me their wireless isn't working on their laptop only 
to find out they've accidentally hit the slider on the side of the computer 
that turns it off. It happens, even to IT people (especially when they are 
under pressure to fix several high priority things). I'm not against using a 
USB drive but for safety it's my second choice. And a DVD costs me about $.20, 
maybe less.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM

To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anti-virus boot-up disks?

[John Aldrich]

Exactly... You shut down the PC in question, disable writing on the Flash
Drive (moot point, but still...for those paranoid people out there *grin*)
boot off the flash drive and do your scan. Where's the danger???



From: Steven Peck [mailto:sep...@gmail.com] 
Sent: Tuesday, September 13, 2011 11:51 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

You are booting into a completely different OS and not launching any
applictions to do this scan.  I am not sure I understand the level of
paronoia.
Steven Peck
http://www.blkmtn.org

 
On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:
My point exactly – a CD/DVD is 100% safe. I can’t tell you how many times
I’ve had users call in telling me their wireless isn’t working on their
laptop only to find out they’ve accidentally hit the slider on the side of
the computer that turns it off. It happens, even to IT people (especially
when they are under pressure to fix several high priority things). I’m not
against using a USB drive but for safety it’s my second choice. And a DVD
costs me about $.20, maybe less. 
 
 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
 
From: James Rankin [mailto:kz2...@googlemail.com] 
Sent: Tuesday, September 13, 2011 11:31 AM

To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?
 
Well, I guess if it's read-only, a virus would have a hell of a job copying
itself to it. But if the virus is already present when you set the switch to
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I’d just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market…

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here’s why – I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you’re
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I’m not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-

Re: Anti-virus boot-up disks?

[Jonathan Link]

You're telling me that a virus on the CD/DVD can't infect the boot sector of
the HD on the machine if the drive is visible to the PE environment?

On Tue, Sep 13, 2011 at 11:56 AM, John Cook  wrote:

>  You’re telling me that a virus on the USB drive can’t infect the boot
> sector of the HD on the machine if the drive is visible to the PE
> environment?
>
> ** **
>
>  *John W. Cook*
>
> *System Administrator*
>
> *Partnership For Strong Families*
>
> *5950 NW 1st Place*
>
> *Gainesville, Fl 32607*
>
> *Office (352) 244-1610*
>
> *Cell (352) 215-6944*
>
> *MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP**4, VTSP4*
>
> ** **
>
> *From:* Steven Peck [mailto:sep...@gmail.com]
> *Sent:* Tuesday, September 13, 2011 11:51 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Anti-virus boot-up disks?
>
>  ** **
>
> You are booting into a completely different OS and not launching any
> applictions to do this scan.  I am not sure I understand the level of
> paronoia.
>
> Steven Peck
>
> http://www.blkmtn.org
>
>
>  
>
> On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:
>
> My point exactly – a CD/DVD is 100% safe. I can’t tell you how many times
> I’ve had users call in telling me their wireless isn’t working on their
> laptop only to find out they’ve accidentally hit the slider on the side of
> the computer that turns it off. It happens, even to IT people (especially
> when they are under pressure to fix several high priority things). I’m not
> against using a USB drive but for safety it’s my second choice. And a DVD
> costs me about $.20, maybe less. 
>
>  
>
>  *John W. Cook*
>
> *System Administrator*
>
> *Partnership For Strong Families*
>
> *5950 NW 1st Place*
>
> *Gainesville, Fl 32607*
>
> *Office (352) 244-1610*
>
> *Cell (352) 215-6944*
>
> *MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4*
>
>  
>
> *From:* James Rankin [mailto:kz2...@googlemail.com]
> *Sent:* Tuesday, September 13, 2011 11:31 AM
>
>
> *To:* NT System Admin Issues
> *Subject:* Re: Anti-virus boot-up disks?
>
>  
>
> Well, I guess if it's read-only, a virus would have a hell of a job copying
> itself to it. But if the virus is already present when you set the switch to
> read-only, then it will still execute, I should think.
>
> On 13 September 2011 16:28, John Aldrich 
> wrote:
>
> I have never used a flash drive with a write-protect switch. Does anyone on
> the list have any experience with those and know whether or not a virus
> would be able to bypass that? Just curious how effective it would be in
> keeping viruses at bay. That being said, if you're booting off it, I don't
> really see a huge issue as you're not going to be running anything off the
> hard drive, so at least in theory, you shouldn't need to worry about
> viruses
> that may be on the hard drive.
>
>
>
> From: Ken Schaefer [mailto:k...@adopenstatic.com]
> Sent: Tuesday, September 13, 2011 11:25 AM
>
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Quick check of Amazon.com seems to show:
>
> 2GB drive for $10
> http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6
>
> 8GB drive for $20.99
>
> http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
> cp_e_4
>
> 32GB drive for $57.99
>
> http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
> 2G9TWUM
>
> Sure, you can get a DVD for less than a dollar, but for the prices above,
> I’d just get the flash drive and the ease of use that comes with that.
>
> Cheers
> Ken
>
> From: Andrew S. Baker [mailto:asbz...@gmail.com]
> Sent: Tuesday, 13 September 2011 9:57 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> They are lots more expensive than CD/DVDs, however.  Not that this is
> automatically a non-starter, but it speaks to Mr. Cook's earlier point.
>
> I'd sooner get a USB DVD drive, even though they are slightly less
> portable.
>
> ASB
> http://XeeMe.com/AndrewBaker
> Harnessing the Advantages of Technology for the SMB market…
>
> On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich <
> jaldr...@blueridgecarpet.com>
> wrote:
> There are USB sticks with a switch that is supposed to make them read-only
> until you flip the switch again. I don't know how that works or how well,
> but I know that there are flash drives with a write-protect switch on 'em.
> You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
> to make sure I wasn't misremembering.
>
>
>
> From: John Cook [mailto:john.c...@pfsf.org]
> Sent: Tuesday, September 13, 2011 8:59 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Did not and here’s why – I have yet to hear about any guaranteed way to
> make
> a USB drive unwriteable on any machine you plug it into short of having a
> manufacturer burn the data to one and ship it to you in which case you’re
> paying 25x more for the same effect a non re

RE: Anti-virus boot-up disks?

[John Cook]

You're telling me that a virus on the USB drive can't infect the boot sector of 
the HD on the machine if the drive is visible to the PE environment?

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Steven Peck [mailto:sep...@gmail.com]
Sent: Tuesday, September 13, 2011 11:51 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

You are booting into a completely different OS and not launching any 
applictions to do this scan.  I am not sure I understand the level of paronoia.
Steven Peck
http://www.blkmtn.org


On Tue, Sep 13, 2011 at 8:41 AM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
My point exactly - a CD/DVD is 100% safe. I can't tell you how many times I've 
had users call in telling me their wireless isn't working on their laptop only 
to find out they've accidentally hit the slider on the side of the computer 
that turns it off. It happens, even to IT people (especially when they are 
under pressure to fix several high priority things). I'm not against using a 
USB drive but for safety it's my second choice. And a DVD costs me about $.20, 
maybe less.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM

To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>>
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (

Re: Anti-virus boot-up disks?

[James Rankin]

You do not understand this level of paranoia. We just all think you do. :-)

On 13 September 2011 16:51, Steven Peck  wrote:

> You are booting into a completely different OS and not launching any
> applictions to do this scan.  I am not sure I understand the level of
> paronoia.
> Steven Peck
> http://www.blkmtn.org
>
>
> On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:
>
>>  My point exactly – a CD/DVD is 100% safe. I can’t tell you how many
>> times I’ve had users call in telling me their wireless isn’t working on
>> their laptop only to find out they’ve accidentally hit the slider on the
>> side of the computer that turns it off. It happens, even to IT people
>> (especially when they are under pressure to fix several high priority
>> things). I’m not against using a USB drive but for safety it’s my second
>> choice. And a DVD costs me about $.20, maybe less. 
>>
>> ** **
>>
>>  *John W. Cook*
>>
>> *System Administrator*
>>
>> *Partnership For Strong Families*
>>
>> *5950 NW 1st Place*
>>
>> *Gainesville, Fl 32607*
>>
>> *Office (352) 244-1610*
>>
>> *Cell (352) 215-6944*
>>
>> *MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP**4, VTSP4*
>>
>> ** **
>>
>> *From:* James Rankin [mailto:kz2...@googlemail.com]
>> *Sent:* Tuesday, September 13, 2011 11:31 AM
>>
>> *To:* NT System Admin Issues
>> *Subject:* Re: Anti-virus boot-up disks?
>>
>>  ** **
>>
>> Well, I guess if it's read-only, a virus would have a hell of a job
>> copying itself to it. But if the virus is already present when you set the
>> switch to read-only, then it will still execute, I should think.
>>
>> On 13 September 2011 16:28, John Aldrich 
>> wrote:
>>
>> I have never used a flash drive with a write-protect switch. Does anyone
>> on
>> the list have any experience with those and know whether or not a virus
>> would be able to bypass that? Just curious how effective it would be in
>> keeping viruses at bay. That being said, if you're booting off it, I don't
>> really see a huge issue as you're not going to be running anything off the
>> hard drive, so at least in theory, you shouldn't need to worry about
>> viruses
>> that may be on the hard drive.
>>
>>
>>
>> From: Ken Schaefer [mailto:k...@adopenstatic.com]
>> Sent: Tuesday, September 13, 2011 11:25 AM
>>
>> To: NT System Admin Issues
>> Subject: RE: Anti-virus boot-up disks?
>>
>> Quick check of Amazon.com seems to show:
>>
>> 2GB drive for $10
>> http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6
>>
>> 8GB drive for $20.99
>>
>> http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
>> cp_e_4
>>
>> 32GB drive for $57.99
>>
>> http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
>> 2G9TWUM
>>
>> Sure, you can get a DVD for less than a dollar, but for the prices above,
>> I’d just get the flash drive and the ease of use that comes with that.
>>
>> Cheers
>> Ken
>>
>> From: Andrew S. Baker [mailto:asbz...@gmail.com]
>> Sent: Tuesday, 13 September 2011 9:57 PM
>> To: NT System Admin Issues
>> Subject: Re: Anti-virus boot-up disks?
>>
>> They are lots more expensive than CD/DVDs, however.  Not that this is
>> automatically a non-starter, but it speaks to Mr. Cook's earlier point.
>>
>> I'd sooner get a USB DVD drive, even though they are slightly less
>> portable.
>>
>> ASB
>> http://XeeMe.com/AndrewBaker
>> Harnessing the Advantages of Technology for the SMB market…
>>
>> On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich <
>> jaldr...@blueridgecarpet.com>
>> wrote:
>> There are USB sticks with a switch that is supposed to make them read-only
>> until you flip the switch again. I don't know how that works or how well,
>> but I know that there are flash drives with a write-protect switch on 'em.
>> You can find 'em on NewEgg and probably elsewhere. I just checked on
>> NewEgg
>> to make sure I wasn't misremembering.
>>
>>
>>
>> From: John Cook [mailto:john.c...@pfsf.org]
>> Sent: Tuesday, September 13, 2011 8:59 AM
>> To: NT System Admin Issues
>> Subject: RE: Anti-virus boot-up disks?
>>
>> Did not and here’s why – I have yet to hear about any guaranteed way to
>> make
>> a USB drive unwriteable on any machine you plug it into short of having a
>> manufacturer burn the data to one and ship it to you in which case you’re
>> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
>> anyone knows of a way to do it (and I’m not talking about a reg hack on a
>> machine or a program that disables the functionality on a computer) please
>> share.
>>
>>  John W. Cook
>> System Administrator
>> Partnership For Strong Families
>> 5950 NW 1st Place
>> Gainesville, Fl 32607
>> Office (352) 244-1610
>> Cell (352) 215-6944
>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>
>> From: Ziots, Edward [mailto:ezi...@lifespan.org]
>> Sent: Tuesday, September 13, 2011 8:27 AM
>> To: NT System Admin Issues
>> Subject: RE: Anti-virus boot-up disks?
>>
>> Thanks, anyone tried this on a USB 

Re: Anti-virus boot-up disks?

[Steven Peck]

You are booting into a completely different OS and not launching any
applictions to do this scan.  I am not sure I understand the level of
paronoia.
Steven Peck
http://www.blkmtn.org


On Tue, Sep 13, 2011 at 8:41 AM, John Cook  wrote:

>  My point exactly – a CD/DVD is 100% safe. I can’t tell you how many times
> I’ve had users call in telling me their wireless isn’t working on their
> laptop only to find out they’ve accidentally hit the slider on the side of
> the computer that turns it off. It happens, even to IT people (especially
> when they are under pressure to fix several high priority things). I’m not
> against using a USB drive but for safety it’s my second choice. And a DVD
> costs me about $.20, maybe less. 
>
> ** **
>
>  *John W. Cook*
>
> *System Administrator*
>
> *Partnership For Strong Families*
>
> *5950 NW 1st Place*
>
> *Gainesville, Fl 32607*
>
> *Office (352) 244-1610*
>
> *Cell (352) 215-6944*
>
> *MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP**4, VTSP4*
>
> ** **
>
> *From:* James Rankin [mailto:kz2...@googlemail.com]
> *Sent:* Tuesday, September 13, 2011 11:31 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Anti-virus boot-up disks?
>
>  ** **
>
> Well, I guess if it's read-only, a virus would have a hell of a job copying
> itself to it. But if the virus is already present when you set the switch to
> read-only, then it will still execute, I should think.
>
> On 13 September 2011 16:28, John Aldrich 
> wrote:
>
> I have never used a flash drive with a write-protect switch. Does anyone on
> the list have any experience with those and know whether or not a virus
> would be able to bypass that? Just curious how effective it would be in
> keeping viruses at bay. That being said, if you're booting off it, I don't
> really see a huge issue as you're not going to be running anything off the
> hard drive, so at least in theory, you shouldn't need to worry about
> viruses
> that may be on the hard drive.
>
>
>
> From: Ken Schaefer [mailto:k...@adopenstatic.com]
> Sent: Tuesday, September 13, 2011 11:25 AM
>
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Quick check of Amazon.com seems to show:
>
> 2GB drive for $10
> http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6
>
> 8GB drive for $20.99
>
> http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
> cp_e_4
>
> 32GB drive for $57.99
>
> http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
> 2G9TWUM
>
> Sure, you can get a DVD for less than a dollar, but for the prices above,
> I’d just get the flash drive and the ease of use that comes with that.
>
> Cheers
> Ken
>
> From: Andrew S. Baker [mailto:asbz...@gmail.com]
> Sent: Tuesday, 13 September 2011 9:57 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> They are lots more expensive than CD/DVDs, however.  Not that this is
> automatically a non-starter, but it speaks to Mr. Cook's earlier point.
>
> I'd sooner get a USB DVD drive, even though they are slightly less
> portable.
>
> ASB
> http://XeeMe.com/AndrewBaker
> Harnessing the Advantages of Technology for the SMB market…
>
> On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich <
> jaldr...@blueridgecarpet.com>
> wrote:
> There are USB sticks with a switch that is supposed to make them read-only
> until you flip the switch again. I don't know how that works or how well,
> but I know that there are flash drives with a write-protect switch on 'em.
> You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
> to make sure I wasn't misremembering.
>
>
>
> From: John Cook [mailto:john.c...@pfsf.org]
> Sent: Tuesday, September 13, 2011 8:59 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Did not and here’s why – I have yet to hear about any guaranteed way to
> make
> a USB drive unwriteable on any machine you plug it into short of having a
> manufacturer burn the data to one and ship it to you in which case you’re
> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
> anyone knows of a way to do it (and I’m not talking about a reg hack on a
> machine or a program that disables the functionality on a computer) please
> share.
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: Ziots, Edward [mailto:ezi...@lifespan.org]
> Sent: Tuesday, September 13, 2011 8:27 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Thanks, anyone tried this on a USB stick?
>
> Z
>
> Edward E. Ziots
> CISSP, Network +, Security +
> Security Engineer
> Lifespan Organization
> Email:ezi...@lifespan.org
> Cell:401-639-3505
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 3:18 PM
> To: NT System Admin Issues
> S

RE: Anti-virus boot-up disks?

[John Cook]

My point exactly - a CD/DVD is 100% safe. I can't tell you how many times I've 
had users call in telling me their wireless isn't working on their laptop only 
to find out they've accidentally hit the slider on the side of the computer 
that turns it off. It happens, even to IT people (especially when they are 
under pressure to fix several high priority things). I'm not against using a 
USB drive but for safety it's my second choice. And a DVD costs me about $.20, 
maybe less.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 13, 2011 11:31 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>>
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
The Microsoft system sweeper standalone seemed to work w

RE: Anti-virus boot-up disks?

[Matthew B Ames]

These are hardware switches on the USB device, iirc, and thus anything on the 
USB stick should be readable/executable but if there was a virus on the say the 
PC it should not be able to copy itself onto the USB stick (or do anything 
bad(tm) to the contents of it).  Even a virus on the USB stick should not be 
able to cause any addition infections to the files on the USB device.
#

From: James Rankin [mailto:kz2...@googlemail.com]
Sent: 13 September 2011 16:31
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Well, I guess if it's read-only, a virus would have a hell of a job copying 
itself to it. But if the virus is already present when you set the switch to 
read-only, then it will still execute, I should think.
On 13 September 2011 16:28, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?
Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>>
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
The Microsoft system sweeper standalone seemed to work well when I tested
it.
http://connect.microsoft.com/systemsweeper

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: G.Waleed Kavalec [mailto:kava...@gmail

RE: Anti-virus boot-up disks?

[Maglinger, Paul]

I believe the write-protect switch typically goes to the write-enable pin on 
the memory chip itself and unable to be bypassed by a virus.

-Original Message-
From: John Aldrich [mailto:jaldr...@blueridgecarpet.com] 
Sent: Tuesday, September 13, 2011 10:29 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com] 
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I'd just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market...

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
The Microsoft system sweeper standalone seemed to work well when I tested
it.
http://connect.microsoft.com/systemsweeper
 
 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
 
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?
 
Best boot-to virus clean-up options.
 
Friends like to bring me their contaminated laptops, and I mostly
clean-install over them.
 
I know AV exists that let you boot to a clean-up disk, who has favorites?
 
Thanks

 
--
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.
Ask any 10 pound plutonium sphere.
  
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe nts

Re: Anti-virus boot-up disks?

[James Rankin]

Well, I guess if it's read-only, a virus would have a hell of a job copying
itself to it. But if the virus is already present when you set the switch to
read-only, then it will still execute, I should think.

On 13 September 2011 16:28, John Aldrich wrote:

> I have never used a flash drive with a write-protect switch. Does anyone on
> the list have any experience with those and know whether or not a virus
> would be able to bypass that? Just curious how effective it would be in
> keeping viruses at bay. That being said, if you're booting off it, I don't
> really see a huge issue as you're not going to be running anything off the
> hard drive, so at least in theory, you shouldn't need to worry about
> viruses
> that may be on the hard drive.
>
>
>
> From: Ken Schaefer [mailto:k...@adopenstatic.com]
> Sent: Tuesday, September 13, 2011 11:25 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Quick check of Amazon.com seems to show:
>
> 2GB drive for $10
> http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6
>
> 8GB drive for $20.99
>
> http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
> cp_e_4
>
> 32GB drive for $57.99
>
> http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
> 2G9TWUM
>
> Sure, you can get a DVD for less than a dollar, but for the prices above,
> I’d just get the flash drive and the ease of use that comes with that.
>
> Cheers
> Ken
>
> From: Andrew S. Baker [mailto:asbz...@gmail.com]
> Sent: Tuesday, 13 September 2011 9:57 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> They are lots more expensive than CD/DVDs, however.  Not that this is
> automatically a non-starter, but it speaks to Mr. Cook's earlier point.
>
> I'd sooner get a USB DVD drive, even though they are slightly less
> portable.
>
> ASB
> http://XeeMe.com/AndrewBaker
> Harnessing the Advantages of Technology for the SMB market…
>
> On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich <
> jaldr...@blueridgecarpet.com>
> wrote:
> There are USB sticks with a switch that is supposed to make them read-only
> until you flip the switch again. I don't know how that works or how well,
> but I know that there are flash drives with a write-protect switch on 'em.
> You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
> to make sure I wasn't misremembering.
>
>
>
> From: John Cook [mailto:john.c...@pfsf.org]
> Sent: Tuesday, September 13, 2011 8:59 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Did not and here’s why – I have yet to hear about any guaranteed way to
> make
> a USB drive unwriteable on any machine you plug it into short of having a
> manufacturer burn the data to one and ship it to you in which case you’re
> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
> anyone knows of a way to do it (and I’m not talking about a reg hack on a
> machine or a program that disables the functionality on a computer) please
> share.
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: Ziots, Edward [mailto:ezi...@lifespan.org]
> Sent: Tuesday, September 13, 2011 8:27 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Thanks, anyone tried this on a USB stick?
>
> Z
>
> Edward E. Ziots
> CISSP, Network +, Security +
> Security Engineer
> Lifespan Organization
> Email:ezi...@lifespan.org
> Cell:401-639-3505
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 3:18 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> Excellent!
>
> Thank you.
>
> On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
> The Microsoft system sweeper standalone seemed to work well when I tested
> it.
> http://connect.microsoft.com/systemsweeper
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 2:13 PM
> To: NT System Admin Issues
> Subject: Anti-virus boot-up disks?
>
> Best boot-to virus clean-up options.
>
> Friends like to bring me their contaminated laptops, and I mostly
> clean-install over them.
>
> I know AV exists that let you boot to a clean-up disk, who has favorites?
>
> Thanks
>
>
> --
> G. Waleed Kavalec
> -
> Whether you are talking engineering, electricity, or human beings... the
> place where the most power is concentrated is the place where the worst
> things happen.
> Ask any 10 pound plutonium sphere.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 

RE: Anti-virus boot-up disks?

[John Aldrich]

I have never used a flash drive with a write-protect switch. Does anyone on
the list have any experience with those and know whether or not a virus
would be able to bypass that? Just curious how effective it would be in
keeping viruses at bay. That being said, if you're booting off it, I don't
really see a huge issue as you're not going to be running anything off the
hard drive, so at least in theory, you shouldn't need to worry about viruses
that may be on the hard drive.



From: Ken Schaefer [mailto:k...@adopenstatic.com] 
Sent: Tuesday, September 13, 2011 11:25 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_
cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B00
2G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above,
I’d just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

ASB
http://XeeMe.com/AndrewBaker
Harnessing the Advantages of Technology for the SMB market…

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here’s why – I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you’re
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I’m not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
The Microsoft system sweeper standalone seemed to work well when I tested
it.
http://connect.microsoft.com/systemsweeper
 
 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
 
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?
 
Best boot-to virus clean-up options.
 
Friends like to bring me their contaminated laptops, and I mostly
clean-install over them.
 
I know AV exists that let you boot to a clean-up disk, who has favorites?
 
Thanks

 
--
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.
Ask any 10 pound plutonium sphere.
  
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finall

RE: Anti-virus boot-up disks?

[Ken Schaefer]

Quick check of Amazon.com seems to show:

2GB drive for $10
http://www.amazon.com/Flash-Drive-write-protect-switch/dp/B005KL31E6

8GB drive for $20.99
http://www.amazon.com/RiDATA-Flash-Drive-Slider-Drives/dp/B000RGDA5E/ref=pd_cp_e_4

32GB drive for $57.99
http://www.amazon.com/Ritek-Ridata-Twister-Protection-RDEZ32G-TW-LIG0/dp/B002G9TWUM

Sure, you can get a DVD for less than a dollar, but for the prices above, I'd 
just get the flash drive and the ease of use that comes with that.

Cheers
Ken

From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Tuesday, 13 September 2011 9:57 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

They are lots more expensive than CD/DVDs, however.  Not that this is 
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.
ASB

http://XeeMe.com/AndrewBaker

Harnessing the Advantages of Technology for the SMB market...



On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich 
mailto:jaldr...@blueridgecarpet.com>> wrote:
There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you're
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I'm not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505

From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
The Microsoft system sweeper standalone seemed to work well when I tested
it.
http://connect.microsoft.com/systemsweeper

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?

Best boot-to virus clean-up options.

Friends like to bring me their contaminated laptops, and I mostly
clean-install over them.

I know AV exists that let you boot to a clean-up disk, who has favorites?

Thanks


--
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.
Ask any 10 pound plutonium sphere.


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anti-virus boot-up disks?

[Ziots, Edward]

Honestly, just burned a DVD on the Microsoft tool and worked just fine
for bootup etc etc to scan one of my systems ( and it caught some of my
hacking tools) 

 

Z

 

Edward E. Ziots

CISSP, Network +, Security +

Security Engineer

Lifespan Organization

Email:ezi...@lifespan.org

Cell:401-639-3505

 

 

From: Jonathan Link [mailto:jonathan.l...@gmail.com] 
Sent: Tuesday, September 13, 2011 10:04 AM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

 

Sure they are, but boot times are significantly less on flash than
cd/dvd , too.  IIRC, the last time I booted UBWINCD on a DVD took like 8
minutes.  With a flash drive it was maybe a minute...

7 minutes of time recovered (especially as a consultant) is not
inconsiderable.  And the write protect flash drives, IIRC are about 4
times the cost, not 25x the cost, if that's the earlier point being
referenced.



 

On Tue, Sep 13, 2011 at 9:57 AM, Andrew S. Baker 
wrote:

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less
portable.


ASB

http://XeeMe.com/AndrewBaker

Harnessing the Advantages of Technology for the SMB market...





On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich <
jaldr...@blueridgecarpet.com> wrote:

There are USB sticks with a switch that is supposed to make them
read-only
until you flip the switch again. I don't know how that works or how
well,
but I know that there are flash drives with a write-protect switch on
'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on
NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 13, 2011 8:59 AM

To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here's why - I have yet to hear about any guaranteed way to
make
a USB drive unwriteable on any machine you plug it into short of having
a
manufacturer burn the data to one and ship it to you in which case
you're
paying 25x more for the same effect a non rewritable CD/DVD gives you.
If
anyone knows of a way to do it (and I'm not talking about a reg hack on
a
machine or a program that disables the functionality on a computer)
please
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610  
Cell (352) 215-6944  
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org  
Cell:401-639-3505



From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
The Microsoft system sweeper standalone seemed to work well when I
tested
it.
http://connect.microsoft.com/systemsweeper
 
 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610  
Cell (352) 215-6944  
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
 
From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?
 
Best boot-to virus clean-up options.
 
Friends like to bring me their contaminated laptops, and I mostly
clean-install over them.
 
I know AV exists that let you boot to a clean-up disk, who has
favorites?
 
Thanks

 
--
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.
Ask any 10 pound plutonium sphere.
  

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.

RE: Unix Backups

[Maglinger, Paul]

Not sure about AIX, but can you add a -v and then pipe the result to a
text file?

 

From: Cameron [mailto:cameron.orl...@gmail.com] 
Sent: Tuesday, September 13, 2011 9:38 AM
To: NT System Admin Issues
Subject: Re: Unix Backups

 

It's a combination of Pro Isam/Oracle databases and our ERP application
and a few other apps...however, I don't need to backup the Oracle
databases themselves as there are cold backups being done every night
and I can backup those. Am I reading correctly that with 'tar', if you
wanted to exclude directories you have to create a file and within that
file list them out? I'm currently doing something similar dumping CSV
files to a windows share so that wouldn't be an issue. What I wonder is
how the performance would be doing it that way. Would it be better
performance to tar on the box and then copy it to the windows share? I
may have missed reading it, but is there a way to produce a text file
listing of all the files that were sucessfully tarred?



 

On Tue, Sep 13, 2011 at 9:56 AM, Jonathan Link 
wrote:

So, what are you backing up on the AIX box? And what are you wanting to
do?

Tar to a windows shared folder which is then backed up by your
BackupExec infrastructure could work.  Don't know if that's sufficient
for your needs, though.

On Tue, Sep 13, 2011 at 9:48 AM, Cameron 
wrote:

*sigh*apologies all...it was a LONG daylet me try this again.

 

Good morning all,

 

Backup Exec 2010 no longer supports any version of AIX.sI
need to find an alternative.

IBM P520 - 2 LPARs - 1 - AIX 5.3, 2 - AIX 6.1

Need to backup approx 80GB (roughly 40GB per LPAR)

 

I was using BE2010 to backup (to tape) my Windows boxes as well as the
Unix clients but I don't *have* to stick with this. I have a spare
server (Windows) that has a tape library attached that I could use
(gigbit backbone for the whole network).

As to reporting/management functions...pretty basic. Email of completion
status, ease of use for backup/restore. I'm really not a Unix person,
but can usually muddle my way through any scripting.

I'm more than willing to research what's out there, but would like to
know if there are any fan favourites so that I don't reinvent the wheel.

 

As always TIA

Cameron

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: r...@walkermartyn.co.uk - Re: Linux AD Authentication - Bayesian Filter detected spam

[Robert Jackson]

Hi Ben thanks for the reply. In answer to your questions:

RHEL 5.3

id shows all membership groups from AD

Doesn't matter if the file is pre-existing or not, same error

-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com] 
Sent: Tuesday 13 September 2011 14:31
To: NT System Admin Issues
Subject: r...@walkermartyn.co.uk - Re: Linux AD Authentication - Bayesian 
Filter detected spam

On Tue, Sep 13, 2011 at 5:49 AM, Robert Jackson  wrote:
> Are there any Likewise Open users out there?

  Not me, but I have used Samba to integrate with AD.

> I'm having some issues around trying to add domain
> users to a local Linux group.

  Standard questions apply regardless of OS: What OS and release?  For
example: Red Hat Enterprise Linux 5, or Ubuntu 11.04, or...?

> What I'm finding is the ADUSER can log in to the Linux server and have its
> credentials authenticated against Windows 2003 AD correctly.

  Once logged in as the user, run the command "id" (as in
identification).  Make sure all the group memberships are listed for
the user.

> All's well and good until you try to create/modify a file/directory that is 
> owned by
> locusr:locgrp. No matter what text editor is used, I always get the error:
>
> " E212: Can't open file for writing"
>
> drwxrwsr-x 2 locusr locgrp 4096 Sep  6 15:19 testdir

  Is this a pre-existing file?  If so, the permissions on the file also apply.

> with a umask of 0002 set against the ADUSER

  umask determines the permissions that get set on newly-created
files; it doesn't affect already existing files.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin





The information in this internet E-mail is confidential and is intended
solely for the addressee. Access, copying or re-use of information in it
by anyone else is unauthorised. Any views or opinions presented are
solely those of the author and do not necessarily represent those of
Walker Martyn Ltd or any of its affiliates. If you are not the
intended recipient please contact  administra...@walkermartyn.co.uk

Walker Martyn Ltd, company number SC197533. Company is 
registered in Scotland and has its registered office at 1 Park
Circus Place, Glasgow G3 6AH, UK.





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Joseph Heaton]

So, how many support cases have you had to open on your AIX system, with 
Symantec?  If licenses are perpetual, then just keep using the product that 
works for you, and hit the forums for support.  I've had better response from 
the Symantec forums, than I have from support, it seems.

>>> Cameron  9/13/2011 6:48 AM >>>
*sigh*apologies all...it was a LONG daylet me try this again.

Good morning all,

Backup Exec 2010 no longer supports any version of AIX.sI need
to find an alternative.
IBM P520 - 2 LPARs - 1 - AIX 5.3, 2 - AIX 6.1
Need to backup approx 80GB (roughly 40GB per LPAR)

I was using BE2010 to backup (to tape) my Windows boxes as well as the Unix
clients but I don't *have* to stick with this. I have a spare server
(Windows) that has a tape library attached that I could use (gigbit backbone
for the whole network).
As to reporting/management functions...pretty basic. Email of completion
status, ease of use for backup/restore. I'm really not a Unix person, but
can usually muddle my way through any scripting.
I'm more than willing to research what's out there, but would like to know
if there are any fan favourites so that I don't reinvent the wheel.

As always TIA
Cameron

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/ 
or send an email to listmana...@lyris.sunbeltsoftware.com 
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Cameron]

It's a combination of Pro Isam/Oracle databases and our ERP application and
a few other apps...however, I don't need to backup the Oracle databases
themselves as there are cold backups being done every night and I can backup
those. Am I reading correctly that with 'tar', if you wanted to exclude
directories you have to create a file and within that file list them out?
I'm currently doing something similar dumping CSV files to a windows share
so that wouldn't be an issue. What I wonder is how the performance would be
doing it that way. Would it be better performance to tar on the box and then
copy it to the windows share? I may have missed reading it, but is there a
way to produce a text file listing of all the files that were sucessfully
tarred?



On Tue, Sep 13, 2011 at 9:56 AM, Jonathan Link wrote:

> So, what are you backing up on the AIX box? And what are you wanting to do?
> Tar to a windows shared folder which is then backed up by your BackupExec
> infrastructure could work.  Don't know if that's sufficient for your needs,
> though.
>
>   On Tue, Sep 13, 2011 at 9:48 AM, Cameron wrote:
>
>> *sigh*apologies all...it was a LONG daylet me try this again.
>>
>> Good morning all,
>>
>> Backup Exec 2010 no longer supports any version of AIX.sI need
>> to find an alternative.
>> IBM P520 - 2 LPARs - 1 - AIX 5.3, 2 - AIX 6.1
>> Need to backup approx 80GB (roughly 40GB per LPAR)
>>
>> I was using BE2010 to backup (to tape) my Windows boxes as well as the
>> Unix clients but I don't *have* to stick with this. I have a spare server
>> (Windows) that has a tape library attached that I could use (gigbit backbone
>> for the whole network).
>> As to reporting/management functions...pretty basic. Email of completion
>> status, ease of use for backup/restore. I'm really not a Unix person, but
>> can usually muddle my way through any scripting.
>> I'm more than willing to research what's out there, but would like to know
>> if there are any fan favourites so that I don't reinvent the wheel.
>>
>> As always TIA
>> Cameron
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Jonathan Link]

Sure they are, but boot times are significantly less on flash than cd/dvd ,
too.  IIRC, the last time I booted UBWINCD on a DVD took like 8 minutes.
With a flash drive it was maybe a minute...
7 minutes of time recovered (especially as a consultant) is not
inconsiderable.  And the write protect flash drives, IIRC are about 4 times
the cost, not 25x the cost, if that's the earlier point being referenced.



On Tue, Sep 13, 2011 at 9:57 AM, Andrew S. Baker  wrote:

> They are lots more expensive than CD/DVDs, however.  Not that this is
> automatically a non-starter, but it speaks to Mr. Cook's earlier point.
>
> I'd sooner get a USB DVD drive, even though they are slightly less
> portable.
>
> * *
>
> *ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
> Technology for the SMB market…
>
> *
>
>
>
> On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich <
> jaldr...@blueridgecarpet.com> wrote:
>
>> There are USB sticks with a switch that is supposed to make them read-only
>> until you flip the switch again. I don't know how that works or how well,
>> but I know that there are flash drives with a write-protect switch on 'em.
>> You can find 'em on NewEgg and probably elsewhere. I just checked on
>> NewEgg
>> to make sure I wasn't misremembering.
>>
>>
>>
>> From: John Cook [mailto:john.c...@pfsf.org]
>> Sent: Tuesday, September 13, 2011 8:59 AM
>> To: NT System Admin Issues
>> Subject: RE: Anti-virus boot-up disks?
>>
>> Did not and here’s why – I have yet to hear about any guaranteed way to
>> make
>> a USB drive unwriteable on any machine you plug it into short of having a
>> manufacturer burn the data to one and ship it to you in which case you’re
>> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
>> anyone knows of a way to do it (and I’m not talking about a reg hack on a
>> machine or a program that disables the functionality on a computer) please
>> share.
>>
>>  John W. Cook
>> System Administrator
>> Partnership For Strong Families
>> 5950 NW 1st Place
>> Gainesville, Fl 32607
>> Office (352) 244-1610
>> Cell (352) 215-6944
>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>
>> From: Ziots, Edward [mailto:ezi...@lifespan.org]
>> Sent: Tuesday, September 13, 2011 8:27 AM
>> To: NT System Admin Issues
>> Subject: RE: Anti-virus boot-up disks?
>>
>> Thanks, anyone tried this on a USB stick?
>>
>> Z
>>
>> Edward E. Ziots
>> CISSP, Network +, Security +
>> Security Engineer
>> Lifespan Organization
>> Email:ezi...@lifespan.org
>> Cell:401-639-3505
>>
>>
>> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
>> Sent: Monday, September 12, 2011 3:18 PM
>> To: NT System Admin Issues
>> Subject: Re: Anti-virus boot-up disks?
>>
>> Excellent!
>>
>> Thank you.
>>
>> On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
>> The Microsoft system sweeper standalone seemed to work well when I tested
>> it.
>> http://connect.microsoft.com/systemsweeper
>>
>>  John W. Cook
>> System Administrator
>> Partnership For Strong Families
>> 5950 NW 1st Place
>> Gainesville, Fl 32607
>> Office (352) 244-1610
>> Cell (352) 215-6944
>> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>>
>> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
>> Sent: Monday, September 12, 2011 2:13 PM
>> To: NT System Admin Issues
>> Subject: Anti-virus boot-up disks?
>>
>> Best boot-to virus clean-up options.
>>
>> Friends like to bring me their contaminated laptops, and I mostly
>> clean-install over them.
>>
>> I know AV exists that let you boot to a clean-up disk, who has favorites?
>>
>> Thanks
>>
>>
>> --
>> G. Waleed Kavalec
>> -
>> Whether you are talking engineering, electricity, or human beings... the
>> place where the most power is concentrated is the place where the worst
>> things happen.
>> Ask any 10 pound plutonium sphere.
>>
>>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Andrew S. Baker]

LOL

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Tue, Sep 13, 2011 at 9:23 AM, Ben Scott  wrote:

> On Tue, Sep 13, 2011 at 8:30 AM, Jonathan Link 
> wrote:
> > Sure.  I understand, and in the process they create a socialistic
> > environment to develop the product. :-)
>
>   Yah, it's even worse than a bunch of techies sharing their time and
> knowledge for free on a public mailing list.
>
> -- Ben
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Andrew S. Baker]

They are lots more expensive than CD/DVDs, however.  Not that this is
automatically a non-starter, but it speaks to Mr. Cook's earlier point.

I'd sooner get a USB DVD drive, even though they are slightly less portable.

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich
wrote:

> There are USB sticks with a switch that is supposed to make them read-only
> until you flip the switch again. I don't know how that works or how well,
> but I know that there are flash drives with a write-protect switch on 'em.
> You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
> to make sure I wasn't misremembering.
>
>
>
> From: John Cook [mailto:john.c...@pfsf.org]
> Sent: Tuesday, September 13, 2011 8:59 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Did not and here’s why – I have yet to hear about any guaranteed way to
> make
> a USB drive unwriteable on any machine you plug it into short of having a
> manufacturer burn the data to one and ship it to you in which case you’re
> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
> anyone knows of a way to do it (and I’m not talking about a reg hack on a
> machine or a program that disables the functionality on a computer) please
> share.
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: Ziots, Edward [mailto:ezi...@lifespan.org]
> Sent: Tuesday, September 13, 2011 8:27 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Thanks, anyone tried this on a USB stick?
>
> Z
>
> Edward E. Ziots
> CISSP, Network +, Security +
> Security Engineer
> Lifespan Organization
> Email:ezi...@lifespan.org
> Cell:401-639-3505
>
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 3:18 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> Excellent!
>
> Thank you.
>
> On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
> The Microsoft system sweeper standalone seemed to work well when I tested
> it.
> http://connect.microsoft.com/systemsweeper
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 2:13 PM
> To: NT System Admin Issues
> Subject: Anti-virus boot-up disks?
>
> Best boot-to virus clean-up options.
>
> Friends like to bring me their contaminated laptops, and I mostly
> clean-install over them.
>
> I know AV exists that let you boot to a clean-up disk, who has favorites?
>
> Thanks
>
>
> --
> G. Waleed Kavalec
> -
> Whether you are talking engineering, electricity, or human beings... the
> place where the most power is concentrated is the place where the worst
> things happen.
> Ask any 10 pound plutonium sphere.
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Jonathan Link]

So, what are you backing up on the AIX box? And what are you wanting to do?
Tar to a windows shared folder which is then backed up by your BackupExec
infrastructure could work.  Don't know if that's sufficient for your needs,
though.

On Tue, Sep 13, 2011 at 9:48 AM, Cameron  wrote:

> *sigh*apologies all...it was a LONG daylet me try this again.
>
> Good morning all,
>
> Backup Exec 2010 no longer supports any version of AIX.sI need
> to find an alternative.
> IBM P520 - 2 LPARs - 1 - AIX 5.3, 2 - AIX 6.1
> Need to backup approx 80GB (roughly 40GB per LPAR)
>
> I was using BE2010 to backup (to tape) my Windows boxes as well as the Unix
> clients but I don't *have* to stick with this. I have a spare server
> (Windows) that has a tape library attached that I could use (gigbit backbone
> for the whole network).
>  As to reporting/management functions...pretty basic. Email of completion
> status, ease of use for backup/restore. I'm really not a Unix person, but
> can usually muddle my way through any scripting.
> I'm more than willing to research what's out there, but would like to know
> if there are any fan favourites so that I don't reinvent the wheel.
>
> As always TIA
> Cameron
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Cameron]

*sigh*apologies all...it was a LONG daylet me try this again.

Good morning all,

Backup Exec 2010 no longer supports any version of AIX.sI need
to find an alternative.
IBM P520 - 2 LPARs - 1 - AIX 5.3, 2 - AIX 6.1
Need to backup approx 80GB (roughly 40GB per LPAR)

I was using BE2010 to backup (to tape) my Windows boxes as well as the Unix
clients but I don't *have* to stick with this. I have a spare server
(Windows) that has a tape library attached that I could use (gigbit backbone
for the whole network).
As to reporting/management functions...pretty basic. Email of completion
status, ease of use for backup/restore. I'm really not a Unix person, but
can usually muddle my way through any scripting.
I'm more than willing to research what's out there, but would like to know
if there are any fan favourites so that I don't reinvent the wheel.

As always TIA
Cameron

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[justino garcia]

LOL that a good one on VON mises, Ludwig would be happy..

On Mon, Sep 12, 2011 at 8:08 PM, Jonathan Link wrote:

> Perhaps it's an example of von Mises theories in action?  Free software
> cannot continue to be free, since it is socialistic in nature.  It must
> inevitably fail.
>
>
> On Mon, Sep 12, 2011 at 7:59 PM, Joseph L. Casale <
> jcas...@activenetwerx.com> wrote:
>
>> >Amanda, now known as Zmanda, might fill your bill.
>>
>> Amanda is not "now known" as Zmanda. One is the Open Source project, the
>> other
>> is the commercial offering based on it.
>>
>> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
>> ~   ~
>>
>> ---
>> To manage subscriptions click here:
>> http://lyris.sunbelt-software.com/read/my_forums/
>> or send an email to listmana...@lyris.sunbeltsoftware.com
>> with the body: unsubscribe ntsysadmin
>>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>



-- 
Justin
IT-TECH

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Anti-virus boot-up disks?

[Jonathan Link]

Yes, these do exist.  I've run into a few from time to time.  I don't recall
brands, though.

On Tue, Sep 13, 2011 at 9:12 AM, John Aldrich
wrote:

> There are USB sticks with a switch that is supposed to make them read-only
> until you flip the switch again. I don't know how that works or how well,
> but I know that there are flash drives with a write-protect switch on 'em.
> You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
> to make sure I wasn't misremembering.
>
>
>
> From: John Cook [mailto:john.c...@pfsf.org]
> Sent: Tuesday, September 13, 2011 8:59 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Did not and here’s why – I have yet to hear about any guaranteed way to
> make
> a USB drive unwriteable on any machine you plug it into short of having a
> manufacturer burn the data to one and ship it to you in which case you’re
> paying 25x more for the same effect a non rewritable CD/DVD gives you. If
> anyone knows of a way to do it (and I’m not talking about a reg hack on a
> machine or a program that disables the functionality on a computer) please
> share.
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: Ziots, Edward [mailto:ezi...@lifespan.org]
> Sent: Tuesday, September 13, 2011 8:27 AM
> To: NT System Admin Issues
> Subject: RE: Anti-virus boot-up disks?
>
> Thanks, anyone tried this on a USB stick?
>
> Z
>
> Edward E. Ziots
> CISSP, Network +, Security +
> Security Engineer
> Lifespan Organization
> Email:ezi...@lifespan.org
> Cell:401-639-3505
>
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 3:18 PM
> To: NT System Admin Issues
> Subject: Re: Anti-virus boot-up disks?
>
> Excellent!
>
> Thank you.
>
> On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
> The Microsoft system sweeper standalone seemed to work well when I tested
> it.
> http://connect.microsoft.com/systemsweeper
>
>  John W. Cook
> System Administrator
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
> From: G.Waleed Kavalec [mailto:kava...@gmail.com]
> Sent: Monday, September 12, 2011 2:13 PM
> To: NT System Admin Issues
> Subject: Anti-virus boot-up disks?
>
> Best boot-to virus clean-up options.
>
> Friends like to bring me their contaminated laptops, and I mostly
> clean-install over them.
>
> I know AV exists that let you boot to a clean-up disk, who has favorites?
>
> Thanks
>
>
> --
> G. Waleed Kavalec
> -
> Whether you are talking engineering, electricity, or human beings... the
> place where the most power is concentrated is the place where the worst
> things happen.
> Ask any 10 pound plutonium sphere.
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> 
> CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
> attached to or with this Notice is intended only for the person or entity
> to
> which it is addressed and may contain Protected Health Information (PHI),
> confidential and/or privileged material. Any review, transmission,
> dissemination, or other use of, and taking any action in reliance upon this
> information by persons or entities other than the intended recipient
> without
> the express written consent of the sender are prohibited. This information
> may be protected by the Health Insurance Portability and Accountability Act
> of 1996 (HIPAA), and other Federal and Florida laws. Improper or
> unauthorized use or disclosure of this information could result in civil
> and/or criminal penalties.
> Consider the environment. Please don't print this e-mail unless you really
> need to.
> This email and any attached files are confidential and intended solely for
> the intended recipient(s). If you are not the named recipient you should
> not
> read, distribute, copy or alter this email. Any views or opinions expressed
> in this email are those of the author and do not represent those of the
> company. Warning: Although precautions have been taken to make sure no
> viruses are present in this email, the company cannot accept responsibility
> for any loss or damage that arise from the use of this email or
> attachments.
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software

Re: Linux AD Authentication

[Ben Scott]

On Tue, Sep 13, 2011 at 5:49 AM, Robert Jackson  wrote:
> Are there any Likewise Open users out there?

  Not me, but I have used Samba to integrate with AD.

> I’m having some issues around trying to add domain
> users to a local Linux group.

  Standard questions apply regardless of OS: What OS and release?  For
example: Red Hat Enterprise Linux 5, or Ubuntu 11.04, or...?

> What I’m finding is the ADUSER can log in to the Linux server and have its
> credentials authenticated against Windows 2003 AD correctly.

  Once logged in as the user, run the command "id" (as in
identification).  Make sure all the group memberships are listed for
the user.

> All’s well and good until you try to create/modify a file/directory that is 
> owned by
> locusr:locgrp. No matter what text editor is used, I always get the error:
>
> “ E212: Can’t open file for writing”
>
> drwxrwsr-x 2 locusr locgrp 4096 Sep  6 15:19 testdir

  Is this a pre-existing file?  If so, the permissions on the file also apply.

> with a umask of 0002 set against the ADUSER

  umask determines the permissions that get set on newly-created
files; it doesn't affect already existing files.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Jonathan Link]

I KNOW!

On Tue, Sep 13, 2011 at 9:23 AM, Ben Scott  wrote:

> On Tue, Sep 13, 2011 at 8:30 AM, Jonathan Link 
> wrote:
> > Sure.  I understand, and in the process they create a socialistic
> > environment to develop the product. :-)
>
>   Yah, it's even worse than a bunch of techies sharing their time and
> knowledge for free on a public mailing list.
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Unix Backups

[Ben Scott]

On Tue, Sep 13, 2011 at 8:30 AM, Jonathan Link  wrote:
> Sure.  I understand, and in the process they create a socialistic
> environment to develop the product. :-)

  Yah, it's even worse than a bunch of techies sharing their time and
knowledge for free on a public mailing list.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Anti-virus boot-up disks?

[John Aldrich]

There are USB sticks with a switch that is supposed to make them read-only
until you flip the switch again. I don't know how that works or how well,
but I know that there are flash drives with a write-protect switch on 'em.
You can find 'em on NewEgg and probably elsewhere. I just checked on NewEgg
to make sure I wasn't misremembering.



From: John Cook [mailto:john.c...@pfsf.org] 
Sent: Tuesday, September 13, 2011 8:59 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Did not and here’s why – I have yet to hear about any guaranteed way to make
a USB drive unwriteable on any machine you plug it into short of having a
manufacturer burn the data to one and ship it to you in which case you’re
paying 25x more for the same effect a non rewritable CD/DVD gives you. If
anyone knows of a way to do it (and I’m not talking about a reg hack on a
machine or a program that disables the functionality on a computer) please
share. 

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org] 
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick? 

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505


From: G.Waleed Kavalec [mailto:kava...@gmail.com] 
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:
The Microsoft system sweeper standalone seemed to work well when I tested
it.
http://connect.microsoft.com/systemsweeper 
 
 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
 
From: G.Waleed Kavalec [mailto:kava...@gmail.com] 
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?
 
Best boot-to virus clean-up options.
 
Friends like to bring me their contaminated laptops, and I mostly
clean-install over them.
 
I know AV exists that let you boot to a clean-up disk, who has favorites?
 
Thanks

 
-- 
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.
Ask any 10 pound plutonium sphere.
 
 
 
 
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
attached to or with this Notice is intended only for the person or entity to
which it is addressed and may contain Protected Health Information (PHI),
confidential and/or privileged material. Any review, transmission,
dissemination, or other use of, and taking any action in reliance upon this
information by persons or entities other than the intended recipient without
the express written consent of the sender are prohibited. This information
may be protected by the Health Insurance Portability and Accountability Act
of 1996 (HIPAA), and other Federal and Florida laws. Improper or
unauthorized use or disclosure of this information could result in civil
and/or criminal penalties.
Consider the environment. Please don't print this e-mail unless you really
need to.
This email and any attached files are confidential and intended solely for
the intended recipient(s). If you are not the named recipient you should not
read, distribute, copy or alter this email. Any views or opinions expressed
in this email are those of the author and do not represent those of the
company. Warning: Although precautions have been taken to make sure no
viruses are present in this email, the company cannot accept responsibility
for any loss or damage that arise from the use of this email or attachments.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin




-- 
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.
Ask any 10 pound plutoniu

RE: Anti-virus boot-up disks?

[John Cook]

Did not and here's why - I have yet to hear about any guaranteed way to make a 
USB drive unwriteable on any machine you plug it into short of having a 
manufacturer burn the data to one and ship it to you in which case you're 
paying 25x more for the same effect a non rewritable CD/DVD gives you. If 
anyone knows of a way to do it (and I'm not talking about a reg hack on a 
machine or a program that disables the functionality on a computer) please 
share.

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 13, 2011 8:27 AM
To: NT System Admin Issues
Subject: RE: Anti-virus boot-up disks?

Thanks, anyone tried this on a USB stick?

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
[cid:image001.jpg@01CC71F2.73228C10]

From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

Excellent!

Thank you.

On Mon, Sep 12, 2011 at 1:31 PM, John Cook 
mailto:john.c...@pfsf.org>> wrote:
The Microsoft system sweeper standalone seemed to work well when I tested it.
http://connect.microsoft.com/systemsweeper

 John W. Cook
System Administrator
Partnership For Strong Families
5950 NW 1st Place
Gainesville, Fl 32607
Office (352) 244-1610
Cell (352) 215-6944
MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

From: G.Waleed Kavalec [mailto:kava...@gmail.com]
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?

Best boot-to virus clean-up options.

Friends like to bring me their contaminated laptops, and I mostly clean-install 
over them.

I know AV exists that let you boot to a clean-up disk, who has favorites?

Thanks

--
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the place 
where the most power is concentrated is the place where the worst things happen.
Ask any 10 pound plutonium sphere.





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


CONFIDENTIALITY STATEMENT: The information transmitted, or contained or 
attached to or with this Notice is intended only for the person or entity to 
which it is addressed and may contain Protected Health Information (PHI), 
confidential and/or privileged material. Any review, transmission, 
dissemination, or other use of, and taking any action in reliance upon this 
information by persons or entities other than the intended recipient without 
the express written consent of the sender are prohibited. This information may 
be protected by the Health Insurance Portability and Accountability Act of 1996 
(HIPAA), and other Federal and Florida laws. Improper or unauthorized use or 
disclosure of this information could result in civil and/or criminal penalties.
Consider the environment. Please don't print this e-mail unless you really need 
to.

This email and any attached files are confidential and intended solely for the 
intended recipient(s). If you are not the named recipient you should not read, 
distribute, copy or alter this email. Any views or opinions expressed in this 
email are those of the author and do not represent those of the company. 
Warning: Although precautions have been taken to make sure no viruses are 
present in this email, the company cannot accept responsibility for any loss or 
damage that arise from the use of this email or attachments.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



--
G. Waleed Kavalec
-
Whether you are talking engineering, electricity, or human beings... the place 
where the most power is concentrated is the place where the worst things happen.
Ask any 10 pound plutonium sphere.





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.com

Re: anyone else seeing Hiloti malware zero day ?

[Erik Goldoff]

thanks ... or could just be normal malware churn, and I've the the lucky one
3 times in 3 days :)



On Tue, Sep 13, 2011 at 8:23 AM, Ziots, Edward  wrote:

>  Could be I haven’t heard anything through the underground yet on this
> fact, but if I do I will post. 
>
> ** **
>
> Z
>
> ** **
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Security Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org
>
> Cell:401-639-3505
>
> [image: CISSP_logo]
>
> ** **
>
> *From:* Erik Goldoff [mailto:egold...@gmail.com]
> *Sent:* Tuesday, September 13, 2011 5:58 AM
> *To:* NT System Admin Issues
> *Subject:* RE: anyone else seeing Hiloti malware zero day ?
>
> ** **
>
> Last I saw qakbot was about 2 years ago, this was a new variant …   wonder
> if maybe there’s a new malware construction toolkit out …
>
> ** **
>
> *Erik Goldoff***
>
> *IT  Consultant*
>
> *Systems, Networks, & Security *
>
> '  Security is an ongoing process, not a one time event ! '
>
> *From:* Ziots, Edward [mailto:ezi...@lifespan.org]
> *Sent:* Monday, September 12, 2011 9:40 AM
> *To:* NT System Admin Issues
> *Subject:* RE: anyone else seeing Hiloti malware zero day ?
>
> ** **
>
> Qakbot I have seen off and on, and its variants ( maybe they tweaking it
> for other infections) 
>
> ** **
>
> Z
>
> ** **
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Security Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org
>
> Cell:401-639-3505
>
> [image: CISSP_logo]
>
> ** **
>
> *From:* Erik Goldoff [mailto:egold...@gmail.com]
> *Sent:* Sunday, September 11, 2011 11:08 AM
> *To:* NT System Admin Issues
> *Subject:* RE: anyone else seeing Hiloti malware zero day ?
>
> ** **
>
> Must be my lucky week, we also caught an ‘undetected’ variant of qakbot too
> 
>
> ** **
>
> *Erik Goldoff***
>
> *IT  Consultant*
>
> *Systems, Networks, & Security *
>
> '  Security is an ongoing process, not a one time event ! '
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Saturday, September 10, 2011 10:20 PM
> *To:* NT System Admin Issues
> *Subject:* Re: anyone else seeing Hiloti malware zero day ?
>
> ** **
>
> Not I...
> 
>
> *ASB*
>
> *http://XeeMe.com/AndrewBaker *
>
> *Harnessing the Advantages of Technology for the SMB market…*
>
> ** **
>
> On Fri, Sep 9, 2011 at 7:47 PM, Erik Goldoff  wrote:**
> **
>
> At a client site Wednesday had a Hiloti outbreak, found by IDS signatures
> but not AV.  Had to submit captured DLL from loadpoint analysis for
> examination by AV vendors to have signatures updated.  Today, only two days
> later, a new variant of Hiloti is back in the wild.
>
> Anyone else seeing this ?
>
>  
>
> *Erik Goldoff*
>
> *IT  Consultant*
>
> *Systems, Networks, & Security *
>
> '  Security is an ongoing process, not a one time event ! '
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with 

RE: Anti-virus boot-up disks?

[Ziots, Edward]

Thanks, anyone tried this on a USB stick? 

 

Z

 

Edward E. Ziots

CISSP, Network +, Security +

Security Engineer

Lifespan Organization

Email:ezi...@lifespan.org

Cell:401-639-3505

 

 

From: G.Waleed Kavalec [mailto:kava...@gmail.com] 
Sent: Monday, September 12, 2011 3:18 PM
To: NT System Admin Issues
Subject: Re: Anti-virus boot-up disks?

 

Excellent!

 

Thank you.

 

On Mon, Sep 12, 2011 at 1:31 PM, John Cook  wrote:

The Microsoft system sweeper standalone seemed to work well when I
tested it.

http://connect.microsoft.com/systemsweeper 

 

 John W. Cook

System Administrator

Partnership For Strong Families

5950 NW 1st Place

Gainesville, Fl 32607

Office (352) 244-1610  

Cell (352) 215-6944  

MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4

 

From: G.Waleed Kavalec [mailto:kava...@gmail.com] 
Sent: Monday, September 12, 2011 2:13 PM
To: NT System Admin Issues
Subject: Anti-virus boot-up disks?

 

Best boot-to virus clean-up options.

 

Friends like to bring me their contaminated laptops, and I mostly
clean-install over them.

 

I know AV exists that let you boot to a clean-up disk, who has
favorites?

 

Thanks


 

-- 

G. Waleed Kavalec

-

Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.

Ask any 10 pound plutonium sphere.

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 



CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
attached to or with this Notice is intended only for the person or
entity to which it is addressed and may contain Protected Health
Information (PHI), confidential and/or privileged material. Any review,
transmission, dissemination, or other use of, and taking any action in
reliance upon this information by persons or entities other than the
intended recipient without the express written consent of the sender are
prohibited. This information may be protected by the Health Insurance
Portability and Accountability Act of 1996 (HIPAA), and other Federal
and Florida laws. Improper or unauthorized use or disclosure of this
information could result in civil and/or criminal penalties.
Consider the environment. Please don't print this e-mail unless you
really need to.

This email and any attached files are confidential and intended solely
for the intended recipient(s). If you are not the named recipient you
should not read, distribute, copy or alter this email. Any views or
opinions expressed in this email are those of the author and do not
represent those of the company. Warning: Although precautions have been
taken to make sure no viruses are present in this email, the company
cannot accept responsibility for any loss or damage that arise from the
use of this email or attachments.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin





 

-- 

G. Waleed Kavalec

-

Whether you are talking engineering, electricity, or human beings... the
place where the most power is concentrated is the place where the worst
things happen.

Ask any 10 pound plutonium sphere.

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

RE: anyone else seeing Hiloti malware zero day ?

[Ziots, Edward]

Could be I haven't heard anything through the underground yet on this
fact, but if I do I will post. 

 

Z

 

Edward E. Ziots

CISSP, Network +, Security +

Security Engineer

Lifespan Organization

Email:ezi...@lifespan.org

Cell:401-639-3505

 

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Tuesday, September 13, 2011 5:58 AM
To: NT System Admin Issues
Subject: RE: anyone else seeing Hiloti malware zero day ?

 

Last I saw qakbot was about 2 years ago, this was a new variant ...
wonder if maybe there's a new malware construction toolkit out ...

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Ziots, Edward [mailto:ezi...@lifespan.org] 
Sent: Monday, September 12, 2011 9:40 AM
To: NT System Admin Issues
Subject: RE: anyone else seeing Hiloti malware zero day ?

 

Qakbot I have seen off and on, and its variants ( maybe they tweaking it
for other infections) 

 

Z

 

Edward E. Ziots

CISSP, Network +, Security +

Security Engineer

Lifespan Organization

Email:ezi...@lifespan.org

Cell:401-639-3505

 

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Sunday, September 11, 2011 11:08 AM
To: NT System Admin Issues
Subject: RE: anyone else seeing Hiloti malware zero day ?

 

Must be my lucky week, we also caught an 'undetected' variant of qakbot
too 

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Saturday, September 10, 2011 10:20 PM
To: NT System Admin Issues
Subject: Re: anyone else seeing Hiloti malware zero day ?

 

Not I...


ASB

http://XeeMe.com/AndrewBaker

Harnessing the Advantages of Technology for the SMB market...

 

On Fri, Sep 9, 2011 at 7:47 PM, Erik Goldoff  wrote:

At a client site Wednesday had a Hiloti outbreak, found by IDS
signatures but not AV.  Had to submit captured DLL from loadpoint
analysis for examination by AV vendors to have signatures updated.
Today, only two days later, a new variant of Hiloti is back in the wild.

Anyone else seeing this ?

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<><>

RE: Synching workstation system clock with domain server

[Ziots, Edward]

W32tm /config /syncfromflags:DOMHIER
W32tm /config /update
W32tm /resync /rediscover

Let the time service take care of the rest, its going to be as good as the SNTP 
protocol allows. 

Z

Edward E. Ziots
CISSP, Network +, Security +
Security Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505



-Original Message-
From: Pierre Camilleri [mailto:pierre.camill...@fosterclark.com] 
Sent: Tuesday, September 13, 2011 8:07 AM
To: NT System Admin Issues
Subject: Re: Synching workstation system clock with domain server

Sorry about this! Our domain is Windows 2008 R2 and our clients are running 
Windows XP Pro (SP3). Thanks for the links. Will take a look at them.

Cheers
Pierre

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Synching workstation system clock with domain server

[Pierre Camilleri]

Sorry about this! Our domain is Windows 2008 R2 and our clients are running 
Windows XP Pro (SP3). Thanks for the links. Will take a look at them.

Cheers
Pierre

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Synching workstation system clock with domain server

[Andrew S. Baker]

Has the list taken on a recent vow of secrecy, such that as little
information as possible should be conveyed?

What workstations?  What servers?
http://KB.UltraTech-llc.com/?File=~MoreInfo.TXT

In a properly configured domain, domain clients will try to realign
themselves several times a day.  If you want to do that more frequently,
change their Time Server settings.


   - http://KB.UltraTech-llc.com/Scripts/?File=SetTimeSync.BAT

   - http://KB.UltraTech-llc.com/Scripts/Input/?File=CustomVariables.TXT


See also:
http://theessentialexchange.com/blogs/michael/archive/2010/01/29/a-brief-history-of-time-ok-ok-let-s-go-with-quot-an-introduction-to-the-windows-time-service-quot.aspx

* *

*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…

*



On Tue, Sep 13, 2011 at 6:07 AM,  wrote:

> Hi all
>
> How can I get my users' workstations to synch their clock with our domain
> server's clock more frequently during the day?
>
> Thanks
> Pierre
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Synching workstation system clock with domain server

[pierre . camilleri]

Hi all

How can I get my users' workstations to synch their clock with our domain 
server's clock more frequently during the day? 

Thanks
Pierre

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: anyone else seeing Hiloti malware zero day ?

[Erik Goldoff]

Last I saw qakbot was about 2 years ago, this was a new variant …   wonder
if maybe there’s a new malware construction toolkit out …

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Ziots, Edward [mailto:ezi...@lifespan.org] 
Sent: Monday, September 12, 2011 9:40 AM
To: NT System Admin Issues
Subject: RE: anyone else seeing Hiloti malware zero day ?

 

Qakbot I have seen off and on, and its variants ( maybe they tweaking it for
other infections) 

 

Z

 

Edward E. Ziots

CISSP, Network +, Security +

Security Engineer

Lifespan Organization

Email:ezi...@lifespan.org

Cell:401-639-3505

CISSP_logo

 

From: Erik Goldoff [mailto:egold...@gmail.com] 
Sent: Sunday, September 11, 2011 11:08 AM
To: NT System Admin Issues
Subject: RE: anyone else seeing Hiloti malware zero day ?

 

Must be my lucky week, we also caught an ‘undetected’ variant of qakbot too 

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

From: Andrew S. Baker [mailto:asbz...@gmail.com] 
Sent: Saturday, September 10, 2011 10:20 PM
To: NT System Admin Issues
Subject: Re: anyone else seeing Hiloti malware zero day ?

 

Not I...



ASB


http://XeeMe.com/AndrewBaker


Harnessing the Advantages of Technology for the SMB market…

 

On Fri, Sep 9, 2011 at 7:47 PM, Erik Goldoff  wrote:

At a client site Wednesday had a Hiloti outbreak, found by IDS signatures
but not AV.  Had to submit captured DLL from loadpoint analysis for
examination by AV vendors to have signatures updated.  Today, only two days
later, a new variant of Hiloti is back in the wild.

Anyone else seeing this ?

 

Erik Goldoff

IT  Consultant

Systems, Networks, & Security 

'  Security is an ongoing process, not a one time event ! '

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Linux AD Authentication

[Robert Jackson]

Are there any Likewise Open users out there?

 

I'm having some issues around trying to add domain users to a local
Linux group. So at the moment my /etc/group file looks like:

 

locgrp:x:500:locusr,\\ >

 

What I'm finding is the ADUSER can log in to the Linux server and have
its credentials authenticated against Windows 2003 AD correctly. All's
well and good until you try to create/modify a file/directory that is
owned by locusr:locgrp. No matter what text editor is used, I always get
the error:

 

" E212: Can't open file for writing"

 

Permissions on the directories are:

 

drwxrwsr-x 2 locusr locgrp 4096 Sep  6 15:19 testdir

 

with a umask of 0002 set against the ADUSER

 

My understanding is that with a setup like this, any member of the
locgrp should be able to modify/create files in appropriate directories.
Can anyone help out please?

 

 

 

Regards,

Rab.

=

Robert Jackson  Phone: +44 (0) 141 332
7999

IT Manager   Fax: +44 (0) 141
331 2820

Walker Martyn Ltd

1 Park Circus PlaceEmail:
r...@walkermartyn.co.uk  

Glasgow G3 6AH, Scotland   Web:
http://www.walkermartyn.co.uk  

=

 





The information in this internet E-mail is confidential and is intended
solely for the addressee. Access, copying or re-use of information in it
by anyone else is unauthorised. Any views or opinions presented are
solely those of the author and do not necessarily represent those of
Walker Martyn Ltd or any of its affiliates. If you are not the
intended recipient please contact  administra...@walkermartyn.co.uk

Walker Martyn Ltd, company number SC197533. Company is 
registered in Scotland and has its registered office at 1 Park
Circus Place, Glasgow G3 6AH, UK.





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Q about AD sites

[Ken Schaefer]

Auto site coverage will take care of this (assuming 2003+) provided the site 
link costs are setup correctly.

Or the subnets can be added to a hub site for a manual way of achieving the 
same.

Cheers
Ken

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Tuesday, 13 September 2011 4:40 AM
To: NT System Admin Issues
Subject: Re: Q about AD sites

On Mon, Sep 12, 2011 at 13:26, John Cook  wrote:
> We’re about to do a restructuring of our sites and two of them will 
> not have a DC on site anymore. I know you can have multiple subnets in 
> a site that contains a DC but is it possible (or even necessary) to 
> link these standalone sites to a DC in another site?

AIUI, if you don't link a subnet to a site to with a DC in it, logons 
(workstation and user) in that subnet will randomly connect to any site that 
responds, and there will exist the potential for some random weirdness that 
will frustrate folks.

If I were in your shoes, I'd choose a site with a DC that has a relatively high 
capacity link between it and the orphan subnet, and make the orphan subnet a 
part of the that site.

But, someone with more experience will probably chime in with better advice.

Kurt

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin