Re: Comcast Internet (was: MPLS)
We used to have business classa Comcast in 5 of our branches just to see how well it would work as their primary internet while keeping our ATM WAN in place (only T1s at the time). needless to say after about a year we disconnected them all. They all would go down intermittently and would have occasional performance issues. We are now at 3-6MB (2-4T1s) MPLS at our branches and much happier :) -Ben On Fri, Oct 9, 2009 at 9:17 AM, chipsh...@comcast.net wrote: Thanks for taking the time to post such a comprehensive reply. I used Comcast in our Boston office for about 4 years and really had no complaint with them. The magically started working phrase is something I see a lot of with Verizon. - Original Message - From: Ben Scott mailvor...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Friday, October 9, 2009 11:16:18 AM GMT -05:00 US/Canada Eastern Subject: Comcast Internet (was: MPLS) On Fri, Oct 9, 2009 at 9:21 AM, chipsh...@comcast.net wrote: I have also looked into leaving the P2P Ts as they are but switching most of our dedicated Internet connections to Comcast Business cable. I can't comment on MPLS, but I can on Comcast Business/Workplace/whatever. We've got a feed through them. I'd call it cheap, disposable bandwidth. Static IP address. Comcast claims 6 Mbit/sec down, 768 Kbit/sec up. Actual performance varies quite a bit. They also burst higher for initial traffic, then clamp down after 10 or 20 seconds, which makes it difficult to gauge performance. Their SLA isn't worth the bandwidth it takes to download the PDF. in addition to Comcast, we have a more expensive, slower, but more reliable feed from a local ISP. Important stuff -- mail, VPN -- goes through the other feed all the time. We send our outgoing HTTP client traffic through Comcast Comcast goes down on occasion. When that happens, we change everything to our other feed until it gets fixed. Comcast provided CPE that's basically an integrated cable modem, SOHO router, and 4-port Ethernet switch. It appears to be a halfheartedly re-badged SMC8014. (Halfheartedly because the front panel says Comcast, but the top of the case still has a giant SMC molded into the plastic, and the P/N on the bottom sticker is the same.) The CPE came configured to do NAT, and assigned IP addresses via DHCP in the 10.1.10.0/24 subnet on the LAN switch ports. But the static IP address is also configured on the same Ethernet switch. In other words, the LAN side of the integrated router has multiple IP addresses. You can manage the LAN side by going to http://10.1.10.1/ or the router address for the static feed. Default username is cusadmin; default password is highspeed. I recommend changing the password. :) A few times a year, the CPE looses the upstream and needs to be power cycled to work again. I've found sending mail out through Comcast is more likely to get rejected. Some mail hosts apparently simply consider *everything* from a Comcast customer IP address to be spam. (And I'm not sure that's unreasonable.) This is why all outgoing mail goes through the local ISP feed. Comcast's has a separate phone number for business tech support. It's good for some things, not for others. With connectivity problems, unless it is a known widespread issue, they don't seem to be very motivated and/or capable. But when I called to have reverse DNS changed to be a subdomain of our corporate domain, they knew exactly what I was talking about, got the ticket in within ten minutes, and the change made within an hour or two. I recently had a weird DNS issue, where traffic to one of our DNS provider's servers would get dropped. DNS host said it wasn't them. We called Comcast, they said it wasn't them, but then everything magically started working shortly thereafter. DNS host says that's happened to them with Comcast before. I don't know who to believe, there. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Adobe CS4
Yea.. but I hate supporting it :) On Oct 5, 2009 6:08 PM, Steven M. Caesare scaes...@caesare.com wrote: I have it, don’t support corporately tho…. Actually I avoid supporting ANY non-server software corporately J -sc From: David Lum [mailto:david@nwea.org] Sent: Monday, October 05, 2009 4:06 PM To: NT Syst... My Google-fu is failing me, and Adobe’s technical support is agonizingly slow to respond. Does anyone on this list happen to support Adobe Creative Suite CS4? David Lum // SYSTEMS ENGINEER NORTHWEST EVALUATION ASSOCIATION (Desk) 971.222.1025 // (Cell) 503 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Punch Clock Recomendation
We use Novatime. Think they out of Spokane WA. We have about 500 employees. They use a web page that we host ourselves and a sql db. On Sep 18, 2009 10:32 AM, Mike Gill lis...@canbyfoursquare.com wrote: Thanks everyone for the input. Off to do some reading. -- Mike Gill ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
certification advice
I don't' know who else to ask. I'm a long time lurker here; but have tried to help people out in the past. I trust the people here. I am currently MCSA (2003) as of last year. I only have 2 more tests for MCSE (2003) and one more test after that if i want the +Security. ( i already took one security test and passed ). I also have CCNA that i passed back in 2006. (expired now grrr ) I am currently employed getting close to 11 years. Getting more certifications isn't necessarily going to give me a pay raise but may help me out in the years to come. Should i go ahead and finish up MCSE-Security or should i start with the new MS Certification? MCITP is most likely what i'll end up doing. what do you guys think? Thanks alot! -BenN ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Still struggling with iPhone, ISA and SSL certs...
You usually can't add to the list of trusted CA's on a device like the iPhone. So i find the trick is to find out which SSL cert publishers it does trust and just stick with that. If you could let us know the issue you are trying to solve then we can start to help you out. -BenN On Fri, Aug 21, 2009 at 7:12 AM, Maglinger, Paul pmaglin...@scvl.comwrote: As the Security Admin and I are still trying to get the hell-spawned-demonic-iPhone-from-the-putrid-cesspool-of-caustic-industri al-waste-products to work through our ISA, we referred back to the ISA 2006 Migration Guide by Syngress. The SA came in the morning and showed me the following section in the book: The topic of Certificate Authorities (CAs)and PKI (Public Key Infrastructure) is usually enough to drive many administrators away from even considering SSL. There are a number of reasons for this: - The available documentation on certificate authorities and PKI, in general, is difficult to understand. - The subject has the potential to be extremely complex. - You need to learn an entirely new vocabulary to understand the CAs and PKI. Often the documentation on these subjects doesn't define the new words, or they use equally arcane terms to define the arcane term for which you're trying to get the definition. - There doesn't seem to be any support for the network and firewall administrator who just wants to get a CA setup and running so that he can use certificates for SSL and L2TP/IPSec authentication and encryption. Boy, that just seems to sew it up in a nutshell, doesn't it? You'd think that if this opinion is as common as I believe it to be, somebody out there could simplify the process somewhat... *thunk* *thunk* *thunk* (head banging against desk...) Paul ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Still struggling with iPhone, ISA and SSL certs...
i should mention. We run ISA and have iPhone users that can connect with our Exchange 2007 SP1 server just fine with the iPhone ActiveSync client. So i might be able to help you out? -Ben On Mon, Aug 24, 2009 at 9:51 AM, Ben Nordlander bennordlan...@gmail.comwrote: You usually can't add to the list of trusted CA's on a device like the iPhone. So i find the trick is to find out which SSL cert publishers it does trust and just stick with that. If you could let us know the issue you are trying to solve then we can start to help you out. -BenN On Fri, Aug 21, 2009 at 7:12 AM, Maglinger, Paul pmaglin...@scvl.comwrote: As the Security Admin and I are still trying to get the hell-spawned-demonic-iPhone-from-the-putrid-cesspool-of-caustic-industri al-waste-products to work through our ISA, we referred back to the ISA 2006 Migration Guide by Syngress. The SA came in the morning and showed me the following section in the book: The topic of Certificate Authorities (CAs)and PKI (Public Key Infrastructure) is usually enough to drive many administrators away from even considering SSL. There are a number of reasons for this: - The available documentation on certificate authorities and PKI, in general, is difficult to understand. - The subject has the potential to be extremely complex. - You need to learn an entirely new vocabulary to understand the CAs and PKI. Often the documentation on these subjects doesn't define the new words, or they use equally arcane terms to define the arcane term for which you're trying to get the definition. - There doesn't seem to be any support for the network and firewall administrator who just wants to get a CA setup and running so that he can use certificates for SSL and L2TP/IPSec authentication and encryption. Boy, that just seems to sew it up in a nutshell, doesn't it? You'd think that if this opinion is as common as I believe it to be, somebody out there could simplify the process somewhat... *thunk* *thunk* *thunk* (head banging against desk...) Paul ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Bleep'n window server 2008 terminal server
heh was planning on migrating my 03 citrix to windows 08 with latest version of XenApp (or whatever it is called now; previously metaframe/presentation). maybe 2008 R2 will be better for us? :) -Ben On Thu, Jun 25, 2009 at 1:10 PM, Phil Thompson ph...@wpiinc.com wrote: Just wonder others experience with 08 terminal server. I’m needing to vent!!! Right now I’m ready to throw the damn thing in the lake. I have had nothing but trouble with it for 3 months. One of the big reasons I got it was the so called *ease of printing*. What a bunch of BULL that is. Nothing but trouble, especially with HP printers shutting down the spooler. Right now the server freezes up. Can’t get to task manager to see what is going on. Logs don’t tell anything. I have to hold the off button to shut it down. There are some features I like but generally it is a pile of C R A P !! I have my trusty old 03 Terminal server to fall back on. NEVER have an issue with it. Same programs running on it. The venders say there software is compatible but I truly doubt it or it I’m going to take 08 off of it and go with 03, my only choice at this time. 3 months of explaining to management and users this and that, I’m starting look like a dumb ass. Any way that’s it. I feel better now.!! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: LogMeIn Rescue Alternative help
We use gotoassist express and I know for fact it does what you want in your list and more. I think we pay $50-$60 a month. On Jun 12, 2009 2:32 PM, wjh nt...@hedgedigger.com wrote: I'm not sure how cheap you can get them down to, but Bomgar is great. They have a B100 appliance that I believe is reasonably priced. We are extremely happy with our Bomgar appliance. It does everything you want and also supports remote support for win 95 through the latest windows, Mac OSX, Most versions of Linux, WinMo 5 and 6 devices (haven't tested this), Blackberries and users even on dialup (laggy). One nice feature is it supports connecting to multiple users. I can connect to three different clients and billing three different clients at the same time. Ours automagically records sessions as flash movies if you want. Great for creating a demo or just simply documenting. I haven't tried it, but you can also use it like gotomeeting and share your screen with many users. Good stuff. * Bill * AlsoJim Majorowicz wrote: I’m not sure GoToAssist in either form allows you to reboot into safe ... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Kayako Helpldesk
Check out adventnet.com. look for service desk On Jun 5, 2009 9:08 AM, Garcia-Moran, Carlos cgarciamo...@spragueenergy.com wrote: Im now getting all the emails since Tuesday, weird :) -Original Message- From: Carol Fee [mailto:c...@massbar.org] Sent: Friday, June 05, 2009 1... Cc: Garcia-Moran, Carlos Subject: RE: Kayako Helpldesk Send email to Donald Bittenbender [dona...@sunbelt-software.com]. He should be able to help you out. CFee -Original Message- From: Carlos Garcia-Moran [mailto: cgarciamo...@spragueenergy.com] Sent:... Yeah Ive looked at those before but wanted products with more features. On another note are we havi... _ This e-mail, including attachments, contai... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Create Rule to notify when a daily email doesn't show in my inbox/folder
I have several emails i get every day that notify when a job is finished; some of these emails come from legacy systems that don't allow much control for me. Does anyone know of a method to create some type of notification in Outlook (probably using rules) that would allow for some extra notification if one of these daily emails don't get sent to me? For instance, i receive a particular email from an email archive product every morning at 7:30am. But if i don't receive it; i would like to create some kind of rule that would implement an action of my choosing (even a script of my choosing) to notify me that i didn't receive that email today. This is especially useful if i'm not at a computer most of that day and i badly need to know about a missed job that my email archive didn't perform today. I've probably over explained this; but i think you guys might get the jist. -BenN ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Create Rule to notify when a daily email doesn't show in my inbox/folder
but that is exactly what i'm looking for. a method to detect an absence of an email. I can't be the only dude in town that has this need heh. -BenN On Mon, Jun 1, 2009 at 10:21 AM, Carl Houseman c.house...@gmail.com wrote: A rule requires an inbound message to trigger it. The absence of a message can't cause a rule to fire. You'll need to create a separate watchguard system to monitor the legacy system and send an E-mail if the legacy system hasn't done what it's supposed to do. And then, if the watchguard system isn't reliable, you'll have to create a watchguard for the watchguard, and then, ... Carl *From:* Ben Nordlander [mailto:bennordlan...@gmail.com] *Sent:* Monday, June 01, 2009 12:56 PM *To:* NT System Admin Issues *Subject:* Create Rule to notify when a daily email doesn't show in my inbox/folder I have several emails i get every day that notify when a job is finished; some of these emails come from legacy systems that don't allow much control for me. Does anyone know of a method to create some type of notification in Outlook (probably using rules) that would allow for some extra notification if one of these daily emails don't get sent to me? For instance, i receive a particular email from an email archive product every morning at 7:30am. But if i don't receive it; i would like to create some kind of rule that would implement an action of my choosing (even a script of my choosing) to notify me that i didn't receive that email today. This is especially useful if i'm not at a computer most of that day and i badly need to know about a missed job that my email archive didn't perform today. I've probably over explained this; but i think you guys might get the jist. -BenN ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Create Rule to notify when a daily email doesn't show in my inbox/folder
That is very interesting. i would love to see an example of this script. You guys crack me up. I do love work and reading emails; but i won't get into too much detail on why this would be extremely useful for me heh. I get a ton of emails as it is and reading them day after day does not mean i can point out what is usually there that should be given my current situation. Ideally; i would setup some way to sms text me if this daily email wasn't delivered to my inbox or one of it's folders if i had a rule for that. Actually. i have about half a dozen of these types of emails i would use this against. Thanks again for these great ideas. -BenN On Mon, Jun 1, 2009 at 11:11 AM, Ben Scott mailvor...@gmail.com wrote: On Mon, Jun 1, 2009 at 12:55 PM, Ben Nordlander bennordlan...@gmail.com wrote: Does anyone know of a method to create some type of notification in Outlook (probably using rules) that would allow for some extra notification if one of these daily emails don't get sent to me? I don't believe this can be done in Outlook Rules. Outlook Rules fire in response to mail being received, and are fairly limited in what they can do. It is possible, however, to run an external script on a schedule, and have that script talk to Outlook and see if the mail you want is there. That script can then do what you want it to. You'd need to run this on a computer with credentials that let it access your mailbox and Outlook, though. That probably means leaving your desktop logged in as you. I don't have such a thing read-made. I've got a script that grovels the public folder tree looking for keywords, though; that might be a starting point for you. Let me know if you're interested. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Windows 7 RC
My desktop and laptop on domain jsut fine with win7. Co-workers with win7 rc are fine as well. On May 11, 2009 3:48 PM, Greg Mulholland g...@krystaltek.com wrote: no issue Greg -- *From:* Tim Vander Kooi [tvanderk...@expl.com] *Sent:* Tuesday, 12 May 2009 3:48 AM To: NT System Admin Issues *Subject:* RE: Windows 7 RC Worked just fine for me. -Original Message- From: Jon D [mailto: rekcahp...@gmail.com] Sent... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Spam filters
Orf (vamsoft.com) along with symantec smtp (brightmail) On May 8, 2009 10:44 AM, Angus Scott-Fleming angu...@geoapps.com wrote: On 1 May 2009 at 22:50, Benjamin Zachary - Lists wrote: Proxmox appliance, free for single domai... What do you mean by is offsite? -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 +---+ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: OT - Copier Reliability
+1 for canon. Our company uses them in all our offices. We have about 70 of them under lease. Highly suggest you get the fiery's with them. Have had bad experiences with savin and konica. On May 8, 2009 3:25 PM, David blazer...@gmail.com wrote: I've had more than one copier repairman refer to the Canons as the 'tanks' of the industry, and that is true in my experience. Everyone will have a favorite, but the Canons get my vote for just plain working. David On Fri, May 8, 2009 at 4:55 AM, Jon Harris jk.har...@gmail.com wrote: We have 2 of the Ko... -- David _ If you don't want to stand behind our troops, feel free to stand in front of them. ~ Redneck saying ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: HELP!!!
If encrypted with the private key, then only the public key can decrypt. If encrypted with the public key, then only the private key can decrypt. -BenN On Thu, Apr 16, 2009 at 11:17 AM, Daniel Rodriguez drod...@gmail.comwrote: I have gone over the instructions for the past two days. What am I missing? On Thu, Apr 16, 2009 at 2:14 PM, Daniel Rodriguez drod...@gmail.comwrote: Then why can't I decrypt the file? I keep getting an error stating that I do not have the Private Key? On Thu, Apr 16, 2009 at 2:13 PM, Sean Rector sean.rec...@vaopera.orgwrote: You only need the Public key ÿÿ“ if you had their private key, yoÿÿ€™d be able to encrypt *as them*. Sean Rector, MCSE *From:* Daniel Rodriguez [mailto:drod...@gmail.com] *Sent:* Thursday, April 16, 2009 2:12 PM *To:* NT System Admin Issues *Subject:* HELP!!! On encrypted files, such as those done with PGP, don't I need the Private and Public Key to decrypt those files. Scenario: Customer has FTP site. Use Windows Explorer to FTP to there server, login with provided credentials, then copied files to desktop. Used GnuPGP and CryptoAnywhere. Imported Public Key and Passcode. Getting error that Private Key not found. Do I not need the Private Key from the Customer as well as the Public Key to open these files? Information Technology Manager Virginia Opera Association E-Mail: sean.rec...@vaopera.org Phone:(757) 213-4548 (direct line) {+} *Virginia Opera's 35th Anniversary Season http://www.vaopera.org/* *The One You Love* *Celebrate with a 2009-2010 Subscription: La Bohèmehttp://www.vaopera.org/html/currentoperas/opera1.cfm, The Daughter of the Regimenthttp://www.vaopera.org/html/currentoperas/opera2.cfm, Don Giovanni http://www.vaopera.org/html/currentoperas/opera3.cfm and Porgy and BessSM http://www.vaopera.org/html/currentoperas/opera4.cfm* Visit us online at www.vaopera.org or call 1-866-OPERA-VA -- This e-mail and any attached files are confidential and intended solely for the intended recipient(s). Unless otherwise specified, persons unnamed as recipients may not read, distribute, copy or alter this e-mail. Any views or opinions expressed in this e-mail belong to the author and may not necessarily represent those of Virginia Opera. Although precautions have been taken to ensure no viruses are present, Virginia Opera cannot accept responsibility for any loss or damage that may arise from the use of this e-mail or attachments. {*} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Training videos - Trainsignal
I been liking the cbt nugget videos a lot recently. Much better then testout I think. On Apr 14, 2009 2:11 PM, David Lum david@nwea.org wrote: laughs Funny I’m not afraid of someone saying “here’s our network of 150 servers with varying OS’s and God-knows-what for AD structure, GPO organization and permissions, check it out and fix it”. But taking an Active Directory test I see nothing but “um, I don’t know”. Temping though… Dave *From:* Brian Desmond [mailto:br...@briandesmond.com] *Sent:* Tuesday, April 14, 2009 1:26 PM To: NT System Admin Issues *Subject:* RE: Training videos - Trainsignal Just a thought, they have a free retake on the MCP tests is if you don’t pass. Go take the test... *From:* David Lum [mailto:david@nwea.org] Sent: Tuesday, April 14, 2009 1:01 PM To: NT System Admin Issues Subject: Training videos - Trainsig... Does anyone have any experience with these? http://www.trainsignal.com/Windows-Server-2008-Act... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: OT: Dell Studio 540 - Hardware Issues
You might check to be sure your raid0 drives are plugged into the raid sata ports on mobo. Maybe when they replaced the mobo, they did not plugg in the drives same way. U will definately need both drives to boot the raid0 to windows. The raid info should still be on those drives! Hth -BenN On Apr 14, 2009 6:59 PM, Ben Scott mailvor...@gmail.com wrote: On Tue, Apr 14, 2009 at 9:03 PM, Sean Martin seanmarti...@gmail.com wrote: What's odd, is everyt... the settings appear to be back at default ... Does the mobo have the latest BIOS? If not, update it to latest. If already at latest, download a new copy and re-flash. Maybe the BIOS flash is corrupted. Check the BIOS clear jumper on the motherboard. Maybe it's in the wrong position. Some mobos also have a jumper to lock BIOS settings; check for that, too. If none of those apply, try resetting the BIOS to factory defaults, and/or pulling the NVRAM battery. Maybe NVRAM is corrupted in a weird way. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsof... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Free Conficker Scanner
i used this as my scanner (latest (beta) version of nmap with the script they list) http://seclists.org/nmap-dev/2009/q1/0869.html what i did: using Nmap (4.85BETA5) C:\program files\nmap\nmap.exe -sC --script=smb-check-vulns --script-args=safe=1 -p445 -d -PN -n -T4 --min-hostgroup 256 --min-parallelism 64 -oA conficker_scan 10.0.0.0/16 nmap-scan.txt i then searched nmap-scan.txt for the word infected. -BenN On Tue, Mar 31, 2009 at 7:05 PM, Jon D rekcahp...@gmail.com wrote: Can you access the remote share on said computers? I've noticed on computers with their firewall setup wrong(blocking sharing) that it would read as incomplete. The tool did find 1 computer on my network that was missing 20+ patches. Not sure what happened there. Jon . On Tue, Mar 31, 2009 at 10:00 PM, Chyka, Robert bch...@medaille.edu wrote: I tried to scan some subnets and it says incomplete scan or something. Some machines can be scanned but most can't. What would be stopping the scan? -Original Message- From: Marc Maiffret m...@marcmaiffret.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 3/31/09 9:39 PM Subject: Free Conficker Scanner A lot of you have been emailing me off list asking if eEye was going to make a free Conficker scanner like they normally have done in the past for major issues etc... They have in fact created one and it is completely for free and will detect both vulnerabilities that Conficker uses and also systems infected with Conficker. I would check for new versions as they will be making tweaks and improvements as they receive feedback. http://www.eeye.com/html/downloads/other/ConfickerScanner.html Feel free to cross post and forward this email to other IT types that are looking for a tool to help identity Conficker and related. -Marc Maiffret www.marcmaiffret.com P.S. If you are looking to be proactive and find this and more: http://www.eeye.com/html/products/retina/index.html ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Free Conficker Scanner
meant to include that i got this when i read this: http://isc.sans.org/diary.html?storyid=6097 -BenN On Tue, Mar 31, 2009 at 10:52 PM, Ben Nordlander bennordlan...@gmail.comwrote: i used this as my scanner (latest (beta) version of nmap with the script they list) http://seclists.org/nmap-dev/2009/q1/0869.html what i did: using Nmap (4.85BETA5) C:\program files\nmap\nmap.exe -sC --script=smb-check-vulns --script-args=safe=1 -p445 -d -PN -n -T4 --min-hostgroup 256 --min-parallelism 64 -oA conficker_scan 10.0.0.0/16 nmap-scan.txt i then searched nmap-scan.txt for the word infected. -BenN On Tue, Mar 31, 2009 at 7:05 PM, Jon D rekcahp...@gmail.com wrote: Can you access the remote share on said computers? I've noticed on computers with their firewall setup wrong(blocking sharing) that it would read as incomplete. The tool did find 1 computer on my network that was missing 20+ patches. Not sure what happened there. Jon . On Tue, Mar 31, 2009 at 10:00 PM, Chyka, Robert bch...@medaille.edu wrote: I tried to scan some subnets and it says incomplete scan or something. Some machines can be scanned but most can't. What would be stopping the scan? -Original Message- From: Marc Maiffret m...@marcmaiffret.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: 3/31/09 9:39 PM Subject: Free Conficker Scanner A lot of you have been emailing me off list asking if eEye was going to make a free Conficker scanner like they normally have done in the past for major issues etc... They have in fact created one and it is completely for free and will detect both vulnerabilities that Conficker uses and also systems infected with Conficker. I would check for new versions as they will be making tweaks and improvements as they receive feedback. http://www.eeye.com/html/downloads/other/ConfickerScanner.html Feel free to cross post and forward this email to other IT types that are looking for a tool to help identity Conficker and related. -Marc Maiffret www.marcmaiffret.com P.S. If you are looking to be proactive and find this and more: http://www.eeye.com/html/products/retina/index.html ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Internet cafe setup
Not restore image, but absolutely won't save what the user just did to the computer. On Mar 30, 2009 4:16 PM, Bill Songstad (WCUL) administra...@waleague.org wrote: Will SteadyState restore to the original disk image? Where I’m going is if a user gets all infected and pwnd during their session, will it get completely restored? Then if so, how does it handle software patches? *Bill * *From:* Gavin Wilby [mailto:gavin.wi...@gmail.com] *Sent:* Sunday, March 29, 2009 3:24 AM To: NT System Admin Issues *Subject:* Re: Internet cafe setup Seconded for Steady State, I use it a lot for this. Machine reboots at log off and resets i... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Internet cafe setup
You might take a look at microsoft steadystae too if u do go windows. -BenN On Mar 26, 2009 9:53 AM, Ben Scott mailvor...@gmail.com wrote: On Thu, Mar 26, 2009 at 11:07 AM, James Rankin kz2...@googlemail.com wrote: My initial idea, in ... I'd only use a VM if I wanted the users to be have relatively free reign on the machine during their session -- that way I could roll it back after. If you just want a web browser, I think it's prolly easier to just configure a restricted user. That way they can't even muck around with stuff *during* their session. I'd use something like LTSP (Linux Terminal Server Project) or ThinStation. I'd set-up one server to push DHCP, boot files, and (if needed) network file systems out to the clients. I'd use a user account on the client's that's got a mostly read-only user home directory. (Unlike Windows, Unix will generally work even if the user's home directory isn't owned or writable by them.) I think the only things that the user would *need* to be able to write to would be /tmp/ and the browser cache directory (typically something like $HOME/.mozilla/firefox/default/cache/). I'd suggest having them use USB flash drives if they want to be able to write or save files. If you have to provide a writable directory, just grant write to $HOME/Desktop or something like that. And warn them their work won't be saved between sessions. I'd configure conservative browser settings, and then lock them against changes. With Firefox, this is done by changing the user_pref() or pref() directive to lock_pref(). Possibly use a kiosk mode configuration. I'd mount the home and /tmp partitions with the noexec option, so if the user did manage to download a program, the system would refuse to execute it. It should be possible to tell the auto-mounter to add noexec to any USB drives as well. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.co... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Issues with windows update .NET 3.5 SP1
This update just kills me. It failed often or just takes forever(hours) to install. Mostly an issue on my Server 2008 servers. Anyone else having issues with this ? -BenN ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Issues with windows update .NET 3.5 SP1
Yeah it is a huge file to download. When it does fail. i reboot the server, have it install again (sometimes takes a long time as well), and usually it gets pushed through. Fortunately, I don't have any issues with my servers once it is installed; and i have a slew of different .NET websites using almost every version i think. (1.1, 2.0, 3.0,3.5) It looks like I'm not the only one with complaints on the install process. -BenN On Fri, Mar 20, 2009 at 11:25 AM, Peter van Houten peter...@gmail.comwrote: Addendum: It also contains all of 2.0 and 3.0 It contains the original 3.5 release plus SP1 which makes it standalone (i.e. you don't need the original 200MB 3.5 install) Immediately after installing, an update becomes available :-) Never had any problems installing it on clients and servers (albeit non-2008 platforms). -- Peter van Houten On the 20/03/2009 19:58, Martin Blackstone wrote the following: Isn�t that the one that�s about 250 MB? *From:* Ben Nordlander [mailto:bennordlan...@gmail.com] *Sent:* Friday, March 20, 2009 10:51 AM *To:* NT System Admin Issues *Subject:* Issues with windows update .NET 3.5 SP1 This update just kills me. It failed often or just takes forever(hours) to install. Mostly an issue on my Server 2008 servers. Anyone else having issues with this ? -BenN ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Issues with windows update .NET 3.5 SP1
On my most recent issue on a server. i had already done iisreset /stop and it still took about 2 hours. Maybe during this update it starts inetinfo again and then needs to kill it again where it hangs? -BenN On Fri, Mar 20, 2009 at 11:28 AM, Jim Dandy jda...@asmail.ucdavis.eduwrote: Someone posted a solution to this a while back. You had to kill a process to get the installation to go. Don’t hold me to it but if memory serves me right, it was inetinfo.exe. Whatever it was that they suggested, it worked for me. *From:* Ben Nordlander [mailto:bennordlan...@gmail.com] *Sent:* Friday, March 20, 2009 10:51 AM *To:* NT System Admin Issues *Subject:* Issues with windows update .NET 3.5 SP1 This update just kills me. It failed often or just takes forever(hours) to install. Mostly an issue on my Server 2008 servers. Anyone else having issues with this ? -BenN ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RichCopy
sweet thanks! -BenN On Fri, Mar 20, 2009 at 12:52 PM, Rob Bonfiglio robbonfig...@gmail.comwrote: We just got an e-mail from our Microsoft Rep which linked us to this utility. Apparently it's used a lot w/in Microsoft. The article gives some background to RichCopy. It is a multi-threaded GUI file copying utility. I thought some of you all might find it useful, if you haven't seen it already. http://technet.microsoft.com/en-us/magazine/2009.04.utilityspotlight.aspx?pr=blog ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: What's the easiest way to migrate printer from one server to another?
Yea print migration tool works great On Mar 20, 2009 9:41 AM, Brian Desmond br...@briandesmond.com wrote: Printmig should do the job for 20032003 - you can grab it off download.microsoft.com Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 Active Directory, 4th Ed - http://www.briandesmond.com/ad4/ Microsoft MVP - https://mvp.support.microsoft.com/profile/Brian -Original Message- From: John [mailto:jentwis...@twcny.rr.com] Sent: Friday, March 20, 200... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Godaddy.com for SSL certs?
We use them for about 10 certs; only issue i have with them is firefox doesn't trust them by default where IE does. -Ben On Sat, Mar 14, 2009 at 5:55 PM, Webster carlwebs...@gmail.com wrote: -Original Message- From: Jason Morris [mailto:jmor...@mjmc.com] Subject: RE: Godaddy.com for SSL certs? Also, for those who watch the GeekBrief podcast, if you use promocode GB1, GB2, GB3 or GB4, you'll get an extra percentage off. I think it's 10%. GB1 = 10% off GB2 = $5 off GB3 GB4 are not valid. Webster ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DPM - backup all protected groups to tape
I tried searching for it and can't find where i saw it. i did see on the MS site you can use a 3rd part backup software to backup DPM files.. so maybe i am just plain wrong :) -BenN On Wed, Mar 11, 2009 at 9:37 AM, Bob Fronk b...@btrfronk.com wrote: Do you know where you read that? *From:* Ben Nordlander [mailto:bennordlan...@gmail.com] *Sent:* Sunday, March 08, 2009 9:06 PM *To:* NT System Admin Issues *Subject:* Re: DPM - backup all protected groups to tape I remember reading that you need a 2nd dpm server to do that. On Mar 8, 2009 11:49 AM, Bob Fronk b...@btrfronk.com wrote: I have multiple protected groups in DPM. I would like to backup the all the groups in one job to a tape every day. I cannot seem to figure out if this is possible. I know I can set a disk and tape protection for each group, but DPM wants too many tapes because it wants to put each group on its own tape. I would like to set a daily job that would backup all the groups to span a couple of tapes for offsite storage daily. Thanks for any input. Bob ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: DPM - backup all protected groups to tape
I remember reading that you need a 2nd dpm server to do that. On Mar 8, 2009 11:49 AM, Bob Fronk b...@btrfronk.com wrote: I have multiple protected groups in DPM. I would like to backup the all the groups in one job to a tape every day. I cannot seem to figure out if this is possible. I know I can set a disk and tape protection for each group, but DPM wants too many tapes because it wants to put each group on its own tape. I would like to set a daily job that would backup all the groups to span a couple of tapes for offsite storage daily. Thanks for any input. Bob ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Head check - two domains, one subnet
I have 4 in one subnet. No issues. Just keep dns and computer names seperate. On Mar 3, 2009 1:31 PM, Don Guyer don.gu...@prufoxroach.com wrote: We currently have 2 and will have 3 as of Saturday. Don Guyer Systems Engineer - Information Services Prudential, Fox Roach/Trident Group 431 W. Lancaster Avenue Devon, PA 19333 Direct: (610) 993-3299 Fax: (610) 650-5306 don.gu...@prufoxroach.com *From:* David Lum [mailto:david@nwea.org] *Sent:* Friday, February 27, 2009 11:50 AM To: NT System Admin Issues Subject: Head check - two domains, one subnet There should be no issue with having two different and non-trusting forests/domains on the same... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: RE: Help Desk Software
Really surprised no one has looked at adventnet.com service desk product. It has change control in its plus versiom I believe and solutions db.. other fin stuff like contracts/inventory. On Feb 27, 2009 1:32 PM, Benjamin Zachary - Lists li...@levelfive.us wrote: +1 for **internal** help desk. I think this is a really nice free product, being a consultant webcenter is more geared towards me *From:* Sean Rector [mailto:sean.rec...@vaopera.org] *Sent:* Thursday, February 26, 2009 11:31 AM To: NT System Admin Issues Subject: RE: Help Desk Software Spiceworks here. http://www.spiceworks.com Helpdesk and network management/monitoring. Free Sean Rector, MCSE *From:* Todd Arnett [mailto:tarn...@lastar.com] Sent: Thursday, February 26, 2009 10:35 AM To: NT System Admin Issues Subject: Help Desk Software We are currently evaluating different help desk software. Just curious what everyone here is us... Information Technology Manager Virginia Opera Association E-Mail: sean.rec...@vaopera.org Phone:(757) 213-4548 (direct line) {+} 2008-2009 Season: Tosca | The Barber of Seville Recently Announced: Virginia Opera's 35th A... This e-mail and any attached files are confidential and intended solely for the intended recipient(s). Unless otherwise specified, persons unnamed as recipients may not read, distribute, copy or alter this e-mail. Any views or opinions expressed in this e-mail belong to the author and may not necessarily represent those of Virginia Opera. Although precautions have been taken to ensure no viruses are present, Virginia Opera cannot accept responsibility for any loss or damage that may arise from the use of this e-mail or attachments. {*} ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Raid 10 SCSI drives - different manufacturers?
I had a drive die on me yesterday in a raid10. They are all 73GB Seagate 10K 80pin SCSI drives. Now i have a Hitachi drive, 73GB 10K 80pin SCSI.. i'm really tempted to just throw this in and rebuild my raid.. but i've had this superstition on using the same exact drive in all respects (including drive firmware) for a raid. But i really dont' want to wait to get a replacement, what are everyone's thoughts here? Is same size/speed ok? Thanks -Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: Raid 10 SCSI drives - different manufacturers?
It's a supermicro server, so it's not as picky as let's say a HP or a Dell.. it's a pretty generic server. -Ben On Tue, Apr 15, 2008 at 7:37 AM, Damien Solodow [EMAIL PROTECTED] wrote: Usually. The main gotcha I'd worry about is if the existing drives are rebranded as there might be firmware changes. HP particularly does this with their drives as they have a custom firmware and non-HP drives can have unpredictable results. *From:* Ben Nordlander [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, April 15, 2008 10:34 AM *To:* NT System Admin Issues *Subject:* Raid 10 SCSI drives - different manufacturers? I had a drive die on me yesterday in a raid10. They are all 73GB Seagate 10K 80pin SCSI drives. Now i have a Hitachi drive, 73GB 10K 80pin SCSI.. i'm really tempted to just throw this in and rebuild my raid.. but i've had this superstition on using the same exact drive in all respects (including drive firmware) for a raid. But i really dont' want to wait to get a replacement, what are everyone's thoughts here? Is same size/speed ok? Thanks -Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
active directory is rebuilding indices
This is on a Server 2003 SP2 server that has SQL and acts as a BDC for a SBS2003 server. what do you guys recommend for trouble-shooting.. it just hangs on this error forever. -Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: wmv IE streaming broken on all computers
interesting idea, i'll have to look. Thanks! After today with PSS though, they find the workaround to be selecting that check box in LAN Settings in IE options.. i just wish i knew why that is all of a sudden required with our current settings. -Ben On Jan 23, 2008 7:05 AM, Miller Bonnie L. [EMAIL PROTECTED] wrote: I know my terminology is probably way off as I'm not the network person here-sorry about that. When our admin scrunched down the amount of bandwidth that streaming media could take using our Internet facing Packetshaper, we had a similar problem. You could play a file locally but not streamed. He had to bump up the bandwidth cap on media files to a minimum amount (I can find out if you need to know) to get streaming to work. Just an idea, but since it works when the policies are removed, do you have any policy/preference settings that could limit bandwidth, such as settings for BITS or QOS? If you're not already, use GPMC so you can get a full report of all the settings being applied. -Bonnie *From:* Ben Nordlander [mailto:[EMAIL PROTECTED] *Sent:* Tuesday, January 22, 2008 8:53 PM *To:* NT System Admin Issues *Subject:* Re: wmv IE streaming broken on all computers no ideas anyone? I'll only bump this once. thanks in advance if anyone has ideas. thanks -Ben On Jan 20, 2008 5:09 PM, Ben Nordlander [EMAIL PROTECTED] wrote: so we have this problem, isn't that how it always starts? :) Our GPO settings for our domain controlled computers won't play streaming wmv on IE7. If we image a computer, it is fine. if we put it on the domain, it is fine. If we move the computer account to the OU where our main GPO settings get applied.. it breakes wmv streaming in IE. It is a per profile problem, so if we took this computer out of that OU and back to like the computers container where no OU gets applied really, ( we don't modify the domain wide GPO at all really ), then the profiles that didn't work, are still broken.. and new profiles work ok. So the problems looks like this. you get the WMV window and with its controls.. looks fine.. but it just sits there blank. Hitting play does nothing. If you browse to a IIS web site with browsing turned on , and then click on a wmv file.. it opens Windows media player (v.11 on all, can't roll back), but just sits there forever.. hitting the CPu pretty good till you end task it. i've had it sit for over 30 minutes. Opening a wmv video from a file share, works just fine.. as well as opening one locally. awesome right? We have been working with PSS for over a week.. and the only solution they have come up is to have the GPO setting select the check box automatically check settings under LAN Settings in IE options. But has been unreliable on getting this setting to work via GPO, and MS is confused as well. but really this is just a work around.. and a bad one for being a per profile thing too. They seem to think it is a network thing that is causing the streaming to break.. so any of have ideas on this strange issue? We could start over on and our computers, but really isn't an option at this point. way too many desktops and users per desktop. I'm looking for someone who has fixed this issue before or might have a clue at the silver bullet. -Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: wmv IE streaming broken on all computers
no ideas anyone? I'll only bump this once. thanks in advance if anyone has ideas. thanks -Ben On Jan 20, 2008 5:09 PM, Ben Nordlander [EMAIL PROTECTED] wrote: so we have this problem, isn't that how it always starts? :) Our GPO settings for our domain controlled computers won't play streaming wmv on IE7. If we image a computer, it is fine. if we put it on the domain, it is fine. If we move the computer account to the OU where our main GPO settings get applied.. it breakes wmv streaming in IE. It is a per profile problem, so if we took this computer out of that OU and back to like the computers container where no OU gets applied really, ( we don't modify the domain wide GPO at all really ), then the profiles that didn't work, are still broken.. and new profiles work ok. So the problems looks like this. you get the WMV window and with its controls.. looks fine.. but it just sits there blank. Hitting play does nothing. If you browse to a IIS web site with browsing turned on , and then click on a wmv file.. it opens Windows media player (v.11 on all, can't roll back), but just sits there forever.. hitting the CPu pretty good till you end task it. i've had it sit for over 30 minutes. Opening a wmv video from a file share, works just fine.. as well as opening one locally. awesome right? We have been working with PSS for over a week.. and the only solution they have come up is to have the GPO setting select the check box automatically check settings under LAN Settings in IE options. But has been unreliable on getting this setting to work via GPO, and MS is confused as well. but really this is just a work around.. and a bad one for being a per profile thing too. They seem to think it is a network thing that is causing the streaming to break.. so any of have ideas on this strange issue? We could start over on and our computers, but really isn't an option at this point. way too many desktops and users per desktop. I'm looking for someone who has fixed this issue before or might have a clue at the silver bullet. -Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
wmv IE streaming broken on all computers
so we have this problem, isn't that how it always starts? :) Our GPO settings for our domain controlled computers won't play streaming wmv on IE7. If we image a computer, it is fine. if we put it on the domain, it is fine. If we move the computer account to the OU where our main GPO settings get applied.. it breakes wmv streaming in IE. It is a per profile problem, so if we took this computer out of that OU and back to like the computers container where no OU gets applied really, ( we don't modify the domain wide GPO at all really ), then the profiles that didn't work, are still broken.. and new profiles work ok. So the problems looks like this. you get the WMV window and with its controls.. looks fine.. but it just sits there blank. Hitting play does nothing. If you browse to a IIS web site with browsing turned on , and then click on a wmv file.. it opens Windows media player (v.11 on all, can't roll back), but just sits there forever.. hitting the CPu pretty good till you end task it. i've had it sit for over 30 minutes. Opening a wmv video from a file share, works just fine.. as well as opening one locally. awesome right? We have been working with PSS for over a week.. and the only solution they have come up is to have the GPO setting select the check box automatically check settings under LAN Settings in IE options. But has been unreliable on getting this setting to work via GPO, and MS is confused as well. but really this is just a work around.. and a bad one for being a per profile thing too. They seem to think it is a network thing that is causing the streaming to break.. so any of have ideas on this strange issue? We could start over on and our computers, but really isn't an option at this point. way too many desktops and users per desktop. I'm looking for someone who has fixed this issue before or might have a clue at the silver bullet. -Ben ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~