RE: Curious networking anomaly in Win7 Pro box

[Kim Longenbaugh]

The trace routes weren't informative?

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Tuesday, January 31, 2012 4:21 PM
To: NT System Admin Issues
Subject: Re: Curious networking anomaly in Win7 Pro box

Not dropping in the sense you mean - I'd still see a traceroute or
other ICMP packets in tcpdump, but they wouldn't go anywhere.

More to the point, pings to multiple addresses on the same remote
subnet are treated the same, and when he's doing the unsuccessful
pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
not reaching the office's firewall at all.

Also, no other machine is having this difficulty - if they can ping
one address on the remote subnet, they can ping all.

I even went so far as to have him specify the TTL in the pings at 254,
with a timeout of 300ms (usual response time is ~200m, and I didn't
want to wait the full 1000ms).

As further background, the network firewalls I have are Sidewinders
(now known as McAfee Enterprise Secure firewalls, since the
acquisition) and are a hardened version of FreeBSD. I can ssh into the
box, run tcpdump just like any other *nix and see what's coming across
the wire.

Kurt

On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net wrote:
 Doesn't this imply you are dropping at least some ICMP at the firewall, then?

 On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com wrote:
 No drops at the firewall.

 Forgot to have him do a traceroute - the firewall doesn't allow
 traceroutes to pass through it, so that doesn't usually occur to me,
 but in this case it would prove useful.

 I'll have him try that.

 Kurt

 On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh k...@colonialsavings.com 
 wrote:
 Compare trace routes from the anomalous machine to the devices you can 
 connect to with trace routes to the ones you can't.
 Check firewall logs for drops.

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 12:56 PM
 To: NT System Admin Issues
 Subject: Curious networking anomaly in Win7 Pro box

 All,

 Just one machine in our UK office is affected, and I haven't been able
 to figure it out. All other machines seem to be working fine.

 This one laptop cannot talk to a few addresses in our US server subnet.

 For instance, this machine can ping the file server, and the Exchange
 server, but not the DCs, nor a new terminal server, nor the address of
 the router on that subnet. However, all of the machines he's trying to
 ping by name resolve to correct IP addresses.

 We put Wireshark on this machine, and it thinks its emitting the ICMP
 packets, but when I fired up tcpdump on the internal interface of the
 firewall for his office, I verified that it was not seeing packets for
 those machines that he was trying to ping, and it was seeing packets
 for the machines to which he was able to connect.

 I did a 'route print', to see if there were something odd there, but
 saw nothing interesting.

 A malware scan came up clean - and it's a new install of Win7 Pro over XP.

 I turned off any services that looked interesting, including the
 Aventail connection service, the Windows firewall, and a couple of
 others, with no change in result.

 Haven't had a chance to examine the event logs on the laptop. The
 laptop is probably going to be wiped before I can work with him on it
 again, but I'm still very curious. Has anyone seen anything like this
 before?

 Kurt

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Corporate IM

[Brian Desmond]

Yes. Get Lync. As an end user it is phenomenal (IMO). There's a lot of 
branch-out cost savings opportunities for you too once it's in place.

Thanks,
Brian Desmond
br...@briandesmond.com

w - 312.625.1438 | c   - 312.731.3132

From: Jonathan [mailto:ncm...@gmail.com]
Sent: Tuesday, January 31, 2012 7:12 PM
To: NT System Admin Issues
Subject: Re: Corporate IM


Lync 2010 will meet all of those requirementsyou can federate with other 
companies that use Lync, as well as services such as Google talk, yahoo 
messenger, etc. You can also do voice, whiteboarding, file transfer, desktop 
sharing, and video conferencing.

Jonathan
On Jan 31, 2012 4:30 PM, Tom Miller 
tmil...@hnncsb.orgmailto:tmil...@hnncsb.org wrote:
Hi Folks,

Recommendations for an secure/enterprise IM product?  The main use would be 
between my org and a few partners for IT communication.  Internally we have an 
in-house product.

Suggestions appreciated.  Someone recommended https://www.hipchat.com/ - looks 
pretty good.

Tom


Confidentiality Notice: This e-mail message, including attachments, is for the 
sole use of the intended recipient(s) and may contain confidential and 
privileged information. Any unauthorized review, use, disclosure, or 
distribution is prohibited. If you are not the intended recipient, please 
contact the sender by reply e-mail and destroy all copies of the original 
message.

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Patch management software...

[David Lum]

To my knowledge, SBS prior to 2011 is nothing special (only this month have I 
even seen an SBS 2011 setup screen and have yet to see the OS completely 
installed yet, working on two swing migrations at the moment) I've treated then 
the same as regular server OS's.

Also, you could always check with them, but I wouldn't guarantee they'd know 
the difference.

Dave

From: James Hill [mailto:falc...@gmail.com]
Sent: Tuesday, January 31, 2012 9:26 PM
To: NT System Admin Issues
Subject: RE: Patch management software...

I doesn't list SBS as a supported OS though, which is a concern.

From: ntsysadmin 
[mailto:ntsysad...@rccs.org]mailto:[mailto:ntsysad...@rccs.org]
Sent: Wednesday, 1 February 2012 4:35 AM
To: NT System Admin Issues
Subject: RE: Patch management software...

Thanks for all of the replies. I'm looking over the recommended apps and 
installing the demos.

So far ManageEngine (http://www.manageengine.com/products/desktop-central/) 
looks like the winner. The functionality is awesome, web-based UI is beautiful 
and easy to read/navigate, feature-set - looks like it does so much I will have 
to read the docs to discover all the features. It does look like it's still 
free for 25 or fewer PCs, which is just amazing. This will work for most of my 
clients, I will get quotes for the larger ones. If you're not familiar with 
this product, I would highly recommend installing the free demo and trying it 
out. I am VERY impressed.

Thanks,

Mike

From: Dennis Hoefer 
[mailto:dhoe...@ufcoop.com]mailto:[mailto:dhoe...@ufcoop.com]
Sent: Monday, January 30, 2012 6:37 PM
To: NT System Admin Issues
Subject: RE: Patch management software...

For the small Windows installations you might take a look at Desktop Central by 
ManageEngine, I believe they still offer a free version for up to 25 
workstations.

Dennis

From: ntsysadmin [mailto:ntsysad...@rccs.org]
Sent: Monday, January 30, 2012 3:59 PM
To: NT System Admin Issues
Subject: Patch management software...

I'm looking for affordable patch management software for several of my small 
business clients. Workstation numbers range from 4-80 PCs running XP, Vista, 
Windows7 and a few Macs. It's okay if I can't find anything to work with the 
Macs. I like the Secunia product but I didn't see an offering for users with 
very small number of workstations. What are people using? Are there any free 
options out there that are worthwhile?

Thanks,

Mike


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Wireless bridge between buildings.

[Steven Peck]

On Tue, Jan 31, 2012 at 4:40 PM, Ben Scott mailvor...@gmail.com wrote:

 On Tue, Jan 31, 2012 at 7:21 PM, Steven Peck sep...@gmail.com wrote:
  When I was working in construction (plumbing/HVAC), several of our jobs
 had
  as a requirement for sign off, 'as-built' plans to be turned over as
 part of
  our completion.  We did in fact do this for every pipe run we installed
 in
  the building or underground.

   People make mistakes.  If you think you never did... well, you're
 almost certainly mistaken.  :-)

While I admit that in the first few months I tripped over every string
line, fell into almost every ditch and stumbled over most of the stakes in
the ground and occasionally got order deliverys wrong, I guarantee you that
every pipe was within a foot of where I drew it.  I worked for my dad and
that pretty well focused me on doing one of the more enjoyable aspects of
my job.  :)


  ... make sure you got them before handing out the
  final check and they haven't been mislaid.

   That's yet another aspect of the problem.  Fairly good plans could
 have existed at some point, maybe.  So they get filed away in the
 facility manager's office.  Changes happen as they do things.  Then
 the company goes out of business.  Property changes hands a few times.
  Has various tenants.  Sits vacant for long stretches.  At some point
 the parking lot is repaved.  Eventually, we buy it.  We get whatever a
 fourth-hand owning real estate company managed to dig up.  I should be
 glad there's a building shown.  :-)

 -- Ben


And this is a more realistic assesment of it.  Where' the drawings go which
is what we figured would happen with ours.

Steven

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Wireless bridge between buildings.

[Ben Scott]

On Wed, Feb 1, 2012 at 10:46 AM, Steven Peck sep...@gmail.com wrote:
 While I admit that in the first few months I tripped over every string line,
 fell into almost every ditch and stumbled over most of the stakes in the
 ground and occasionally got order deliverys wrong, I guarantee you that
 every pipe was within a foot of where I drew it.

  In my experience, perfection is not a real condition.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Curious networking anomaly in Win7 Pro box

[Kurt Buff]

Haven't heard from him yet today. I've pinged him via email - we'll
see if he tried it, or if he just decided to wipe and reinstall...

Kurt

On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com wrote:
 The trace routes weren't informative?

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 4:21 PM
 To: NT System Admin Issues
 Subject: Re: Curious networking anomaly in Win7 Pro box

 Not dropping in the sense you mean - I'd still see a traceroute or
 other ICMP packets in tcpdump, but they wouldn't go anywhere.

 More to the point, pings to multiple addresses on the same remote
 subnet are treated the same, and when he's doing the unsuccessful
 pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
 not reaching the office's firewall at all.

 Also, no other machine is having this difficulty - if they can ping
 one address on the remote subnet, they can ping all.

 I even went so far as to have him specify the TTL in the pings at 254,
 with a timeout of 300ms (usual response time is ~200m, and I didn't
 want to wait the full 1000ms).

 As further background, the network firewalls I have are Sidewinders
 (now known as McAfee Enterprise Secure firewalls, since the
 acquisition) and are a hardened version of FreeBSD. I can ssh into the
 box, run tcpdump just like any other *nix and see what's coming across
 the wire.

 Kurt

 On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net wrote:
 Doesn't this imply you are dropping at least some ICMP at the firewall, then?

 On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com wrote:
 No drops at the firewall.

 Forgot to have him do a traceroute - the firewall doesn't allow
 traceroutes to pass through it, so that doesn't usually occur to me,
 but in this case it would prove useful.

 I'll have him try that.

 Kurt

 On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh k...@colonialsavings.com 
 wrote:
 Compare trace routes from the anomalous machine to the devices you can 
 connect to with trace routes to the ones you can't.
 Check firewall logs for drops.

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 12:56 PM
 To: NT System Admin Issues
 Subject: Curious networking anomaly in Win7 Pro box

 All,

 Just one machine in our UK office is affected, and I haven't been able
 to figure it out. All other machines seem to be working fine.

 This one laptop cannot talk to a few addresses in our US server subnet.

 For instance, this machine can ping the file server, and the Exchange
 server, but not the DCs, nor a new terminal server, nor the address of
 the router on that subnet. However, all of the machines he's trying to
 ping by name resolve to correct IP addresses.

 We put Wireshark on this machine, and it thinks its emitting the ICMP
 packets, but when I fired up tcpdump on the internal interface of the
 firewall for his office, I verified that it was not seeing packets for
 those machines that he was trying to ping, and it was seeing packets
 for the machines to which he was able to connect.

 I did a 'route print', to see if there were something odd there, but
 saw nothing interesting.

 A malware scan came up clean - and it's a new install of Win7 Pro over XP.

 I turned off any services that looked interesting, including the
 Aventail connection service, the Windows firewall, and a couple of
 others, with no change in result.

 Haven't had a chance to examine the event logs on the laptop. The
 laptop is probably going to be wiped before I can work with him on it
 again, but I'm still very curious. Has anyone seen anything like this
 before?

 Kurt

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: 

Re: ESXi 4 Host access

[Richard Stovall]

What is the default gateway on the ESXi server's management NIC?  Is it the
same as the other machines on your subnet?

On Wed, Feb 1, 2012 at 11:34 AM, Dave Vantine dvant...@gmail.com wrote:

 I am a VMware newbie and have a ESXi host running on my local subnet. I am
 able to ping this machine by IP and  can access this machine with the
 Vsphere client to manage the guest on this subnet.

 I want to give access to the host to an administrator located at our
 branch office on a different subnet. We have a site to site vpn and all the
 other machines on the two subnet are pingable except for the ESXi host.
 When you try to ping the host or run a Vsphere client from the branch
 subnet there is no response. I know for certain that there is nothing
 blocking the traffic between the subnets so there must be something within
 the ESXi host that is only allowing IP's on the local subnet to communicate
 with it. Any idea on how I can get the Vsphere client on the remote networ
 to be able to connect?

 --
 Thanks In Advance
 Dave Vantine

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ESXi 4 Host access

[Miguel Gonzalez]

and maybe the netmask needs to be checked too




 De: Richard Stovall rich...@gmail.com
Para: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com 
Enviado: Miércoles 1 de febrero de 2012 19:46
Asunto: Re: ESXi 4 Host access
 

What is the default gateway on the ESXi server's management NIC?  Is it the 
same as the other machines on your subnet?


On Wed, Feb 1, 2012 at 11:34 AM, Dave Vantine dvant...@gmail.com wrote:

I am a VMware newbie and have a ESXi host running on my local subnet. I am able 
to ping this machine by IP and  can access this machine with the Vsphere client 
to manage the guest on this subnet.
 
I want to give access to the host to an administrator located at our branch 
office on a different subnet. We have a site to site vpn and all the other 
machines on the two subnet are pingable except for the ESXi host. When you try 
to ping the host or run a Vsphere client from the branch subnet there is no 
response. I know for certain that there is nothing blocking the traffic 
between the subnets so there must be something within the ESXi host that is 
only allowing IP's on the local subnet to communicate with it. Any idea on how 
I can get the Vsphere client on the remote networ to be able to connect? 

-- 
Thanks In Advance
Dave Vantine
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: The Security Earthquake That Nobody Felt

[Mathew Shember]

I guess the snark wasn't obvious.

The AV is tolerable as long as you have ePO going.   However, my 
enlightenment happened when there was a fast moving version of sdbot which 
snuck by and I had to user higher tiered support.   They identified it with 
Kaspersky.

We were going to use ironmail (another company) but decided against it after 
hearing the announcement.


-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Monday, January 30, 2012 4:28 PM
To: NT System Admin Issues
Subject: Re: The Security Earthquake That Nobody Felt

Well, yes, actually, and they are part of Intel, and have been acquiring 
companies for themselves - for instance, Secure Computing a few years ago, for 
their Sidewinder firewalls (which are now McAfee Secure Enterprise Firewalls), 
among others.

I still don't like their AV product, but they haven't yet ruined the firewall...

Kurt

On Mon, Jan 30, 2012 at 15:57, Mathew Shember mathew.shem...@synopsys.com 
wrote:
 Mcafee is sti in business?

 - Original Message -
 From: Stu Sjouwerman [mailto:s...@sunbelt-software.com]
 Sent: Monday, January 30, 2012 02:46 PM
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Subject: The Security Earthquake That Nobody Felt

      * The Security Earthquake That Nobody Felt

 Wow, this is actually major security news. I found this on the blog 
 from Coretrace, and they said: This week, McAfee, one of the two 
 dominant forces in reactive, blacklist-based endpoint security, 
 actively and unequivocally endorsed Application Whitelisting. 
 Ironically, in hard coverage of Symantec's recent problems with 
 pcAnywhere, the industry is actively recommending application whitelisting 
 too. Here is the link:
 http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobody-
 felt-mcafee-endorses-application-whitelisting/

 So, what is the big news? It turns security on its head. Instead of 
 keeping bad code out, with application whitelisting (also known as 
 Application Control) you only allow known-good code to run. That's 
 really a 180, and very, very interesting from a system admin perspective.

 I have done some research in this area and have written a whitepaper 
 about whitelisting, and why as a system admin you should look into 
 this for the near future. This is a new security layer for your 
 'defense-in-depth'. You will hear more from me about whitelisting this year:
 http://www.knowbe4.com/resources/the-endpoint-security-advantages-of-w
 hitelisting-a-whitepaper-for-system-administrators/

 Warm regards,

 Stu


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: ESXi 4 Host access

[Harry Singh]

I manually create an A record in DNS for all my hosts. There is a way to
add them to an AD domain, but start with creating a static DNS record first.

+1 on making sure you set up the default gw and the right subnet.


On Wed, Feb 1, 2012 at 1:53 PM, Miguel Gonzalez
miguel_3_gonza...@yahoo.eswrote:

  and maybe the netmask needs to be checked too

   --
 *De:* Richard Stovall rich...@gmail.com
 *Para:* NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 *Enviado:* Miércoles 1 de febrero de 2012 19:46
 *Asunto:* Re: ESXi 4 Host access

 What is the default gateway on the ESXi server's management NIC?  Is it
 the same as the other machines on your subnet?

 On Wed, Feb 1, 2012 at 11:34 AM, Dave Vantine dvant...@gmail.com wrote:

 I am a VMware newbie and have a ESXi host running on my local subnet. I am
 able to ping this machine by IP and  can access this machine with the
 Vsphere client to manage the guest on this subnet.

 I want to give access to the host to an administrator located at our
 branch office on a different subnet. We have a site to site vpn and all the
 other machines on the two subnet are pingable except for the ESXi host.
 When you try to ping the host or run a Vsphere client from the branch
 subnet there is no response. I know for certain that there is nothing
 blocking the traffic between the subnets so there must be something within
 the ESXi host that is only allowing IP's on the local subnet to communicate
 with it. Any idea on how I can get the Vsphere client on the remote networ
 to be able to connect?

 --
 Thanks In Advance
 Dave Vantine
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: ESXi 4 Host access

[Sean Rector]

This got me on one node of my file server cluster.  “Somehow” (I really don’t 
know how it happened), the gateway IP was blanked and our branch office 
(connected via VPLS  2 routers) couldn’t touch it.  Entered Gateway  bam!

 

Sean Rector, MCSE

 

From: Richard Stovall [mailto:rich...@gmail.com] 
Sent: Wednesday, February 01, 2012 1:47 PM
To: NT System Admin Issues
Subject: Re: ESXi 4 Host access

 

What is the default gateway on the ESXi server's management NIC?  Is it the 
same as the other machines on your subnet?

On Wed, Feb 1, 2012 at 11:34 AM, Dave Vantine dvant...@gmail.com wrote:

I am a VMware newbie and have a ESXi host running on my local subnet. I am able 
to ping this machine by IP and  can access this machine with the Vsphere client 
to manage the guest on this subnet.

 

I want to give access to the host to an administrator located at our branch 
office on a different subnet. We have a site to site vpn and all the other 
machines on the two subnet are pingable except for the ESXi host. When you try 
to ping the host or run a Vsphere client from the branch subnet there is no 
response. I know for certain that there is nothing blocking the traffic between 
the subnets so there must be something within the ESXi host that is only 
allowing IP's on the local subnet to communicate with it. Any idea on how I can 
get the Vsphere client on the remote networ to be able to connect? 

-- 
Thanks In Advance
Dave Vantine

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


Information Technology Manager
Virginia Opera Association 
E-Mail:   sean.rec...@vaopera.org
Phone:(757) 213-4548 (direct line)
{+}
Tickets and Subscriptions On Sale Now!
Orphée | The Mikado
Visit us online at www.VaOpera.org or call 1-866-OPERA-VA

Experience the Beauty, Power  Passion of Virginia Opera.

This e-mail and any attached files are confidential and intended solely for the 
intended recipient(s). Unless otherwise specified, persons unnamed as 
recipients may not read, distribute, copy or alter this e-mail. Any views or 
opinions expressed in this e-mail belong to the author and may not necessarily 
represent those of Virginia Opera. Although precautions have been taken to 
ensure no viruses are present, Virginia Opera cannot accept responsibility for 
any loss or damage that may arise from the use of this e-mail or attachments.
{*}
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Patch management software...

[ntsysadmin]

I'm not running any SBS servers here and wasn't really concerned about patching 
servers anyway. Most of my clients are so small that they have only one or two 
servers and patching is done manually. I was reading the product's support 
forum last night and the techs seem to be very knowledgeable and responsive to 
user requests and feature requests. I feel like I've struck gold finding 
this... Thanks again to the person that posted about Desktop Central.

From: James Hill [mailto:falc...@gmail.com]
Sent: Wednesday, February 01, 2012 12:26 AM
To: NT System Admin Issues
Subject: RE: Patch management software...

I doesn't list SBS as a supported OS though, which is a concern.

From: ntsysadmin [mailto:ntsysad...@rccs.org]
Sent: Wednesday, 1 February 2012 4:35 AM
To: NT System Admin Issues
Subject: RE: Patch management software...

Thanks for all of the replies. I'm looking over the recommended apps and 
installing the demos.

So far ManageEngine (http://www.manageengine.com/products/desktop-central/) 
looks like the winner. The functionality is awesome, web-based UI is beautiful 
and easy to read/navigate, feature-set - looks like it does so much I will have 
to read the docs to discover all the features. It does look like it's still 
free for 25 or fewer PCs, which is just amazing. This will work for most of my 
clients, I will get quotes for the larger ones. If you're not familiar with 
this product, I would highly recommend installing the free demo and trying it 
out. I am VERY impressed.

Thanks,

Mike

From: Dennis Hoefer 
[mailto:dhoe...@ufcoop.com]mailto:[mailto:dhoe...@ufcoop.com]
Sent: Monday, January 30, 2012 6:37 PM
To: NT System Admin Issues
Subject: RE: Patch management software...

For the small Windows installations you might take a look at Desktop Central by 
ManageEngine, I believe they still offer a free version for up to 25 
workstations.

Dennis

From: ntsysadmin [mailto:ntsysad...@rccs.org]
Sent: Monday, January 30, 2012 3:59 PM
To: NT System Admin Issues
Subject: Patch management software...

I'm looking for affordable patch management software for several of my small 
business clients. Workstation numbers range from 4-80 PCs running XP, Vista, 
Windows7 and a few Macs. It's okay if I can't find anything to work with the 
Macs. I like the Secunia product but I didn't see an offering for users with 
very small number of workstations. What are people using? Are there any free 
options out there that are worthwhile?

Thanks,

Mike


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Curious networking anomaly in Win7 Pro box

[Kurt Buff]

I've just learned that he's on the road on an emergency service call.

I may not hear from him for days...

Kurt

On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com wrote:
 The trace routes weren't informative?

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 4:21 PM
 To: NT System Admin Issues
 Subject: Re: Curious networking anomaly in Win7 Pro box

 Not dropping in the sense you mean - I'd still see a traceroute or
 other ICMP packets in tcpdump, but they wouldn't go anywhere.

 More to the point, pings to multiple addresses on the same remote
 subnet are treated the same, and when he's doing the unsuccessful
 pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
 not reaching the office's firewall at all.

 Also, no other machine is having this difficulty - if they can ping
 one address on the remote subnet, they can ping all.

 I even went so far as to have him specify the TTL in the pings at 254,
 with a timeout of 300ms (usual response time is ~200m, and I didn't
 want to wait the full 1000ms).

 As further background, the network firewalls I have are Sidewinders
 (now known as McAfee Enterprise Secure firewalls, since the
 acquisition) and are a hardened version of FreeBSD. I can ssh into the
 box, run tcpdump just like any other *nix and see what's coming across
 the wire.

 Kurt

 On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net wrote:
 Doesn't this imply you are dropping at least some ICMP at the firewall, then?

 On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com wrote:
 No drops at the firewall.

 Forgot to have him do a traceroute - the firewall doesn't allow
 traceroutes to pass through it, so that doesn't usually occur to me,
 but in this case it would prove useful.

 I'll have him try that.

 Kurt

 On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh k...@colonialsavings.com 
 wrote:
 Compare trace routes from the anomalous machine to the devices you can 
 connect to with trace routes to the ones you can't.
 Check firewall logs for drops.

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 12:56 PM
 To: NT System Admin Issues
 Subject: Curious networking anomaly in Win7 Pro box

 All,

 Just one machine in our UK office is affected, and I haven't been able
 to figure it out. All other machines seem to be working fine.

 This one laptop cannot talk to a few addresses in our US server subnet.

 For instance, this machine can ping the file server, and the Exchange
 server, but not the DCs, nor a new terminal server, nor the address of
 the router on that subnet. However, all of the machines he's trying to
 ping by name resolve to correct IP addresses.

 We put Wireshark on this machine, and it thinks its emitting the ICMP
 packets, but when I fired up tcpdump on the internal interface of the
 firewall for his office, I verified that it was not seeing packets for
 those machines that he was trying to ping, and it was seeing packets
 for the machines to which he was able to connect.

 I did a 'route print', to see if there were something odd there, but
 saw nothing interesting.

 A malware scan came up clean - and it's a new install of Win7 Pro over XP.

 I turned off any services that looked interesting, including the
 Aventail connection service, the Windows firewall, and a couple of
 others, with no change in result.

 Haven't had a chance to examine the event logs on the laptop. The
 laptop is probably going to be wiped before I can work with him on it
 again, but I'm still very curious. Has anyone seen anything like this
 before?

 Kurt

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Curious networking anomaly in Win7 Pro box

[Kim Longenbaugh]

The suspense is killing me...  :)

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Wednesday, February 01, 2012 2:08 PM
To: NT System Admin Issues
Subject: Re: Curious networking anomaly in Win7 Pro box

I've just learned that he's on the road on an emergency service call.

I may not hear from him for days...

Kurt

On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com wrote:
 The trace routes weren't informative?

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 4:21 PM
 To: NT System Admin Issues
 Subject: Re: Curious networking anomaly in Win7 Pro box

 Not dropping in the sense you mean - I'd still see a traceroute or
 other ICMP packets in tcpdump, but they wouldn't go anywhere.

 More to the point, pings to multiple addresses on the same remote
 subnet are treated the same, and when he's doing the unsuccessful
 pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
 not reaching the office's firewall at all.

 Also, no other machine is having this difficulty - if they can ping
 one address on the remote subnet, they can ping all.

 I even went so far as to have him specify the TTL in the pings at 254,
 with a timeout of 300ms (usual response time is ~200m, and I didn't
 want to wait the full 1000ms).

 As further background, the network firewalls I have are Sidewinders
 (now known as McAfee Enterprise Secure firewalls, since the
 acquisition) and are a hardened version of FreeBSD. I can ssh into the
 box, run tcpdump just like any other *nix and see what's coming across
 the wire.

 Kurt

 On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net wrote:
 Doesn't this imply you are dropping at least some ICMP at the firewall, then?

 On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com wrote:
 No drops at the firewall.

 Forgot to have him do a traceroute - the firewall doesn't allow
 traceroutes to pass through it, so that doesn't usually occur to me,
 but in this case it would prove useful.

 I'll have him try that.

 Kurt

 On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh k...@colonialsavings.com 
 wrote:
 Compare trace routes from the anomalous machine to the devices you can 
 connect to with trace routes to the ones you can't.
 Check firewall logs for drops.

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 12:56 PM
 To: NT System Admin Issues
 Subject: Curious networking anomaly in Win7 Pro box

 All,

 Just one machine in our UK office is affected, and I haven't been able
 to figure it out. All other machines seem to be working fine.

 This one laptop cannot talk to a few addresses in our US server subnet.

 For instance, this machine can ping the file server, and the Exchange
 server, but not the DCs, nor a new terminal server, nor the address of
 the router on that subnet. However, all of the machines he's trying to
 ping by name resolve to correct IP addresses.

 We put Wireshark on this machine, and it thinks its emitting the ICMP
 packets, but when I fired up tcpdump on the internal interface of the
 firewall for his office, I verified that it was not seeing packets for
 those machines that he was trying to ping, and it was seeing packets
 for the machines to which he was able to connect.

 I did a 'route print', to see if there were something odd there, but
 saw nothing interesting.

 A malware scan came up clean - and it's a new install of Win7 Pro over XP.

 I turned off any services that looked interesting, including the
 Aventail connection service, the Windows firewall, and a couple of
 others, with no change in result.

 Haven't had a chance to examine the event logs on the laptop. The
 laptop is probably going to be wiped before I can work with him on it
 again, but I'm still very curious. Has anyone seen anything like this
 before?

 Kurt

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ 

Re: Curious networking anomaly in Win7 Pro box

[Kurt Buff]

LOL.

Patience, grasshopper...

Kurt

On Wed, Feb 1, 2012 at 12:49, Kim Longenbaugh k...@colonialsavings.com wrote:
 The suspense is killing me...  :)

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Wednesday, February 01, 2012 2:08 PM
 To: NT System Admin Issues
 Subject: Re: Curious networking anomaly in Win7 Pro box

 I've just learned that he's on the road on an emergency service call.

 I may not hear from him for days...

 Kurt

 On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com 
 wrote:
 The trace routes weren't informative?

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 4:21 PM
 To: NT System Admin Issues
 Subject: Re: Curious networking anomaly in Win7 Pro box

 Not dropping in the sense you mean - I'd still see a traceroute or
 other ICMP packets in tcpdump, but they wouldn't go anywhere.

 More to the point, pings to multiple addresses on the same remote
 subnet are treated the same, and when he's doing the unsuccessful
 pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
 not reaching the office's firewall at all.

 Also, no other machine is having this difficulty - if they can ping
 one address on the remote subnet, they can ping all.

 I even went so far as to have him specify the TTL in the pings at 254,
 with a timeout of 300ms (usual response time is ~200m, and I didn't
 want to wait the full 1000ms).

 As further background, the network firewalls I have are Sidewinders
 (now known as McAfee Enterprise Secure firewalls, since the
 acquisition) and are a hardened version of FreeBSD. I can ssh into the
 box, run tcpdump just like any other *nix and see what's coming across
 the wire.

 Kurt

 On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net wrote:
 Doesn't this imply you are dropping at least some ICMP at the firewall, 
 then?

 On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com wrote:
 No drops at the firewall.

 Forgot to have him do a traceroute - the firewall doesn't allow
 traceroutes to pass through it, so that doesn't usually occur to me,
 but in this case it would prove useful.

 I'll have him try that.

 Kurt

 On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh k...@colonialsavings.com 
 wrote:
 Compare trace routes from the anomalous machine to the devices you can 
 connect to with trace routes to the ones you can't.
 Check firewall logs for drops.

 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Tuesday, January 31, 2012 12:56 PM
 To: NT System Admin Issues
 Subject: Curious networking anomaly in Win7 Pro box

 All,

 Just one machine in our UK office is affected, and I haven't been able
 to figure it out. All other machines seem to be working fine.

 This one laptop cannot talk to a few addresses in our US server subnet.

 For instance, this machine can ping the file server, and the Exchange
 server, but not the DCs, nor a new terminal server, nor the address of
 the router on that subnet. However, all of the machines he's trying to
 ping by name resolve to correct IP addresses.

 We put Wireshark on this machine, and it thinks its emitting the ICMP
 packets, but when I fired up tcpdump on the internal interface of the
 firewall for his office, I verified that it was not seeing packets for
 those machines that he was trying to ping, and it was seeing packets
 for the machines to which he was able to connect.

 I did a 'route print', to see if there were something odd there, but
 saw nothing interesting.

 A malware scan came up clean - and it's a new install of Win7 Pro over XP.

 I turned off any services that looked interesting, including the
 Aventail connection service, the Windows firewall, and a couple of
 others, with no change in result.

 Haven't had a chance to examine the event logs on the laptop. The
 laptop is probably going to be wiped before I can work with him on it
 again, but I'm still very curious. Has anyone seen anything like this
 before?

 Kurt

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 

Re: Curious networking anomaly in Win7 Pro box

[Jonathan Link]

Or not...if it's a wipe and rebuild we will never know...

On Wed, Feb 1, 2012 at 4:01 PM, Kurt Buff kurt.b...@gmail.com wrote:

 LOL.

 Patience, grasshopper...

 Kurt

 On Wed, Feb 1, 2012 at 12:49, Kim Longenbaugh k...@colonialsavings.com
 wrote:
  The suspense is killing me...  :)
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Wednesday, February 01, 2012 2:08 PM
  To: NT System Admin Issues
  Subject: Re: Curious networking anomaly in Win7 Pro box
 
  I've just learned that he's on the road on an emergency service call.
 
  I may not hear from him for days...
 
  Kurt
 
  On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com
 wrote:
  The trace routes weren't informative?
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Tuesday, January 31, 2012 4:21 PM
  To: NT System Admin Issues
  Subject: Re: Curious networking anomaly in Win7 Pro box
 
  Not dropping in the sense you mean - I'd still see a traceroute or
  other ICMP packets in tcpdump, but they wouldn't go anywhere.
 
  More to the point, pings to multiple addresses on the same remote
  subnet are treated the same, and when he's doing the unsuccessful
  pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
  not reaching the office's firewall at all.
 
  Also, no other machine is having this difficulty - if they can ping
  one address on the remote subnet, they can ping all.
 
  I even went so far as to have him specify the TTL in the pings at 254,
  with a timeout of 300ms (usual response time is ~200m, and I didn't
  want to wait the full 1000ms).
 
  As further background, the network firewalls I have are Sidewinders
  (now known as McAfee Enterprise Secure firewalls, since the
  acquisition) and are a hardened version of FreeBSD. I can ssh into the
  box, run tcpdump just like any other *nix and see what's coming across
  the wire.
 
  Kurt
 
  On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net
 wrote:
  Doesn't this imply you are dropping at least some ICMP at the
 firewall, then?
 
  On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com
 wrote:
  No drops at the firewall.
 
  Forgot to have him do a traceroute - the firewall doesn't allow
  traceroutes to pass through it, so that doesn't usually occur to me,
  but in this case it would prove useful.
 
  I'll have him try that.
 
  Kurt
 
  On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh 
 k...@colonialsavings.com wrote:
  Compare trace routes from the anomalous machine to the devices you
 can connect to with trace routes to the ones you can't.
  Check firewall logs for drops.
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Tuesday, January 31, 2012 12:56 PM
  To: NT System Admin Issues
  Subject: Curious networking anomaly in Win7 Pro box
 
  All,
 
  Just one machine in our UK office is affected, and I haven't been
 able
  to figure it out. All other machines seem to be working fine.
 
  This one laptop cannot talk to a few addresses in our US server
 subnet.
 
  For instance, this machine can ping the file server, and the Exchange
  server, but not the DCs, nor a new terminal server, nor the address
 of
  the router on that subnet. However, all of the machines he's trying
 to
  ping by name resolve to correct IP addresses.
 
  We put Wireshark on this machine, and it thinks its emitting the ICMP
  packets, but when I fired up tcpdump on the internal interface of the
  firewall for his office, I verified that it was not seeing packets
 for
  those machines that he was trying to ping, and it was seeing packets
  for the machines to which he was able to connect.
 
  I did a 'route print', to see if there were something odd there, but
  saw nothing interesting.
 
  A malware scan came up clean - and it's a new install of Win7 Pro
 over XP.
 
  I turned off any services that looked interesting, including the
  Aventail connection service, the Windows firewall, and a couple of
  others, with no change in result.
 
  Haven't had a chance to examine the event logs on the laptop. The
  laptop is probably going to be wiped before I can work with him on it
  again, but I'm still very curious. Has anyone seen anything like this
  before?
 
  Kurt
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin
 
 
  ~ Finally, powerful endpoint 

Re: Curious networking anomaly in Win7 Pro box

[Ben Scott]

On Wed, Feb 1, 2012 at 3:49 PM, Kim Longenbaugh
k...@colonialsavings.com wrote:
 I've just learned that he's on the road on an emergency service call.
 I may not hear from him for days...

 The suspense is killing me...  :)

  That reminds me of:

http://www.gifbin.com/982501

  ;-)  (No offense intended.)

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Curious networking anomaly in Win7 Pro box

[Kim Longenbaugh]

Hahahaha, the old see other side joke for the information age.

-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com] 
Sent: Wednesday, February 01, 2012 3:06 PM
To: NT System Admin Issues
Subject: Re: Curious networking anomaly in Win7 Pro box

On Wed, Feb 1, 2012 at 3:49 PM, Kim Longenbaugh
k...@colonialsavings.com wrote:
 I've just learned that he's on the road on an emergency service call.
 I may not hear from him for days...

 The suspense is killing me...  :)

  That reminds me of:

http://www.gifbin.com/982501

  ;-)  (No offense intended.)

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Curious networking anomaly in Win7 Pro box

[Kurt Buff]

True, but at this point it's beyond my control, so emotional
investment in the outcome is pointless..

On Wed, Feb 1, 2012 at 13:04, Jonathan Link jonathan.l...@gmail.com wrote:
 Or not...if it's a wipe and rebuild we will never know...


 On Wed, Feb 1, 2012 at 4:01 PM, Kurt Buff kurt.b...@gmail.com wrote:

 LOL.

 Patience, grasshopper...

 Kurt

 On Wed, Feb 1, 2012 at 12:49, Kim Longenbaugh k...@colonialsavings.com
 wrote:
  The suspense is killing me...  :)
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Wednesday, February 01, 2012 2:08 PM
  To: NT System Admin Issues
  Subject: Re: Curious networking anomaly in Win7 Pro box
 
  I've just learned that he's on the road on an emergency service call.
 
  I may not hear from him for days...
 
  Kurt
 
  On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com
  wrote:
  The trace routes weren't informative?
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Tuesday, January 31, 2012 4:21 PM
  To: NT System Admin Issues
  Subject: Re: Curious networking anomaly in Win7 Pro box
 
  Not dropping in the sense you mean - I'd still see a traceroute or
  other ICMP packets in tcpdump, but they wouldn't go anywhere.
 
  More to the point, pings to multiple addresses on the same remote
  subnet are treated the same, and when he's doing the unsuccessful
  pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
  not reaching the office's firewall at all.
 
  Also, no other machine is having this difficulty - if they can ping
  one address on the remote subnet, they can ping all.
 
  I even went so far as to have him specify the TTL in the pings at 254,
  with a timeout of 300ms (usual response time is ~200m, and I didn't
  want to wait the full 1000ms).
 
  As further background, the network firewalls I have are Sidewinders
  (now known as McAfee Enterprise Secure firewalls, since the
  acquisition) and are a hardened version of FreeBSD. I can ssh into the
  box, run tcpdump just like any other *nix and see what's coming across
  the wire.
 
  Kurt
 
  On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net
  wrote:
  Doesn't this imply you are dropping at least some ICMP at the
  firewall, then?
 
  On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com
  wrote:
  No drops at the firewall.
 
  Forgot to have him do a traceroute - the firewall doesn't allow
  traceroutes to pass through it, so that doesn't usually occur to me,
  but in this case it would prove useful.
 
  I'll have him try that.
 
  Kurt
 
  On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh
  k...@colonialsavings.com wrote:
  Compare trace routes from the anomalous machine to the devices you
  can connect to with trace routes to the ones you can't.
  Check firewall logs for drops.
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Tuesday, January 31, 2012 12:56 PM
  To: NT System Admin Issues
  Subject: Curious networking anomaly in Win7 Pro box
 
  All,
 
  Just one machine in our UK office is affected, and I haven't been
  able
  to figure it out. All other machines seem to be working fine.
 
  This one laptop cannot talk to a few addresses in our US server
  subnet.
 
  For instance, this machine can ping the file server, and the
  Exchange
  server, but not the DCs, nor a new terminal server, nor the address
  of
  the router on that subnet. However, all of the machines he's trying
  to
  ping by name resolve to correct IP addresses.
 
  We put Wireshark on this machine, and it thinks its emitting the
  ICMP
  packets, but when I fired up tcpdump on the internal interface of
  the
  firewall for his office, I verified that it was not seeing packets
  for
  those machines that he was trying to ping, and it was seeing packets
  for the machines to which he was able to connect.
 
  I did a 'route print', to see if there were something odd there, but
  saw nothing interesting.
 
  A malware scan came up clean - and it's a new install of Win7 Pro
  over XP.
 
  I turned off any services that looked interesting, including the
  Aventail connection service, the Windows firewall, and a couple of
  others, with no change in result.
 
  Haven't had a chance to examine the event logs on the laptop. The
  laptop is probably going to be wiped before I can work with him on
  it
  again, but I'm still very curious. Has anyone seen anything like
  this
  before?
 
  Kurt
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
  http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage 

Microsoft VM - 5 ways of backing up?

[Jay Kulsh]

After reading numerous articles, it seems to me that there may be 5 ways of 
backing up a Microsoft VM:

1. Doing an on-line backup using a VSS-aware software like Microsoft's SCVMM or 
Altaro, etc.

2. Doing an on-line backup from the host machine, of all VMs, of all critical 
disks, using built-in WBadmin. (Many conditions must be met for this to work, 
but they are doable in most cases.)

3. Saving the VM (not quite stopping it, but neither is VM on-line; perhaps we 
can think that VM is in sleep mode.)

4. Exporting a VM after stopping it.

5. Copying VHD file (along with XML  BIN files?) after stopping it.

Where am I wrong here? May be some of these methods should not be characterized 
as backups. Of the valid methods, which is most reliable and which is most easy 
to accomplish? Thanks.

Jay Kulsh
So. Pasadena, CA 93063
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Curious networking anomaly in Win7 Pro box

[Kim Longenbaugh]

Well said, Mr. Spock

-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Wednesday, February 01, 2012 3:57 PM
To: NT System Admin Issues
Subject: Re: Curious networking anomaly in Win7 Pro box

True, but at this point it's beyond my control, so emotional
investment in the outcome is pointless..

On Wed, Feb 1, 2012 at 13:04, Jonathan Link jonathan.l...@gmail.com wrote:
 Or not...if it's a wipe and rebuild we will never know...


 On Wed, Feb 1, 2012 at 4:01 PM, Kurt Buff kurt.b...@gmail.com wrote:

 LOL.

 Patience, grasshopper...

 Kurt

 On Wed, Feb 1, 2012 at 12:49, Kim Longenbaugh k...@colonialsavings.com
 wrote:
  The suspense is killing me...  :)
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Wednesday, February 01, 2012 2:08 PM
  To: NT System Admin Issues
  Subject: Re: Curious networking anomaly in Win7 Pro box
 
  I've just learned that he's on the road on an emergency service call.
 
  I may not hear from him for days...
 
  Kurt
 
  On Wed, Feb 1, 2012 at 06:41, Kim Longenbaugh k...@colonialsavings.com
  wrote:
  The trace routes weren't informative?
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Tuesday, January 31, 2012 4:21 PM
  To: NT System Admin Issues
  Subject: Re: Curious networking anomaly in Win7 Pro box
 
  Not dropping in the sense you mean - I'd still see a traceroute or
  other ICMP packets in tcpdump, but they wouldn't go anywhere.
 
  More to the point, pings to multiple addresses on the same remote
  subnet are treated the same, and when he's doing the unsuccessful
  pings, there's nothing in tcpdump - just nothing. AFAICT, it's simply
  not reaching the office's firewall at all.
 
  Also, no other machine is having this difficulty - if they can ping
  one address on the remote subnet, they can ping all.
 
  I even went so far as to have him specify the TTL in the pings at 254,
  with a timeout of 300ms (usual response time is ~200m, and I didn't
  want to wait the full 1000ms).
 
  As further background, the network firewalls I have are Sidewinders
  (now known as McAfee Enterprise Secure firewalls, since the
  acquisition) and are a hardened version of FreeBSD. I can ssh into the
  box, run tcpdump just like any other *nix and see what's coming across
  the wire.
 
  Kurt
 
  On Tue, Jan 31, 2012 at 13:01, Steve Kradel skra...@zetetic.net
  wrote:
  Doesn't this imply you are dropping at least some ICMP at the
  firewall, then?
 
  On Tue, Jan 31, 2012 at 3:45 PM, Kurt Buff kurt.b...@gmail.com
  wrote:
  No drops at the firewall.
 
  Forgot to have him do a traceroute - the firewall doesn't allow
  traceroutes to pass through it, so that doesn't usually occur to me,
  but in this case it would prove useful.
 
  I'll have him try that.
 
  Kurt
 
  On Tue, Jan 31, 2012 at 11:04, Kim Longenbaugh
  k...@colonialsavings.com wrote:
  Compare trace routes from the anomalous machine to the devices you
  can connect to with trace routes to the ones you can't.
  Check firewall logs for drops.
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Tuesday, January 31, 2012 12:56 PM
  To: NT System Admin Issues
  Subject: Curious networking anomaly in Win7 Pro box
 
  All,
 
  Just one machine in our UK office is affected, and I haven't been
  able
  to figure it out. All other machines seem to be working fine.
 
  This one laptop cannot talk to a few addresses in our US server
  subnet.
 
  For instance, this machine can ping the file server, and the
  Exchange
  server, but not the DCs, nor a new terminal server, nor the address
  of
  the router on that subnet. However, all of the machines he's trying
  to
  ping by name resolve to correct IP addresses.
 
  We put Wireshark on this machine, and it thinks its emitting the
  ICMP
  packets, but when I fired up tcpdump on the internal interface of
  the
  firewall for his office, I verified that it was not seeing packets
  for
  those machines that he was trying to ping, and it was seeing packets
  for the machines to which he was able to connect.
 
  I did a 'route print', to see if there were something odd there, but
  saw nothing interesting.
 
  A malware scan came up clean - and it's a new install of Win7 Pro
  over XP.
 
  I turned off any services that looked interesting, including the
  Aventail connection service, the Windows firewall, and a couple of
  others, with no change in result.
 
  Haven't had a chance to examine the event logs on the laptop. The
  laptop is probably going to be wiped before I can work with him on
  it
  again, but I'm still very curious. Has anyone seen anything like
  this
  before?
 
  Kurt
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
  http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to 

Edge Device Experences

[Rhonda Richardson]

We are looking to replace an outdated edge device and have narrowed it down 
between the Palo Alto PA-5020 and the SonicWALL NSA E6500 or E8510.
 
Does anyone have experience with these devices?  I am looking for pros/cons of 
each device.
 
Thanks.
 
Rhonda

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

OT - ugh!

[Jacob Kisner]

Nothing sucks more than being interviewed for a position at a
different company last Tuesday, then being called Thursday to say we
are going to offer you a position and finally being told today that we
changed our mind... We did not realize you were with the same company
for 15 years...  WTF?

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[Don Kuhlman]

That makes no sense - why do they care where you were for 15 years...Sorry to 
hear that Jacob.

I just started a new position - temp for 9 months, nice place - nice people so 
far.

I'm getting into MAC/Linux support so it's a stretch for me (windows 
background), but it's a job and a chance to learn.

Good luck!

Don K




 From: Jacob Kisner jbdkis...@gmail.com
To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com 
Sent: Wednesday, February 1, 2012 5:19 PM
Subject: OT - ugh!
 
Nothing sucks more than being interviewed for a position at a
different company last Tuesday, then being called Thursday to say we
are going to offer you a position and finally being told today that we
changed our mind... We did not realize you were with the same company
for 15 years...  WTF?

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[Kurt Buff]

On Wed, Feb 1, 2012 at 15:19, Jacob Kisner jbdkis...@gmail.com wrote:
 Nothing sucks more than being interviewed for a position at a
 different company last Tuesday, then being called Thursday to say we
 are going to offer you a position and finally being told today that we
 changed our mind... We did not realize you were with the same company
 for 15 years...  WTF?

WTF indeed.

I would think that would be a positive indicator, as long as you were
otherwise qualified for the position.

Kurt

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[Jacob Kisner]

Because we feel  you are not diversified enough to address our issues.

Same issues I have addressed over the years poor issue management, no
project management, no documentation, crashing servers, IT staff
treating the network like a high school lab.. etc. Not only can I stop
the bleeding and stabilize the patient (gave then how I would do it),
I can implement a more proactive approach to IT management and stop
the fires (also gave details.)

I guess they rather have the fires...


On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com wrote:
 That makes no sense - why do they care where you were for 15 years...Sorry
 to hear that Jacob.

 I just started a new position - temp for 9 months, nice place - nice people
 so far.

 I'm getting into MAC/Linux support so it's a stretch for me (windows
 background), but it's a job and a chance to learn.

 Good luck!

 Don K

 
 From: Jacob Kisner jbdkis...@gmail.com
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Sent: Wednesday, February 1, 2012 5:19 PM
 Subject: OT - ugh!

 Nothing sucks more than being interviewed for a position at a
 different company last Tuesday, then being called Thursday to say we
 are going to offer you a position and finally being told today that we
 changed our mind... We did not realize you were with the same company
 for 15 years...  WTF?

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[Robert Cato]

I do not agree with the mentality, but I have heard the argument: If they
were any good, they would be changing jobs every 2-5 years to expand their
skills. Depending on the environment, most companies change (refresh
technology) every 2-5 years so that would force some expansion of skills.
Another scenario is that you started in one role and changed your role,
probably more than once in that 15 years.

Sorry for the bad news, hopefully you will find something.

Robert

On Wed, Feb 1, 2012 at 6:19 PM, Jacob Kisner jbdkis...@gmail.com wrote:

 Nothing sucks more than being interviewed for a position at a
 different company last Tuesday, then being called Thursday to say we
 are going to offer you a position and finally being told today that we
 changed our mind... We did not realize you were with the same company
 for 15 years...  WTF?

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Microsoft VM - 5 ways of backing up?

[David Lum]

If my WBadmin you mean native Windows 2008 backup, I use effectively that to 
back up my VM's. I use a product called BackupAssist which is basically a more 
flexible front-end. I point the files to an eSATA RAID attached to the same 
machine and a NAS that's in a different building.

-Original Message-
From: Jay Kulsh [mailto:jayku...@csi.com] 
Sent: Wednesday, February 01, 2012 1:39 PM
To: NT System Admin Issues
Subject: Microsoft VM - 5 ways of backing up?

After reading numerous articles, it seems to me that there may be 5 ways of 
backing up a Microsoft VM:

1. Doing an on-line backup using a VSS-aware software like Microsoft's SCVMM or 
Altaro, etc.

2. Doing an on-line backup from the host machine, of all VMs, of all critical 
disks, using built-in WBadmin. (Many conditions must be met for this to work, 
but they are doable in most cases.)

3. Saving the VM (not quite stopping it, but neither is VM on-line; perhaps we 
can think that VM is in sleep mode.)

4. Exporting a VM after stopping it.

5. Copying VHD file (along with XML  BIN files?) after stopping it.

Where am I wrong here? May be some of these methods should not be characterized 
as backups. Of the valid methods, which is most reliable and which is most easy 
to accomplish? Thanks.

Jay Kulsh
So. Pasadena, CA 93063
~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT - ugh!

[James Hill]

I feel for you.

But try and look at this way.  If they can't see the value you can offer now
then it would only be a continual uphill fight if you were employed by them.

You are better off with an employer that shares your values.

-Original Message-
From: Jacob Kisner [mailto:jbdkis...@gmail.com] 
Sent: Thursday, 2 February 2012 9:52 AM
To: NT System Admin Issues
Subject: Re: OT - ugh!

Because we feel  you are not diversified enough to address our issues.

Same issues I have addressed over the years poor issue management, no
project management, no documentation, crashing servers, IT staff treating
the network like a high school lab.. etc. Not only can I stop the bleeding
and stabilize the patient (gave then how I would do it), I can implement a
more proactive approach to IT management and stop the fires (also gave
details.)

I guess they rather have the fires...


On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com wrote:
 That makes no sense - why do they care where you were for 15 
 years...Sorry to hear that Jacob.

 I just started a new position - temp for 9 months, nice place - nice 
 people so far.

 I'm getting into MAC/Linux support so it's a stretch for me (windows 
 background), but it's a job and a chance to learn.

 Good luck!

 Don K

 
 From: Jacob Kisner jbdkis...@gmail.com
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Sent: Wednesday, February 1, 2012 5:19 PM
 Subject: OT - ugh!

 Nothing sucks more than being interviewed for a position at a 
 different company last Tuesday, then being called Thursday to say we 
 are going to offer you a position and finally being told today that we 
 changed our mind... We did not realize you were with the same company 
 for 15 years...  WTF?

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Microsoft VM - 5 ways of backing up?

[Terry Dickson]

If you have moved to 2008 R2 the backup is pretty great.  We have some 
scheduled straight out of the GUI Interface, and Many scheduled with command 
line and task scheduler.  The Command line is more flexible and you can setup 
up multiple instances, where the GUI is limited to only one job.  We backup 
most of our VM's to onsite and offsite storage weekly.  Once you set them up 
just check in once in a while and make sure that are no errors like space 
issues you are good.  There are also many software vendors that have a 
solution, but I have not tried them yet.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[MMF]

Assuming they're being honest, it tells me that they are not very strong in 
background checking. How could they have missed the fact that you've been 
with one company for more than 10 years. I've NEVER ever heard of a company 
offering a job and then withdrawing the offer, period, much less before 
total background check. I believe that I can fully understand the idea of 
wanting IT staff that has a varied background which would include more than 
one job over a decade. I think you are fortunate that you didn't take the 
job because it sounds to me that the organization isn't of the highest 
quality, if you catch my drift. Sometimes things happen for the best in 
spite of your best efforts. They didn't vet you, but how well did you vet 
them! It's also obvious that they don't recognize talent when they see it!


Murray

-Original Message- 
From: James Hill

Sent: Wednesday, February 01, 2012 6:09 PM
To: NT System Admin Issues
Subject: RE: OT - ugh!

I feel for you.

But try and look at this way.  If they can't see the value you can offer now
then it would only be a continual uphill fight if you were employed by them.

You are better off with an employer that shares your values.

-Original Message-
From: Jacob Kisner [mailto:jbdkis...@gmail.com]
Sent: Thursday, 2 February 2012 9:52 AM
To: NT System Admin Issues
Subject: Re: OT - ugh!

Because we feel  you are not diversified enough to address our issues.

Same issues I have addressed over the years poor issue management, no
project management, no documentation, crashing servers, IT staff treating
the network like a high school lab.. etc. Not only can I stop the bleeding
and stabilize the patient (gave then how I would do it), I can implement a
more proactive approach to IT management and stop the fires (also gave
details.)

I guess they rather have the fires...


On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com wrote:

That makes no sense - why do they care where you were for 15
years...Sorry to hear that Jacob.

I just started a new position - temp for 9 months, nice place - nice
people so far.

I'm getting into MAC/Linux support so it's a stretch for me (windows
background), but it's a job and a chance to learn.

Good luck!

Don K


From: Jacob Kisner jbdkis...@gmail.com
To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
Sent: Wednesday, February 1, 2012 5:19 PM
Subject: OT - ugh!

Nothing sucks more than being interviewed for a position at a
different company last Tuesday, then being called Thursday to say we
are going to offer you a position and finally being told today that we
changed our mind... We did not realize you were with the same company
for 15 years...  WTF?

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/

or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin 



~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT - ugh!

[Webster]

Last year I was in the final interview for a Citrix Architect position for a 
very large company in Nashville.  IIRC, it was like interview #6 or 7 in the 
process.  I had been talking with the executive for over 45 minutes when all 
of a sudden he says Oh, I'm sorry I didn't realize you had no college degree. 
 This position requires a degree.  Sorry. Click.

I then took MBS' advice and went solo.   I say screw FTE! :)


Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com

 -Original Message-
 From: MMF [mailto:mmfree...@ameritech.net]
 Sent: Wednesday, February 01, 2012 6:43 PM
 To: NT System Admin Issues
 Subject: Re: OT - ugh!
 
 Assuming they're being honest, it tells me that they are not very strong in
 background checking. How could they have missed the fact that you've been
 with one company for more than 10 years. I've NEVER ever heard of a
 company offering a job and then withdrawing the offer, period, much less
 before total background check. I believe that I can fully understand the idea
 of wanting IT staff that has a varied background which would include more
 than one job over a decade. I think you are fortunate that you didn't take
 the job because it sounds to me that the organization isn't of the highest
 quality, if you catch my drift. Sometimes things happen for the best in spite
 of your best efforts. They didn't vet you, but how well did you vet them! It's
 also obvious that they don't recognize talent when they see it!
 
 Murray
 
 -Original Message-
 From: James Hill
 Sent: Wednesday, February 01, 2012 6:09 PM
 To: NT System Admin Issues
 Subject: RE: OT - ugh!
 
 I feel for you.
 
 But try and look at this way.  If they can't see the value you can offer now
 then it would only be a continual uphill fight if you were employed by
 them.
 
 You are better off with an employer that shares your values.
 
 -Original Message-
 From: Jacob Kisner [mailto:jbdkis...@gmail.com]
 Sent: Thursday, 2 February 2012 9:52 AM
 To: NT System Admin Issues
 Subject: Re: OT - ugh!
 
 Because we feel  you are not diversified enough to address our issues.
 
 Same issues I have addressed over the years poor issue management, no
 project management, no documentation, crashing servers, IT staff treating
 the network like a high school lab.. etc. Not only can I stop the bleeding and
 stabilize the patient (gave then how I would do it), I can implement a more
 proactive approach to IT management and stop the fires (also gave
 details.)
 
 I guess they rather have the fires...
 
 
 On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com
 wrote:
  That makes no sense - why do they care where you were for 15
  years...Sorry to hear that Jacob.
 
  I just started a new position - temp for 9 months, nice place - nice
  people so far.
 
  I'm getting into MAC/Linux support so it's a stretch for me (windows
  background), but it's a job and a chance to learn.
 
  Good luck!
 
  Don K
 
  
  From: Jacob Kisner jbdkis...@gmail.com
  To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
  Sent: Wednesday, February 1, 2012 5:19 PM
  Subject: OT - ugh!
 
  Nothing sucks more than being interviewed for a position at a
  different company last Tuesday, then being called Thursday to say we
  are going to offer you a position and finally being told today that we
  changed our mind... We did not realize you were with the same company
  for 15 years...  WTF?


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[Sean Martin]

Someone further up the hiring chain probably heard your ideas and felt 
threatened. 

- Sean

On Feb 1, 2012, at 2:52 PM, Jacob Kisner jbdkis...@gmail.com wrote:

 Because we feel  you are not diversified enough to address our issues.
 
 Same issues I have addressed over the years poor issue management, no
 project management, no documentation, crashing servers, IT staff
 treating the network like a high school lab.. etc. Not only can I stop
 the bleeding and stabilize the patient (gave then how I would do it),
 I can implement a more proactive approach to IT management and stop
 the fires (also gave details.)
 
 I guess they rather have the fires...
 
 
 On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com wrote:
 That makes no sense - why do they care where you were for 15 years...Sorry
 to hear that Jacob.
 
 I just started a new position - temp for 9 months, nice place - nice people
 so far.
 
 I'm getting into MAC/Linux support so it's a stretch for me (windows
 background), but it's a job and a chance to learn.
 
 Good luck!
 
 Don K
 
 
 From: Jacob Kisner jbdkis...@gmail.com
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Sent: Wednesday, February 1, 2012 5:19 PM
 Subject: OT - ugh!
 
 Nothing sucks more than being interviewed for a position at a
 different company last Tuesday, then being called Thursday to say we
 are going to offer you a position and finally being told today that we
 changed our mind... We did not realize you were with the same company
 for 15 years...  WTF?
 
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin
 
 
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin
 
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin
 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: The Security Earthquake That Nobody Felt

[Kurt Buff]

We had ePO - it was one of the driving reasons for us to abandon it.
The other reason was the unreasonable amount of resources the client
sucked out of the workstations. Yet another reason was the price - we
got VIPRE Enterprise for the renewal price of McAfee, and the renewal
price on VIPRE was hard to beat.

Hard to say which reason topped the others - kind of a 3-way tie...

Kurt

On Wed, Feb 1, 2012 at 10:56, Mathew Shember
mathew.shem...@synopsys.com wrote:
 I guess the snark wasn't obvious.

 The AV is tolerable as long as you have ePO going.   However, my 
 enlightenment happened when there was a fast moving version of sdbot which 
 snuck by and I had to user higher tiered support.   They identified it with 
 Kaspersky.

 We were going to use ironmail (another company) but decided against it after 
 hearing the announcement.


 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Monday, January 30, 2012 4:28 PM
 To: NT System Admin Issues
 Subject: Re: The Security Earthquake That Nobody Felt

 Well, yes, actually, and they are part of Intel, and have been acquiring 
 companies for themselves - for instance, Secure Computing a few years ago, 
 for their Sidewinder firewalls (which are now McAfee Secure Enterprise 
 Firewalls), among others.

 I still don't like their AV product, but they haven't yet ruined the 
 firewall...

 Kurt

 On Mon, Jan 30, 2012 at 15:57, Mathew Shember mathew.shem...@synopsys.com 
 wrote:
 Mcafee is sti in business?

 - Original Message -
 From: Stu Sjouwerman [mailto:s...@sunbelt-software.com]
 Sent: Monday, January 30, 2012 02:46 PM
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Subject: The Security Earthquake That Nobody Felt

      * The Security Earthquake That Nobody Felt

 Wow, this is actually major security news. I found this on the blog
 from Coretrace, and they said: This week, McAfee, one of the two
 dominant forces in reactive, blacklist-based endpoint security,
 actively and unequivocally endorsed Application Whitelisting.
 Ironically, in hard coverage of Symantec's recent problems with
 pcAnywhere, the industry is actively recommending application whitelisting 
 too. Here is the link:
 http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobody-
 felt-mcafee-endorses-application-whitelisting/

 So, what is the big news? It turns security on its head. Instead of
 keeping bad code out, with application whitelisting (also known as
 Application Control) you only allow known-good code to run. That's
 really a 180, and very, very interesting from a system admin perspective.

 I have done some research in this area and have written a whitepaper
 about whitelisting, and why as a system admin you should look into
 this for the near future. This is a new security layer for your
 'defense-in-depth'. You will hear more from me about whitelisting this year:
 http://www.knowbe4.com/resources/the-endpoint-security-advantages-of-w
 hitelisting-a-whitepaper-for-system-administrators/

 Warm regards,

 Stu


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT - ugh!

[Michael B. Smith]

...and it was about damn time, too!

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com


-Original Message-
From: Webster [mailto:webs...@carlwebster.com] 
Sent: Wednesday, February 01, 2012 8:16 PM
To: NT System Admin Issues
Subject: RE: OT - ugh!

Last year I was in the final interview for a Citrix Architect position for a 
very large company in Nashville.  IIRC, it was like interview #6 or 7 in the 
process.  I had been talking with the executive for over 45 minutes when all 
of a sudden he says Oh, I'm sorry I didn't realize you had no college degree. 
 This position requires a degree.  Sorry. Click.

I then took MBS' advice and went solo.   I say screw FTE! :)


Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com

 -Original Message-
 From: MMF [mailto:mmfree...@ameritech.net]
 Sent: Wednesday, February 01, 2012 6:43 PM
 To: NT System Admin Issues
 Subject: Re: OT - ugh!
 
 Assuming they're being honest, it tells me that they are not very strong in
 background checking. How could they have missed the fact that you've been
 with one company for more than 10 years. I've NEVER ever heard of a
 company offering a job and then withdrawing the offer, period, much less
 before total background check. I believe that I can fully understand the idea
 of wanting IT staff that has a varied background which would include more
 than one job over a decade. I think you are fortunate that you didn't take
 the job because it sounds to me that the organization isn't of the highest
 quality, if you catch my drift. Sometimes things happen for the best in spite
 of your best efforts. They didn't vet you, but how well did you vet them! It's
 also obvious that they don't recognize talent when they see it!
 
 Murray
 
 -Original Message-
 From: James Hill
 Sent: Wednesday, February 01, 2012 6:09 PM
 To: NT System Admin Issues
 Subject: RE: OT - ugh!
 
 I feel for you.
 
 But try and look at this way.  If they can't see the value you can offer now
 then it would only be a continual uphill fight if you were employed by
 them.
 
 You are better off with an employer that shares your values.
 
 -Original Message-
 From: Jacob Kisner [mailto:jbdkis...@gmail.com]
 Sent: Thursday, 2 February 2012 9:52 AM
 To: NT System Admin Issues
 Subject: Re: OT - ugh!
 
 Because we feel  you are not diversified enough to address our issues.
 
 Same issues I have addressed over the years poor issue management, no
 project management, no documentation, crashing servers, IT staff treating
 the network like a high school lab.. etc. Not only can I stop the bleeding and
 stabilize the patient (gave then how I would do it), I can implement a more
 proactive approach to IT management and stop the fires (also gave
 details.)
 
 I guess they rather have the fires...
 
 
 On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com
 wrote:
  That makes no sense - why do they care where you were for 15
  years...Sorry to hear that Jacob.
 
  I just started a new position - temp for 9 months, nice place - nice
  people so far.
 
  I'm getting into MAC/Linux support so it's a stretch for me (windows
  background), but it's a job and a chance to learn.
 
  Good luck!
 
  Don K
 
  
  From: Jacob Kisner jbdkis...@gmail.com
  To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
  Sent: Wednesday, February 1, 2012 5:19 PM
  Subject: OT - ugh!
 
  Nothing sucks more than being interviewed for a position at a
  different company last Tuesday, then being called Thursday to say we
  are going to offer you a position and finally being told today that we
  changed our mind... We did not realize you were with the same company
  for 15 years...  WTF?


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: The Security Earthquake That Nobody Felt

[Mathew Shember]

Really?

We found ePO rather easy.   What problems did you have with it?

Vipre wasn't available back then so they went with SEP   ;)




-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Wednesday, February 01, 2012 5:24 PM
To: NT System Admin Issues
Subject: Re: The Security Earthquake That Nobody Felt

We had ePO - it was one of the driving reasons for us to abandon it.
The other reason was the unreasonable amount of resources the client sucked out 
of the workstations. Yet another reason was the price - we got VIPRE Enterprise 
for the renewal price of McAfee, and the renewal price on VIPRE was hard to 
beat.

Hard to say which reason topped the others - kind of a 3-way tie...

Kurt

On Wed, Feb 1, 2012 at 10:56, Mathew Shember mathew.shem...@synopsys.com 
wrote:
 I guess the snark wasn't obvious.

 The AV is tolerable as long as you have ePO going.   However, my 
 enlightenment happened when there was a fast moving version of sdbot which 
 snuck by and I had to user higher tiered support.   They identified it with 
 Kaspersky.

 We were going to use ironmail (another company) but decided against it after 
 hearing the announcement.


 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Monday, January 30, 2012 4:28 PM
 To: NT System Admin Issues
 Subject: Re: The Security Earthquake That Nobody Felt

 Well, yes, actually, and they are part of Intel, and have been acquiring 
 companies for themselves - for instance, Secure Computing a few years ago, 
 for their Sidewinder firewalls (which are now McAfee Secure Enterprise 
 Firewalls), among others.

 I still don't like their AV product, but they haven't yet ruined the 
 firewall...

 Kurt

 On Mon, Jan 30, 2012 at 15:57, Mathew Shember mathew.shem...@synopsys.com 
 wrote:
 Mcafee is sti in business?

 - Original Message -
 From: Stu Sjouwerman [mailto:s...@sunbelt-software.com]
 Sent: Monday, January 30, 2012 02:46 PM
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Subject: The Security Earthquake That Nobody Felt

      * The Security Earthquake That Nobody Felt

 Wow, this is actually major security news. I found this on the blog 
 from Coretrace, and they said: This week, McAfee, one of the two 
 dominant forces in reactive, blacklist-based endpoint security, 
 actively and unequivocally endorsed Application Whitelisting.
 Ironically, in hard coverage of Symantec's recent problems with 
 pcAnywhere, the industry is actively recommending application whitelisting 
 too. Here is the link:
 http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobody
 - felt-mcafee-endorses-application-whitelisting/

 So, what is the big news? It turns security on its head. Instead of 
 keeping bad code out, with application whitelisting (also known as 
 Application Control) you only allow known-good code to run. That's 
 really a 180, and very, very interesting from a system admin perspective.

 I have done some research in this area and have written a whitepaper 
 about whitelisting, and why as a system admin you should look into 
 this for the near future. This is a new security layer for your 
 'defense-in-depth'. You will hear more from me about whitelisting this year:
 http://www.knowbe4.com/resources/the-endpoint-security-advantages-of-
 w hitelisting-a-whitepaper-for-system-administrators/

 Warm regards,

 Stu


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 

RE: Cron for Windows 2008

[Rod Trent]

Need to run a wget command.

 

 

Rod Trent

 http://www.myitforum.com/ Description: myITSMButton
http://twitter.com/rodtrent Description: TwitterButton
http://www.facebook.com/rodtrent Description: Facebookbutton
http://www.linkedin.com/profile/view?id=2881785 Description:
LinkedInButton

 

From: Michael B. Smith [mailto:mich...@smithcons.com] 
Sent: Wednesday, February 01, 2012 6:01 PM
To: NT System Admin Issues
Subject: RE: Cron for Windows 2008

 

I gotta ask - what's wrong with Task Scheduler? It was basically re-written
for LH and has lots of nice features and functionality now.

 

Regards,

 

Michael B. Smith

Consultant and Exchange MVP

http://TheEssentialExchange.com

 

From: Rod Trent [mailto:rodtr...@myitforum.com] 
Sent: Wednesday, February 01, 2012 5:53 PM
To: NT System Admin Issues
Subject: Cron for Windows 2008

 

Anyone running Cron jobs on Windows 2008?

 

I need a good, stable Cron app.  Hopefully something that can be run as a
service, but not required.

 

 

 

 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadminimage001.pngimage002.pngimage003.pngimage004.png

RE: OT - ugh!

[Mathew Shember]

+1

I had a similar experience.  Multiple interviews and in the last one I become 
unqualified.   Person would have been my peer.

-Original Message-
From: Sean Martin [mailto:seanmarti...@gmail.com] 
Sent: Wednesday, February 01, 2012 5:21 PM
To: NT System Admin Issues
Cc: NT System Admin Issues
Subject: Re: OT - ugh!

Someone further up the hiring chain probably heard your ideas and felt 
threatened. 

- Sean

On Feb 1, 2012, at 2:52 PM, Jacob Kisner jbdkis...@gmail.com wrote:

 Because we feel  you are not diversified enough to address our issues.
 
 Same issues I have addressed over the years poor issue management, no 
 project management, no documentation, crashing servers, IT staff 
 treating the network like a high school lab.. etc. Not only can I stop 
 the bleeding and stabilize the patient (gave then how I would do it), 
 I can implement a more proactive approach to IT management and stop 
 the fires (also gave details.)
 
 I guess they rather have the fires...
 
 
 On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com wrote:
 That makes no sense - why do they care where you were for 15 
 years...Sorry to hear that Jacob.
 
 I just started a new position - temp for 9 months, nice place - nice 
 people so far.
 
 I'm getting into MAC/Linux support so it's a stretch for me (windows 
 background), but it's a job and a chance to learn.
 
 Good luck!
 
 Don K
 
 
 From: Jacob Kisner jbdkis...@gmail.com
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Sent: Wednesday, February 1, 2012 5:19 PM
 Subject: OT - ugh!
 
 Nothing sucks more than being interviewed for a position at a 
 different company last Tuesday, then being called Thursday to say we 
 are going to offer you a position and finally being told today that 
 we changed our mind... We did not realize you were with the same 
 company for 15 years...  WTF?
 
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin
 
 
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin
 
 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
 ---
 To manage subscriptions click here: 
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin
 

~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Cron for Windows 2008

[Michael B. Smith]

You can do that from TS.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Rod Trent [mailto:rodtr...@myitforum.com]
Sent: Wednesday, February 01, 2012 9:19 PM
To: NT System Admin Issues
Subject: RE: Cron for Windows 2008

Need to run a wget command.


Rod Trent
[Description: myITSMButton]http://www.myitforum.com/[Description: 
TwitterButton]http://twitter.com/rodtrent[Description: 
Facebookbutton]http://www.facebook.com/rodtrent[Description: 
LinkedInButton]http://www.linkedin.com/profile/view?id=2881785

From: Michael B. Smith 
[mailto:mich...@smithcons.com]mailto:[mailto:mich...@smithcons.com]
Sent: Wednesday, February 01, 2012 6:01 PM
To: NT System Admin Issues
Subject: RE: Cron for Windows 2008

I gotta ask - what's wrong with Task Scheduler? It was basically re-written for 
LH and has lots of nice features and functionality now...

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Rod Trent 
[mailto:rodtr...@myitforum.com]mailto:[mailto:rodtr...@myitforum.com]
Sent: Wednesday, February 01, 2012 5:53 PM
To: NT System Admin Issues
Subject: Cron for Windows 2008

Anyone running Cron jobs on Windows 2008?

I need a good, stable Cron app.  Hopefully something that can be run as a 
service, but not required.





~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmininline: image001.pnginline: image002.pnginline: image003.pnginline: image004.png

Re: Cron for Windows 2008

[Richard Stovall]

I used to run wget from a powershell script using a scheduled task.  (Then
I figured out how to do the same thing with just powershell and got rid of
wget.)


On Wed, Feb 1, 2012 at 7:18 PM, Rod Trent rodtr...@myitforum.com wrote:

 Need to run a wget command.

 ** **

 ** **

 *Rod Trent*

 [image: Description: myITSMButton] http://www.myitforum.com/[image:
 Description: TwitterButton] http://twitter.com/rodtrent[image:
 Description: Facebookbutton] http://www.facebook.com/rodtrent[image:
 Description: LinkedInButton]http://www.linkedin.com/profile/view?id=2881785
 

 ** **

 *From:* Michael B. Smith [mailto:mich...@smithcons.com]
 *Sent:* Wednesday, February 01, 2012 6:01 PM

 *To:* NT System Admin Issues
 *Subject:* RE: Cron for Windows 2008

 ** **

 I gotta ask – what’s wrong with Task Scheduler? It was basically
 re-written for LH and has lots of nice features and functionality now…

 ** **

 Regards,

 ** **

 Michael B. Smith

 Consultant and Exchange MVP

 http://TheEssentialExchange.com

 ** **

 *From:* Rod Trent [mailto:rodtr...@myitforum.com]
 *Sent:* Wednesday, February 01, 2012 5:53 PM
 *To:* NT System Admin Issues
 *Subject:* Cron for Windows 2008

 ** **

 Anyone running Cron jobs on Windows 2008?

  

 I need a good, stable Cron app.  Hopefully something that can be run as a
 service, but not required.

 ** **

 ** **

 ** **

 ** **

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadminimage001.pngimage002.pngimage003.pngimage004.png

Re: Cron for Windows 2008

[Ben Scott]

On Wed, Feb 1, 2012 at 9:30 PM, Michael B. Smith mich...@smithcons.com wrote:
 Need to run a wget command.

 You can do that from TS.

  +1.  I'm a big *nix fan but even I wouldn't bother trying to run
cron on *doze.  I've run wget (from a CMD batch file) from the Win
2000 Task Scheduler even.

-- Ben

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Cron for Windows 2008

[Harry Singh]

I'd for one be very interested in knowing what is the PS equivalent to
wget.

On Wednesday, February 1, 2012, Richard Stovall rich...@gmail.com wrote:
 I used to run wget from a powershell script using a scheduled task.
 (Then I figured out how to do the same thing with just powershell and got
rid of wget.)

 On Wed, Feb 1, 2012 at 7:18 PM, Rod Trent rodtr...@myitforum.com wrote:

 Need to run a wget command.





 Rod Trent


thismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.1disp=embrealattid=c1ce1794ec09ac12_0.1zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.2disp=embrealattid=c1ce1794ec09ac12_0.2zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.3disp=embrealattid=c1ce1794ec09ac12_0.3zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.4disp=embrealattid=c1ce1794ec09ac12_0.4zw



 From: Michael B. Smith [mailto:mich...@smithcons.com]
 Sent: Wednesday, February 01, 2012 6:01 PM

 To: NT System Admin Issues
 Subject: RE: Cron for Windows 2008



 I gotta ask – what’s wrong with Task Scheduler? It was basically
re-written for LH and has lots of nice features and functionality now…



 Regards,



 Michael B. Smith

 Consultant and Exchange MVP

 http://TheEssentialExchange.com



 From: Rod Trent [mailto:rodtr...@myitforum.com]
 Sent: Wednesday, February 01, 2012 5:53 PM
 To: NT System Admin Issues
 Subject: Cron for Windows 2008



 Anyone running Cron jobs on Windows 2008?



 I need a good, stable Cron app.  Hopefully something that can be run as a
service, but not required.









 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: OT - ugh!

[Erik Goldoff]

Sounds like very thinly veiled age discrimination to me


Erik Goldoff
IT  Consultant
Systems, Networks,  Security 

'  Security is an ongoing process, not a one time event ! '



-Original Message-
From: Jacob Kisner [mailto:jbdkis...@gmail.com] 
Sent: Wednesday, February 01, 2012 6:52 PM
To: NT System Admin Issues
Subject: Re: OT - ugh!

Because we feel  you are not diversified enough to address our issues.

Same issues I have addressed over the years poor issue management, no
project management, no documentation, crashing servers, IT staff
treating the network like a high school lab.. etc. Not only can I stop
the bleeding and stabilize the patient (gave then how I would do it),
I can implement a more proactive approach to IT management and stop
the fires (also gave details.)

I guess they rather have the fires...


On Wed, Feb 1, 2012 at 3:27 PM, Don Kuhlman drkuhl...@yahoo.com wrote:
 That makes no sense - why do they care where you were for 15 years...Sorry
 to hear that Jacob.

 I just started a new position - temp for 9 months, nice place - nice
people
 so far.

 I'm getting into MAC/Linux support so it's a stretch for me (windows
 background), but it's a job and a chance to learn.

 Good luck!

 Don K

 
 From: Jacob Kisner jbdkis...@gmail.com
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Sent: Wednesday, February 1, 2012 5:19 PM
 Subject: OT - ugh!

 Nothing sucks more than being interviewed for a position at a
 different company last Tuesday, then being called Thursday to say we
 are going to offer you a position and finally being told today that we
 changed our mind... We did not realize you were with the same company
 for 15 years...  WTF?

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Cron for Windows 2008

[Michael B. Smith]

Not quite that simple, as wget is a very capable utility with lots of options.

That being said, System.Net.WebClient has most of the capabilities that are 
exposed by wget. And PowerShell can natively use System.Net.WebClient.

Regards,

Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com

From: Harry Singh [mailto:hbo...@gmail.com]
Sent: Wednesday, February 01, 2012 9:59 PM
To: NT System Admin Issues
Subject: Re: Cron for Windows 2008

I'd for one be very interested in knowing what is the PS equivalent to wget.

On Wednesday, February 1, 2012, Richard Stovall 
rich...@gmail.commailto:rich...@gmail.com wrote:
 I used to run wget from a powershell script using a scheduled task.  (Then I 
 figured out how to do the same thing with just powershell and got rid of 
 wget.)

 On Wed, Feb 1, 2012 at 7:18 PM, Rod Trent 
 rodtr...@myitforum.commailto:rodtr...@myitforum.com wrote:

 Need to run a wget command.





 Rod Trent

 thismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.1disp=embrealattid=c1ce1794ec09ac12_0.1zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.2disp=embrealattid=c1ce1794ec09ac12_0.2zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.3disp=embrealattid=c1ce1794ec09ac12_0.3zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.4disp=embrealattid=c1ce1794ec09ac12_0.4zw



 From: Michael B. Smith 
 [mailto:mich...@smithcons.commailto:mich...@smithcons.com]
 Sent: Wednesday, February 01, 2012 6:01 PM

 To: NT System Admin Issues
 Subject: RE: Cron for Windows 2008



 I gotta ask – what’s wrong with Task Scheduler? It was basically re-written 
 for LH and has lots of nice features and functionality now…



 Regards,



 Michael B. Smith

 Consultant and Exchange MVP

 http://TheEssentialExchange.com



 From: Rod Trent [mailto:rodtr...@myitforum.commailto:rodtr...@myitforum.com]
 Sent: Wednesday, February 01, 2012 5:53 PM
 To: NT System Admin Issues
 Subject: Cron for Windows 2008



 Anyone running Cron jobs on Windows 2008?



 I need a good, stable Cron app.  Hopefully something that can be run as a 
 service, but not required.









 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: Cron for Windows 2008

[Joseph L. Casale]

I think another lmgtfy is in order :)
Seriously, first couple hits take you to the popular scripts that do it...

From: Harry Singh [hbo...@gmail.com]
Sent: Wednesday, February 01, 2012 7:58 PM
To: NT System Admin Issues
Subject: Re: Cron for Windows 2008

I'd for one be very interested in knowing what is the PS equivalent to wget.

On Wednesday, February 1, 2012, Richard Stovall 
rich...@gmail.commailto:rich...@gmail.com wrote:
 I used to run wget from a powershell script using a scheduled task.  (Then I 
 figured out how to do the same thing with just powershell and got rid of 
 wget.)

 On Wed, Feb 1, 2012 at 7:18 PM, Rod Trent 
 rodtr...@myitforum.commailto:rodtr...@myitforum.com wrote:

 Need to run a wget command.





 Rod Trent

 thismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.1disp=embrealattid=c1ce1794ec09ac12_0.1zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.2disp=embrealattid=c1ce1794ec09ac12_0.2zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.3disp=embrealattid=c1ce1794ec09ac12_0.3zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.4disp=embrealattid=c1ce1794ec09ac12_0.4zw



 From: Michael B. Smith 
 [mailto:mich...@smithcons.commailto:mich...@smithcons.com]
 Sent: Wednesday, February 01, 2012 6:01 PM

 To: NT System Admin Issues
 Subject: RE: Cron for Windows 2008



 I gotta ask – what’s wrong with Task Scheduler? It was basically re-written 
 for LH and has lots of nice features and functionality now…



 Regards,



 Michael B. Smith

 Consultant and Exchange MVP

 http://TheEssentialExchange.com



 From: Rod Trent [mailto:rodtr...@myitforum.commailto:rodtr...@myitforum.com]
 Sent: Wednesday, February 01, 2012 5:53 PM
 To: NT System Admin Issues
 Subject: Cron for Windows 2008



 Anyone running Cron jobs on Windows 2008?



 I need a good, stable Cron app.  Hopefully something that can be run as a 
 service, but not required.









 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to 
listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT - ugh!

[Jacob Kisner]

I been in four positions with the company.. web development, sys
admin, it manager and just recently director (which really is the same
at the IT manger, just a restructuring of positions).

I actually started when the web just started.  And, yes, as we grow
and refreshed out technology, obviously I have to keep abreast of
newer technologies and plan/implement them.

The only issue I had was.. do not call me saying you are going to
offer me the position and then back out because of how long I stayed
at my current company.

You figure that the high school grad getting paid $9 an hour to
forward/reject resumes would have known this.. or the recruiter of the
company that did the phone screen... or the HR person in the 1st
interview and the CTO in the second interview would have seen this on
my resume/application.  Four people did not realize I worked at the
same company for 15 years until they thought about offering me the
position.. little unprofessional if you ask me.

But hey.. probably not a place I want to work at anyways now that I
think about it...

On Wed, Feb 1, 2012 at 3:54 PM, Robert Cato cato.rob...@gmail.com wrote:

 I do not agree with the mentality, but I have heard the argument: If they
 were any good, they would be changing jobs every 2-5 years to expand their
 skills. Depending on the environment, most companies change (refresh
 technology) every 2-5 years so that would force some expansion of skills.
 Another scenario is that you started in one role and changed your role,
 probably more than once in that 15 years.

 Sorry for the bad news, hopefully you will find something.

 Robert

 On Wed, Feb 1, 2012 at 6:19 PM, Jacob Kisner jbdkis...@gmail.com wrote:

 Nothing sucks more than being interviewed for a position at a
 different company last Tuesday, then being called Thursday to say we
 are going to offer you a position and finally being told today that we
 changed our mind... We did not realize you were with the same company
 for 15 years...  WTF?

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Cron for Windows 2008

[Harry Singh]

First couple links on Google give you options Michael mentioned and the new
Get-Web. Curious to know which option was used, that's all man. Seriously.

On Wednesday, February 1, 2012, Joseph L. Casale jcas...@activenetwerx.com
wrote:
 I think another lmgtfy is in order :)
 Seriously, first couple hits take you to the popular scripts that do it...
 
 From: Harry Singh [hbo...@gmail.com]
 Sent: Wednesday, February 01, 2012 7:58 PM
 To: NT System Admin Issues
 Subject: Re: Cron for Windows 2008

 I'd for one be very interested in knowing what is the PS equivalent to
wget.

 On Wednesday, February 1, 2012, Richard Stovall rich...@gmail.com wrote:
 I used to run wget from a powershell script using a scheduled task.
 (Then I figured out how to do the same thing with just powershell and got
rid of wget.)

 On Wed, Feb 1, 2012 at 7:18 PM, Rod Trent rodtr...@myitforum.com wrote:

 Need to run a wget command.





 Rod Trent


thismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.1disp=embrealattid=c1ce1794ec09ac12_0.1zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.2disp=embrealattid=c1ce1794ec09ac12_0.2zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.3disp=embrealattid=c1ce1794ec09ac12_0.3zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.4disp=embrealattid=c1ce1794ec09ac12_0.4zw



 From: Michael B. Smith [mailto:mich...@smithcons.com]
 Sent: Wednesday, February 01, 2012 6:01 PM

 To: NT System Admin Issues
 Subject: RE: Cron for Windows 2008



 I gotta ask – what’s wrong with Task Scheduler? It was basically
re-written for LH and has lots of nice features and functionality now…



 Regards,



 Michael B. Smith

 Consultant and Exchange MVP

 http://TheEssentialExchange.com



 From: Rod Trent [mailto:rodtr...@myitforum.com]
 Sent: Wednesday, February 01, 2012 5:53 PM
 To: NT System Admin Issues
 Subject: Cron for Windows 2008



 Anyone running Cron jobs on Windows 2008?



 I need a good, stable Cron app.  Hopefully something that can be run as
a service, but not required.









 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: The Security Earthquake That Nobody Felt

[Kurt Buff]

We found that it didn't actually push the clients out as we wanted -
it was quite erratic, and would fail more often than we could tolerate
- and was *very* slow to update client definitions.

The interface was not intuitive, either.

It's been about 3 years since I worked with it, so it might have
gotten better, but I still won't recommend it.

Kurt

On Wed, Feb 1, 2012 at 18:13, Mathew Shember
mathew.shem...@synopsys.com wrote:
 Really?

 We found ePO rather easy.   What problems did you have with it?

 Vipre wasn't available back then so they went with SEP   ;)




 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Wednesday, February 01, 2012 5:24 PM
 To: NT System Admin Issues
 Subject: Re: The Security Earthquake That Nobody Felt

 We had ePO - it was one of the driving reasons for us to abandon it.
 The other reason was the unreasonable amount of resources the client sucked 
 out of the workstations. Yet another reason was the price - we got VIPRE 
 Enterprise for the renewal price of McAfee, and the renewal price on VIPRE 
 was hard to beat.

 Hard to say which reason topped the others - kind of a 3-way tie...

 Kurt

 On Wed, Feb 1, 2012 at 10:56, Mathew Shember mathew.shem...@synopsys.com 
 wrote:
 I guess the snark wasn't obvious.

 The AV is tolerable as long as you have ePO going.   However, my 
 enlightenment happened when there was a fast moving version of sdbot which 
 snuck by and I had to user higher tiered support.   They identified it with 
 Kaspersky.

 We were going to use ironmail (another company) but decided against it after 
 hearing the announcement.


 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Monday, January 30, 2012 4:28 PM
 To: NT System Admin Issues
 Subject: Re: The Security Earthquake That Nobody Felt

 Well, yes, actually, and they are part of Intel, and have been acquiring 
 companies for themselves - for instance, Secure Computing a few years ago, 
 for their Sidewinder firewalls (which are now McAfee Secure Enterprise 
 Firewalls), among others.

 I still don't like their AV product, but they haven't yet ruined the 
 firewall...

 Kurt

 On Mon, Jan 30, 2012 at 15:57, Mathew Shember mathew.shem...@synopsys.com 
 wrote:
 Mcafee is sti in business?

 - Original Message -
 From: Stu Sjouwerman [mailto:s...@sunbelt-software.com]
 Sent: Monday, January 30, 2012 02:46 PM
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Subject: The Security Earthquake That Nobody Felt

      * The Security Earthquake That Nobody Felt

 Wow, this is actually major security news. I found this on the blog
 from Coretrace, and they said: This week, McAfee, one of the two
 dominant forces in reactive, blacklist-based endpoint security,
 actively and unequivocally endorsed Application Whitelisting.
 Ironically, in hard coverage of Symantec's recent problems with
 pcAnywhere, the industry is actively recommending application whitelisting 
 too. Here is the link:
 http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobody
 - felt-mcafee-endorses-application-whitelisting/

 So, what is the big news? It turns security on its head. Instead of
 keeping bad code out, with application whitelisting (also known as
 Application Control) you only allow known-good code to run. That's
 really a 180, and very, very interesting from a system admin perspective.

 I have done some research in this area and have written a whitepaper
 about whitelisting, and why as a system admin you should look into
 this for the near future. This is a new security layer for your
 'defense-in-depth'. You will hear more from me about whitelisting this year:
 http://www.knowbe4.com/resources/the-endpoint-security-advantages-of-
 w hitelisting-a-whitepaper-for-system-administrators/

 Warm regards,

 Stu


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage 

Re: The Security Earthquake That Nobody Felt

[Erik Goldoff]

do you remember what version of ePO ?  The 3.6 and earlier IIRC were MMC
based, and 4.0 and later (VirusScan 8.5 and newer) were java based.
Somewhat different animals.

On Wed, Feb 1, 2012 at 11:48 PM, Kurt Buff kurt.b...@gmail.com wrote:

 We found that it didn't actually push the clients out as we wanted -
 it was quite erratic, and would fail more often than we could tolerate
 - and was *very* slow to update client definitions.

 The interface was not intuitive, either.

 It's been about 3 years since I worked with it, so it might have
 gotten better, but I still won't recommend it.

 Kurt

 On Wed, Feb 1, 2012 at 18:13, Mathew Shember
 mathew.shem...@synopsys.com wrote:
  Really?
 
  We found ePO rather easy.   What problems did you have with it?
 
  Vipre wasn't available back then so they went with SEP   ;)
 
 
 
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Wednesday, February 01, 2012 5:24 PM
  To: NT System Admin Issues
  Subject: Re: The Security Earthquake That Nobody Felt
 
  We had ePO - it was one of the driving reasons for us to abandon it.
  The other reason was the unreasonable amount of resources the client
 sucked out of the workstations. Yet another reason was the price - we got
 VIPRE Enterprise for the renewal price of McAfee, and the renewal price on
 VIPRE was hard to beat.
 
  Hard to say which reason topped the others - kind of a 3-way tie...
 
  Kurt
 
  On Wed, Feb 1, 2012 at 10:56, Mathew Shember 
 mathew.shem...@synopsys.com wrote:
  I guess the snark wasn't obvious.
 
  The AV is tolerable as long as you have ePO going.   However, my
 enlightenment happened when there was a fast moving version of sdbot
 which snuck by and I had to user higher tiered support.   They identified
 it with Kaspersky.
 
  We were going to use ironmail (another company) but decided against it
 after hearing the announcement.
 
 
  -Original Message-
  From: Kurt Buff [mailto:kurt.b...@gmail.com]
  Sent: Monday, January 30, 2012 4:28 PM
  To: NT System Admin Issues
  Subject: Re: The Security Earthquake That Nobody Felt
 
  Well, yes, actually, and they are part of Intel, and have been
 acquiring companies for themselves - for instance, Secure Computing a few
 years ago, for their Sidewinder firewalls (which are now McAfee Secure
 Enterprise Firewalls), among others.
 
  I still don't like their AV product, but they haven't yet ruined the
 firewall...
 
  Kurt
 
  On Mon, Jan 30, 2012 at 15:57, Mathew Shember 
 mathew.shem...@synopsys.com wrote:
  Mcafee is sti in business?
 
  - Original Message -
  From: Stu Sjouwerman [mailto:s...@sunbelt-software.com]
  Sent: Monday, January 30, 2012 02:46 PM
  To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
  Subject: The Security Earthquake That Nobody Felt
 
   * The Security Earthquake That Nobody Felt
 
  Wow, this is actually major security news. I found this on the blog
  from Coretrace, and they said: This week, McAfee, one of the two
  dominant forces in reactive, blacklist-based endpoint security,
  actively and unequivocally endorsed Application Whitelisting.
  Ironically, in hard coverage of Symantec's recent problems with
  pcAnywhere, the industry is actively recommending application
 whitelisting too. Here is the link:
  http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobody
  - felt-mcafee-endorses-application-whitelisting/
 
  So, what is the big news? It turns security on its head. Instead of
  keeping bad code out, with application whitelisting (also known as
  Application Control) you only allow known-good code to run. That's
  really a 180, and very, very interesting from a system admin
 perspective.
 
  I have done some research in this area and have written a whitepaper
  about whitelisting, and why as a system admin you should look into
  this for the near future. This is a new security layer for your
  'defense-in-depth'. You will hear more from me about whitelisting this
 year:
  http://www.knowbe4.com/resources/the-endpoint-security-advantages-of-
  w hitelisting-a-whitepaper-for-system-administrators/
 
  Warm regards,
 
  Stu
 
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
  http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin
 
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
  http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin
 
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
  http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To 

Re: Cron for Windows 2008

[Richard Stovall]

The script I used was VERY simple, and did not do anything but get my
external ip from whatismyip.org[1], add some date and time information,
then write it all out to a log file.  Sorry if my brief answer earlier
implied too much.

[1]  If you ever need to programatically get your external ip without any
other cruft, whatismyip.org is pretty darn handy.

On Wed, Feb 1, 2012 at 9:03 PM, Harry Singh hbo...@gmail.com wrote:

 First couple links on Google give you options Michael mentioned and the
 new Get-Web. Curious to know which option was used, that's all man.
 Seriously.

 On Wednesday, February 1, 2012, Joseph L. Casale 
 jcas...@activenetwerx.com wrote:
  I think another lmgtfy is in order :)
  Seriously, first couple hits take you to the popular scripts that do
 it...
  
  From: Harry Singh [hbo...@gmail.com]
  Sent: Wednesday, February 01, 2012 7:58 PM
  To: NT System Admin Issues
  Subject: Re: Cron for Windows 2008
 
  I'd for one be very interested in knowing what is the PS equivalent to
 wget.
 
  On Wednesday, February 1, 2012, Richard Stovall rich...@gmail.com
 wrote:
  I used to run wget from a powershell script using a scheduled task.
  (Then I figured out how to do the same thing with just powershell and got
 rid of wget.)
 
  On Wed, Feb 1, 2012 at 7:18 PM, Rod Trent rodtr...@myitforum.com
 wrote:
 
  Need to run a wget command.
 
 
 
 
 
  Rod Trent
 
 
 thismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.1disp=embrealattid=c1ce1794ec09ac12_0.1zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.2disp=embrealattid=c1ce1794ec09ac12_0.2zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.3disp=embrealattid=c1ce1794ec09ac12_0.3zwthismessage:/mail/u/0/s/?view=attth=1353beed23172452attid=0.4disp=embrealattid=c1ce1794ec09ac12_0.4zw
 
 
 
  From: Michael B. Smith [mailto:mich...@smithcons.com]
  Sent: Wednesday, February 01, 2012 6:01 PM
 
  To: NT System Admin Issues
  Subject: RE: Cron for Windows 2008
 
 
 
  I gotta ask – what’s wrong with Task Scheduler? It was basically
 re-written for LH and has lots of nice features and functionality now…
 
 
 
  Regards,
 
 
 
  Michael B. Smith
 
  Consultant and Exchange MVP
 
  http://TheEssentialExchange.com
 
 
 
  From: Rod Trent [mailto:rodtr...@myitforum.com]
  Sent: Wednesday, February 01, 2012 5:53 PM
  To: NT System Admin Issues
  Subject: Cron for Windows 2008
 
 
 
  Anyone running Cron jobs on Windows 2008?
 
 
 
  I need a good, stable Cron app.  Hopefully something that can be run as
 a service, but not required.
 
 
 
 
 
 
 
 
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin
 
  ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
  ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~
 
  ---
  To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
  or send an email to listmana...@lyris.sunbeltsoftware.com
  with the body: unsubscribe ntsysadmin

 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
 ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

RE: The Security Earthquake That Nobody Felt

[Mathew Shember]

Sounds like an older version as I remember the push problem.   I think we 
solved it with multiple pushes or was it hand installs?   Most of the 
machines were local.   We didn't see the update problems..

It did get  better.

I wouldn't recommend mcafee more for the AV being at best middle of the 
pack...


-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com] 
Sent: Wednesday, February 01, 2012 8:48 PM
To: NT System Admin Issues
Subject: Re: The Security Earthquake That Nobody Felt

We found that it didn't actually push the clients out as we wanted - it was 
quite erratic, and would fail more often than we could tolerate
- and was *very* slow to update client definitions.

The interface was not intuitive, either.

It's been about 3 years since I worked with it, so it might have gotten better, 
but I still won't recommend it.

Kurt

On Wed, Feb 1, 2012 at 18:13, Mathew Shember mathew.shem...@synopsys.com 
wrote:
 Really?

 We found ePO rather easy.   What problems did you have with it?

 Vipre wasn't available back then so they went with SEP   ;)




 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Wednesday, February 01, 2012 5:24 PM
 To: NT System Admin Issues
 Subject: Re: The Security Earthquake That Nobody Felt

 We had ePO - it was one of the driving reasons for us to abandon it.
 The other reason was the unreasonable amount of resources the client sucked 
 out of the workstations. Yet another reason was the price - we got VIPRE 
 Enterprise for the renewal price of McAfee, and the renewal price on VIPRE 
 was hard to beat.

 Hard to say which reason topped the others - kind of a 3-way tie...

 Kurt

 On Wed, Feb 1, 2012 at 10:56, Mathew Shember mathew.shem...@synopsys.com 
 wrote:
 I guess the snark wasn't obvious.

 The AV is tolerable as long as you have ePO going.   However, my 
 enlightenment happened when there was a fast moving version of sdbot which 
 snuck by and I had to user higher tiered support.   They identified it with 
 Kaspersky.

 We were going to use ironmail (another company) but decided against it after 
 hearing the announcement.


 -Original Message-
 From: Kurt Buff [mailto:kurt.b...@gmail.com]
 Sent: Monday, January 30, 2012 4:28 PM
 To: NT System Admin Issues
 Subject: Re: The Security Earthquake That Nobody Felt

 Well, yes, actually, and they are part of Intel, and have been acquiring 
 companies for themselves - for instance, Secure Computing a few years ago, 
 for their Sidewinder firewalls (which are now McAfee Secure Enterprise 
 Firewalls), among others.

 I still don't like their AV product, but they haven't yet ruined the 
 firewall...

 Kurt

 On Mon, Jan 30, 2012 at 15:57, Mathew Shember mathew.shem...@synopsys.com 
 wrote:
 Mcafee is sti in business?

 - Original Message -
 From: Stu Sjouwerman [mailto:s...@sunbelt-software.com]
 Sent: Monday, January 30, 2012 02:46 PM
 To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
 Subject: The Security Earthquake That Nobody Felt

      * The Security Earthquake That Nobody Felt

 Wow, this is actually major security news. I found this on the blog 
 from Coretrace, and they said: This week, McAfee, one of the two 
 dominant forces in reactive, blacklist-based endpoint security, 
 actively and unequivocally endorsed Application Whitelisting.
 Ironically, in hard coverage of Symantec's recent problems with 
 pcAnywhere, the industry is actively recommending application whitelisting 
 too. Here is the link:
 http://www.coretraceblogs.com/2012-01/security-earthquake-that-nobod
 y
 - felt-mcafee-endorses-application-whitelisting/

 So, what is the big news? It turns security on its head. Instead of 
 keeping bad code out, with application whitelisting (also known as 
 Application Control) you only allow known-good code to run. That's 
 really a 180, and very, very interesting from a system admin perspective.

 I have done some research in this area and have written a whitepaper 
 about whitelisting, and why as a system admin you should look into 
 this for the near future. This is a new security layer for your 
 'defense-in-depth'. You will hear more from me about whitelisting this year:
 http://www.knowbe4.com/resources/the-endpoint-security-advantages-of
 - w hitelisting-a-whitepaper-for-system-administrators/

 Warm regards,

 Stu


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to listmana...@lyris.sunbeltsoftware.com
 with the body: unsubscribe ntsysadmin


 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
 http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

 ---
 To manage subscriptions click here:
 http://lyris.sunbelt-software.com/read/my_forums/
 or send an email to 

RE: Microsoft VM - 5 ways of backing up?

[Jay Kulsh]

Terry,

I think you are backing up your VMs from the host machine which is Windows 2008 
R2. Right? Even with command-line of OBadmin, it is my understanding that you 
need to backup all VMs and entire partions where their files are. Is there 
option to backup individual VMs with command line of OBAdmin in R2? (I am using 
2008 host without R2.) Thanks.

Jay
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin