RE: The list status
I think you will get some push back on Google Groups. We were unsure what was going on, so in case of a disaster there is another list started by Rod Trent on ITForum.com I think you should ping him and see if you can work together on this. His address isrodtr...@myitforum.com Thank you for jumping in and clearing things up for us. Jim -Original Message- From: Sandy [mailto:san...@knowbe4.com] Sent: Friday, May 03, 2013 9:28 AM To: NT System Admin Issues Subject: re: The list status Hello Everyone! My name is Sandy Vandebult and I was a long Sunbelter and currently work with Stu at his new company Knowbe4. GoodNews!! GFI has given the list over to Stu and the list will live on! We are looking at moving the list over to Google groups but I am open to any suggestions if anybody knows of a better way to go. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The list status
I don't think he cares who owns it, I think he is just trying to help us out...and was unaware of our plan B. From: Mayo, Bill [mailto:bill.m...@pittcountync.gov] Sent: Friday, May 03, 2013 10:14 AM To: NT System Admin Issues Subject: RE: The list status The problem being? From: Jonathan Link [mailto:jonathan.l...@gmail.com] Sent: Friday, May 03, 2013 9:55 AM To: NT System Admin Issues Subject: Re: The list status Yeah, but he won't own it... On Fri, May 3, 2013 at 9:44 AM, Mayo, Bill bill.m...@pittcountync.govmailto:bill.m...@pittcountync.gov wrote: I'm not sure what the problem is at this point. A new list is setup, it is working better than the old one, and many (most?) folks have moved over to it. Stu can simply subscribe to it if he wants. -Original Message- From: Rod Trent [mailto:rodtr...@myitforum.commailto:rodtr...@myitforum.com] Sent: Friday, May 03, 2013 9:39 AM To: NT System Admin Issues Subject: RE: The list status Google groups? Is that even a listserv? -Original Message- From: Sandy [mailto:san...@knowbe4.commailto:san...@knowbe4.com] Sent: Friday, May 03, 2013 9:21 AM To: NT System Admin Issues Subject: re: The list status Hello Everyone! My name is Sandy Vandebult and I was a long Sunbelter and currently work with Stu at his new company Knowbe4. GoodNews!! GFI has given the list over to Stu and the list will live on! We are looking at moving the list over to Google groups but I am open to any suggestions if anybody knows of a better way to go. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: problem subscription to new list
FWIW, my spam filter let the admin messages through but blocked the list messages. Then after I fixed that it hit my rate limit and I had to fix that. From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Friday, May 03, 2013 11:08 AM To: NT System Admin Issues Subject: Re: problem subscription to new list That's where it's been sent to. I get nothing back indicating acceptance to the list. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.commailto: [cid:image001.jpg@01CE47EF.5BF17630] The Guardian Life Insurance Company of America www.guardianlife.comhttp://www.guardianlife.com/ From:Jonathan Link jonathan.l...@gmail.commailto:jonathan.l...@gmail.com To:NT System Admin Issues ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com Date:05/03/2013 10:59 AM Subject:Re: problem subscription to new list Try comm...@lists.myitforum.commailto:comm...@lists.myitforum.com On Fri, May 3, 2013 at 10:53 AM, Christopher Bodnar christopher_bod...@glic.commailto:christopher_bod...@glic.com wrote: Anyone else having issues trying to subscribe to the new list that Rod put up? I send the subscription e-mail, but I've gotten no confirmation back. I've tried 3 times over the last 3 days with no luck. Don't see it getting flagged as junk, and I do get the stuff from ad...@myitforum.commailto:ad...@myitforum.com without any issues. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459tel:610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.commailto:christopher_bod...@glic.com [cid:image001.jpg@01CE47EF.5BF17630] The Guardian Life Insurance Company of America www.guardianlife.comhttp://www.guardianlife.com/ - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: The list?
My theory is this: 1) He sent his email a month early by accident, it isn't shutting down until the end of April. 2) He has been busy, and hasn't seen what we have been sayingso he isn't aware we are freaking out. From: Clark, Tommy R [mailto:tommy.r.cl...@saic.com] Sent: Thursday, May 02, 2013 11:13 AM To: NT System Admin Issues Subject: RE: The list? I am surprised that Stu has been silent through all of this. From: bounce-9606064-8239...@lyris.sunbelt-software.commailto:bounce-9606064-8239...@lyris.sunbelt-software.com [mailto:bounce-9606064-8239...@lyris.sunbelt-software.com] On Behalf Of James Kerr Sent: Thursday, May 02, 2013 10:55 AM To: NT System Admin Issues Subject: Re: The list? Now I have to wonder if the lists were being shutdown at all and if Stu's email was just a ploy to get folks over to his own list. (which he never left instructions on how to do) On Thu, May 2, 2013 at 9:01 AM, Jonathan Link jonathan.l...@gmail.commailto:jonathan.l...@gmail.com wrote: Pong. Need some popcorn... On Thu, May 2, 2013 at 8:56 AM, James Kerr cluster...@gmail.commailto:cluster...@gmail.com wrote: Ping? Sent from my MK-19 grenade launcher. On May 1, 2013 8:35 PM, Steven M. Caesare scaes...@caesare.commailto:scaes...@caesare.com wrote: Hesienberg's 8-Ball says: Uncertain -sc From: Doug Hampshire [mailto:dhampsh...@gmail.commailto:dhampsh...@gmail.com] Sent: Wednesday, May 01, 2013 8:09 PM To: NT System Admin Issues Subject: Re: The list? Is Schrodenger's cat subscribed to the list? On Tue, Apr 30, 2013 at 12:45 PM, Ben Scott mailvor...@gmail.commailto:mailvor...@gmail.com wrote: On Tue, Apr 30, 2013 at 12:29 PM, Ryan Finnesey r...@finnesey.commailto:r...@finnesey.com wrote: I hate to jinks it but it seem the list is still up and running? No. We're all a figment of your imagination. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The list?
Yes, it was very awesome of him. Things change, I get it if he can't keep doing it. -Original Message- From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Thursday, May 02, 2013 1:05 PM To: NT System Admin Issues Subject: Re: The list? don't think it's been said enough, so Thanks Stu for all the years this list has provided to the community ! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: The list?
Address was legit. Stu isn't with GFI anymore. He has his own security venture going. http://www.knowbe4.com/ From: Ryan Finnesey [mailto:r...@finnesey.com] Sent: Thursday, May 02, 2013 2:13 PM To: NT System Admin Issues Subject: Re: The list? I am starting to also think something was fishy. It also did not come from a GFI email address. Sent from my iPad mini On May 2, 2013, at 10:58 AM, James Kerr cluster...@gmail.commailto:cluster...@gmail.com wrote: Now I have to wonder if the lists were being shutdown at all and if Stu's email was just a ploy to get folks over to his own list. (which he never left instructions on how to do) On Thu, May 2, 2013 at 9:01 AM, Jonathan Link jonathan.l...@gmail.commailto:jonathan.l...@gmail.com wrote: Pong. Need some popcorn... On Thu, May 2, 2013 at 8:56 AM, James Kerr cluster...@gmail.commailto:cluster...@gmail.com wrote: Ping? Sent from my MK-19 grenade launcher. On May 1, 2013 8:35 PM, Steven M. Caesare scaes...@caesare.commailto:scaes...@caesare.com wrote: Hesienberg's 8-Ball says: Uncertain -sc From: Doug Hampshire [mailto:dhampsh...@gmail.commailto:dhampsh...@gmail.com] Sent: Wednesday, May 01, 2013 8:09 PM To: NT System Admin Issues Subject: Re: The list? Is Schrodenger's cat subscribed to the list? On Tue, Apr 30, 2013 at 12:45 PM, Ben Scott mailvor...@gmail.commailto:mailvor...@gmail.com wrote: On Tue, Apr 30, 2013 at 12:29 PM, Ryan Finnesey r...@finnesey.commailto:r...@finnesey.com wrote: I hate to jinks it but it seem the list is still up and running? No. We're all a figment of your imagination. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DFSR
That can be mitigated with setting referral ordering on the namespace for common shares. I don't DFSR to load balance, I do it for uptime. All of the shares are referral ordered to just one server. To date, we have not had any double edit issues. Although I probably just jinxed myself. From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Monday, April 29, 2013 5:18 PM To: NT System Admin Issues Subject: RE: DFSR The big deal with DFS (IMO) is the double-edit issue. Two people can edit the same file at the same time and the last one that saves the file wins. From: David Lum [mailto:david@nwea.org] Sent: Monday, April 29, 2013 5:03 PM To: NT System Admin Issues Subject: DFSR I resolved my DFS issue from last week (pilot error :)). My question is this: Is there a reason not to leverage DFS for most file shares? It seems to me like it's a good way to be able to down a server (read: patch and reboot) and keep the file shares available, but I also know with something that's new to me makes it easy to overlook something simple. I'd guess it's not a good idea to DFS *every* file share, just mission-critical ones? In the scenario I care about the sites are all connected at 10Mbit or better and there's no more than 40 users connected to any one server at a time and 55 is the total user count. All storage is local, no SAN /iSCSI, etc. I did find this too: http://blogs.technet.com/b/askds/archive/2010/11/01/common-dfsr-configuration-mistakes-and-oversights.aspx Seems like the only downside - as long as you're paying attention to things listed in the link above - is using 2x/3x+ of the overall disk space as without DFSR, and possible traffic if you are a huge environment with very slow connections. David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DFSR
When my WAN sh*ts itself it is cut into 13ths and it is all over anyway. Full mesh redundancy is not on our radar. The ROI isn't there for us. We pay for 4 hour from Cisco and 24 hour from our fiber provider. But if I was meshed and had distributed servers my referral ordering would still work. The top priority server dies or that part of the network dies peeps would go to the second ordered referral. .com] Sent: Tuesday, April 30, 2013 8:50 AM To: NT System Admin Issues Subject: RE: DFSR What happens when the WAN sh*ts itself, and your environment is cut in half? Cheers Ken From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, 30 April 2013 10:04 PM To: NT System Admin Issues Subject: RE: DFSR That can be mitigated with setting referral ordering on the namespace for common shares. I don't DFSR to load balance, I do it for uptime. All of the shares are referral ordered to just one server. To date, we have not had any double edit issues. Although I probably just jinxed myself. From: Michael B. Smith [mailto:mich...@smithcons.com] Sent: Monday, April 29, 2013 5:18 PM To: NT System Admin Issues Subject: RE: DFSR The big deal with DFS (IMO) is the double-edit issue. Two people can edit the same file at the same time and the last one that saves the file wins. From: David Lum [mailto:david@nwea.org] Sent: Monday, April 29, 2013 5:03 PM To: NT System Admin Issues Subject: DFSR I resolved my DFS issue from last week (pilot error :)). My question is this: Is there a reason not to leverage DFS for most file shares? It seems to me like it's a good way to be able to down a server (read: patch and reboot) and keep the file shares available, but I also know with something that's new to me makes it easy to overlook something simple. I'd guess it's not a good idea to DFS *every* file share, just mission-critical ones? In the scenario I care about the sites are all connected at 10Mbit or better and there's no more than 40 users connected to any one server at a time and 55 is the total user count. All storage is local, no SAN /iSCSI, etc. I did find this too: http://blogs.technet.com/b/askds/archive/2010/11/01/common-dfsr-configuration-mistakes-and-oversights.aspx Seems like the only downside - as long as you're paying attention to things listed in the link above - is using 2x/3x+ of the overall disk space as without DFSR, and possible traffic if you are a huge environment with very slow connections. David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: End of month plan B for list shutdown.
If the list blows up tomorrow, the person that decides to pick it up would contact the blog owner.. From: James Rankin [mailto:kz2...@googlemail.com] Sent: Monday, April 29, 2013 8:31 AM To: NT System Admin Issues Subject: Re: End of month plan B for list shutdown. There's plenty of us with blogspace to put out announcements - I think the key is where are we going to get the information from in the first place? I'm hoping Stu will push some details out very soon - otherwise a decade+ of helpful resource is about to go to the wall :-( -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.ukhttp://appsensebigot.blogspot.co.uk/ On 29 April 2013 13:14, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: The end of the month and allegedly the end of the list is tomorrow. We need a plan B to get back in contact to get this going again if possible. Someone got a blog we can bookmark for new/announcements that would be willing to post anything they hear? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: End of month plan B for list shutdown.
Thank you very much Sir. From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Monday, April 29, 2013 10:29 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. Done. Link is here: http://myitforum.com/myitforumwp/services/email-lists/ Rod Trenthttp://myitforum.com/myitforumwp/community/members/rodtrent/ [myITSMButton]http://www.myitforum.com/[TwitterButton]http://twitter.com/rodtrent[Facebookbutton]http://www.facebook.com/rodtrent[LinkedInButton]http://www.linkedin.com/profile/view?id=2881785 From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Monday, April 29, 2013 10:18 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. Sounds good to me and post the link so we can start over there… Z Edward E. Ziots, CISSP, CISA, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org Work:401-444-9081 This electronic message and any attachments may be privileged and confidential and protected from disclosure. If you are reading this message, but are not the intended recipient, nor an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that you are strictly prohibited from copying, printing, forwarding or otherwise disseminating this communication. If you have received this communication in error, please immediately notify the sender by replying to the message. Then, delete the message from your computer. Thank you. [Description: Description: Lifespan] From: David Lum [mailto:david@nwea.org] Sent: Monday, April 29, 2013 9:05 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. I vote do it. I prefer e-mail to web forum for this stuff. From: rodtr...@myitforum.commailto:rodtr...@myitforum.com [mailto:rodtr...@myitforum.com] Sent: Monday, April 29, 2013 5:23 AM To: NT System Admin Issues Subject: Re: End of month plan B for list shutdown. I can set up a list in a few minutes, just say the word. We already host over 25 lists and have plenty of bandwidth to spare. Sent from Microsoft Surface Pro From: Kennedy, Jim Sent: Monday, April 29, 2013 8:14 AM To: NT System Admin Issues The end of the month and allegedly the end of the list is tomorrow. We need a plan B to get back in contact to get this going again if possible. Someone got a blog we can bookmark for new/announcements that would be willing to post anything they hear? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin inline: image001.pnginline: image002.pnginline: image003.pnginline: image004.pnginline: image005.jpg
RE: End of month plan B for list shutdown.
Rob’s list has picked up a few peeps already. It is fast, it is both email and web so people can do it the way they want. Consensus seems to be Rob’s. From: Richard McClary [mailto:richard.mccl...@aspca.org] Sent: Monday, April 29, 2013 10:43 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. Question – we’ve had both Rod and Ben offer to host, and both have given links. Do those wishing to continue a mail-based (rather than web-based) forum go with Rod’s? Is that what the agreement seems to be? Thanks to both Rod and Ben! -- richard From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Monday, April 29, 2013 9:29 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. Done. Link is here: http://myitforum.com/myitforumwp/services/email-lists/ Rod Trenthttp://myitforum.com/myitforumwp/community/members/rodtrent/ [myITSMButton]http://www.myitforum.com/[TwitterButton]http://twitter.com/rodtrent[Facebookbutton]http://www.facebook.com/rodtrent[LinkedInButton]http://www.linkedin.com/profile/view?id=2881785 From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Monday, April 29, 2013 10:18 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. Sounds good to me and post the link so we can start over there… Z Edward E. Ziots, CISSP, CISA, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.orgmailto:ezi...@lifespan.org Work:401-444-9081 This electronic message and any attachments may be privileged and confidential and protected from disclosure. If you are reading this message, but are not the intended recipient, nor an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that you are strictly prohibited from copying, printing, forwarding or otherwise disseminating this communication. If you have received this communication in error, please immediately notify the sender by replying to the message. Then, delete the message from your computer. Thank you. [Description: Description: Lifespan] From: David Lum [mailto:david@nwea.org] Sent: Monday, April 29, 2013 9:05 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. I vote do it. I prefer e-mail to web forum for this stuff. From: rodtr...@myitforum.commailto:rodtr...@myitforum.com [mailto:rodtr...@myitforum.com] Sent: Monday, April 29, 2013 5:23 AM To: NT System Admin Issues Subject: Re: End of month plan B for list shutdown. I can set up a list in a few minutes, just say the word. We already host over 25 lists and have plenty of bandwidth to spare. Sent from Microsoft Surface Pro From: Kennedy, Jim Sent: Monday, April 29, 2013 8:14 AM To: NT System Admin Issues The end of the month and allegedly the end of the list is tomorrow. We need a plan B to get back in contact to get this going again if possible. Someone got a blog we can bookmark for new/announcements that would be willing to post anything they hear? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty
RE: So where is this new list signup?
We don't know what is happening on the move. So here is plan B: From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Monday, April 29, 2013 10:29 AM To: NT System Admin Issues Subject: RE: End of month plan B for list shutdown. Done. Link is here: http://myitforum.com/myitforumwp/services/email-lists/ -Original Message- From: Michael Leone [mailto:oozerd...@gmail.com] Sent: Monday, April 29, 2013 11:26 AM To: NT System Admin Issues Subject: So where is this new list signup? The list is moving, right? (I don't get to read it every day, so I probably missed something). So do I need to go and sign up for the new home of the list, or will I be migrated over as an existing user? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: ALERT : NTSYSADMIN LIST MIGRATION
Kurt's paper check might be the smart way. One of the major grocery chains in Cleveland sent their debit card transactions complete with the account number and pin in plain text via wireless from their cash registers. We were grabbing them from the parking lot just sitting in our car. From: Doug Hampshire [mailto:dhampsh...@gmail.com] Sent: Friday, April 26, 2013 10:16 AM To: NT System Admin Issues Subject: Re: ALERT : NTSYSADMIN LIST MIGRATION Bottom posting: Something abandoned a long time ago by everyone except Kurt. It's annoying as heck on a PC and makes reading threads on a mobile device significantly more difficult. But then again it's a free country and if Kurt wants to continue to write a paper check, make the entry into the checkbook register, and update the running balance while five people stand behind him in line at the grocery store so be it. But I also have the right to glare at him and make snide comments about those fancy new debit cards all the cool kids are using these days. On Thu, Apr 25, 2013 at 5:49 PM, Kurt Buff kurt.b...@gmail.commailto:kurt.b...@gmail.com wrote: See response below... On Thu, Apr 25, 2013 at 1:38 PM, Rod Trent rodtr...@myitforum.commailto:rodtr...@myitforum.com wrote: Every time I see your messages come through I almost delete it automatically, thinking someone accidentally hit Send too soon. Then, I realize your response is *under* the original text. Tricky. Is that a Gmail thing? -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.commailto:kurt.b...@gmail.com] Sent: Thursday, April 25, 2013 4:13 PM To: NT System Admin Issues Subject: Re: ALERT : NTSYSADMIN LIST MIGRATION On Thu, Apr 25, 2013 at 11:44 AM, s...@knowbe4.commailto:s...@knowbe4.com wrote: Hi All, You are invited to the new NTSYSADMIN list hosted by KnowBe4. This replaces the Lyris list hosted by Sunbelt Software / GFI, which will shut down at the end of this month. GFI will confirm this with a separate message. I will continue to moderate the NTSYSADMIN list from KnowBe4. Warm regards, Stu Continuity? That is, will the archives migrate too? You say invited does this mean I have to do a new signup? If so, where's the subscription info? Can you ban the indeed when used as a single word response? :) Will you finally migrate to mailman so that we can have a sane list handler? Kurt No, it's called bottom posting, and I do it by deleting the to empty lines that gmail starts with, then CTRL-END to the bottom of the message and delete the cruft that the list software appends to each message. It's (IMNSHO) the better way of pursuing a conversation, for two reasons: o- It maintains a natural flow of reading - read the post all the way through, then read the reply all the way through, instead of read the reply, then bounce down and read the original post o- If you're doing in-line replies, it's also more natural, as it's easier to maintain conversation flow while responding to individual thoughts in the original post(s). Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: ALERT : NTSYSADMIN LIST MIGRATION
˙sıɥʇ ǝʞıן ǝdʎʇ noʎ ɟı ʎןuo -Original Message- From: Free, Bob [mailto:r...@pge.com] Sent: Friday, April 26, 2013 12:00 PM To: NT System Admin Issues Subject: RE: ALERT : NTSYSADMIN LIST MIGRATION You're right, the older I get the more it annoys me... that brings up probably the best stat to solve this whole mystery: age Turn your monitor upside down and this will be easier to read in context -Original Message- From: Rod Trent [mailto:rodtr...@myitforum.com] Sent: Friday, April 26, 2013 8:03 AM To: NT System Admin Issues Subject: RE: ALERT : NTSYSADMIN LIST MIGRATION And, that brings up probably the best stat to solve this whole mystery: age. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, April 26, 2013 10:23 AM To: NT System Admin Issues Subject: Re: ALERT : NTSYSADMIN LIST MIGRATION On Fri, Apr 26, 2013 at 7:11 AM, Doug Hampshire dhampsh...@gmail.com wrote: Bottom posting: Something abandoned a long time ago by everyone except Kurt. It's annoying as heck on a PC and makes reading threads on a mobile device significantly more difficult. But then again it's a free country and if Kurt wants to continue to write a paper check, make the entry into the checkbook register, and update the running balance while five people stand behind him in line at the grocery store so be it. But I also have the right to glare at him and make snide comments about those fancy new debit cards all the cool kids are using these days. No checks for me. Cash only - can't forge a $20 bill in my name. Too risky. You might want to check with Ben before characterizing my posting habits as unique to me. Also, portable devices for email - don't like 'em. Too darn hard to work with and see the messages on. Get off my lawn. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin PGE is committed to protecting our customers' privacy. To learn more, please visit http://www.pge.com/about/company/privacy/customer/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Startup processes
Along Joseph's linesif you can control the process you are running on startup from a command line. ECHO Checking connection, please wait... PING -n 1 192.168.1.1|find Reply from NUL IF NOT ERRORLEVEL 1 goto :SUCCESS IF ERRORLEVEL 1 goto :FAIL :FAIL Goto :End (or whatever you want to do) :SUCCESS Run your process :END -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Thursday, April 25, 2013 9:14 AM To: NT System Admin Issues Subject: RE: Startup processes If you can query for the process, can you not query the network? Lookup the gateway and ping it... From: kz2...@googlemail.com Sent: Thursday, April 25, 2013 6:11 AM To: NT System Admin Issues Subject: Startup processes On a Windows system, is there a process that runs on startup that will only run if there is network connectivity present? I've got a strange requirement and I need to be able to tell when the network is available, if possible. TIA, JR Sent from my Blackberry, which may be an antique but delivers email RELIABLY ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Startup processes
The other problem I've got is looping the routine enough to give it time for the network to connect :START PING -n 1 192.168.1.1|find Reply from NUL IF NOT ERRORLEVEL 1 goto :SUCCESS IF ERRORLEVEL 1 goto :FAIL :FAIL ping 192.0.2.2 -n 1 -w 1 nul (or some other non-existent address, will wait for 10 seconds) goto :START :SUCCESS Run your process :END Might want to add a counter in there, so it exits after a certain number of tries. Set the whole thing as a startup scheduled task. -Original Message- From: Kennedy, Jim Sent: Thursday, April 25, 2013 9:19 AM To: NT System Admin Issues Subject: RE: Startup processes Along Joseph's linesif you can control the process you are running on startup from a command line. ECHO Checking connection, please wait... PING -n 1 192.168.1.1|find Reply from NUL IF NOT ERRORLEVEL 1 goto :SUCCESS IF ERRORLEVEL 1 goto :FAIL :FAIL Goto :End (or whatever you want to do) :SUCCESS Run your process :END -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Thursday, April 25, 2013 9:14 AM To: NT System Admin Issues Subject: RE: Startup processes If you can query for the process, can you not query the network? Lookup the gateway and ping it... From: kz2...@googlemail.com Sent: Thursday, April 25, 2013 6:11 AM To: NT System Admin Issues Subject: Startup processes On a Windows system, is there a process that runs on startup that will only run if there is network connectivity present? I've got a strange requirement and I need to be able to tell when the network is available, if possible. TIA, JR Sent from my Blackberry, which may be an antique but delivers email RELIABLY ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Startup processes
IF NOT ERRORLEVEL 1 goto :SUCCESSshould be on it's own line. Darn word wrap. -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Thursday, April 25, 2013 9:24 AM To: NT System Admin Issues Subject: RE: Startup processes Along Joseph's linesif you can control the process you are running on startup from a command line. ECHO Checking connection, please wait... PING -n 1 192.168.1.1|find Reply from NUL IF NOT ERRORLEVEL 1 goto :SUCCESS IF ERRORLEVEL 1 goto :FAIL :FAIL Goto :End (or whatever you want to do) :SUCCESS Run your process :END -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Thursday, April 25, 2013 9:14 AM To: NT System Admin Issues Subject: RE: Startup processes If you can query for the process, can you not query the network? Lookup the gateway and ping it... From: kz2...@googlemail.com Sent: Thursday, April 25, 2013 6:11 AM To: NT System Admin Issues Subject: Startup processes On a Windows system, is there a process that runs on startup that will only run if there is network connectivity present? I've got a strange requirement and I need to be able to tell when the network is available, if possible. TIA, JR Sent from my Blackberry, which may be an antique but delivers email RELIABLY ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Startup processes
+1 From: Guyer, Don [mailto:dgu...@che.org] Sent: Thursday, April 25, 2013 10:32 AM To: NT System Admin Issues Subject: RE: Startup processes I thought that setting just delayed GPO processing? Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.orgmailto:dgu...@che.org Office: 610.550.3595 | Cell: 610.955.6528 | Fax: 610.271.9440 For immediate assistance, please open a Service Desk ticket or call the helpdesk @ 610-492-3839. [Description: Description: Description: InfoService-Logo240] From: James Rankin [mailto:kz2...@googlemail.com] Sent: Thursday, April 25, 2013 9:37 AM To: NT System Admin Issues Subject: Re: Startup processes Actually hang on, is that right? It delays all the services until the network is available? That might work - but then if no network is available, does it start those services at all? On 25 April 2013 14:22, N Parr npar...@mortonind.commailto:npar...@mortonind.com wrote: GPO - Always wait for the network at computer startup. Would this setting work for you, it won't let any other services start until the network is available. Most people turn in on anyway because it solves a lot of other issues. -Original Message- From: kz2...@googlemail.commailto:kz2...@googlemail.com [mailto:kz2...@googlemail.commailto:kz2...@googlemail.com] Sent: Thursday, April 25, 2013 7:12 AM To: NT System Admin Issues Subject: Startup processes On a Windows system, is there a process that runs on startup that will only run if there is network connectivity present? I've got a strange requirement and I need to be able to tell when the network is available, if possible. TIA, JR Sent from my Blackberry, which may be an antique but delivers email RELIABLY ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Confidentiality Notice: This e-mail, including any attachments is the property of Catholic Health East and is intended for the sole use of the intended recipient(s). It may contain information that is privileged and confidential. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please delete this message, and reply to the sender regarding the error in a separate email. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: Very weird file rename issue
What I find interesting is I see this problem on my docs, and directly hitting server shares...yet none of them are set up for offline. Not a big deal, just an interesting puzzle. -Original Message- From: Guyer, Don [mailto:dgu...@che.org] Sent: Wednesday, April 24, 2013 10:53 AM To: NT System Admin Issues Subject: RE: Very weird file rename issue Because local files don't come into play with the Offline Files setting? Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.org Office: 610.550.3595 | Cell: 610.955.6528 | Fax: 610.271.9440 For immediate assistance, please open a Service Desk ticket or call the helpdesk @ 610-492-3839. -Original Message- From: Damien Solodow [mailto:damien.solo...@harrison.edu] Sent: Wednesday, April 24, 2013 10:27 AM To: NT System Admin Issues Subject: RE: Very weird file rename issue What's odd is that it only occurs on network drives, not local. DAMIEN SOLODOW Systems Engineer 317.447.6033 (office) 317.447.6014 (fax) HARRISON COLLEGE -Original Message- From: Angus Scott-Fleming [mailto:angu...@geoapps.com] Sent: Tuesday, April 23, 2013 8:24 PM To: NT System Admin Issues Subject: Re: Very weird file rename issue On 23 Apr 2013 at 20:02, Damien Solodow wrote: That matches the description. Was hoping there was a fix. J That issue has been around since the advent of long filenames (Windows 95?) ... you can't have two files with the same name but different case in the same folder. Windows treats FileName.TxT and FileNAME.TXT as the same internally. -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 Security Blog: http://geoapps.com/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Confidentiality Notice: This e-mail, including any attachments is the property of Catholic Health East and is intended for the sole use of the intended recipient(s). It may contain information that is privileged and confidential. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please delete this message, and reply to the sender regarding the error in a separate email. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: OT - Google Apps down?
Yes, all morning. Google has posted they are looking into it. Seems to be getting better...but not there yet. -Original Message- From: Michael Leone [mailto:oozerd...@gmail.com] Sent: Wednesday, April 17, 2013 9:27 AM To: NT System Admin Issues Subject: OT - Google Apps down? I'm having trouble signing into my Google Apps domain. I get a server error when going to my mail server alias (mail.mike-leone.com); I can't get to admin.google.com, to sign into my control panel (a 502 error); trying to sign into another account from here (my regular gmail account) also errors out with a 502. Yet the mail is coming into my Android fine just fine; I can't access it it via any browser (Chrome, IE, Firefox) on my PC. Is it Just Me? EDIT: Ah, this Apps Status page is showing disruption in Mail ( http://www.google.com/appsstatus#hl=env=statusts=1366203964961). So the actual mail servers must be up (if my Android phone is getting mail), but the front end servers providing the web interface have decided to take the morning off ... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Endpoint backups
So the goal is to protect the orgs docs...not backup desktops. Backup desktops is a method for getting to your goal. Most of us would argue that redirect my docs to a server and back that up is a better way to get to that goal. Tell them anything on their desktop is subject to instantaneous loss, or redirect their desktop to the server also. I prefer to redirect my docs and put some controls on space and file type on that share and let them save their music and funny videos to the desktop. The users get that and like the compromise. From: David Lum [mailto:david@nwea.org] Sent: Wednesday, April 17, 2013 11:56 AM To: NT System Admin Issues Subject: RE: Endpoint backups Files they keep on the desktop and My Documents. From: Webster [mailto:webs...@carlwebster.com] Sent: Wednesday, April 17, 2013 7:49 AM To: NT System Admin Issues Subject: RE: Endpoint backups What is there to backup that is not in a centralized location backed up by a centralized backup system? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: David Lum [mailto:david@nwea.org] Sent: Wednesday, April 17, 2013 9:57 AM To: NT System Admin Issues Subject: Endpoint backups Do any of you guys back up all your endpoints/PC's? We're trying to do that via Tivoli but troubleshooting clients is a major PITA. It seems to be ok 90% of the time, but the broken ones seem to take forever to find and repair, and it's not easy to automate resetting the password at the client PC without interaction on the client/endpoint side. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Endpoint backups
Excellent point. We don't do roaming profiles here. I view them as evil as Outlook cached mode, perhaps more so. :) From: James Rankin [mailto:kz2...@googlemail.com] Sent: Wednesday, April 17, 2013 12:34 PM To: NT System Admin Issues Subject: Re: Endpoint backups save their music and funny videos to the desktoptill they drop a 2.8GB movie into their roaming profile :-) On 17 April 2013 17:00, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: So the goal is to protect the orgs docs...not backup desktops. Backup desktops is a method for getting to your goal. Most of us would argue that redirect my docs to a server and back that up is a better way to get to that goal. Tell them anything on their desktop is subject to instantaneous loss, or redirect their desktop to the server also. I prefer to redirect my docs and put some controls on space and file type on that share and let them save their music and funny videos to the desktop. The users get that and like the compromise. From: David Lum [mailto:david@nwea.orgmailto:david@nwea.org] Sent: Wednesday, April 17, 2013 11:56 AM To: NT System Admin Issues Subject: RE: Endpoint backups Files they keep on the desktop and My Documents. From: Webster [mailto:webs...@carlwebster.com] Sent: Wednesday, April 17, 2013 7:49 AM To: NT System Admin Issues Subject: RE: Endpoint backups What is there to backup that is not in a centralized location backed up by a centralized backup system? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: David Lum [mailto:david@nwea.org] Sent: Wednesday, April 17, 2013 9:57 AM To: NT System Admin Issues Subject: Endpoint backups Do any of you guys back up all your endpoints/PC's? We're trying to do that via Tivoli but troubleshooting clients is a major PITA. It seems to be ok 90% of the time, but the broken ones seem to take forever to find and repair, and it's not easy to automate resetting the password at the client PC without interaction on the client/endpoint side. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.ukhttp://appsensebigot.blogspot.co.uk/ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Endpoint backups
Catch 22. Too busy fixing endpoint backups to give them home folders so you don't have to do endpoint backups. :) From: David Lum [mailto:david@nwea.org] Sent: Wednesday, April 17, 2013 12:59 PM To: NT System Admin Issues Subject: RE: Endpoint backups LOL. Yeah, we don't have home folders herethat's also been on my someday I want to get these guys there list. From: Guyer, Don [mailto:dgu...@che.org] Sent: Wednesday, April 17, 2013 8:57 AM To: NT System Admin Issues Subject: RE: Endpoint backups That's what home or personal drives stored out on the network are for. Anything they store locally is susceptible to being lost/corrupt. Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.orgmailto:dgu...@che.org Office: 610.550.3595 | Cell: 610.955.6528 | Fax: 610.271.9440 For immediate assistance, please open a Service Desk ticket or call the helpdesk @ 610-492-3839. [Description: Description: Description: InfoService-Logo240] From: David Lum [mailto:david@nwea.org] Sent: Wednesday, April 17, 2013 11:28 AM To: NT System Admin Issues Subject: RE: Endpoint backups Files they keep on the desktop and My Documents. From: Webster [mailto:webs...@carlwebster.com] Sent: Wednesday, April 17, 2013 7:49 AM To: NT System Admin Issues Subject: RE: Endpoint backups What is there to backup that is not in a centralized location backed up by a centralized backup system? Carl Webster Consultant and Citrix Technology Professional http://www.CarlWebster.comhttp://www.carlwebster.com/ From: David Lum [mailto:david@nwea.org] Sent: Wednesday, April 17, 2013 9:57 AM To: NT System Admin Issues Subject: Endpoint backups Do any of you guys back up all your endpoints/PC's? We're trying to do that via Tivoli but troubleshooting clients is a major PITA. It seems to be ok 90% of the time, but the broken ones seem to take forever to find and repair, and it's not easy to automate resetting the password at the client PC without interaction on the client/endpoint side. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin Confidentiality Notice: This e-mail, including any attachments is the property of Catholic Health East and is intended for the sole use of the intended recipient(s). It may contain information that is privileged and confidential. Any unauthorized review, use, disclosure, or distribution is prohibited. If you are not the intended recipient, please delete this message, and reply to the sender regarding the error in a separate email. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: Prevent IE 10 install in SCE/SCCM
Run this as a machine startup script once. http://www.microsoft.com/en-us/download/details.aspx?id=36512 From: Tom Miller [mailto:tominyorkt...@gmail.com] Sent: Friday, April 12, 2013 9:22 AM To: NT System Admin Issues Subject: Prevent IE 10 install in SCE/SCCM Anyone have any suggestions on how I can prevent the Internet Explorer 10 update/install from being distributed via System Center Essentials (SCE is similar to System Center Configuration Manager but has fewer features and is generally a crappy product, and is EOL. But I'm stuck with it because management is too cheap to spend $$ on a better product.) I have updates synchronized to Critica Updates, Security Updates, Service Packs, Update Rollups, and Updates. For products, I have our versions of Windows, Office and any other applications we use that are available for selection. I do not see where IE would be. Somehow, even though PCs have managed updates, IE 10 is being pushed. I do not see it when I search All Updates. Suggestions? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Prevent IE 10 install in SCE/SCCM
You can't right click the update in SCE and hit decline? From: Tom Miller [mailto:tominyorkt...@gmail.com] Sent: Friday, April 12, 2013 9:42 AM To: NT System Admin Issues Subject: Re: Prevent IE 10 install in SCE/SCCM Funny I was reading that before I sent my inquiry. I was hoping to be able to do it in SCE. On Fri, Apr 12, 2013 at 9:24 AM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: Run this as a machine startup script once. http://www.microsoft.com/en-us/download/details.aspx?id=36512 From: Tom Miller [mailto:tominyorkt...@gmail.commailto:tominyorkt...@gmail.com] Sent: Friday, April 12, 2013 9:22 AM To: NT System Admin Issues Subject: Prevent IE 10 install in SCE/SCCM Anyone have any suggestions on how I can prevent the Internet Explorer 10 update/install from being distributed via System Center Essentials (SCE is similar to System Center Configuration Manager but has fewer features and is generally a crappy product, and is EOL. But I'm stuck with it because management is too cheap to spend $$ on a better product.) I have updates synchronized to Critica Updates, Security Updates, Service Packs, Update Rollups, and Updates. For products, I have our versions of Windows, Office and any other applications we use that are available for selection. I do not see where IE would be. Somehow, even though PCs have managed updates, IE 10 is being pushed. I do not see it when I search All Updates. Suggestions? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Prevent IE 10 install in SCE/SCCM
Are your machines set to only get updates from SCE? Or are they pulling it by themselves from MS Update somehow? From: Tom Miller [mailto:tominyorkt...@gmail.com] Sent: Friday, April 12, 2013 10:01 AM To: NT System Admin Issues Subject: Re: Prevent IE 10 install in SCE/SCCM That's the issue. I don't see it as an update in SCE. I would expect it with the other IE updates but it's not there. On Fri, Apr 12, 2013 at 9:44 AM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: You can't right click the update in SCE and hit decline? From: Tom Miller [mailto:tominyorkt...@gmail.commailto:tominyorkt...@gmail.com] Sent: Friday, April 12, 2013 9:42 AM To: NT System Admin Issues Subject: Re: Prevent IE 10 install in SCE/SCCM Funny I was reading that before I sent my inquiry. I was hoping to be able to do it in SCE. On Fri, Apr 12, 2013 at 9:24 AM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: Run this as a machine startup script once. http://www.microsoft.com/en-us/download/details.aspx?id=36512 From: Tom Miller [mailto:tominyorkt...@gmail.commailto:tominyorkt...@gmail.com] Sent: Friday, April 12, 2013 9:22 AM To: NT System Admin Issues Subject: Prevent IE 10 install in SCE/SCCM Anyone have any suggestions on how I can prevent the Internet Explorer 10 update/install from being distributed via System Center Essentials (SCE is similar to System Center Configuration Manager but has fewer features and is generally a crappy product, and is EOL. But I'm stuck with it because management is too cheap to spend $$ on a better product.) I have updates synchronized to Critica Updates, Security Updates, Service Packs, Update Rollups, and Updates. For products, I have our versions of Windows, Office and any other applications we use that are available for selection. I do not see where IE would be. Somehow, even though PCs have managed updates, IE 10 is being pushed. I do not see it when I search All Updates. Suggestions? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Push msi install package
Sounds like you are pushing it at users? Push it to the machines perhaps. From: Tom Miller [mailto:tominyorkt...@gmail.com] Sent: Wednesday, April 10, 2013 3:39 PM To: NT System Admin Issues Subject: Push msi install package Hi Folks, We use Ricoh printers/copiers here. They provide an agent that can be installed onto desktops so we can manage print configuration, setup, and reporting. The agent is signed with a valid public certificate. The problem I am having is that the push installation (via System Center Essentails) fails, I think because users always receive the Open File Security Warning popup if this is run manually, but I try to surpress that with the /quiet switch, and it fails. I can disable that via GPO, but I do not wish to do that. Do I need to go back to the vendor and have them recompile as an EXE instead? Suggestions appreciated. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Blocking executables for the root of a share
I wouldn't let any exe's on any user share anywhere. I block all of that and a host of others that we deemed unneeded with FSRM. From: David Lum [mailto:david@nwea.org] Sent: Tuesday, April 09, 2013 1:47 PM To: NT System Admin Issues Subject: Blocking executables for the root of a share Our last two virus incidents involved dropping an *.EXE at the root of our primary shared drive. Would it make sense to treat the root of a share the same as Windows 7 treats %OSDRIVE% and not allow the creation or running of executables in the share's root, or is that reacting too specifically to our latest events? Implementing this blocking is relatively straightforward. GPO can prevent the execution in specific folder, and McAfee can block the creation of said files. David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: GFi Mailarchiver - Was Exchange mail archiving solution
I am running full SQL for both. I think the added speed and the savings in storage space make it well worth it. But we have the SQL license for other things...so that may be a factor for you. From: Ralph Smith [mailto:m...@gatewayindustries.org] Sent: Wednesday, March 20, 2013 9:14 AM To: NT System Admin Issues Subject: GFi Mailarchiver - Was Exchange mail archiving solution T - Just wondering - I'm just starting a trial of GFi MailArcher 2012, moving away from a previous solution. Are you using purely SQL server for indexing and message storage, or SQL and file storage? They advised me to use just SQL for my org, which has about 200 mailboxes. I'm running the trial with SQL Express 2012 and file storage, so far everything seems to work quite well. Ralph From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, March 19, 2013 9:26 PM To: NT System Admin Issues Subject: RE: Exchange mail archiving solution I'll add GFI Mailarchiver to the list. Been running it for years and I am very happy. Last few versions have been downright snappy to use. Tech support is outstanding. I would not recommend it for a large org though, we are running about a 1000 mailboxes with 7 years of email on it and it is doing fine. From: Tigran K [tigr...@gmail.com] Sent: Tuesday, March 19, 2013 8:57 PM To: NT System Admin Issues Subject: Re: Exchange mail archiving solution Thanks you all. I'll look into the solutions suggested. --T On Tue, Mar 19, 2013 at 4:25 PM, Kurt Buff kurt.b...@gmail.commailto:kurt.b...@gmail.com wrote: On Tue, Mar 19, 2013 at 4:06 PM, Tigran K tigr...@gmail.commailto:tigr...@gmail.com wrote: I'm looking for an open source or freeware or really inexpensive email archiving solutions. Any suggestions? Running Exchange 2010 and Outlook on all clients. Thanks Better to ask on the sister list to this one, for Exchange. However, this one has been around for a long time: https://www.mailarchiva.com/ There are a myriad of others, including from Barracuda, ranging in price from inexpensive to gold-plated and comes in a diamond-encrusted case. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Declined update won't die.
Trying to remove KB969084 from some XP machines using WSUS, it is RDP 7. Declined it (not removable in WSUS), uninstalled and it keeps reinstalling itself very quickly. I have seen a few posts that say an update with multiple versions can do this, but I can find any for this KB or and any supersedes. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Declined update won't die. SOLVED
sigh For in house machines I just need to push the reg file to turn on CredSSP and they can keep the update. NM. -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, March 19, 2013 11:56 AM To: NT System Admin Issues Subject: Declined update won't die. Trying to remove KB969084 from some XP machines using WSUS, it is RDP 7. Declined it (not removable in WSUS), uninstalled and it keeps reinstalling itself very quickly. I have seen a few posts that say an update with multiple versions can do this, but I can find any for this KB or and any supersedes. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Exchange mail archiving solution
I'll add GFI Mailarchiver to the list. Been running it for years and I am very happy. Last few versions have been downright snappy to use. Tech support is outstanding. I would not recommend it for a large org though, we are running about a 1000 mailboxes with 7 years of email on it and it is doing fine. From: Tigran K [tigr...@gmail.com] Sent: Tuesday, March 19, 2013 8:57 PM To: NT System Admin Issues Subject: Re: Exchange mail archiving solution Thanks you all. I'll look into the solutions suggested. --T On Tue, Mar 19, 2013 at 4:25 PM, Kurt Buff kurt.b...@gmail.commailto:kurt.b...@gmail.com wrote: On Tue, Mar 19, 2013 at 4:06 PM, Tigran K tigr...@gmail.commailto:tigr...@gmail.com wrote: I'm looking for an open source or freeware or really inexpensive email archiving solutions. Any suggestions? Running Exchange 2010 and Outlook on all clients. Thanks Better to ask on the sister list to this one, for Exchange. However, this one has been around for a long time: https://www.mailarchiva.com/ There are a myriad of others, including from Barracuda, ranging in price from inexpensive to gold-plated and comes in a diamond-encrusted case. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Difference between port forwarding and DMZ
“Depending on the configuration of the DMZ.” This is an important point. Once the box in the DMZ is popped what traffic from it is allowed to the internal network needs to be considered. From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Thursday, March 14, 2013 11:33 AM To: NT System Admin Issues Subject: Re: Difference between port forwarding and DMZ Big difference. If the Management server resides on the internal LAN, and it gets hacked, it has direct access to the LAN. If it resides on a DMZ, and gets hacked, it only has direct access to other machines on the same DMZ subnet, it is isolated from the Internal LAN. Depending on the configuration of the DMZ. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.commailto: [cid:image001.jpg@01CE20A8.D9CAE370] The Guardian Life Insurance Company of America www.guardianlife.comhttp://www.guardianlife.com/ From:David Lum david@nwea.org To:NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Date:03/14/2013 11:23 AM Subject:Difference between port forwarding and DMZ What’s the risk difference between a server in a DMZ (firewalls on each end) and port forwarding from the Internet to a machine inside a network perimeter? Scenario : I have PC’s that use port to talk to a management server, I’m wondering of that server needs to be in the DMZ (with that port opened), or if forwarding that port through is functionally the same thing? David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin inline: image001.jpg
RE: Difference between port forwarding and DMZ
And no longer have a DMZ by my definition. You just have another subnet for your domain. -Original Message- From: Webster [mailto:webs...@carlwebster.com] Sent: Thursday, March 14, 2013 2:45 PM To: NT System Admin Issues Subject: RE: Difference between port forwarding and DMZ And you make swiss cheese of your firewall. Thanks Webster -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Thursday, March 14, 2013 1:35 PM To: NT System Admin Issues Subject: RE: Difference between port forwarding and DMZ I'll make another sweeping statement here: Don't put any machine in the DMZ that requires membership in your production domain. At that point you don't have a DMZ, you merely have another subnet of your production network, and basically no protection. How does this work, then? RDS Gateway servers need to be domain-joined http://blogs.msdn.com/b/rds/archive/2009/07/31/rd-gateway-deployment- in-a-perimeter-network-firewall-rules.aspx Dave ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Difference between port forwarding and DMZ
Put an SSL reverse proxy in the DMZ and tunnel that to the RDS Gateway -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Thursday, March 14, 2013 2:37 PM To: NT System Admin Issues Subject: RE: Difference between port forwarding and DMZ I'll make another sweeping statement here: Don't put any machine in the DMZ that requires membership in your production domain. At that point you don't have a DMZ, you merely have another subnet of your production network, and basically no protection. How does this work, then? RDS Gateway servers need to be domain-joined http://blogs.msdn.com/b/rds/archive/2009/07/31/rd-gateway-deployment-in-a-perimeter-network-firewall-rules.aspx Dave -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Thursday, March 14, 2013 9:34 AM To: NT System Admin Issues Subject: Re: Difference between port forwarding and DMZ On Thu, Mar 14, 2013 at 8:22 AM, David Lum david@nwea.org wrote: What’s the risk difference between a server in a DMZ (firewalls on each end) and port forwarding from the Internet to a machine inside a network perimeter? Scenario : I have PC’s that use port to talk to a management server, I’m wondering of that server needs to be in the DMZ (with that port opened), or if forwarding that port through is functionally the same thing? David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 Go back to the fundamentals. Why do you have a DMZ - that is, what is the fundamental reason that you have a DMZ? It is to have a place where you can put machines that are untrusted, but to which your production network (and perhaps other untrusted networks) need access. So, if it's untrusted, and you need access, what is the fundamental thing you *DON'T* do? You don't allow untrusted machines unrestricted access to your production network. In particular, you don't allow machines in the DMZ to initiate traffic to the production network. Machines in a DMZ should only respond to requests for traffic from the production network, or if they need to initiate traffic to the production network, that traffic should be strictly limited and throughly examined by a proxy that understands the traffic in question. So: o- Where are the machines located that need access to your management server? o- Does the server initiate any traffic, or is it just the clients? If all of the clients are in the production network, and you have all of them under your control, then putting the management server in the DMZ is not required. If the clients are both in and out of the production network, put the management server in a DMZ and make sure you have a firewall that understands the traffic (an application layer gateway, or proxy). Simple port forwarding doesn't examine the traffic. I'll make another sweeping statement here: Don't put any machine in the DMZ that requires membership in your production domain. At that point you don't have a DMZ, you merely have another subnet of your production network, and basically no protection. It's possible that TMG could act as a proxy for something like this, but I'd be very nervous about it. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: RD Gateway creds
Wooo, I bet it is because the public domain of the RD Gateway and the private domain of the Remote Desktop don't match. From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Monday, March 04, 2013 9:53 AM To: NT System Admin Issues Subject: RD Gateway creds Trying to set up a simple prepackaged RDP file for some users to hit our Remote Desktop Gateway. On the setup page for the RD Gateway is an option to 'Use my RD Gateway credentials for the remote computer'. Logic tells me that would create a single sign on for the users, present creds for the Gateway and end up on the Remote Desktop logged in. But that isn't happening. It stops at the logon screen for the remote desktop server. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: RD Gateway creds
The plot thickens. For initial testing I had RDG and RDS on the same box. Production will be a different vm RDS for different departments. I just spun up the first of those vm's, one for my department. So now RDG and RDS are on two separate boxes...but SSO now works. I mark this one as solved! From: David Lum [mailto:david@nwea.org] Sent: Monday, March 04, 2013 11:54 AM To: NT System Admin Issues Subject: RE: RD Gateway creds SSO should work, but they will still have to enter their domain credentials somewhere if they are logging in from a non-domain-joined computer. I forget the exact combination I have now, but from my home PC I only need to enter my credentials once to get past the RDS server and access resources. In my experience at %dayjob%, SSO is confused with don't ever need to enter credentials. From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Monday, March 04, 2013 6:56 AM To: NT System Admin Issues Subject: RE: RD Gateway creds Wooo, I bet it is because the public domain of the RD Gateway and the private domain of the Remote Desktop don't match. From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Monday, March 04, 2013 9:53 AM To: NT System Admin Issues Subject: RD Gateway creds Trying to set up a simple prepackaged RDP file for some users to hit our Remote Desktop Gateway. On the setup page for the RD Gateway is an option to 'Use my RD Gateway credentials for the remote computer'. Logic tells me that would create a single sign on for the users, present creds for the Gateway and end up on the Remote Desktop logged in. But that isn't happening. It stops at the logon screen for the remote desktop server. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Quick, spot the irony...
Not irony, it's a Catch 22. From: David Lum [mailto:david@nwea.org] Sent: Thursday, February 28, 2013 9:00 AM To: NT System Admin Issues Subject: Quick, spot the irony... And no, it's not the removed sections. I've created a new account which can be used for any of us to send an email to text during email outages. The link to it is removed and the email address is removed. The password is removed. I would have created the distribution list but, I wasn't able to instantly log into the account. Let's vet the current/latest spreadsheet to only include directors and above and, if possible, all of the admins. This should be much easier to manage. David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Webster's question is very timely...
Call them, give them heck. How Long Does The Coverage Last? Our warranty periods are 1 year, 2 years, 3 years or 5 years from the documented date of purchase, depending on the type of product and where it was purchased. http://www.seagate.com/support/warranty-and-replacements/limited-consumer-warranty/ From: Webster [mailto:webs...@carlwebster.com] Sent: Thursday, February 28, 2013 3:31 PM To: NT System Admin Issues Subject: RE: Webster's question is very timely... Nope, when I did the RMA request and typed in my serial #, the site told me the warranty had expired. Thanks Webster From: Graeme Carstairs [mailto:loonyto...@gmail.com]mailto:[mailto:loonyto...@gmail.com] Sent: Thursday, February 28, 2013 1:51 PM To: NT System Admin Issues Subject: Re: Webster's question is very timely... Your warranty should start at time of purchase with receipt for proof. On Thursday, 28 February 2013, Webster wrote: I had a Seagate external eSata drive but it died 3 months after I got it! The warrant had already expired because it sat on the shelf at OfficeMax too long. That sucks. It was a 2TB drive and I used it for storing my VMs off of my Win7 laptop (that I had at the time). Thanks Webster -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.comjavascript:;] Sent: Thursday, February 28, 2013 1:37 PM To: NT System Admin Issues Subject: Webster's question is very timely... I didn't want to drag his thread off topic, so I'm starting a new one Not to brag (much), but I just picked up a Dell Precision 4600 laptop at a really good price - it's a quad-core machine with Win7 Pro, 16gb RAM and an ATI Firepro video card, 1920x1080 display (15.6) and a 256gb SSD. ($1600 - sale still going as far as I know.) Problem is, I'm pretty sure I made a small mistake. That 256gb drive just isn't big enough to hold the VMs I want. I should have gone with the 128gb minicard and a 1tb hard drive. So, I'm also looking for an external drive, either USB3 or eSATA - if you had the choice, which would you choose for putting in the laptop case for extra storage? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.comjavascript:; with the body: unsubscribe ntsysadmin -- Good news everyone, you have just received an e-mail from me! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Color me skeptical
Voice recognition needs to be far superior to what we have on our phones currently. And yep, it will have to fully integrate with your phone. I see it as a monitor and voice system for your phone. From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Wednesday, February 27, 2013 9:18 AM To: NT System Admin Issues Subject: Re: Color me skeptical I'm really interested to see if this is the paradigm shift that Google thinks it's going to be. I think if they can really work out the issues, it will be. But I'm not convinced they can at this point. Specifically voice recognition issues. With this device, the voice recognition has to be pretty close to 100% 24x7, or it won't catch on. They way I see this working in real life, is that it's going to be tethered do your phone all the time. Meaning you will still have your phone with you, so it won't replace that device. I see it as more of an accessory to your phone. But if you are constantly shifting back and forth between the 2 then it's going to be a hard sell. Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.commailto: [cid:image001.jpg@01CE14CB.B6AC8800] The Guardian Life Insurance Company of America www.guardianlife.comhttp://www.guardianlife.com/ From:Kurt Buff kurt.b...@gmail.commailto:kurt.b...@gmail.com To:NT System Admin Issues ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com Date:02/26/2013 08:55 PM Subject:Color me skeptical http://www.theverge.com/2013/2/22/4013406/i-used-google-glass-its-the-future-with-monthly-updates On several levels, including: o- Too many areas without network capability - where I live, anyway. o- Voice interaction. Really? No thanks. o- Privacy. Do I really want Google to know that much about me? They already know too much. Don't get me wrong - this is amazing technology. But, I don't have to say yes to everything that comes along Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: Prevent duplicate DNS entries
Have the ASA act as a dhcp relay for the DC's and have the DC's handle the DNS registration. From: David Lum [mailto:david@nwea.org] Sent: Wednesday, February 27, 2013 4:21 PM To: NT System Admin Issues Subject: RE: Prevent duplicate DNS entries For VPN it's the ASA, which is different than where every other systems gets its IP from (a Windows DC). From: Webster [mailto:webs...@carlwebster.com]mailto:[mailto:webs...@carlwebster.com] Sent: Wednesday, February 27, 2013 12:39 PM To: NT System Admin Issues Subject: RE: Prevent duplicate DNS entries What hands out the IP addresses? Thanks Webster From: David Lum [mailto:david@nwea.org] Sent: Wednesday, February 27, 2013 1:40 PM To: NT System Admin Issues Subject: Prevent duplicate DNS entries Kind of related to my earlier query, is there a way to prevent multiple DNS entries for a given IP address range with Windows DNS? Our VPN systems have a specific range of IP's and for whatever reason there's a nasty habit of many systems showing the same IP address in DNS. Or perhaps the real fix is changing the VPN client (Cisco) to handle DNS registration correctly? That would be a different can of worms from my end, but... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Communications slow between two servers
X has AV installed? From: Steve Ens [mailto:stevey...@gmail.com] Sent: Tuesday, February 26, 2013 11:04 AM To: NT System Admin Issues Subject: Re: Communications slow between two servers NIC drivers? On Tue, Feb 26, 2013 at 8:57 AM, Eric Brouwer ithelp.e...@gmail.commailto:ithelp.e...@gmail.com wrote: Greetings, I have an odd communications issue that I just can't pin down. I have two existing servers, X and Y. X will be replaced by a new server, Z. Then Y will be replaced by X, and Y decommissioned. These are rather simple file servers. When we brought Z online, we copied data from X to Z via Smart Sync and got fantastic transfer speeds. When we went to copy from Y to X, however, speeds are horrible. What should take several hours is taking days. We then tested communications between Y and Z and speeds are great again. All servers are on the same switch and reside in the same rack. Why would 2 servers communicate so slowly? X to Z = fast Y to X = slow Y to Z = Fast Results are the same whether we push or pull data. Thank you, Eric ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Communications slow between two servers
TCP offload/chimney settings? It's always that. Don't know why it even still exists. From: Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edu] Sent: Tuesday, February 26, 2013 11:25 AM To: NT System Admin Issues Subject: RE: Communications slow between two servers And NIC firmware? TCP offload/chimney settings? From: Steve Ens [mailto:stevey...@gmail.com] Sent: Tuesday, February 26, 2013 7:46 AM To: NT System Admin Issues Subject: Re: Communications slow between two servers NIC drivers? On Tue, Feb 26, 2013 at 8:57 AM, Eric Brouwer ithelp.e...@gmail.commailto:ithelp.e...@gmail.com wrote: Greetings, I have an odd communications issue that I just can't pin down. I have two existing servers, X and Y. X will be replaced by a new server, Z. Then Y will be replaced by X, and Y decommissioned. These are rather simple file servers. When we brought Z online, we copied data from X to Z via Smart Sync and got fantastic transfer speeds. When we went to copy from Y to X, however, speeds are horrible. What should take several hours is taking days. We then tested communications between Y and Z and speeds are great again. All servers are on the same switch and reside in the same rack. Why would 2 servers communicate so slowly? X to Z = fast Y to X = slow Y to Z = Fast Results are the same whether we push or pull data. Thank you, Eric ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Servers in remote locations
Yea, run VM's. No reason not to and lots of little reasons why you should. I'd run 2VM's if licensing isn't an issue. Licensing shouldn't be an issue, IIRC you can run 4 VM's under one server license. -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Tuesday, February 26, 2013 1:00 PM To: NT System Admin Issues Subject: RE: Servers in remote locations I use VM's whenever possible, even if it's a 1:1. Moves/upgrades are simply much easier. I'd run 2VM's if licensing isn't an issue. Dave -Original Message- From: Tim Vander Kooi [mailto:tvanderk...@expl.com] Sent: Tuesday, February 26, 2013 9:24 AM To: NT System Admin Issues Subject: Servers in remote locations I have got a number of servers at remote locations which are currently serving as RODC and file and print servers. It is time to upgrade the hardware that they are running on and I am curious with hypervisors and the technology of today if people think it is of value to replace the existing servers with servers running 2 separate virtual servers: 1 RODC, DNS, DHCP, and 1 file print; or would you run it all as one physical server with all roles installed? The existing servers are 2008R2 and the new ones will be 2012. Ideas? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7-15 failures.
I am seeing the IE activation issue on multiple machines myself when I get the exe to work. -Original Message- From: Sam Cayze [mailto:sca...@gmail.com] Sent: Monday, February 25, 2013 12:20 PM To: NT System Admin Issues Subject: RE: Java 7-15 failures. No issues with the actual installer... But I'm having a heck of time having the IE pluggin actually work after an upgrade. It's getting tiresome trying to fix this after each update. IE says the add-on is enabled and all that jazz. But no Java will actually load in IE. Haven't pinpointed the actually fix yet, but it usually requires a mix of rebooting, disabling, re-enabling plugins, and re-installing java. -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, February 22, 2013 3:14 PM To: NT System Admin Issues Subject: RE: Java 7-15 failures. Not sure how to say this...but glad to hear that. So it isn't just me, there are others. So there is hope Java will release a fixed patch. -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Friday, February 22, 2013 3:55 PM To: NT System Admin Issues Subject: RE: Java 7-15 failures. Ditto here, sigh... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: outlook autocomplete lost
I just noticed that yesterday when I re-imaged my desktop. Was surprised to see all my auto complete..all my view settings...were there when I fired up the new OS. From: Miller Bonnie L. [mailto:mille...@mukilteo.wednet.edu] Sent: Friday, February 22, 2013 8:42 AM To: NT System Admin Issues Subject: RE: outlook autocomplete lost Here's the updated info with Outlook 2010-it stores it directly in your Exchange mailbox or PST. Makes it easier when rebuilding a user's profile, but we've seen that entries can still be corrupted at times to the point you have to drop the entire name cache. http://office.microsoft.com/en-us/outlook-help/where-does-microsoft-outlook-2010-save-my-information-and-configurations-HP010354943.aspx From: James Rankinmailto:kz2...@googlemail.com Sent: Monday, February 18, 2013 1:21 PM To: NT System Admin Issuesmailto:ntsysadmin@lyris.sunbelt-software.com Subject: Re: outlook autocomplete lost Its a .nk2 file somewhere in AppData, at least it was in 2007 and prior. You need to ideally hive this off somehow. On 18 February 2013 18:15, Adam Greene maill...@webjogger.netmailto:maill...@webjogger.net wrote: Hi guys, We've run into the same issue a number of times: when we have to rebuild a customer's Outlook profile, Outlook loses a record of whatever it bases its autocomplete feature on (i.e. the feature where you start to type an email address and Outlook finishes it for you). Is there some way to back up reimport this record so the customer doesn't have to start from scratch each time? Thanks, Adam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail may contain information that is privileged and confidential, the disclosure of which is governed by applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of the information is strictly prohibited. E-mail is inherently insecure and Panorama Orthopedics Spine Center will not accept responsibility for any disclosure or loss of information as a result of this electronic communication. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Java 7-15 failures.
Anyone else having issues going from 13 to 15. It seems either the 13 installer or the 15 installer is horribly messed up. I am getting all kinds of errors trying to install via gpo, the exe or via the website no matter what I do. On lots of machines, some of them pristine new images. All my old install points are still available. Stuff like this, notice the messed up extra \ in the path. There was a problem starting c:\program files(x86)\java\jre7\bin\\installer.dll ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7-15 failures.
Not sure how to say this...but glad to hear that. So it isn't just me, there are others. So there is hope Java will release a fixed patch. -Original Message- From: Joseph L. Casale [mailto:jcas...@activenetwerx.com] Sent: Friday, February 22, 2013 3:55 PM To: NT System Admin Issues Subject: RE: Java 7-15 failures. Ditto here, sigh... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: IIS security / Chrome Firefox / ADFS
I have been down this road and I would be comfortable with either solution. From an end user standpoint 1 would be my choice. From: David Lum [mailto:david@nwea.org] Sent: Friday, February 22, 2013 3:16 PM To: NT System Admin Issues Subject: IIS security / Chrome Firefox / ADFS I've been asked to use one of these two solutions to fix an ADFS/Chrome browser issue. I am not very ISS/security savvy, what are the security implications of each? http://blogs.microsoft.co.il/blogs/applisec/archive/2012/07/16/chrome-support-for-acs-with-adfs-2-0-identity-provider.aspx David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: outlook autocomplete lost
Ok, that is very cool Derik. tyvm From: Derek Harris [mailto:dhar...@panoramaortho.com] Sent: Monday, February 18, 2013 4:11 PM To: NT System Admin Issues Subject: RE: outlook autocomplete lost This is handy: http://www.nirsoft.net/utils/outlook_nk2_edit.html It also works on remote computers if you close Outlook on them first. From: Bill Humphries [mailto:nt...@hedgedigger.com] Sent: Monday, February 18, 2013 11:35 To: NT System Admin Issues Subject: Re: outlook autocomplete lost http://office.microsoft.com/en-us/outlook-help/copy-autocomplete-name-list-to-another-computer-HA001139451.aspx From: James Rankinmailto:kz2...@googlemail.com Sent: Monday, February 18, 2013 1:21 PM To: NT System Admin Issuesmailto:ntsysadmin@lyris.sunbelt-software.com Subject: Re: outlook autocomplete lost Its a .nk2 file somewhere in AppData, at least it was in 2007 and prior. You need to ideally hive this off somehow. On 18 February 2013 18:15, Adam Greene maill...@webjogger.netmailto:maill...@webjogger.net wrote: Hi guys, We've run into the same issue a number of times: when we have to rebuild a customer's Outlook profile, Outlook loses a record of whatever it bases its autocomplete feature on (i.e. the feature where you start to type an email address and Outlook finishes it for you). Is there some way to back up reimport this record so the customer doesn't have to start from scratch each time? Thanks, Adam ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin This e-mail may contain information that is privileged and confidential, the disclosure of which is governed by applicable law. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of the information is strictly prohibited. E-mail is inherently insecure and Panorama Orthopedics Spine Center will not accept responsibility for any disclosure or loss of information as a result of this electronic communication. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: This has been in the news a lot lately, and it's interesting
Thanks Kurt! Been trying to figure out how to work this into the list and you came through. My kid was on CNN yesterday on this topic. He comes in about 1:30 Kudos to whoever spots the new buzzword he made up and worked in there for laughs for those of us that knew it was comming. And bonus points for getting the acronym. http://www.youtube.com/watch?v=pYbtbqIb-Rg -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, February 20, 2013 2:54 PM To: NT System Admin Issues Subject: This has been in the news a lot lately, and it's interesting China's computer misbehavior https://isc.sans.edu/diary/APT1%2C+Unit+61398+and+are+state+sponsored+attacks+real/15190 The Mandiant report is pretty good, I must say, though I haven't looked at the video. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: This has been in the news a lot lately, and it's interesting
Correction, Martin Bros made up the new buzzword on twitter. -Original Message- From: Kennedy, Jim Sent: Wednesday, February 20, 2013 3:23 PM To: NT System Admin Issues Subject: RE: This has been in the news a lot lately, and it's interesting Thanks Kurt! Been trying to figure out how to work this into the list and you came through. My kid was on CNN yesterday on this topic. He comes in about 1:30 Kudos to whoever spots the new buzzword he made up and worked in there for laughs for those of us that knew it was comming. And bonus points for getting the acronym. http://www.youtube.com/watch?v=pYbtbqIb-Rg -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, February 20, 2013 2:54 PM To: NT System Admin Issues Subject: This has been in the news a lot lately, and it's interesting China's computer misbehavior https://isc.sans.edu/diary/APT1%2C+Unit+61398+and+are+state+sponsored+attacks+real/15190 The Mandiant report is pretty good, I must say, though I haven't looked at the video. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: This has been in the news a lot lately, and it's interesting
Haha, when he said High Impact Vulnerabilities the twitterverse about blew up. Yes, he did pretty good. From: Tim Evans [tev...@sparling.com] Sent: Wednesday, February 20, 2013 6:38 PM To: NT System Admin Issues Subject: RE: This has been in the news a lot lately, and it's interesting HIV, ROFL! I heard he wasn't wearing any pants either. Seriously, I thought it was a pretty good interview. …Tim -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Wednesday, February 20, 2013 12:27 PM To: NT System Admin Issues Subject: RE: This has been in the news a lot lately, and it's interesting Correction, Martin Bros made up the new buzzword on twitter. -Original Message- From: Kennedy, Jim Sent: Wednesday, February 20, 2013 3:23 PM To: NT System Admin Issues Subject: RE: This has been in the news a lot lately, and it's interesting Thanks Kurt! Been trying to figure out how to work this into the list and you came through. My kid was on CNN yesterday on this topic. He comes in about 1:30 Kudos to whoever spots the new buzzword he made up and worked in there for laughs for those of us that knew it was comming. And bonus points for getting the acronym. http://www.youtube.com/watch?v=pYbtbqIb-Rg -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, February 20, 2013 2:54 PM To: NT System Admin Issues Subject: This has been in the news a lot lately, and it's interesting China's computer misbehavior https://isc.sans.edu/diary/APT1%2C+Unit+61398+and+are+state+sponsored+attacks+real/15190 The Mandiant report is pretty good, I must say, though I haven't looked at the video. Kurt ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Non-corp desktops and RDS
How well is allowing non-corporate assets connect to a RDS session from home working for everyone. Using an SSL tunnel here. I am just starting initial testing with a few users and it is a nightmare. Wrong Java, toolbars and popup blockers and layers and layers of crapware are causing tons of problems. And these are the alleged 'tech savy' users. It is beginning to feel like a giant fail coming my way. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Non-corp desktops and RDS
I will give that a try. I have RDS User licenses galore. We use them in labs. From: Richard Stovall [mailto:rich...@gmail.com] Sent: Friday, February 15, 2013 11:18 AM To: NT System Admin Issues Subject: Re: Non-corp desktops and RDS Instead of RDP over VPN, have you looked at RD Gateway? It does require terminal server licences for the users, but eliminates the kind of issues you're describing by tunneling only RDP over SSL and nothing else. On Fri, Feb 15, 2013 at 10:03 AM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: How well is allowing non-corporate assets connect to a RDS session from home working for everyone. Using an SSL tunnel here. I am just starting initial testing with a few users and it is a nightmare. Wrong Java, toolbars and popup blockers and layers and layers of crapware are causing tons of problems. And these are the alleged 'tech savy' users. It is beginning to feel like a giant fail coming my way. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Non-corp desktops and RDS
We are getting that proposal on the 22nd from a reliable vendor. The price tag will kill that portion of it, we just did 3 million in cuts yesterday. 60+ people out the door at the end of the school year. You bring up a valid point in a backhanded way. The choices are write the check and do it correctly. Or have something that doesn't work too well. Frustrating though. Any reasonably clean/patched/well maintained machine connects and functions perfectly. From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Friday, February 15, 2013 11:30 AM To: NT System Admin Issues Subject: Re: Non-corp desktops and RDS I would recommend that you take the results of the testing, look at vendors that will help you with the security of such an approach, and then propose the full approach (with a suitable timeframe) for approval. If you're fortunate, they'll approve the project with the proper tools. If you're really fortunate, they'll kill it for now. Either way, make sure you've researched the tools that you will need beforehand. ASB http://XeeMe.com/AndrewBakerhttp://xeeme.com/AndrewBaker Providing Virtual CIO Services (IT Operations Information Security) for the SMB market... On Fri, Feb 15, 2013 at 10:03 AM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: How well is allowing non-corporate assets connect to a RDS session from home working for everyone. Using an SSL tunnel here. I am just starting initial testing with a few users and it is a nightmare. Wrong Java, toolbars and popup blockers and layers and layers of crapware are causing tons of problems. And these are the alleged 'tech savy' users. It is beginning to feel like a giant fail coming my way. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Another Java Update to close in the wild exploits Feb 19, 2013
There is another coming on the 19th. -Original Message- From: Ben M. Schorr [mailto:b...@rolandschorr.com] Sent: Tuesday, February 12, 2013 10:56 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 That update was from a week ago wasn't it? Ben M. Schorr Chief Executive Officer Roland Schorr Tower - Flagstaff Office 928-526-3970 www.rolandschorr.com * www.twitter.com/bschorr * www.facebook.com/RolandSchorr -Original Message- From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Tuesday, February 12, 2013 8:32 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 Sorry included an internal group on the email, that I fubbed when sending the email. But yes Java is going to be patched again, another 50 fixes, maybe that will take care of what Security Explorations has sent to oracle. I am sure this will not be end of this. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org This electronic message and any attachments may be privileged and confidential and protected from disclosure. If you are reading this message, but are not the intended recipient, nor an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that you are strictly prohibited from copying, printing, forwarding or otherwise disseminating this communication. If you have received this communication in error, please immediately notify the sender by replying to the message. Then, delete the message from your computer. Thank you. -Original Message- From: Webster [mailto:webs...@carlwebster.com] Sent: Tuesday, February 12, 2013 9:06 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 Too late. Thanks Webster -Original Message- From: Ziots, Edward [mailto:ezi...@lifespan.org] Subject: Recall: Another Java Update to close in the wild exploits Feb 19, 2013 Ziots, Edward would like to recall the message, Another Java Update to close in the wild exploits Feb 19, 2013. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Another Java Update to close in the wild exploits Feb 19, 2013
I think it might be a bit soon to expect fixes to those. I sincerely hope I am wrong. -Original Message- From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Tuesday, February 12, 2013 11:11 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 This is supposed to be post Update 13, which happened about a week ago. This is to fix the other flaws that Security Explorations sent to Oracle and I am sure there will be more. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org This electronic message and any attachments may be privileged and confidential and protected from disclosure. If you are reading this message, but are not the intended recipient, nor an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that you are strictly prohibited from copying, printing, forwarding or otherwise disseminating this communication. If you have received this communication in error, please immediately notify the sender by replying to the message. Then, delete the message from your computer. Thank you. -Original Message- From: Ben M. Schorr [mailto:b...@rolandschorr.com] Sent: Tuesday, February 12, 2013 10:52 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 That update was from a week ago wasn't it? Ben M. Schorr Chief Executive Officer Roland Schorr Tower - Flagstaff Office 928-526-3970 www.rolandschorr.com * www.twitter.com/bschorr * www.facebook.com/RolandSchorr -Original Message- From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Tuesday, February 12, 2013 8:32 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 Sorry included an internal group on the email, that I fubbed when sending the email. But yes Java is going to be patched again, another 50 fixes, maybe that will take care of what Security Explorations has sent to oracle. I am sure this will not be end of this. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org This electronic message and any attachments may be privileged and confidential and protected from disclosure. If you are reading this message, but are not the intended recipient, nor an employee or agent responsible for delivering this message to the intended recipient, you are hereby notified that you are strictly prohibited from copying, printing, forwarding or otherwise disseminating this communication. If you have received this communication in error, please immediately notify the sender by replying to the message. Then, delete the message from your computer. Thank you. -Original Message- From: Webster [mailto:webs...@carlwebster.com] Sent: Tuesday, February 12, 2013 9:06 AM To: NT System Admin Issues Subject: RE: Another Java Update to close in the wild exploits Feb 19, 2013 Too late. Thanks Webster -Original Message- From: Ziots, Edward [mailto:ezi...@lifespan.org] Subject: Recall: Another Java Update to close in the wild exploits Feb 19, 2013 Ziots, Edward would like to recall the message, Another Java Update to close in the wild exploits Feb 19, 2013. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
symlink c:\users?
I have an existing RDS 2008 R2 server that is used by students in a lab. I really need to get c:\users off the C drive. There are times they need to store items on the desktop as they are not allowed on their network storage. Anyone moved it using a symlink to another drive? I read it is unsupported but I don't see many reports of problems. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: symlink c:\users?
And that registry change was.. :) -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Tuesday, February 12, 2013 3:53 PM To: NT System Admin Issues Subject: RE: symlink c:\users? In Terminal Server\RDS-land I moved users to a D: drive with very simple registry change and it works flawlessly, all new users drop to the new drive, and it was trivial moving the existing ones over. Depending on your environment it might be time consuming while you wait for all the files to move over... Dave -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, February 12, 2013 12:46 PM To: NT System Admin Issues Subject: symlink c:\users? I have an existing RDS 2008 R2 server that is used by students in a lab. I really need to get c:\users off the C drive. There are times they need to store items on the desktop as they are not allowed on their network storage. Anyone moved it using a symlink to another drive? I read it is unsupported but I don't see many reports of problems. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: symlink c:\users?
Ok, that was lazy of me. Google says Path: HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList Value: ProfilesDirectory -Original Message- From: Kennedy, Jim Sent: Tuesday, February 12, 2013 3:55 PM To: NT System Admin Issues Subject: RE: symlink c:\users? And that registry change was.. :) -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Tuesday, February 12, 2013 3:53 PM To: NT System Admin Issues Subject: RE: symlink c:\users? In Terminal Server\RDS-land I moved users to a D: drive with very simple registry change and it works flawlessly, all new users drop to the new drive, and it was trivial moving the existing ones over. Depending on your environment it might be time consuming while you wait for all the files to move over... Dave -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, February 12, 2013 12:46 PM To: NT System Admin Issues Subject: symlink c:\users? I have an existing RDS 2008 R2 server that is used by students in a lab. I really need to get c:\users off the C drive. There are times they need to store items on the desktop as they are not allowed on their network storage. Anyone moved it using a symlink to another drive? I read it is unsupported but I don't see many reports of problems. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
Yes, the big holes that everyone was talking about are fixed. There are still some there though. But as you say later in the thread. 6 is dead Jim, time to move on. It is the lesser of evils now. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 4:30 PM To: NT System Admin Issues Subject: RE: Java Lol Very true. I was asking more along the lines of the last big 0 Day vulnerability. I want to be able to go back to my developers and ask them to work on making the newest technology work with our internal apps. From: Jim Kennedy [mailto:kennedy...@elyriaschools.org] Sent: Friday, February 08, 2013 12:50 PM To: Heaton, Joseph@Wildlife; NT System Admin Issues Subject: RE: Java 7 13 is better than 6 38, but I won't say it is 'fixed' since it isn't. There are still problems and will be for years to come, imho. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 3:32 PM To: NT System Admin Issues Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
I feel your pain. We have a legacy app from a company that has gone out of business. We have to keep it for reporting to the State. Java 6 only. We set up a couple separate machines and firewalled them to only hit that app and a printer. From: Webster [mailto:webs...@carlwebster.com] Sent: Monday, February 11, 2013 8:14 AM To: NT System Admin Issues Subject: RE: Java Unfortunately, Citrix built most of their older management consoles on Java. Java 6 is still required for most versions of XenApp. If you install Java 7, the installer complains that Java 6 was not found and then no install. The installer looks for Java 6 U 14 but works even if U39 is installed. But those version of XenApp that require Java 6 are all EOS/EOM/EOL so Citrix will not do anything to fix their consoles even though those products will be used for years to come. There are people who still use the former versions of XenApp (Metaframe, MetaFrame XP and Presentation Server) that require NT4 and W2K. Thanks Webster From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Subject: RE: Java Yes, the big holes that everyone was talking about are fixed. There are still some there though. But as you say later in the thread. 6 is dead Jim, time to move on. It is the lesser of evils now. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Subject: RE: Java Lol Very true. I was asking more along the lines of the last big 0 Day vulnerability. I want to be able to go back to my developers and ask them to work on making the newest technology work with our internal apps. From: Jim Kennedy [mailto:kennedy...@elyriaschools.org] Subject: RE: Java 7 13 is better than 6 38, but I won't say it is 'fixed' since it isn't. There are still problems and will be for years to come, imho. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java
7 13 is better than 6 38, but I won't say it is 'fixed' since it isn't. There are still problems and will be for years to come, imho. From: Heaton, Joseph@Wildlife [mailto:joseph.hea...@wildlife.ca.gov] Sent: Friday, February 08, 2013 3:32 PM To: NT System Admin Issues Subject: Java Anyone know if the latest Java 7 update finally seals the big vulnerability from recent times? We've actually told people they can't update past 6u38, but would like to at some point... Joe Heaton Enterprise Server Support CA Department of Fish and Wildlife 1807 13th Street, Suite 201 Sacramento, CA 95811 Desk: (916) 557-3422 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Registry entries to set a WSUS client
First and foremost I suggested that before Andrew did. He just copied off me. http://support.microsoft.com/kb/2734608 Then reregister the server. Also that update needs to be on your console machine if that is how you are doing it. Andrew is going to copy, I just know it. -Original Message- From: Michael Leone [mailto:oozerd...@gmail.com] Sent: Thursday, February 07, 2013 11:59 AM To: NT System Admin Issues Subject: Re: Registry entries to set a WSUS client On Wed, Feb 6, 2013 at 12:51 PM, Andrew S. Baker asbz...@gmail.com wrote: Yes, it still does work if you change the registry manually, but having a separate OU for testing (like everyone else is saying) is the best path. Yes, you're right. So I did this - set up a test OU, and a test GPO, pointing at my new WSUS server. I rolled out some new VMs - Win7, Win2003, Win2008, Win2012, put them in that OU, added them to the group that links to that new GPO. All are showing up in the new WSUS server (yay!). However, the 2012 server is showing up as OS Win2003 STD x64, and not Win2012. What's up with that? :-) I am up to date on the WSUS updates, apparently. Is this just a display bug? It shows I need 14 updates (which I suppose is correct), ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: OT: Hello Kitty in space
I can't believe they found the thing and that it didn't land in the middle of an ocean. It was only 50 miles from where she launched it. Very amazing stuff. From: Maglinger, Paul [mailto:pmaglin...@scvl.com] Sent: Wednesday, February 06, 2013 10:11 AM To: NT System Admin Issues Subject: RE: OT: Hello Kitty in space Cool stuff. I'm always glad to see kids getting involved in science. From: James Rankin [mailto:kz2...@googlemail.com] Sent: Wednesday, February 06, 2013 7:55 AM To: NT System Admin Issues Subject: Re: OT: Hello Kitty in space And I forgot the link http://www.theregister.co.uk/2013/02/04/hello_kitty_flight/ Doh! On 6 February 2013 13:51, James Rankin kz2...@googlemail.commailto:kz2...@googlemail.com wrote: Don't know whether you might have seen this already but the video at the end is awesomely done. Go Kitty! -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Registry entries to set a WSUS client
Would it be easier to put the test subjects in their own OU, block the domain gpo for updates and make a new gpo for that ou? After testing is complete you now have a tested gpo to roll out with. -Original Message- From: Michael Leone [mailto:oozerd...@gmail.com] Sent: Wednesday, February 06, 2013 11:35 AM To: NT System Admin Issues Subject: Registry entries to set a WSUS client I'd like to test my new WSUS server, before changing my GPO to point to it. And it occurred to me that I could set a couple test VMs to point to the new server, and see if they can get their updates from it, before making the change to the GPO. There used to be a way to set this via registry entries. Anybody know if this would this still work on a Win2008 R2 server? Windows Registry Editor Version 5.00 [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\windows\WindowsUpdate] WUServer=http://new-WSUS-server; WUStatusServer=http://new-WSUS-server; [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\windows\WindowsUpdate\AU] UseWUServer=dword:0001 NoAutoUpdate=dword: AUOptions=dword:0002 ScheduledInstallDay=dword: ScheduledInstallTime=dword:0003 DetectionFrequencyEnabled=dword:0001 DetectionFrequency=dword:0001 NoAUAsDefaultShutdownOption=dword:0001 NoAUShutdownOption=dword:0001 RescheduleWaitTimeEnabled=dword:0001 RescheduleWaitTime=dword:0001 UseWUServer=dword:0001 If I import these registry entries to a test Win2003 and Win2008 R2 VMs, and then stop and start the Windows Update service, those VMs should check in with the new server, and get it's updates. Then I can see that the new server is working. Then I can change the GPO ... Thanks ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Advice on migrating WSUS 3.0 SP2 from Win2003 32bit to Win2008 R2
I have moved WSUS servers twice. It isn't worth it, just redo it. It doesn't take that long to mass approve the updates. -Original Message- From: Michael Leone [mailto:oozerd...@gmail.com] Sent: Tuesday, February 05, 2013 11:49 AM To: NT System Admin Issues Subject: Advice on migrating WSUS 3.0 SP2 from Win2003 32bit to Win2008 R2 I've asked this on the WSUS list over at PatchManahement.org, but while I am waiting on their wisdom, I thought I would ask here, as well. I am using WSUS 3.0 SP2 on a Win2003 SP2 VM, and I need to move it to a Win2008 R2 VM, and while I am it, change the server name. Since I posted on the other list, I have determined (I think) that my database is the default Windows Internal database. I have a SUSDB.MDF file, and a separate SUSDB.BAK in a different folder. I must have set that backup up at one point, and pointed it to that backup folder, but it was so long ago, I've forgotten, and there is no documentation here. I found this link - How to move WSUS from one server to another http://blogs.technet.com/b/sus/archive/2009/07/02/how-to-move-wsus-from-one-server-to-another.aspx, This blog post is 3.5 years old; is it still valid? Almost all the comments say this procedure did not work for them. If not, is there a better step-by-step guide? Thanks for any help. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Robocopy reliability
+1 In fact just this morning I expanded it's use here automating the deletion of videos from a security camera share. From: Tom Miller [mailto:tmil...@sfgtrust.com] Sent: Monday, February 04, 2013 12:55 PM To: NT System Admin Issues Subject: RE: Robocopy reliability The only errors I've seen were my own, usually syntax or spelling. From: Tigran K [mailto:tigr...@gmail.com] Sent: Monday, February 04, 2013 11:34 AM To: NT System Admin Issues Subject: Robocopy reliability Having a discussion with the boss on how we should do something I suggested robocopy. His reply was a strict NO. Reasoning was that it's not reliable. He said I've seen it break. So my question is have you seen it break? Is robocopy any more or less reliable than built in copy? I did point out that robocopy is built in to windows as well at least for Windows7. Didn't seem to help. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: MS site?
Wow, yea. From: Christopher Bodnar [mailto:christopher_bod...@glic.com] Sent: Friday, February 01, 2013 9:55 AM To: NT System Admin Issues Subject: MS site? Anyone else having trouble getting to this link? http://support.microsoft.comhttp://support.microsoft.com/ Christopher Bodnar Enterprise Architect I, Corporate Office of Technology:Enterprise Architecture and Engineering Services Tel 610-807-6459 3900 Burgess Place, Bethlehem, PA 18017 christopher_bod...@glic.commailto: [cid:image001.jpg@01CE0062.BBB724E0] The Guardian Life Insurance Company of America www.guardianlife.comhttp://www.guardianlife.com/ - This message, and any attachments to it, may contain information that is privileged, confidential, and exempt from disclosure under applicable law. If the reader of this message is not the intended recipient, you are notified that any use, dissemination, distribution, copying, or communication of this message is strictly prohibited. If you have received this message in error, please notify the sender immediately by return e-mail and delete the message and any attachments. Thank you. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmininline: image001.jpg
RE: Favorite VPN solution?
Ok, you owe the taxpayers of Elyria a new screen. I haven't CC'd like that in years. -Original Message- From: Webster [mailto:webs...@carlwebster.com] Sent: Tuesday, January 29, 2013 2:19 PM To: NT System Admin Issues Subject: RE: Favorite VPN solution? So Java and Barracuda? Two exploited products in one. Sweet! :) Thanks Webster -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Subject: Re: Favorite VPN solution? We use Barracuda's SSLVPN. It is based off the old sslExplorer open source product, and does the Java-based install of their vpn client. In many ways, I think this is similar to the Sonicwall SSLVPN. The barracuda didn't have any per-user license fees. This was a major factor in our choice of VPN solutions. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers
Add to the below...your ISP turned on dns fixup this weekend on their internet facing firewall since they don't have that issue and the below scenario fits the symptoms anyway. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Monday, January 28, 2013 12:10 PM To: NT System Admin Issues Subject: Re: DNS concerns - Server 2003 R2 SP2 Domain Controllers On Mon, Jan 28, 2013 at 11:50 AM, Robert Peterson robert.peter...@prin.edu wrote: ... once we added our ISP's DNS resolvers as Forwarder we immediately restored DNS performance. Could something happened over last weekend to limit use of Root Hints? Nothing globally, or DNS would stop working. My guess is your routers/firewalls don't like EDNS0, *and* your ISP nameservers don't support EDNS0, so when talking to your ISP nameservers, EDNS0 doesn't get used, and your firewalls don't gag. This is a pure guess on my part, but what you describe is *the* classic problem report for EDNS0 incompatibility. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Windows 7 Sysprep, PITA
Doesn't that just reset the licensing state to OOB...but not anything else? -Original Message- From: ANDREW F OFALT [mailto:afo...@psu.edu] Sent: Friday, January 25, 2013 8:12 AM To: NT System Admin Issues Subject: Re: Windows 7 Sysprep, PITA so this means that the skiprearm command does not work? - Original Message - What Jim said. Build your image while in audit mode. This way you can always fall back on it, run updates, etc. -Original Message- From: itli...@imcu.com [mailto:itli...@imcu.com] Sent: Saturday, January 19, 2013 4:50 PM To: NT System Admin Issues Subject: RE: Windows 7 Sysprep, PITA That is what we are doing as well. So we have a virgin never been touched image, an image with everything on it prior to sysprep, and the ImageX image after sysprep. Just sometimes the imagex image is junk after coming out of mini-setup. So we go back and try again. Is there a better way to image machines that I could try? -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Posted At: Friday, January 18, 2013 4:30 PM Posted To: itli...@imcu.com Conversation: Windows 7 Sysprep, PITA Subject: RE: Windows 7 Sysprep, PITA What I do is make an image just before I sysprep it. Then reboot it and sysprep and make an image and use that in production. So I always have an image that is in audit mode to fall back on. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, January 18, 2013 4:12 PM To: NT System Admin Issues Subject: Re: Windows 7 Sysprep, PITA I've had issues with windows Vista/7 images. Here's one of the big gotchas: You can only sysprep an image 3 times. After that, it's no good... you'll have to start over. What that means: You make a base install of 7 and sysprep (1) image it. then you make a basic image with your usual software ans sysprep (2) that. Then you make a very specific lab image and sysprep (3) that... That's it. you can't do it anymore. If you try to modify your 3rd sysprep image and re-sysprep (4) it... game over. This is one of the ways Microsoft is trying to prevent piracy. Either that or they are trying to drive techs crazy. --Matt Ross Ephrata School District - Original Message - From: itli...@imcu.com [mailto:itli...@imcu.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 18 Jan 2013 13:01:31 -0800 Subject: Windows 7 Sysprep, PITA Why is the sysprep on Windows 7 so hard to get right? I have an image that has worked for over a year. I added some software to it and reimaged. Not the original machine comes out of Sysprep just fine but the install.wim is failing on all imaged devices with a Windows failed to load please insert Windows media and try again. WTF??? Any ideas? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send
RE: Limiting who can send all-staff e-mails
You have to decide how hard to push the issue. I look at these things based on risk and damage to the org. If the risk/damage is high I push hard. If it isn't I advise them of the situation and let them learn for themselves. And I don't say/do that because I am smug or think I am smarter than them. I view that as my role, I am not the business. I am a service provider. By taking that stance I gain credibility. They know when I push hard I really really mean it. From: David Lum [mailto:david@nwea.org] Sent: Friday, January 25, 2013 9:52 AM To: NT System Admin Issues Subject: RE: Limiting who can send all-staff e-mails I brought up how easy it would be for a disgruntled employee to send an inappropriate message to the entire company That, and malware being sent to the big DL were my arguments. These in addition to the fact we just had several training sessions on how excessive e-mails result in lost productivity... From: Maglinger, Paul [mailto:pmaglin...@scvl.com] Sent: Friday, January 25, 2013 6:10 AM To: NT System Admin Issues Subject: RE: Limiting who can send all-staff e-mails No links, but management here clamped down because people were sending personal charity, business, and greeting cards emails to everybody. That, and I brought up how easy it would be for a disgruntled employee to send an inappropriate message to the entire company. -Paul From: David Lum [mailto:david@nwea.org] Sent: Friday, January 25, 2013 5:15 AM To: NT System Admin Issues Subject: Limiting who can send all-staff e-mails Does anyone have some links I can use to demonstrate to management why it's a bad idea to allow any of our 600 employees to send e-mails to all staff? David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7 0day actively exploited in the wild | BeyondTrust
If it is over the internet...add that site to trusted and disable java in the 'internet zone'. http://blogs.msdn.com/b/ieinternals/archive/2011/05/15/controlling-java-in-internet-explorer.aspx From: Andrew S. Baker [mailto:asbz...@gmail.com] Sent: Friday, January 25, 2013 11:04 AM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust Be advised that the primary vector for Java exploits into an organization is via the web browser plugin. So, unless your B2B app is over the public network, or requires that the browser plugin be operational, you have some measure of risk reduction. ASB http://XeeMe.com/AndrewBakerhttp://xeeme.com/AndrewBaker Providing Virtual CIO Services (IT Operations Information Security) for the SMB market... On Tue, Jan 15, 2013 at 1:21 PM, Sam Cayze sca...@gmail.commailto:sca...@gmail.com wrote: Does the reward outweigh the risk? The reward is we get to stay in business :) We have a major partner that requires us to run it for a B2B app. So, we have to use it. But I've made it so just one user uses that app. That and the occasional WebEx stuff, but I uninstall it from people's PCs right afterwards. So looks like 6 is now the flavor of the month. Hard to keep track. Speaking of months, v6 is EOL in FEB. We'll no longer have the options between 6 and 7 going forward to sidestep all these issues :( Sam -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org] Sent: Tuesday, January 15, 2013 12:10 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Correct, but 6 is vulnerable to it's own set of exploits that were never fixed and they are well known. Arguably the bad guys are paying more attention to attacking 7 now so theoretically you are safer with 6. Bottom line, java is insecure no matter what you do and will be that way for several years to come, imho. Risk vs reward. What is the reward for your org for continuing to allow java to run? Does the reward outweigh the risk? -Original Message- From: Sam Cayze [mailto:sca...@gmail.commailto:sca...@gmail.com] Sent: Tuesday, January 15, 2013 12:24 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Am I right in assuming that the latest version of version 6 is, or was, NOT affected by this? Can't find anything out there that suggests it was... -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org] Sent: Friday, January 11, 2013 1:34 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-f law-709713/ From: Mark Boeck [netadmin...@gmail.commailto:netadmin...@gmail.com] Sent: Friday, January 11, 2013 12:15 PM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust lol - a friend of mine, a microsoft security mvp, starts her blog off like this: how to uninstall java! http://securitygarden.blogspot.com/2013/01/java-zero-day-again-time-to.html only after that does she post some links about the threat - - ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.commailto:listmanager@lyris.sunbeltsoftwamailto:listmanager@lyris.sunbeltsoftwa re.comhttp://re.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http
RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers
The one that amazes me is the smtp fixup on Cisco. That one has been an issue for 10 years or so. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, January 23, 2013 5:44 PM To: NT System Admin Issues Subject: Re: DNS concerns - Server 2003 R2 SP2 Domain Controllers On Wed, Jan 23, 2013 at 2:48 PM, Kennedy, Jim kennedy...@elyriaschools.org wrote: To clarify...the dns fixup refers to Cisco firewalls/asa's. I've noticed that Cisco's fixup features tend to break things. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers
I still wonder why just this past weekend it hit you. Sounded very sudden. -Original Message- From: Robert Peterson [mailto:robert.peter...@prin.edu] Sent: Thursday, January 24, 2013 10:22 AM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers Thank you everyone for your help. Applied some recommendations last night from this article... so far so good. http://support.microsoft.com/kb/956188 -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Thursday, January 24, 2013 7:16 AM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers The one that amazes me is the smtp fixup on Cisco. That one has been an issue for 10 years or so. -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Wednesday, January 23, 2013 5:44 PM To: NT System Admin Issues Subject: Re: DNS concerns - Server 2003 R2 SP2 Domain Controllers On Wed, Jan 23, 2013 at 2:48 PM, Kennedy, Jim kennedy...@elyriaschools.org wrote: To clarify...the dns fixup refers to Cisco firewalls/asa's. I've noticed that Cisco's fixup features tend to break things. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers
Yes. At some point your DNS servers are talking to the outside work...directly or via forwarders I would assume. If dns fixup is enabled you need to allow longer lookups. fixup protocol dns maximum-length 4096 Or turn off eDNS on the 2003 servers. dnscmd /Config /EnableEDnsProbes 0 From: Robert Peterson [mailto:robert.peter...@prin.edu] Sent: Wednesday, January 23, 2013 2:39 PM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers Thank you Jim. We have no Cisco firewalls, but all Cisco switches, routers. A new switch may have went in last week. We also are in the middle of a Cisco VOIP project, past 6 months. Phones all up, but they are still working out tweaks, etc. Trying to make a Jabber client work on desktops and PDAs. Something on the Cisco side I should dig into? From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Wednesday, January 23, 2013 1:14 PM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers Did someone put in a shiny new Cisco firewall this past weekend? From: Robert Peterson [mailto:robert.peter...@prin.edu] Sent: Wednesday, January 23, 2013 2:02 PM To: NT System Admin Issues Subject: DNS concerns - Server 2003 R2 SP2 Domain Controllers Hoping this is an old problem and someone has ideas? We have Server 2003 R2 SP2 Domain Controllers, four of them. Since this past weekend, we saw a large increase in Event 5504 warnings. Eventually the DC gives an Event 7502 and DNS services hang. When DNS hangs, memory usage of the DNS service has grown to 800,000K, after reboot the memory usage starts around 50,000K. Found a registry setting to add an EnableDuplicateQuerySuppression DWORD 0 setting. This has stopped the memory growth/leaks, and replaced the 5504 errors with numerous 404 and 408 errors, till probably due to the registry change to suppress dups it has quit logging those. DNS memory usage is stable around 100,000K and DNS services to our users is remaining stable too. However, I feel this is just a stopgap and I need to resolve the real culprit... thoughts? Ideas? As always... great listserv thanks! Robert ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers
To clarify...the dns fixup refers to Cisco firewalls/asa's. From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Wednesday, January 23, 2013 2:48 PM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers Yes. At some point your DNS servers are talking to the outside work...directly or via forwarders I would assume. If dns fixup is enabled you need to allow longer lookups. fixup protocol dns maximum-length 4096 Or turn off eDNS on the 2003 servers. dnscmd /Config /EnableEDnsProbes 0 From: Robert Peterson [mailto:robert.peter...@prin.edu] Sent: Wednesday, January 23, 2013 2:39 PM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers Thank you Jim. We have no Cisco firewalls, but all Cisco switches, routers. A new switch may have went in last week. We also are in the middle of a Cisco VOIP project, past 6 months. Phones all up, but they are still working out tweaks, etc. Trying to make a Jabber client work on desktops and PDAs. Something on the Cisco side I should dig into? From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Wednesday, January 23, 2013 1:14 PM To: NT System Admin Issues Subject: RE: DNS concerns - Server 2003 R2 SP2 Domain Controllers Did someone put in a shiny new Cisco firewall this past weekend? From: Robert Peterson [mailto:robert.peter...@prin.edu] Sent: Wednesday, January 23, 2013 2:02 PM To: NT System Admin Issues Subject: DNS concerns - Server 2003 R2 SP2 Domain Controllers Hoping this is an old problem and someone has ideas? We have Server 2003 R2 SP2 Domain Controllers, four of them. Since this past weekend, we saw a large increase in Event 5504 warnings. Eventually the DC gives an Event 7502 and DNS services hang. When DNS hangs, memory usage of the DNS service has grown to 800,000K, after reboot the memory usage starts around 50,000K. Found a registry setting to add an EnableDuplicateQuerySuppression DWORD 0 setting. This has stopped the memory growth/leaks, and replaced the 5504 errors with numerous 404 and 408 errors, till probably due to the registry change to suppress dups it has quit logging those. DNS memory usage is stable around 100,000K and DNS services to our users is remaining stable too. However, I feel this is just a stopgap and I need to resolve the real culprit... thoughts? Ideas? As always... great listserv thanks! Robert ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Windows 7 Sysprep, PITA
What I do is make an image just before I sysprep it. Then reboot it and sysprep and make an image and use that in production. So I always have an image that is in audit mode to fall back on. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Friday, January 18, 2013 4:12 PM To: NT System Admin Issues Subject: Re: Windows 7 Sysprep, PITA I've had issues with windows Vista/7 images. Here's one of the big gotchas: You can only sysprep an image 3 times. After that, it's no good... you'll have to start over. What that means: You make a base install of 7 and sysprep (1) image it. then you make a basic image with your usual software ans sysprep (2) that. Then you make a very specific lab image and sysprep (3) that... That's it. you can't do it anymore. If you try to modify your 3rd sysprep image and re-sysprep (4) it... game over. This is one of the ways Microsoft is trying to prevent piracy. Either that or they are trying to drive techs crazy. --Matt Ross Ephrata School District - Original Message - From: itli...@imcu.com [mailto:itli...@imcu.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Fri, 18 Jan 2013 13:01:31 -0800 Subject: Windows 7 Sysprep, PITA Why is the sysprep on Windows 7 so hard to get right? I have an image that has worked for over a year. I added some software to it and reimaged. Not the original machine comes out of Sysprep just fine but the install.wim is failing on all imaged devices with a Windows failed to load please insert Windows media and try again. WTF??? Any ideas? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Server room monitoring/alerts SOLVED
Just wanted to follow up on this, I took Kevin's advice and went with a full ITWatchdog system. It installed in a couple of hours and for 2 grand I have a bunch of temp/humidity/dew point monitors, water on the floor monitor, smoke/fire monitor and door open monitor. It emails calls with voice mail but I could set up sms gateway and text. It also emails and has a full web interface. Multiple triggers so I have emails on minor events and custom voice mails on major events depending upon what is going wrong. I had one question during install and tech support responded to my email in under an hour with the info I needed. And that would have been unneeded if I had rtfm better. Ship time was very fast and they communicated status without being asked several times during that process. Thanks Kevin, much appreciated. From: Kevin Lundy [mailto:klu...@gmail.com] Sent: Thursday, December 06, 2012 11:36 AM To: NT System Admin Issues Subject: Re: Server room monitoring/alerts ITWatchdog devices have optional accessories for PSTN or cell autodialers. On Thu, Dec 6, 2012 at 10:53 AM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: Anyone have any opinions on room environment monitoring. Nothing fancy a simple standalone system that monitors power and temp and humidity that sends texts. But here is the rub, we think it should use its own built in 'cell phone' rather than rely on the network that might be down. The ones we are finding use an internet send, that seems dangerous. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: FoxIT reader vulnerability
* Java will ask if you intended to open the plugin. Which leads to users spamming yes without thinking. * Java does allow for signed certificates for validation. Let's reword this, Java allows for SELF signed certificates for validation. I know someone in the security field that owns an LLC in Ohio called 'Trusted Publisher' and he has self signed certs for Java that say exactly that. Cost him 50 bucks to get it done. Guess what his success rate is on phish emails that link to a java that pops 'Trusted Publisher' on the warning? -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Wednesday, January 16, 2013 11:33 AM To: NT System Admin Issues Subject: RE: FoxIT reader vulnerability I'm no security expert, but here's a counterpoint on why Adobe Reader would be (in my mind) a bigger threat: * Everybody opens PDFs every day. * There is no did you want to open this prompt for a PDF. * There is (as far as I know) no certificated PDF, or if there is, I have never seen it used. The opposite is true for Java. * Java is used every day, but not nearly to the extent of PDF. * Java will ask if you intended to open the plugin. * Java does allow for signed certificates for validation. I am not arguing which one is worse, because I don't know. But the conversation is interesting to me. --Matt Ross Ephrata School District - Original Message - From: Ziots, Edward [mailto:ezi...@lifespan.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 16 Jan 2013 02:39:02 -0800 Subject: RE: FoxIT reader vulnerability By default yes Adobe renders PDF with Javascript, which allows both good and evil javascript to execute, as we all know the various flaws in adobe, this definitely leads to an attack vector which has been exploited time and time again. But seriously I still see Java as the bigger threat, and as others have said it will continue to be this for years to come. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Tuesday, January 15, 2013 6:30 PM To: NT System Admin Issues Subject: Re: FoxIT reader vulnerability Doesn't Adobe (and possibly other PDF viewers) include PDF rendering with javascript now? I just want a dumb .pdf reader. Is it just me? --Matt Ross Ephrata School District - Original Message - From: Ben Scott [mailto:mailvor...@gmail.com] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Tue, 15 Jan 2013 14:46:31 -0800 Subject: Re: FoxIT reader vulnerability On Fri, Jan 11, 2013 at 10:50 AM, Richard McClary richard.mccl...@aspca.org wrote: http://www.theregister.co.uk/2013/01/11/foxit_pdf_plugin_vuln/ Just now checked the FoxIT web site. The currently offered version is 5.4.4.1128, which the article mentions as being vulnerable (as are older versions). May end up having to use Adobe anyway… I strongly suspect FoxIt licenses at least their core code from Adobe. Many features and vulnerabilities seem to track on a one-to-one basis. FoxIt is a lot more lightweight, though, so it prolly has a smaller attack surface overall. It may be they just don't include all the bloat that Adobe does. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or
RE: 86 fixes in Oracle released today
new zero day for java http://m.krebsonsecurity.com/2013/01/new-java-exploit-fetches-5000-per-buyer/ From: Ziots, Edward [ezi...@lifespan.org] Sent: Wednesday, January 16, 2013 10:23 AM To: NT System Admin Issues Subject: 86 fixes in Oracle released today http://www.oracle.com/technetwork/topics/security/cpujan2013-1515902.html Fear it, and they still can't get Java Fixed… Oracle=Unbreakable? Naaa its just broken… period. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7 0day actively exploited in the wild | BeyondTrust
Correct, but 6 is vulnerable to it's own set of exploits that were never fixed and they are well known. Arguably the bad guys are paying more attention to attacking 7 now so theoretically you are safer with 6. Bottom line, java is insecure no matter what you do and will be that way for several years to come, imho. Risk vs reward. What is the reward for your org for continuing to allow java to run? Does the reward outweigh the risk? -Original Message- From: Sam Cayze [mailto:sca...@gmail.com] Sent: Tuesday, January 15, 2013 12:24 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Am I right in assuming that the latest version of version 6 is, or was, NOT affected by this? Can't find anything out there that suggests it was... -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, January 11, 2013 1:34 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-f law-709713/ From: Mark Boeck [netadmin...@gmail.com] Sent: Friday, January 11, 2013 12:15 PM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust lol - a friend of mine, a microsoft security mvp, starts her blog off like this: how to uninstall java! http://securitygarden.blogspot.com/2013/01/java-zero-day-again-time-to.html only after that does she post some links about the threat - - ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmanager@lyris.sunbeltsoftwa re.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7 0day actively exploited in the wild | BeyondTrust
I totally understand your risk vs reward scenario. We are in the same boat. Yea, in Feb this is all a moot point. -Original Message- From: Sam Cayze [mailto:sca...@gmail.com] Sent: Tuesday, January 15, 2013 1:24 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Does the reward outweigh the risk? The reward is we get to stay in business :) We have a major partner that requires us to run it for a B2B app. So, we have to use it. But I've made it so just one user uses that app. That and the occasional WebEx stuff, but I uninstall it from people's PCs right afterwards. So looks like 6 is now the flavor of the month. Hard to keep track. Speaking of months, v6 is EOL in FEB. We'll no longer have the options between 6 and 7 going forward to sidestep all these issues :( Sam -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Tuesday, January 15, 2013 12:10 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Correct, but 6 is vulnerable to it's own set of exploits that were never fixed and they are well known. Arguably the bad guys are paying more attention to attacking 7 now so theoretically you are safer with 6. Bottom line, java is insecure no matter what you do and will be that way for several years to come, imho. Risk vs reward. What is the reward for your org for continuing to allow java to run? Does the reward outweigh the risk? -Original Message- From: Sam Cayze [mailto:sca...@gmail.com] Sent: Tuesday, January 15, 2013 12:24 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Am I right in assuming that the latest version of version 6 is, or was, NOT affected by this? Can't find anything out there that suggests it was... -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, January 11, 2013 1:34 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-f law-709713/ From: Mark Boeck [netadmin...@gmail.com] Sent: Friday, January 11, 2013 12:15 PM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust lol - a friend of mine, a microsoft security mvp, starts her blog off like this: how to uninstall java! http://securitygarden.blogspot.com/2013/01/java-zero-day-again-time-to.html only after that does she post some links about the threat - - ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmanager@lyris.sunbeltsoftwa re.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: hakin9.org magazine
They are spammers so by definition they are thieves. From: David Lum [david@nwea.org] Sent: Tuesday, January 15, 2013 2:01 PM To: NT System Admin Issues Subject: hakin9.org magazine Anyone know about this magazine? I got SPAM from them and it did make me curious so I did take a look and it looks legit, but… David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: hakin9.org magazine
spam is defined by consent not content or intent. :) wow, it's been years since I have used my anti spam talking points. I miss those days on usenet. From: Jonathan Link [jonathan.l...@gmail.com] Sent: Tuesday, January 15, 2013 7:30 PM To: NT System Admin Issues Subject: Re: hakin9.org magazine They only wish to raise quality of life for all species. On Tue, Jan 15, 2013 at 7:23 PM, Kennedy, Jim kennedy...@elyriaschools.orgmailto:kennedy...@elyriaschools.org wrote: They are spammers so by definition they are thieves. From: David Lum [david@nwea.orgmailto:david@nwea.org] Sent: Tuesday, January 15, 2013 2:01 PM To: NT System Admin Issues Subject: hakin9.orghttp://hakin9.org magazine Anyone know about this magazine? I got SPAM from them and it did make me curious so I did take a look and it looks legit, but… David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229tel:503.548.5229 // Cell (voice/text) 503.267.9764tel:503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ose ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7 0day actively exploited in the wild | BeyondTrust
Java released update 11 last night. -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, January 11, 2013 2:36 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-flaw-709713/ From: Mark Boeck [netadmin...@gmail.com] Sent: Friday, January 11, 2013 12:15 PM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust lol - a friend of mine, a microsoft security mvp, starts her blog off like this: how to uninstall java! http://securitygarden.blogspot.com/2013/01/java-zero-day-again-time-to.html only after that does she post some links about the threat - - ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7 0day actively exploited in the wild | BeyondTrust
They bumped the security settings up. It prompts every time now. -Original Message- From: Richard McClary [mailto:richard.mccl...@aspca.org] Sent: Monday, January 14, 2013 9:32 AM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Wonder if there's a negative-one-day exploit? Thanks, though, just now got through doing a bunch of JRE upgrades. -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Monday, January 14, 2013 8:22 AM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust Java released update 11 last night. -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Friday, January 11, 2013 2:36 PM To: NT System Admin Issues Subject: RE: Java 7 0day actively exploited in the wild | BeyondTrust http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-flaw-709713/ From: Mark Boeck [netadmin...@gmail.com] Sent: Friday, January 11, 2013 12:15 PM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust lol - a friend of mine, a microsoft security mvp, starts her blog off like this: how to uninstall java! http://securitygarden.blogspot.com/2013/01/java-zero-day-again-time-to.html only after that does she post some links about the threat - - ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty to Animals?? (ASPCA??) and is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution, copying or use of the contents of this e-mail, and any attachments hereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by reply email and permanently delete the original and any copy of this e-mail and any printout thereof. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Java 7 0day actively exploited in the wild | BeyondTrust
http://www.zdnet.com/homeland-security-warns-to-disable-java-amid-zero-day-flaw-709713/ From: Mark Boeck [netadmin...@gmail.com] Sent: Friday, January 11, 2013 12:15 PM To: NT System Admin Issues Subject: Re: Java 7 0day actively exploited in the wild | BeyondTrust lol - a friend of mine, a microsoft security mvp, starts her blog off like this: how to uninstall java! http://securitygarden.blogspot.com/2013/01/java-zero-day-again-time-to.html only after that does she post some links about the threat - - ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Replacement for SteadyState
how do you handle situations where students don't logout before they leave.. then student 2 has access to student 1's account. Self-correcting problem. Student 2 deletes all of Students 1's stuff and Student 1 never does it again. With 7,000 students we have very little trouble with this issue actually. Also we set inactivity timeouts so they auto log out. I would not go with generic accounts. There is no accountability, no tracking of what they do From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Monday, January 07, 2013 10:04 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState No on the student login. We use a generic account per classroom. We've talked about moving to a individual student login, but I'm not sure we need or want that. For others that have gone that route, how do you handle situations where students don't logout before they leave. You either have a locked computer, logged on as said student or if not locked, then student 2 has access to student 1's account. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Monday, January 07, 2013 9:32 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState Sure so scenarios where you're teaching classes that require changes to the OS to accomplish the class makes good sense and I'd not argue against a solution like DeepFreeze in that case. In the case of things like wallpaper and user profile stuff, are you not using named user accounts for your students? That solves a bunch of this on the spot. Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com w - 312.625.1438 | c - 312.731.3132 From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Monday, January 7, 2013 7:42 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState We teach classes and let the students make any and all changes to the desktop environment. Here's one example. Student comes in and sets the desktop wallpaper to his favorite pinup gal. Next student doesn't like it, but is a beginner and doesn't know how to change it to something else. Reboot and the pin up gal is gone. Also, I've seen some programs/apps that can now be installed without admin rights, Google Chrome for example. Not a problem with Deep Freeze. I'm sure there are other ways to do this, but DeepFreeze works great in our environment. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Sunday, January 06, 2013 4:36 PM To: NT System Admin Issues Subject: RE: Replacement for SteadyState I've worked at a lot of customers that use DeepFreeze and similar products and I'm not a huge fan of the concept in general. It makes the overall lifecycle maintenance of a desktop environment a heck of a lot more complicated. The question I always pose (and usually don't get much of a response to), is what problems/issues is DeepFreeze protecting you from that running as a local user wouldn't solve? Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com w - 312.625.1438 | c - 312.731.3132 From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Friday, January 4, 2013 11:33 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState Not free, but we could not function at the school without DeepFreeze. From: Bambi J Saastad [mailto:bambi.j.saas...@seagate.com] Sent: Friday, January 04, 2013 11:36 AM To: NT System Admin Issues Subject: Replacement for SteadyState Hello I was wondering if any of you could suggest a replacement for SteadyState. I have a roomful of pc's that the factory users use for browsing etc that I am replacing with Windows 7 Pro that need to be locked down. Can anyone suggest a product that does the same thing, wipe out any changes on reboot? TIA B ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
RE: Replacement for SteadyState
I am K-12 so a different setup probably..but just to get you thinking. Do you have your own student information system? That contains everything you need I would think. Ours lists all the students, grade, school and student ID number. It is maintained in part by the State, our enrollment office and administrative staff. But it is complete and ready to go. We just export that info and powershell create the accounts. During the school year as students transfer in Media Techs (librarians) have a limited ADUC to create new student login accounts. Their home folders self-create. Media Techs can also change passwords, reset lockouts. I transitioned us to this about 4 years ago. It was a non-event and works well. I could take it a step further and do an auto export every night from the student information system and script deletions and new users but for the few we get it is not worth it. At the end of the school year I mass delete and start over fresh. From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Monday, January 07, 2013 12:20 PM To: NT System Admin Issues Subject: RE: Replacement for SteadyState Good to know. Now, the other biggie for use, user account management. We don't yet have an automated way to create/delete the accounts. Richmond is working on a system for that, but the vendor they contracted wants mega bucks to set up our server to sync with their domain. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Monday, January 07, 2013 10:32 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState Yeah ... For all the universities I've worked at and had this discussion, this perceived problem has never morphed into an actual issue. Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com w - 312.625.1438 | c - 312.731.3132 From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Monday, January 7, 2013 9:09 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState how do you handle situations where students don't logout before they leave.. then student 2 has access to student 1's account. Self-correcting problem. Student 2 deletes all of Students 1's stuff and Student 1 never does it again. With 7,000 students we have very little trouble with this issue actually. Also we set inactivity timeouts so they auto log out. I would not go with generic accounts. There is no accountability, no tracking of what they do From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Monday, January 07, 2013 10:04 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState No on the student login. We use a generic account per classroom. We've talked about moving to a individual student login, but I'm not sure we need or want that. For others that have gone that route, how do you handle situations where students don't logout before they leave. You either have a locked computer, logged on as said student or if not locked, then student 2 has access to student 1's account. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Monday, January 07, 2013 9:32 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState Sure so scenarios where you're teaching classes that require changes to the OS to accomplish the class makes good sense and I'd not argue against a solution like DeepFreeze in that case. In the case of things like wallpaper and user profile stuff, are you not using named user accounts for your students? That solves a bunch of this on the spot. Thanks, Brian Desmond br...@briandesmond.commailto:br...@briandesmond.com w - 312.625.1438 | c - 312.731.3132 From: Glen Johnson [mailto:gjohn...@vhcc.edu] Sent: Monday, January 7, 2013 7:42 AM To: NT System Admin Issues Subject: RE: Replacement for SteadyState We teach classes and let the students make any and all changes to the desktop environment. Here's one example. Student comes in and sets the desktop wallpaper to his favorite pinup gal. Next student doesn't like it, but is a beginner and doesn't know how to change it to something else. Reboot and the pin up gal is gone. Also, I've seen some programs/apps that can now be installed without admin rights, Google Chrome for example. Not a problem with Deep Freeze. I'm sure there are other ways to do this, but DeepFreeze works great in our environment. From: Brian Desmond [mailto:br...@briandesmond.com] Sent: Sunday, January 06, 2013 4:36 PM To: NT System Admin Issues Subject: RE: Replacement for SteadyState I've worked at a lot of customers that use DeepFreeze and similar products and I'm not a huge fan of the concept in general. It makes the overall lifecycle maintenance of a desktop environment a heck of a lot more complicated. The question I always pose (and usually don't get much of a response to), is what problems/issues is DeepFreeze protecting you from that running as a local user wouldn't solve? Thanks, Brian Desmond br...@briandesmond.commailto:br
RE: Time sync
Here is how I do it. I use the standard domain structure and have the PDC emulator sync to a good outside source. But the one thing I added was a scheduled task on every server that runs twice a day to stop and start the time service. That has helped dramatically, I can't remember the last time (pun intended) we had a time sync issue. From: Richard McClary [mailto:richard.mccl...@aspca.org] Sent: Friday, January 04, 2013 9:11 AM To: NT System Admin Issues Subject: Time sync Greetings! I'm sure I and many others have asked this (but are still stumped). Ken S's reply yesterday pointing to ultimately a chain of TechNet articles has shed some light and will start us digging. Microsoft admits W32Time is sloppy (http://support.microsoft.com/kb/939322) - mainly meant to make Kerberos v5 work. Our issue is, W32Time lets things drift enough for weird things to occur in our medical records. We have a veterinary toxicology consulting hotline. Because things get out of sync a bit, we frequently have medical records opening before a client's telephone call is received. The article referenced above essentially says to go find an alternative to W32Time. NIST has gathered a list of time sync software. QUESTION: has anyone on the list used (and would recommend) anything on that list to fix the record created prior to the call situation? (http://www.nist.gov/pml/div688/grp40/softwarelist.cfm) Thank you... -- richard The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty to Animals(r) (ASPCA(r)) and is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution, copying or use of the contents of this e-mail, and any attachments hereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by reply email and permanently delete the original and any copy of this e-mail and any printout thereof. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Occasional local admin needed
Do a domain account as you describe and set the account to expire tomorrow. When they need it you re-enable it and set it to expire again the next day. Still manual intervention on your part but the automatic expire solves the ongoing access issue. From: David Lum [mailto:david@nwea.org] Sent: Friday, January 04, 2013 10:41 AM To: NT System Admin Issues Subject: Occasional local admin needed How would you guys handle this? I have a server that the developers use that they occasionally (once a month or so) need local admin access for to install/upgrade an app or feature they use. This is a new-ish server that previously I have just added a user (it's the same one each time) to the local admin group then a week later took them out, but that's cumbersome and I become the single point of failure on remembering to back them out. I could 1. create a special AD account for this user to be local admin, or 2. create an AD group, put this person in it, then GPO that group into local admins on that server. Suggestions? David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Restore 2008 R2 including product activation
Three letter suggestion. KMS -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Wednesday, January 02, 2013 2:26 PM To: NT System Admin Issues Subject: Re: Restore 2008 R2 including product activation Is there a native way to do this, or are backups the reason when you look up # of activations on MS's VLSC site they list more activations available than actual licenses? I am unsure on why, exactly, there is a larger number of activations than what we have licensed on our VLSC site, but it was my understanding that it was set higher than what you need so you could do things like re-installs, re-imaging, etc. I have had to contact MS to have our activation number increased. They asked why, and I said Because we re-image the labs every year, and each re-image eats up an activation. They took that answer and us me more. I'm sure the artificial limit is there to prevent blatant theft of a VLSC product code. --Matt Ross Ephrata School District - Original Message - From: David Lum [mailto:david@nwea.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 02 Jan 2013 10:59:07 -0800 Subject: Restore 2008 R2 including product activation Is there a way to do a backup/restore of 2008 r2 and not have to Windows re-activation? I found some links that use a 3rd party tool called Advanced Tokens Manager. Is there a native way to do this, or are backups the reason when you look up # of activations on MS's VLSC site they list more activations available than actual licenses? David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Restore 2008 R2 including product activation
Zero issues here in about two years...other than when I moved it to a new server. Some of the laptops that never come in didn't get the new machine name via GPO. That is a quick command line fix or they can just bring it in once and boot for the GPO. Totally problem free. And the techs hate me less since they don't have to do anything with keys or activation anymore. Since we are on the subject, sorta. Revisit the Microsoft School Agreement again and see if it fits for you.if you don't have it. It is all based on staff now. One flat fee a year and we can run darn near anything MS we want. I just buy server licenses now. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Wednesday, January 02, 2013 3:13 PM To: NT System Admin Issues Subject: RE: Restore 2008 R2 including product activation Three letter suggestion. KMS I tried KMS back when it was implemented (Windows Server 2003 R2 days)... and it didn't work out for me. I'm guessing it's much improved; is it? --Matt Ross Ephrata School District - Original Message - From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 02 Jan 2013 11:53:23 -0800 Subject: RE: Restore 2008 R2 including product activation Three letter suggestion. KMS -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Wednesday, January 02, 2013 2:26 PM To: NT System Admin Issues Subject: Re: Restore 2008 R2 including product activation Is there a native way to do this, or are backups the reason when you look up # of activations on MS's VLSC site they list more activations available than actual licenses? I am unsure on why, exactly, there is a larger number of activations than what we have licensed on our VLSC site, but it was my understanding that it was set higher than what you need so you could do things like re-installs, re-imaging, etc. I have had to contact MS to have our activation number increased. They asked why, and I said Because we re-image the labs every year, and each re-image eats up an activation. They took that answer and us me more. I'm sure the artificial limit is there to prevent blatant theft of a VLSC product code. --Matt Ross Ephrata School District - Original Message - From: David Lum [mailto:david@nwea.org] To: NT System Admin Issues [mailto:ntsysadmin@lyris.sunbelt-software.com] Sent: Wed, 02 Jan 2013 10:59:07 -0800 Subject: Restore 2008 R2 including product activation Is there a way to do a backup/restore of 2008 r2 and not have to Windows re-activation? I found some links that use a 3rd party tool called Advanced Tokens Manager. Is there a native way to do this, or are backups the reason when you look up # of activations on MS's VLSC site they list more activations available than actual licenses? David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: KB931125
Restore hidden updates perhaps? From: Stefan Jafs [mailto:stefan.j...@gmail.com] Sent: Wednesday, December 19, 2012 2:24 PM To: NT System Admin Issues Subject: KB931125 Ok, so I manually update my servers, WSUS shows me what needs to be don, I then log on to the server and do a manual check with Microsoft on line to decide myself what needs to be updated. Usually this works quit well and I can wait a few days / maybe a week before I do an critical server, and Thanks to Michael I did not install the WWF 3.0 Update. However here is the current strange part, WSUS indicates that I need Update for Root certificate for Windows Server 2008 R2 x64 [December 2012] (KB931125) but when I check on line with /Windows / Microsoft update it indicates I'm up to date! Any ideas? -- Stefan Jafs ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.commailto:listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: Heads up: MS12-081 KB2758857 issue - Update
I have not had good luck mapping drives with DFS in Win 7, fwiw. Very sporadic. -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Thursday, December 13, 2012 8:13 PM To: NT System Admin Issues Subject: RE: Heads up: MS12-081 KB2758857 issue - Update Update: KB2758857 appears to only effect a DFS folder redirects to a drive mapping I have via GPO on my Win7 systems. My desktop and start menu are redirected to the DFS share and at startup I get a cannot connect to \\DFS\file\share. Talking to my storage team, it may be an issue with our DFS implementation but I won't know more on that until tomorrow. * RDP in unaffected * Uninstalling the KB restores access to the DFS share * Access to non-DFS shares are unaffected * Windows XP is unaffected * DFS file share type is Domain (Windows 2000 server mode) I'm guessing that last bullet is the culprit, but cannot confirm at this time. Dave -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Thursday, December 13, 2012 11:18 AM To: NT System Admin Issues Subject: Heads up: MS12-081 KB2758857 issue On my corporate Win7 PC this update prevents me from connecting to Windows file shares. I am troubleshooting to get more specifics, as my user profile has redirected folders and we have our Exchange hosted and my Outlook would also not start, but I did confirm that removal of this KB restored access and re-installing it produced the same no file access result. It may be an hour or two before I have more details but figured I should give you guys a heads up ASAP. David Lum Sr. Systems Engineer // NWEATM Office 503.548.5229 // Cell (voice/text) 503.267.9764 ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: OT VDI in a box.
It is this, without question: Bring your device, but if it doesn't work then it's your problem, ...other than the older XP machines that we own that we are going to extend the life of But you raise valid questions that should always be answered, answers in line. -Original Message- From: Matthew W. Ross [mailto:mr...@ephrataschools.org] Sent: Thursday, December 13, 2012 5:19 PM To: NT System Admin Issues Subject: Re: OT VDI in a box. We have been looking at VDI in a Box as well, but not as a BYOD solution. I like BYOD, but I think it's not worth it in the end. If it's a Bring your device, but if it doesn't work then it's your problem, kind of BYOD, I have no problems. Otherwise, here are some bullets for shooting down this bad idea: * Will each student be expected to use the VDI-in-a-Box desktop to use Office? If they want to store their stuff on their network storage, yes. If they want to go Google Apps or Office with Google App storage they can. They all have both already. * Is it expected that the VDI-in-a-Box session will be where the students will be content filtered? They are content filtered everywhere. If they hit guest and go straight out with their device they are filtered. They will of course be filtered on the VDI box as well. * Will students be provided with a device if they cannot afford a laptop? (This is a question that often comes up for these kinds of ideas at our school.) They will use existing devices, which are plentiful. This is in addition to our devices...giving the user options. * Will a student with an iPad, iPod touch or Android device have reduces productivity vs a computer with a built in keyboard? How will this be compensated for? They can do what they can with the device or they can use our existing desktops. * Will you be supporting BYOD devices after hours? Do you have the staffing for such support? Heck no we wont be supporting them during hours, let alone after hours. * Is your wireless infrastructure up to the task of the increased workload? Yes, and then some. * Do all of your currently supported software program work under a VDI solution? Yes, very well. Any thing that does no has already been phased out. * Does your school currently have the right to confiscate inappropriate material or devices? If you do, how does the student perform the necessary tasks without their BYOD? Yes, we have the right and I believe the legal requirement to confiscate inappropriate material. They can go back to using our desktops. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
RE: OT VDI in a box.
We have the absolute best brownies I have ever had in my life here from the student kitchen. They are amazing. -Original Message- From: Rankin, James R [mailto:kz2...@googlemail.com] Sent: Thursday, December 13, 2012 6:39 PM To: NT System Admin Issues Subject: Re: OT VDI in a box. Food parcels would suffice :-) ---Blackberried -Original Message- From: Kurt Buff kurt.b...@gmail.com Date: Thu, 13 Dec 2012 15:20:13 To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com Reply-To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.comSubject: Re: OT VDI in a box. Volunteer == no pay, right? :) On Thu, Dec 13, 2012 at 2:16 PM, James Rankin kz2...@googlemail.com wrote: I'll volunteer to work on it :-) On 13 December 2012 22:01, Michael B. Smith mich...@smithcons.com wrote: Just TRY to find someone to work on it! Impossible. I give it a major “down check” just because of that. From: Webster [mailto:webs...@carlwebster.com] Sent: Thursday, December 13, 2012 4:28 PM To: NT System Admin Issues Subject: RE: OT VDI in a box. The bloggers I know personally that have used it love it and extol it praises in how simple it is to deploy AND maintain. At this time, there is NO upgrade or migration path from VIAB to XenDesktop. http://neil.spellings.net/2011/09/25/first-look-at-citrix-kaviza-vdi- in-a-box-part-1-setting-up-the-server/ http://neil.spellings.net/2011/09/28/first-look-at-citrix-kaviza-vdi- in-a-box-part-2-creating-master-image/ I just sent Neil an email asking where is part three. Thanks Webster From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Subject: OT VDI in a box. We are going to have to go BYOD(oom). There is no escaping it in the public edu environment. The powers that be look at them as ‘free’ computers. So we are thinking a virtual desktop environment . One that is accessable via guest wireless and that can only talk to a few select servers…like their own user file servers. Then we deliver the appropriate desktop to them. This is for students, so we have to assume they are intentionally malicious/destructive/wanting to hack us. VDI in a box looks interesting. Rolls easily, runs on Hyper-V which is our virtualization software of choice…. Opinions and experiences gang? ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin -- James Rankin Technical Consultant (ACA, CCA, MCTS) http://appsensebigot.blogspot.co.uk ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin