RE: Exchange Server 2013: Not quite ready for the data center - Computerworld
*** them. The fact is we're STILL waiting for any kind of service pack to, you know, allow us to deploy it. No idea what they're playing at and only have themselves to blame. From: bounce-9580718-8267...@lyris.sunbelt-software.com [mailto:bounce-9580718-8267...@lyris.sunbelt-software.com] On Behalf Of Michael B. Smith Sent: 07 February 2013 19:46 To: NT System Admin Issues Subject: RE: Exchange Server 2013: Not quite ready for the data center - Computerworld I think that article has made the Exchange team very mad at me. Apparently, not such a big deal when the MVPs blog it and it gets put into Redmond magazine or WindowsIT Pro magazine - but hitting ComputerWorld has caused a lot of angst. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Thursday, February 7, 2013 12:52 PM To: NT System Admin Issues Subject: Exchange Server 2013: Not quite ready for the data center - Computerworld Hey, MBS What's your take on this article?I haven't touched Exchange 2013 as yet... http://www.computerworld.com/s/article/9236531/Exchange_Server_2013_Not_quite_ready_for_the_data_center?taxonomyId=18pageNumber=1 Regards, ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Exchange Server 2013: Not quite ready for the data center - Computerworld
LOL, I know--hence not ordering any hardware yet. Hard to know what to buy to support a vaporware migration. But, from rumors, migration compatibility will likely show up in the March/April timeframe, and then there will probably be a rollup or two after that to fix issues. If that actually comes to fruition, with our business cycle, that probably means a June/July migration for us. -Original Message- From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Thursday, February 07, 2013 2:24 PM To: NT System Admin Issues Subject: RE: Exchange Server 2013: Not quite ready for the data center - Computerworld There are some mitigations coming Real Soon Now. :) -Original Message- From: Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edu] Sent: Thursday, February 7, 2013 4:05 PM To: NT System Admin Issues Subject: RE: Exchange Server 2013: Not quite ready for the data center - Computerworld Oh, he probably will get awarded when he answers all of my Exchange 2013 questions come Spring XO The decision has been made and we're heading down that road. We're still on E2k7 on an old box. Were looking at E2k10 when 13 was announced. At this point, when the updates come out for compatibility, we'll be ordering up our new hardware. Went to a launch training event in November and got the rundown--there is a lot to figure out, but we don't have an extremely complicated environment, so I think we can pull it off. Feels to me like when E2k7 was first out and many things were missing because they hadn't been rewritten yet, but most of it is there in PS if you can find the right cmdlet to run (and assuming it wasn't removed--yikes!). I'm scared. Moving to E2k7 LITERALLY gave me my first gray hairs. -Bonnie -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Thursday, February 07, 2013 12:20 PM To: NT System Admin Issues Subject: Re: Exchange Server 2013: Not quite ready for the data center - Computerworld H If you don't, perhaps we should start a campaign... Kurt On Thu, Feb 7, 2013 at 12:11 PM, Michael B. Smith mich...@smithcons.com wrote: I’m definitely not a mouthpiece. J I think it’ll be fine. But I won’t be surprised if I don’t get re-awarded this june! From: Patrick Salmon [mailto:psal...@gmail.com] Sent: Thursday, February 7, 2013 3:00 PM To: NT System Admin Issues Subject: Re: Exchange Server 2013: Not quite ready for the data center - Computerworld They'll get over it. If you're not afraid to say it when the emperor has no clothes then you become a mouthpiece for the machine. Much of the credibility and value of the MVP role comes from NOT being the mouthpiece. IMNSHO. On Thu, Feb 7, 2013 at 2:49 PM, Kurt Buff kurt.b...@gmail.com wrote: But it's good for you, right? I mean, how many CW readers have now heard your name (as an Authority!), where they hadn't before... Should be interesting to monitor the comments on that blog post now, I'm guessing... Kurt On Thu, Feb 7, 2013 at 11:46 AM, Michael B. Smith mich...@smithcons.com wrote: I think that article has made the Exchange team very mad at me. Apparently, not such a big deal when the MVPs blog it and it gets put into Redmond magazine or WindowsIT Pro magazine – but hitting ComputerWorld has caused a lot of angst. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Thursday, February 7, 2013 12:52 PM To: NT System Admin Issues Subject: Exchange Server 2013: Not quite ready for the data center - Computerworld Hey, MBS What's your take on this article?I haven't touched Exchange 2013 as yet... http://www.computerworld.com/s/article/9236531/Exchange_Server_2013_N ot_quite_ready_for_the_data_center?taxonomyId=18pageNumber=1 Regards, ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here:
RE: Domain upgrade: 2008 R2 or 2012 ?
Eventually I will be responsible for both. My biggest fear at this point is that we find some kind of incompatibility with 2012 down the road. As you mentioned the 2012 will be a new build that needs to be certified in our environment. Where as 2008 R2 has been in our environment and stable for 3 years now. I'm leaning towards 2012, just think there will be more testing and evaluation work needed for that since it will be a new OS for our environment. I think we are at least 6 months out from this project, so I have time. Just starting to think about it now. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com The Guardian Life Insurance Company of America www.guardianlife.com From: Ken Schaefer k...@adopenstatic.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date: 02/07/2013 10:53 PM Subject:RE: Domain upgrade: 2008 R2 or 2012 ? Are you doing a technical evaluation or a business case? From a technical PoV, I think the posts already have this covered: there are some incremental enhancements and no real downsides (platform is stable, covered in your EA etc.) From a broader perspective, is your project going to have to pick up shared costs like a new Win2k12 build, updating CMDB, deployment and support capability blah, blah? That might impact your business case. Cheers Ken From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Friday, 8 February 2013 8:34 AM To: NT System Admin Issues Subject: Domain upgrade: 2008 R2 or 2012 ? Has anyone done this evaluation recently? We are a 2003 R2 shop. We were in the process of planning a migration to a 2008 R2 domain last year (hardware was bought and deployed), when the funds got cut. From what I hear, we will have funding and approval this year for the project. So the question is now, 2008 R2 or 2012. I've had very little time with 2012 so far. Hopefully that will change in the near future. The benefits of going from 2003 to 2008 R2 i've already captured. From what I've seen so far, 2012 seems stable and an incremental upgrade for our environment. Some of the things that might push me towards 2012 don't apply in our environment. for Example RDS and Hyper-V. We are a big Citrix and VMWare shop. So I don't really see us making use of those specific features, or the enhancements in them from previous versions. From my understanding 2012 is included in our EA agreement. So I don't think it will really be a licensing issue. Love to hear thoughts and comments from others who are going through this right now, or have done this evaluation recently. Thanks, Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadminimage/jpeg
Re: Fortigate (was Guest network security)
Version 5.0 installed smoothly. The visual changes are somewhat minimal for now, but the performance of the UI improved. Can't say for the rest of the device (performance wise) as I haven't finished migrating to it. The backups are much smaller under 5.0 than under v4 *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…*** On Thu, Feb 7, 2013 at 12:46 PM, Andrew S. Baker asbz...@gmail.com wrote: I will, as soon as I finish setting this device up today. :) *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…*** On Thu, Feb 7, 2013 at 12:26 PM, Sam Cayze sca...@gmail.com wrote: Speaking of Fortigate… (Much love btw). ** ** Has anyone taken the jump to V5 of the OS yet? They’ve patched it once or twice already; should be stable. ** ** ** ** ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Wednesday, February 06, 2013 8:06 PM *To:* NT System Admin Issues *Subject:* Re: OT: Guest network security ** ** Whoa!!! That looks awesome. Man, I could really have gone for that a few weeks back. My Fortigate 40C arrives tomorrow. :) *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…* ** ** On Wed, Feb 6, 2013 at 8:31 PM, Richard Stovall rich...@gmail.com wrote: I chose to build a new system so it would be small and silent rather than use an old computer lying around the house. ** ** I went with: ** ** Intel D2500CCE fanless mini-ITX motherboard (Dual core 1.86 GHz Atom CPU with dual Intel NICs onboard) ** ** 4 GB RAM ** ** 128GB Vertex 4 SSD ** ** It has been in 'production' for a couple of weeks now, and is stable and very fast. I also really like having the content filtering and antivirus capabilities of a UTM firewall at home. ** ** The management interface is a little weird at first, but you get used to it. ** ** I demo'ed the software in a VirtualBox VM for a week or so before pulling the trigger on the hardware expense. ** ** If anyone is interested, the page at Sophos describing the offering is: http://www.sophos.com/en-us/products/free-tools/sophos-utm-home-edition.aspx ** ** ** ** On Wed, Feb 6, 2013 at 3:20 PM, Kurt Buff kurt.b...@gmail.com wrote:*** * Our Sidewinders are EOL at the end of April, and my manager doesn't like them. He's a Cisco bigot, and wants ASAs in here. I'm fighting him to at least take a look at the Palo Alto platform, or perhaps the newest iteration of the Sidewinders (which are now called McAfee Enteprise Firewalls). That's an interesting tip on the Sophos solution. What did you use for the hardware? Kurt On Wed, Feb 6, 2013 at 11:59 AM, Richard Stovall rich...@gmail.com wrote: I was going to suggest using the SonicPoint solution from SonicWall, but you've got Sidewinders, don't you? Does McAfee have anything like SonicWall's wireless solution where it's all managed from the firewall? PS Sophos has this too, and they give their UTM firewall away free for home use. Just bring your own hardware. I just switched to this the other day and love it so far. I should write a blog post about it. (But then I'd have to create a blog...) On Wed, Feb 6, 2013 at 2:36 PM, Kurt Buff kurt.b...@gmail.com wrote: All, Quite some time ago, I set up an unsecured guest VLAN in our network, providing wireless access to all of the sundry devices that staff and visitors carry. I set up a small FreeBSD machine to serve IP addresses via DHCP, and that was dead simple. It is a layer2 VLAN, traversing our backbone, and terminating on our corporate firewall. However, there are now other tenants in our building, and the subnet is getting too much bandwidth and address consumption - the range I set up is completely filled, and the VLAN is consuming about half of our Internet pipe, which is far too much for my comfort. I suspect the other tenants are leeching. What I've read of captive portals seems to indicate that the portal is part of the firewall. I could be wrong about that, though. Regardless, the corporate firewall will not be allowed to be part of this solution. The only other alternative I see right now is to set up a password on the SSID, and have the front desk hand it out to guests, after mailing it to staff, and I'm getting pushback on that from my manager. Does anyone have some ideas I could pursue on this? Thanks, Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
Re: Passsword Meter
LOL *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…*** On Thu, Feb 7, 2013 at 7:45 PM, Webster webs...@carlwebster.com wrote: I use Internet Exploder and trust Microsoft to have a safe and secure browser that affords me plenty of security on the Internet. What more do I need? ** ** Thanks ** ** ** ** Webster ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Subject:* Re: Passsword Meter ** ** It's not like they won't grab IP info... ** ** Plus, are you *sure* your browser is not giving away username info? ** ** On Thu, Feb 7, 2013 at 6:24 PM, Crawford, Scott crawfo...@evangel.edu wrote: Yeah, I'm not too crazy about it, but its not like you put a username in to match. -Original Message- From: S Powell [mailto:powe...@gmail.com] Subject: Re: Passsword Meter it says that mine, qwerty123 is not very good... odd that... or what a great way to collect passwords... On Thu, Feb 7, 2013 at 2:56 PM, Crawford, Scott crawfo...@evangel.edu wrote: If you don't mind typing your password into a web form, this is a pretty nice indicator of strength. http://www.passwordmeter.com/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Exchange Server 2013: Not quite ready for the data center - Computerworld
:::hangs head::: *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…*** On Thu, Feb 7, 2013 at 7:46 PM, Michael B. Smith mich...@smithcons.comwrote: Tsk tsk tsk ** ** *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Thursday, February 7, 2013 7:38 PM *To:* NT System Admin Issues *Subject:* Re: Exchange Server 2013: Not quite ready for the data center - Computerworld ** ** Funny thing is, I remember him posting that article, and I bookmarked it, but I never got around to reading it. ** ** ::shame:: *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…* ** ** On Thu, Feb 7, 2013 at 2:20 PM, Free, Bob r...@pge.com wrote: Didn’t you get the memo ASB? J He blogged on that a whole back. Short answer “In my personal opinion, Exchange 2013 RTM is not ready for prime time.” http://theessentialexchange.com/blogs/michael/archive/2013/01/06/exchange-server-2013-gotchas.aspx *From:* Andrew S. Baker [mailto:asbz...@gmail.com] *Sent:* Thursday, February 07, 2013 9:52 AM *To:* NT System Admin Issues *Subject:* [dkim-failure] Exchange Server 2013: Not quite ready for the data center - Computerworld Hey, MBS What's your take on this article?I haven't touched Exchange 2013 as yet... http://www.computerworld.com/s/article/9236531/Exchange_Server_2013_Not_quite_ready_for_the_data_center?taxonomyId=18pageNumber=1 Regards, ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ** ** -- PGE is committed to protecting our customers' privacy. To learn more, please visit http://www.pge.com/about/company/privacy/customer/ -- ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Passsword Meter
Not to worry. It is in the cloud so it is totally secure... On Thu, Feb 7, 2013 at 6:21 PM, S Powell powe...@gmail.com wrote: it says that mine, qwerty123 is not very good... odd that... or what a great way to collect passwords... - Sub ubi semper ubi On Thu, Feb 7, 2013 at 2:56 PM, Crawford, Scott crawfo...@evangel.edu wrote: If you don't mind typing your password into a web form, this is a pretty nice indicator of strength. http://www.passwordmeter.com/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Passsword Meter
They store all the data in Dropbox since with Dropbox passwords are not always required or used even if you have one. Thanks Webster From: Hank . [mailto:hgedr...@gmail.com] Subject: Re: Passsword Meter Not to worry. It is in the cloud so it is totally secure... On Thu, Feb 7, 2013 at 6:21 PM, S Powell powe...@gmail.commailto:powe...@gmail.com wrote: it says that mine, qwerty123 is not very good... odd that... or what a great way to collect passwords... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Passsword Meter
Hmmm, password was not very strong! Stephen L. Holtz, MCSE, MCT Director of Information Technology Addison Reserve Country Club 7201 Addison Reserve Blvd. Delray Beach, Fl. 33446 Ph: 561-455-1220 Cell: 561-441-0646 http://www.addisonreserve.cc/ www.addisonreserve.cc ARLogoPlatinumClubDistinguishedEmerald Proudly recognized as a 5-Star Platinum Club of America. This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution or copying of this e-mail, and any attachments thereto, is strictly prohibited. If you have received this e-mail in error, please notify me by replying to this message and permanently delete the original and any copy of this e-mail and any printout thereof. From: Hank . [mailto:hgedr...@gmail.com] Sent: Friday, February 08, 2013 10:27 AM To: NT System Admin Issues Subject: Re: Passsword Meter Not to worry. It is in the cloud so it is totally secure... On Thu, Feb 7, 2013 at 6:21 PM, S Powell powe...@gmail.com wrote: it says that mine, qwerty123 is not very good... odd that... or what a great way to collect passwords... - Sub ubi semper ubi On Thu, Feb 7, 2013 at 2:56 PM, Crawford, Scott crawfo...@evangel.edu wrote: If you don't mind typing your password into a web form, this is a pretty nice indicator of strength. http://www.passwordmeter.com/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadminimage001.jpgimage002.jpgimage003.jpg
RE: Passsword Meter
Think I'll just stick to writing them on a piece of paper, laminating that and taping it to my forearm, NFL Q-back style... Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.orgmailto:dgu...@che.org Office: 610.550.3595 | Cell: 610.955.6528 | Fax: 610.271.9440 For immediate assistance, please open a Service Desk ticket or call the helpdesk @ 610-492-3839. [cid:image001.jpg@01CE05E9.4DDBEAA0] From: Webster [mailto:webs...@carlwebster.com] Sent: Friday, February 08, 2013 10:39 AM To: NT System Admin Issues Subject: RE: Passsword Meter They store all the data in Dropbox since with Dropbox passwords are not always required or used even if you have one. Thanks Webster From: Hank . [mailto:hgedr...@gmail.com] Subject: Re: Passsword Meter Not to worry. It is in the cloud so it is totally secure... On Thu, Feb 7, 2013 at 6:21 PM, S Powell powe...@gmail.commailto:powe...@gmail.com wrote: it says that mine, qwerty123 is not very good... odd that... or what a great way to collect passwords... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Confidentiality Notice: This e-mail, including any attachments is the property of Catholic Health East and is intended for the sole use of the intended recipient(s). It may contain information that is privileged and confidential. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please delete this message, and reply to the sender regarding the error in a separate email. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
Dell/Quest Reporter
Anyone using this? Looking for a canned package that can generate reports on Active Directory. Looks like this does it and a lot more. Would like to hear from anyone who has used it. Thanks Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com The Guardian Life Insurance Company of America www.guardianlife.com - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadminimage/jpeg
Re: Passsword Meter
On Thu, Feb 7, 2013 at 5:56 PM, Crawford, Scott crawfo...@evangel.edu wrote: If you don't mind typing your password into a web form, this is a pretty nice indicator of strength. http://www.passwordmeter.com/ It appears to be implemented entirely in HTML, CSS, and JavaScript. There's a link at the bottom to download a packaged version. Comments say it is GPL. One could presumably audit the code to make sure it's not phoning home to mama, and then run it locally. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Passsword Meter
Try this one from Steve Gibson's site: https://www.grc.com/haystack.htm From: ste...@addisonreserve.cc To: ntsysadmin@lyris.sunbelt-software.com Subject: RE: Passsword Meter Date: Fri, 8 Feb 2013 10:39:03 -0500 Hmmm, password was not very strong! Stephen L. Holtz, MCSE, MCT Director of Information Technology Addison Reserve Country Club 7201 Addison Reserve Blvd. Delray Beach, Fl. 33446 Ph: 561-455-1220 Cell: 561-441-0646www.addisonreserve.cc Proudly recognized as a 5-StarPlatinum Club of America. This e-mail, and any attachments thereto, is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution or copying of this e-mail, and any attachments thereto, is strictly prohibited. If you have received this e-mail in error, please notify me by replying to this message and permanently delete the original and any copy of this e-mail and any printout thereof. From: Hank . [mailto:hgedr...@gmail.com] Sent: Friday, February 08, 2013 10:27 AM To: NT System Admin Issues Subject: Re: Passsword Meter Not to worry. It is in the cloud so it is totally secure... On Thu, Feb 7, 2013 at 6:21 PM, S Powell powe...@gmail.com wrote:it says that mine, qwerty123 is not very good... odd that... or what a great way to collect passwords... - Sub ubi semper ubi On Thu, Feb 7, 2013 at 2:56 PM, Crawford, Scott crawfo...@evangel.edu wrote: If you don't mind typing your password into a web form, this is a pretty nice indicator of strength. http://www.passwordmeter.com/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image/jpeginline: image/jpeginline: image/jpeg
Re: Dell/Quest Reporter
I used it back in the day. Provided detailed reports that were useful. *ASB **http://XeeMe.com/AndrewBaker* http://xeeme.com/AndrewBaker* **Providing Virtual CIO Services (IT Operations Information Security) for the SMB market…*** On Fri, Feb 8, 2013 at 11:04 AM, Christopher Bodnar christopher_bod...@glic.com wrote: Anyone using this? Looking for a canned package that can generate reports on Active Directory. Looks like this does it and a lot more. Would like to hear from anyone who has used it. Thanks *Christopher Bodnar* Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.com * The Guardian Life Insurance Company of America* * **www.guardianlife.com* http://www.guardianlife.com/ - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadminimage/jpeg
Re: Passsword Meter
On Fri, Feb 8, 2013 at 11:54 AM, Shauna Hensala she...@msn.com wrote: Try this one from Steve Gibson's site: https://www.grc.com/haystack.htm That one simply deduces the character set and computes permutations, which is not a terribly good measure of password strength. The original one (http://www.passwordmeter.com/) also checks for certain patterns, but it doesn't use a dictionary, which means it's also not a terribly good measure of password strength. In particular, it rates Passw0rd! at 70%. Ideally, password meters should measure entropy, but that's hard to deduce. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Fortigate (was Guest network security)
Good to know, thanks! From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Friday, February 08, 2013 8:10 AM To: NT System Admin Issues Subject: Re: Fortigate (was Guest network security) Version 5.0 installed smoothly. The visual changes are somewhat minimal for now, but the performance of the UI improved. Can't say for the rest of the device (performance wise) as I haven't finished migrating to it. The backups are much smaller under 5.0 than under v4 ASB http://xeeme.com/AndrewBaker http://XeeMe.com/AndrewBaker Providing Virtual CIO Services (IT Operations Information Security) for the SMB market. On Thu, Feb 7, 2013 at 12:46 PM, Andrew S. Baker asbz...@gmail.com wrote: I will, as soon as I finish setting this device up today. :) ASB http://xeeme.com/AndrewBaker http://XeeMe.com/AndrewBaker Providing Virtual CIO Services (IT Operations Information Security) for the SMB market. On Thu, Feb 7, 2013 at 12:26 PM, Sam Cayze sca...@gmail.com wrote: Speaking of Fortigate. (Much love btw). Has anyone taken the jump to V5 of the OS yet? They've patched it once or twice already; should be stable. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Wednesday, February 06, 2013 8:06 PM To: NT System Admin Issues Subject: Re: OT: Guest network security Whoa!!! That looks awesome. Man, I could really have gone for that a few weeks back. My Fortigate 40C arrives tomorrow. :) ASB http://xeeme.com/AndrewBaker http://XeeMe.com/AndrewBaker Providing Virtual CIO Services (IT Operations Information Security) for the SMB market. On Wed, Feb 6, 2013 at 8:31 PM, Richard Stovall rich...@gmail.com wrote: I chose to build a new system so it would be small and silent rather than use an old computer lying around the house. I went with: Intel D2500CCE fanless mini-ITX motherboard (Dual core 1.86 GHz Atom CPU with dual Intel NICs onboard) 4 GB RAM 128GB Vertex 4 SSD It has been in 'production' for a couple of weeks now, and is stable and very fast. I also really like having the content filtering and antivirus capabilities of a UTM firewall at home. The management interface is a little weird at first, but you get used to it. I demo'ed the software in a VirtualBox VM for a week or so before pulling the trigger on the hardware expense. If anyone is interested, the page at Sophos describing the offering is: http://www.sophos.com/en-us/products/free-tools/sophos-utm-home-edition.aspx On Wed, Feb 6, 2013 at 3:20 PM, Kurt Buff kurt.b...@gmail.com wrote: Our Sidewinders are EOL at the end of April, and my manager doesn't like them. He's a Cisco bigot, and wants ASAs in here. I'm fighting him to at least take a look at the Palo Alto platform, or perhaps the newest iteration of the Sidewinders (which are now called McAfee Enteprise Firewalls). That's an interesting tip on the Sophos solution. What did you use for the hardware? Kurt On Wed, Feb 6, 2013 at 11:59 AM, Richard Stovall rich...@gmail.com wrote: I was going to suggest using the SonicPoint solution from SonicWall, but you've got Sidewinders, don't you? Does McAfee have anything like SonicWall's wireless solution where it's all managed from the firewall? PS Sophos has this too, and they give their UTM firewall away free for home use. Just bring your own hardware. I just switched to this the other day and love it so far. I should write a blog post about it. (But then I'd have to create a blog...) On Wed, Feb 6, 2013 at 2:36 PM, Kurt Buff kurt.b...@gmail.com wrote: All, Quite some time ago, I set up an unsecured guest VLAN in our network, providing wireless access to all of the sundry devices that staff and visitors carry. I set up a small FreeBSD machine to serve IP addresses via DHCP, and that was dead simple. It is a layer2 VLAN, traversing our backbone, and terminating on our corporate firewall. However, there are now other tenants in our building, and the subnet is getting too much bandwidth and address consumption - the range I set up is completely filled, and the VLAN is consuming about half of our Internet pipe, which is far too much for my comfort. I suspect the other tenants are leeching. What I've read of captive portals seems to indicate that the portal is part of the firewall. I could be wrong about that, though. Regardless, the corporate firewall will not be allowed to be part of this solution. The only other alternative I see right now is to set up a password on the SSID, and have the front desk hand it out to guests, after mailing it to staff, and I'm getting pushback on that from my manager. Does anyone have some ideas I could pursue on this? Thanks, Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here:
RE: Passsword Meter
Not so much, actually, as long as you control what you mean by entropy. http://xkcd.com/936/ :) See the response here by Akton: http://programmers.stackexchange.com/questions/167235/how-can-i-estimate-the-entropy-of-a-password -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, February 8, 2013 12:41 PM To: NT System Admin Issues Subject: Re: Passsword Meter On Fri, Feb 8, 2013 at 11:54 AM, Shauna Hensala she...@msn.com wrote: Try this one from Steve Gibson's site: https://www.grc.com/haystack.htm That one simply deduces the character set and computes permutations, which is not a terribly good measure of password strength. The original one (http://www.passwordmeter.com/) also checks for certain patterns, but it doesn't use a dictionary, which means it's also not a terribly good measure of password strength. In particular, it rates Passw0rd! at 70%. Ideally, password meters should measure entropy, but that's hard to deduce. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Passsword Meter
On Fri, Feb 8, 2013 at 12:57 PM, Michael B. Smith mich...@smithcons.com wrote: Ideally, password meters should measure entropy, but that's hard to deduce. Not so much, actually, as long as you control what you mean by entropy. http://xkcd.com/936/ :) I *almost* posted that link. See the response here by Akton: http://programmers.stackexchange.com/questions/167235/how-can-i-estimate-the-entropy-of-a-password That still seems to be mostly concerned with (1) permutations of character sets and (2) dictionary attacks, neither of which directly address entropy. Now, a comprehensive dictionary, combined with a comprehensive set of substitution rules, can at least tell you if your password can be found using such, which is prolly just as good for practical purposes. But to measure password strength derived from entropy, I think you'd need heuristics taking into account things like patterns and frequencies of both letters (spelling) and words (syntax, semantics). Disclaimer: Everything I just wrote could be a TOTAL LIE. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Passsword Meter
I think absolute entropy can be easily calculated. Relative entropy - which is a logical as opposed to a physical concept - is much much more difficult. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, February 8, 2013 2:09 PM To: NT System Admin Issues Subject: Re: Passsword Meter On Fri, Feb 8, 2013 at 12:57 PM, Michael B. Smith mich...@smithcons.com wrote: Ideally, password meters should measure entropy, but that's hard to deduce. Not so much, actually, as long as you control what you mean by entropy. http://xkcd.com/936/ :) I *almost* posted that link. See the response here by Akton: http://programmers.stackexchange.com/questions/167235/how-can-i-estima te-the-entropy-of-a-password That still seems to be mostly concerned with (1) permutations of character sets and (2) dictionary attacks, neither of which directly address entropy. Now, a comprehensive dictionary, combined with a comprehensive set of substitution rules, can at least tell you if your password can be found using such, which is prolly just as good for practical purposes. But to measure password strength derived from entropy, I think you'd need heuristics taking into account things like patterns and frequencies of both letters (spelling) and words (syntax, semantics). Disclaimer: Everything I just wrote could be a TOTAL LIE. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Netflow? BW monitoring options on Cisco
I have a WAN link on a Cisco 3750x I want to monitor BW for. It's just a Metro-E type of Fiber link between two identical switches. Switch requires a 10G module for this functionality. Don't want to pay 2k+ just for the privilege. Anyone else done this on the cheap some other way? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Netflow? BW monitoring options on Cisco
Aside from something like MRTG? If you're just monitoring bandwidth, use SNMP and find the interfaces being used... On Fri, Feb 8, 2013 at 11:48 AM, N Parr npar...@mortonind.com wrote: ** I have a WAN link on a Cisco 3750x I want to monitor BW for. It's just a Metro-E type of Fiber link between two identical switches. Switch requires a 10G module for this functionality. Don't want to pay 2k+ just for the privilege. Anyone else done this on the cheap some other way? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
7 13 is better than 6 38, but I won't say it is 'fixed' since it isn't. There are still problems and will be for years to come, imho. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 3:32 PM To: NT System Admin Issues Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
Lol Very true. I was asking more along the lines of the last big 0 Day vulnerability. I want to be able to go back to my developers and ask them to work on making the newest technology work with our internal apps. From: Jim Kennedy [mailto:kennedy...@elyriaschools.org] Sent: Friday, February 08, 2013 12:50 PM To: Heaton, Joseph@Wildlife; NT System Admin Issues Subject: RE: Java 7 13 is better than 6 38, but I won't say it is 'fixed' since it isn't. There are still problems and will be for years to come, imho. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 3:32 PM To: NT System Admin Issues Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Java
I may have missed this link being on the list but here it is anyway as a reminder to peoples. http://www.zdnet.com/a-close-look-at-how-oracle-installs-deceptive-software-with-java-updates-710038/ Steven Peck http://www.blkmtn.org On Fri, Feb 8, 2013 at 1:29 PM, Heaton, Joseph@Wildlife joseph.hea...@wildlife.ca.gov wrote: Lol…. Very true. I was asking more along the lines of the last big 0 Day vulnerability. I want to be able to go back to my developers and ask them to work on making the newest technology work with our internal apps.* *** ** ** *From:* Jim Kennedy [mailto:kennedy...@elyriaschools.org] *Sent:* Friday, February 08, 2013 12:50 PM *To:* Heaton, Joseph@Wildlife; NT System Admin Issues *Subject:* RE: Java ** ** 7 13 is better than 6 38, but I won’t say it is ‘fixed’ since it isn’t. There are still problems and will be for years to come, imho. ** ** *From:* Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.govjoseph.hea...@wildlife.ca.gov] *Sent:* Friday, February 08, 2013 3:32 PM *To:* NT System Admin Issues *Subject:* Java ** ** Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We’ve actually told people they can’t update past 6u38, but would like to at some point… ** ** Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Friday OT: Just because it's cool
A little paint, and... http://www.3ders.org/articles/20130201-3d-print-a-super-cool-ultra-futuristic-modular-snap-fit-airship.html I'm thinking hard about a 3d printer for my birthday present to myself... Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
Don't know about the latest vulnerability, but there is a v6u39 available that was released at the same time as 7v13 http://www.oracle.com/technetwork/java/javase/downloads/index.html From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 12:32 PM To: NT System Admin Issues Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Highly recommended - I have a paper copy
Just read a chapter, and I have a say, I'm hooked. Looking through the TOC, there are so many aspects of security in the book that I have been wanting a better understanding of. All in one place. I already downloaded and combined the PDFs. but heck, I'm buying the paper version of this one! http://www.cl.cam.ac.uk/~rja14/book.html Security Engineering -- The Book 'I'm incredibly impressed that one person could produce such a thorough coverage. Moreover, you make the stuff easy and enjoyable to read. I find it just as entertaining - and far more useful - than novels (and my normal science fiction). When I first got it in the mail, I said to myself I'm never going to read all of that. But once I started reading I just kept going and going. Fantastic: well done. Now, let's hope that all those in charge of security for information technology will also read the book and heed the lessons.' Don Norman 'The book that you MUST READ RIGHT NOW is the second edition of Ross Anderson's Security Engineering book. Ross did a complete pass on his classic tome and somehow made it even better...' Gary McGraw 'It's beautiful. This is the best book on the topic there is' Bruce Schneier All chapters from the second edition now available free online! Table of contents Preface Acknowledgements Chapter 1: What is Security Engineering? Chapter 2: Usability and Psychology Chapter 3: Protocols Chapter 4: Access Control Chapter 5: Cryptography Chapter 6: Distributed Systems Chapter 7: Economics Chapter 8: Multilevel Security Chapter 9: Multilateral Security Chapter 10: Banking and Bookkeeping Chapter 11: Physical Protection Chapter 12: Monitoring and Metering Chapter 13: Nuclear Command and Control Chapter 14: Security Printing and Seals Chapter 15: Biometrics Chapter 16: Physical Tamper Resistance Chapter 17: Emission Security Chapter 18: API Security Chapter 19: Electronic and Information Warfare Chapter 20: Telecom System Security Chapter 21: Network Attack and Defence Chapter 22: Copyright and DRM Chapter 23: The Bleeding Edge Chapter 24: Terror, Justice and Freedom Chapter 25: Managing the Development of Secure Systems Chapter 26: System Evaluation and Assurance Chapter 27: Conclusions Bibliography Index When I wrote the first edition, we put the chapters online free after four years and found that this boosted sales of the paper edition. People would find a useful chapter online and then buy the book to have it as a reference. Wiley and I agreed to do the same with the second edition, and now, four years after publication, I am putting all the chapters online for free. Enjoy them - and I hope you'll buy the paper version to have as a conveient shelf reference: Buy from Amazon.com Buy from Wiley Buy from Amazon.co.uk (Kindle version) Here are the errata for the second edition, and here's a page of notes and links concerning relevant topics that I've come across since publication. Supplementary materials: If you're a college professor thinking of using my book in class, note that we use my book in three courses at Cambridge: * the first part in second-year Introduction to Security (course material and past exam questions) * the second in third-year Security (course material and questions), and * the third part in our second-year Software Engineering (course, questions and still more questions). I hope you find these useful. You're welcome to use and adapt any of my slides if you wish under this Creative Commons license. Also, if you're an instructor at an accredited institution, you can request an evaluation copy via Wiley's website. __ Visit the InfoSec News Security Bookstore Best Selling Security Books and More! http://www.shopinfosecnews.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Security Firm Bit9 Hacked, Used to Spread Malware
Bit9, a company that provides software and network security services to the U.S. government and at least 30 Fortune 100 firms, has suffered an electronic compromise that cuts to the core of its business: helping clients distinguish known safe files from computer viruses and other malicious software. OUCH ! More at: http://krebsonsecurity.com/2013/02/security-firm-bit9-hacked-used-to-spread-malware/ Warm regards, Stu ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
I was also told that they were not doing any more updates to version 6 after this month, so we're going to need to make the jump sooner or later, just wanted to make sure there's no blaring, remote code execution holes at the moment. From: Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edu] Sent: Friday, February 08, 2013 2:03 PM To: Heaton, Joseph@Wildlife; NT System Admin Issues Subject: RE: Java Don't know about the latest vulnerability, but there is a v6u39 available that was released at the same time as 7v13 http://www.oracle.com/technetwork/java/javase/downloads/index.html From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 12:32 PM To: NT System Admin Issues Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
Another patch coming the 19th. http://rss.computerworld.com/~r/computerworld/news/feed/~3/Mw3dWu4JeTE/Oracle_to_release_yet_more_patches_for_Java On Feb 8, 2013 5:14 PM, Sam Cayze sca...@gmail.com wrote: Yep: End of the month no more updates for 6: http://www.oracle.com/technetwork/java/eol-135779.html ** ** ** ** ** ** *From:* Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] *Sent:* Friday, February 08, 2013 5:02 PM *To:* NT System Admin Issues *Subject:* RE: Java ** ** I was also told that they were not doing any more updates to version 6 after this month, so we’re going to need to make the jump sooner or later, just wanted to make sure there’s no blaring, remote code execution holes at the moment. ** ** *From:* Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edumille...@mukilteo.wednet.edu] *Sent:* Friday, February 08, 2013 2:03 PM *To:* Heaton, Joseph@Wildlife; NT System Admin Issues *Subject:* RE: Java ** ** Don’t know about the latest vulnerability, but there is a v6u39 available that was released at the same time as 7v13 ** ** http://www.oracle.com/technetwork/java/javase/downloads/index.html ** ** ** ** *From:* Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.govjoseph.hea...@wildlife.ca.gov] *Sent:* Friday, February 08, 2013 12:32 PM *To:* NT System Admin Issues *Subject:* Java ** ** Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We’ve actually told people they can’t update past 6u38, but would like to at some point… ** ** Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ** ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Security Firm Bit9 Hacked, Used to Spread Malware
On Fri, Feb 8, 2013 at 2:59 PM, Stu Sjouwerman s...@sunbelt-software.com wrote: Bit9, a company that provides software and network security services to the U.S. government and at least 30 Fortune 100 firms, has suffered an electronic compromise that cuts to the core of its business: helping clients distinguish known safe files from computer viruses and other malicious software. OUCH ! More at: http://krebsonsecurity.com/2013/02/security-firm-bit9-hacked-used-to-spread-malware/ Warm regards, Stu That's beyond ouch. That's probably an RGE[1] for many, many people. But, it's the obvious target, isn't it - subvert the whitelist and you're even better off than evading the blacklist. Kurt [1] Resume Generating Event ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin