RE: FoxIT reader vulnerability
By default yes Adobe renders PDF with Javascript, which allows both good and evil javascript to execute, as we all know the various flaws in adobe, this definitely leads to an attack vector which has been exploited time and time again. But seriously I still see Java as the bigger threat, and as others have said it will continue to be this for years to come. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, January 15, 2013 6:30 PM To: NT System Admin Issues Subject: Re: FoxIT reader vulnerability Doesn't Adobe (and possibly other PDF viewers) include PDF rendering with javascript now? I just want a dumb .pdf reader. Is it just me? --Matt Ross Ephrata School District - Original Message - From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Jan 2013 14:46:31 -0800 Subject: Re: FoxIT reader vulnerability On Fri, Jan 11, 2013 at 10:50 AM, Richard McClary richard.mccl...@aspca.org wrote: http://www.theregister.co.uk/2013/01/11/foxit_pdf_plugin_vuln/ Just now checked the FoxIT web site. The currently offered version is 5.4.4.1128, which the article mentions as being vulnerable (as are older versions). May end up having to use Adobe anyway… I strongly suspect FoxIt licenses at least their core code from Adobe. Many features and vulnerabilities seem to track on a one-to-one basis. FoxIt is a lot more lightweight, though, so it prolly has a smaller attack surface overall. It may be they just don't include all the bloat that Adobe does. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: FoxIT reader vulnerability
Took Fortran in College, honestly, hated it... but alas I am an engineer not a code writer :) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, January 15, 2013 9:49 PM To: NT System Admin Issues Subject: Re: FoxIT reader vulnerability I took USCD Pascal, RPG III, COBOL, Fortran, 360 assembler, JCL and probably a couple of other languages as well in a failed attempt at an Associates about then. I heard of the language about then as well, but didn't try to tackle it until I had an Amiga. None of it really stuck - I just wasn't of a mindset to sit and program, and I would have been a whole lot better off if I had been. Kurt On Tue, Jan 15, 2013 at 5:06 PM, Michael B. Smith mich...@smithcons.com wrote: I learned Forth when I was 17, in 1980. It blew my mind. Before that, I knew WATFOR, UCSD Pascal, 6502 assembler, and 8008 assembler. Forth's RPN and its low-level power made me feel as if I could do anything! :) -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Tuesday, January 15, 2013 7:51 PM To: NT System Admin Issues Subject: Re: FoxIT reader vulnerability On Tue, Jan 15, 2013 at 4:45 PM, Ben Scott mailvor...@gmail.com wrote: On Tue, Jan 15, 2013 at 6:29 PM, Matthew W. Ross mr...@ephrataschools.org wrote: Doesn't Adobe (and possibly other PDF viewers) include PDF rendering with javascript now? I just want a dumb .pdf reader. Is it just me? The real irony here is that Adobe originally created PDF to be a safe version of PostScript[1] -- basically disabling the capabilities beyond what's needed to display static content on a page. Those who don't learn from history... -- Ben [1] PostScript can do all sorts of things, including file I/O. Someone implemented a web server in PostScript. PostScript: A Forth generation language... Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
86 fixes in Oracle released today
http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html Fear it, and they still can't get Java Fixed… Oracle=Unbreakable? Naaa its just broken… period. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: FoxIT reader vulnerability
I'm no security expert, but here's a counterpoint on why Adobe Reader would be (in my mind) a bigger threat: * Everybody opens PDFs every day. * There is no did you want to open this prompt for a PDF. * There is (as far as I know) no certificated PDF, or if there is, I have never seen it used. The opposite is true for Java. * Java is used every day, but not nearly to the extent of PDF. * Java will ask if you intended to open the plugin. * Java does allow for signed certificates for validation. I am not arguing which one is worse, because I don't know. But the conversation is interesting to me. --Matt Ross Ephrata School District - Original Message - From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Jan 2013 02:39:02 -0800 Subject: RE: FoxIT reader vulnerability By default yes Adobe renders PDF with Javascript, which allows both good and evil javascript to execute, as we all know the various flaws in adobe, this definitely leads to an attack vector which has been exploited time and time again. But seriously I still see Java as the bigger threat, and as others have said it will continue to be this for years to come. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, January 15, 2013 6:30 PM To: NT System Admin Issues Subject: Re: FoxIT reader vulnerability Doesn't Adobe (and possibly other PDF viewers) include PDF rendering with javascript now? I just want a dumb .pdf reader. Is it just me? --Matt Ross Ephrata School District - Original Message - From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Jan 2013 14:46:31 -0800 Subject: Re: FoxIT reader vulnerability On Fri, Jan 11, 2013 at 10:50 AM, Richard McClary richard.mccl...@aspca.org wrote: http://www.theregister.co.uk/2013/01/11/foxit_pdf_plugin_vuln/ Just now checked the FoxIT web site. The currently offered version is 5.4.4.1128, which the article mentions as being vulnerable (as are older versions). May end up having to use Adobe anyway… I strongly suspect FoxIt licenses at least their core code from Adobe. Many features and vulnerabilities seem to track on a one-to-one basis. FoxIt is a lot more lightweight, though, so it prolly has a smaller attack surface overall. It may be they just don't include all the bloat that Adobe does. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: FoxIT reader vulnerability
* Java will ask if you intended to open the plugin. Which leads to users spamming yes without thinking. * Java does allow for signed certificates for validation. Let's reword this, Java allows for SELF signed certificates for validation. I know someone in the security field that owns an LLC in Ohio called 'Trusted Publisher' and he has self signed certs for Java that say exactly that. Cost him 50 bucks to get it done. Guess what his success rate is on phish emails that link to a java that pops 'Trusted Publisher' on the warning? -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Wednesday, January 16, 2013 11:33 AM To: NT System Admin Issues Subject: RE: FoxIT reader vulnerability I'm no security expert, but here's a counterpoint on why Adobe Reader would be (in my mind) a bigger threat: * Everybody opens PDFs every day. * There is no did you want to open this prompt for a PDF. * There is (as far as I know) no certificated PDF, or if there is, I have never seen it used. The opposite is true for Java. * Java is used every day, but not nearly to the extent of PDF. * Java will ask if you intended to open the plugin. * Java does allow for signed certificates for validation. I am not arguing which one is worse, because I don't know. But the conversation is interesting to me. --Matt Ross Ephrata School District - Original Message - From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Jan 2013 02:39:02 -0800 Subject: RE: FoxIT reader vulnerability By default yes Adobe renders PDF with Javascript, which allows both good and evil javascript to execute, as we all know the various flaws in adobe, this definitely leads to an attack vector which has been exploited time and time again. But seriously I still see Java as the bigger threat, and as others have said it will continue to be this for years to come. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, January 15, 2013 6:30 PM To: NT System Admin Issues Subject: Re: FoxIT reader vulnerability Doesn't Adobe (and possibly other PDF viewers) include PDF rendering with javascript now? I just want a dumb .pdf reader. Is it just me? --Matt Ross Ephrata School District - Original Message - From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Jan 2013 14:46:31 -0800 Subject: Re: FoxIT reader vulnerability On Fri, Jan 11, 2013 at 10:50 AM, Richard McClary richard.mccl...@aspca.org wrote: http://www.theregister.co.uk/2013/01/11/foxit_pdf_plugin_vuln/ Just now checked the FoxIT web site. The currently offered version is 5.4.4.1128, which the article mentions as being vulnerable (as are older versions). May end up having to use Adobe anyway… I strongly suspect FoxIt licenses at least their core code from Adobe. Many features and vulnerabilities seem to track on a one-to-one basis. FoxIt is a lot more lightweight, though, so it prolly has a smaller attack surface overall. It may be they just don't include all the bloat that Adobe does. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or
Re: PowerShell noob issues
Does this help? http://social.technet.microsoft.com/Forums/en-CA/winserverpowershell/thread/6887f6a4-1a64-4dce-8c5e-a20373b6cf4f Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com The Guardian Life Insurance Company of America www.guardianlife.com From: James Rankin kz2...@googlemail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: 01/16/2013 11:42 AM Subject:PowerShell noob issues I'm trying to tidy up some old scripts and move them to PowerShell, but hitting some issues. I want to get PS to call out to an external program (ctxclios.exe, to be precise, http://www.ctrl-alt-del.com.au/files/CTXCliOS.txt), but I want to write the return code from the external program into a Registry value. I'm struggling a bit as how to achieve this. Does anyone have any pointers that might nudge me in the right direction? TIA, -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadminimage/jpeg
Patch management recommendations
I work for a consulting firm that manages a variety of SMB clients. As we increase our client load and the size of the clients (moving from the 3-10 seat to the 50-1000 seat clients) we are implementing more advanced products for a variety of tasks. We are currently looking at patch management solutions. Our current paradigm is a mix of WSUS and manual intervention, but it's not enough, obviously. I haven't used a centralized patch management system for around 5-6 years (used to use early versions of Shavlik) so I haven't been keeping up with the market. We're now looking for something that does 3rd party apps, not just MS stuff, so WSUS is off the table. Our clients are all on MS platforms, though; almost no *nix or Apple. I don't envision a one-size-fits-all product. I expect that we'll want a variety of solutions tailored to the size and complexity of the client. And I have no illusions about the ease of patch management given any product. :-) My boss would love an MSP-style of centrally managed product that can handle all our clients, but my belief is that trying to go that route is much more difficult than doing per-client implementations, especially without dedicated patch management admins. Having said all that, is anyone working with patch management systems that they really like for this space? Also, any you really DON'T like? Thanks! *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: 86 fixes in Oracle released today
new zero day for java http://m.krebsonsecurity.com/2013/01/new-java-exploit-fetches-5000-per-buyer/ From: Ziots, Edward [ezi...@lifespan.org] Sent: Wednesday, January 16, 2013 10:23 AM To: NT System Admin Issues Subject: 86 fixes in Oracle released today http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html Fear it, and they still can't get Java Fixed… Oracle=Unbreakable? Naaa its just broken… period. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Patch management recommendations
look at LANDesk security suite (not cheep) it has all the functionality you need and more...only downside is tech support reps look to close trouble ticket without resolving issue --- On Wed, 1/16/13, Charlie Kaiser charl...@golden-eagle.org wrote: From: Charlie Kaiser charl...@golden-eagle.org Subject: Patch management recommendations To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: Wednesday, January 16, 2013, 6:03 PM I work for a consulting firm that manages a variety of SMB clients. As we increase our client load and the size of the clients (moving from the 3-10 seat to the 50-1000 seat clients) we are implementing more advanced products for a variety of tasks. We are currently looking at patch management solutions. Our current paradigm is a mix of WSUS and manual intervention, but it's not enough, obviously. I haven't used a centralized patch management system for around 5-6 years (used to use early versions of Shavlik) so I haven't been keeping up with the market. We're now looking for something that does 3rd party apps, not just MS stuff, so WSUS is off the table. Our clients are all on MS platforms, though; almost no *nix or Apple. I don't envision a one-size-fits-all product. I expect that we'll want a variety of solutions tailored to the size and complexity of the client. And I have no illusions about the ease of patch management given any product. :-) My boss would love an MSP-style of centrally managed product that can handle all our clients, but my belief is that trying to go that route is much more difficult than doing per-client implementations, especially without dedicated patch management admins. Having said all that, is anyone working with patch management systems that they really like for this space? Also, any you really DON'T like? Thanks! *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: McAfee agent handlers
https://kc.mcafee.com/resources/sites/MCAFEE/content/live/PRODUCT_DOCUMENTATION/22000/PD22508/en_US/ePO_4.5_Agent_Hander_White_Paper.pdf --- On Tue, 1/15/13, David Lum david@nwea.org wrote: From: David Lum david@nwea.org Subject: McAfee agent handlers To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: Tuesday, January 15, 2013, 10:22 AM Anyone here use McAfee Agent Handlers? If yes, I have a question because I am trying to set one up but the Agents aren’t checking in to the right one. David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Patch management recommendations
Make sure to add SolarWinds Patch Manager to your list. http://www.solarwinds.com/patch-manager.aspx From: joseph palmieri [mailto:jpalm...@yahoo.com] Sent: Wednesday, January 16, 2013 9:58 PM To: NT System Admin Issues Subject: Re: Patch management recommendations look at LANDesk security suite (not cheep) it has all the functionality you need and more...only downside is tech support reps look to close trouble ticket without resolving issue --- On Wed, 1/16/13, Charlie Kaiser charl...@golden-eagle.org wrote: From: Charlie Kaiser charl...@golden-eagle.org Subject: Patch management recommendations To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: Wednesday, January 16, 2013, 6:03 PM I work for a consulting firm that manages a variety of SMB clients. As we increase our client load and the size of the clients (moving from the 3-10 seat to the 50-1000 seat clients) we are implementing more advanced products for a variety of tasks. We are currently looking at patch management solutions. Our current paradigm is a mix of WSUS and manual intervention, but it's not enough, obviously. I haven't used a centralized patch management system for around 5-6 years (used to use early versions of Shavlik) so I haven't been keeping up with the market. We're now looking for something that does 3rd party apps, not just MS stuff, so WSUS is off the table. Our clients are all on MS platforms, though; almost no *nix or Apple. I don't envision a one-size-fits-all product. I expect that we'll want a variety of solutions tailored to the size and complexity of the client. And I have no illusions about the ease of patch management given any product. :-) My boss would love an MSP-style of centrally managed product that can handle all our clients, but my belief is that trying to go that route is much more difficult than doing per-client implementations, especially without dedicated patch management admins. Having said all that, is anyone working with patch management systems that they really like for this space? Also, any you really DON'T like? Thanks! *** Charlie Kaiser charl...@golden-eagle.org Kingman, AZ *** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: McAfee agent handlers
Track down John himself...he's in Portland now. On Jan 15, 2013 7:22 AM, David Lum david@nwea.org wrote: Anyone here use McAfee Agent Handlers? If yes, I have a question because I am trying to set one up but the Agents aren’t checking in to the right one. *David Lum* Sr. Systems Engineer // NWEATM Office 503.548.5229 //* *Cell (voice/text) 503.267.9764 ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin