Re: 7 shortcuts To Get Your Network Hacked (huh?)
Security doesn’t need to be a bottomless pit (DR is a whole different beast). If you look at the security concerns of most of us that have posted to this thread. Most of them is fixed by having strong enforced POLICIES (like not having generic/weak/reused passwords. Policies on what BYOD devices have to have before being allowed to connect to the network, strong/accurate FW rules, etc). All of that is very little to no cost at all to fix. It is actually having a management team that knows it is going to happen to them vs the management teams that think hacks only happen to companies that are bigger than theirs. From: Ken Schaefer Sent: Friday, November 02, 2012 10:46 PM To: NT System Admin Issues Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) The problem with security or DR is that spending is, potentially, a bottomless pit. You can insure against an almost unimaginable array of business losses – but all that insurance costs money. So where to deploy your insurance money, and how much to deploy, is a question that hasn’t really been determined yet. Cheers Ken From: Jon Harris [mailto:jk.har...@live.com] Sent: Saturday, 3 November 2012 10:30 AM To: NT System Admin Issues Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) I guess that like having a datacenter disaster management will bury their heads or make excuses until something bad happens. Then they will be all for taking care of issues that will just fester. My guess is until the government takes someone to court and gets some huge fines imposed for release of personal information or some hospital/insurance company gets sued and loses they will be all for BYOD and no controls imposed on those devices. Jon Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) Date: Fri, 2 Nov 2012 09:32:22 -0400 From: ezi...@lifespan.org To: ntsysadmin@lyris.sunbelt-software.com Yes its scary, but I know in healthcare its gaining a lot of steam. ( Right in the middle of it right now). I know some in the insurance industry and others are also in the same boat. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org From: Mike Tavares [mailto:miketava...@comcast.net] Sent: Thursday, November 01, 2012 6:49 PM To: NT System Admin Issues Subject: Re: 7 shortcuts To Get Your Network Hacked (huh?) My guess is it is going to later rather sooner for most companies. I recently attended a CEO level conference and the question was posed to them if they were taking any precautions now for BYOD’s and of the 30 or so CEO’s that were in the room 2 raised their hands. Kinda scary when it stop and think about it. From: Ziots, Edward Sent: Wednesday, October 31, 2012 3:49 AM To: NT System Admin Issues Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) I would say that BYOD is going to creep up to the top of the list sooner than laters for the following reasons. 1) Lack of security specifications and hardening on users devices. ( Android and IOS have many flaws some we are just finding out about) (Just look at jailbreakme.com. 2) Security solutions like ( Mobile-Iron and others) will help mitigate but not totally reduce issues with endpoint devices to an acceptable level. 3) Again these BYOD devices, are more likely and easily stolen or misplaced as compared to corporate devices ( laptop) these days ( abiet, yes laptops are still getting stolen, but usually they are fully encrypted, so going to be hard to get any information of value off them for a while, note: I didn’t say impossible) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: 7 shortcuts To Get Your Network Hacked (huh?)
For me, my list comes for almost 20 years of IT related experience, along with several dozen high profile consulting gigs I have done in that timeframe, talking with other admins, and just keeping up with the day to day security issues that arise. From: Ken Schaefer Sent: Wednesday, October 31, 2012 3:39 AM To: NT System Admin Issues Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) I’m curious to know how people are coming up with these lists. Are they based on personal experience of hacks in your own workplace? Or what you are seeing/reading “in the media”? My experience is a fair bit different to most of the responses so far. Cheers Ken From: Ziots, Edward [mailto:ezi...@lifespan.org] Sent: Wednesday, 31 October 2012 6:29 PM To: NT System Admin Issues Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) 1) Failure to properly harden their systems from attack. ( Patching, Access-lists, Firewall settings) 2) Using unapproved software on systems that introduces malware, or Trojan backdoors on systems. 3) Failure to properly use least privilege and separation of duties, to limit exposure to systems and processes. 4) Using vulnerable database/Web applications which are exposed to the internet and are vulnerable to OWASP top 10 (Especially SQLi and XSS) 5) Lack of proper ingress and egress filtering at firewall/VPN access into and out of the corporate network, DMZ and otherwise. 6) Failure to use Antivirus or out of date signatures for AV/HIPS to detect common known malware/Trojans ( Again getting less effective by the day since a lot of malware these days is custom and it is used to bypass AV detection. 7) Giving users admin privileges and not controlling code execution on endpoint systems (Again this is how most of the malware/malcode is getting on the systems in the first place ( drive by downloads, etc etc) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org From: Stu Sjouwerman [mailto:s...@sunbelt-software.com] Sent: Tuesday, October 30, 2012 1:39 PM To: NT System Admin Issues Subject: 7 shortcuts To Get Your Network Hacked (huh?) Hi Guys, Yes, that was on purpose. In your opinion, what are the most gruesome errors a system admin can make which will result in getting their network hacked? Just jot down a few and reply to the list, I will tabulate and come up with the 7 most mentioned sorted by importance. This should be fun. Have at it !! Warm regards, Stu ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: 7 shortcuts To Get Your Network Hacked (huh?)
My guess is it is going to later rather sooner for most companies. I recently attended a CEO level conference and the question was posed to them if they were taking any precautions now for BYOD’s and of the 30 or so CEO’s that were in the room 2 raised their hands. Kinda scary when it stop and think about it. From: Ziots, Edward Sent: Wednesday, October 31, 2012 3:49 AM To: NT System Admin Issues Subject: RE: 7 shortcuts To Get Your Network Hacked (huh?) I would say that BYOD is going to creep up to the top of the list sooner than laters for the following reasons. 1) Lack of security specifications and hardening on users devices. ( Android and IOS have many flaws some we are just finding out about) (Just look at jailbreakme.com. 2) Security solutions like ( Mobile-Iron and others) will help mitigate but not totally reduce issues with endpoint devices to an acceptable level. 3) Again these BYOD devices, are more likely and easily stolen or misplaced as compared to corporate devices ( laptop) these days ( abiet, yes laptops are still getting stolen, but usually they are fully encrypted, so going to be hard to get any information of value off them for a while, note: I didn’t say impossible) Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization ezi...@lifespan.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: 7 shortcuts To Get Your Network Hacked (huh?)
1. Listening to Management tell you that security is inconvenience to the end users and keep it as simple as possible. 2. All new users being created with a generic password. 3. Letting users run as Admins (see #1) 4. Letting users BYOD with absolutely no policies in place to control them 5. A fairly new one for some no policies for BYON From: Stu Sjouwerman Sent: Tuesday, October 30, 2012 1:39 PM To: NT System Admin Issues Subject: 7 shortcuts To Get Your Network Hacked (huh?) Hi Guys, Yes, that was on purpose. In your opinion, what are the most gruesome errors a system admin can make which will result in getting their network hacked? Just jot down a few and reply to the list, I will tabulate and come up with the 7 most mentioned sorted by importance. This should be fun. Have at it !! Warm regards, Stu ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Do you think the security industry exaggerates the threat of mobile malware?
On the subject of mobile malware, it maybe over exaggerated at the moment, but it only takes 1 instance for a mobile device to be infected. Depending on the type of malware it could be more than the users contacts that get sent back to the malware authors. Then it becomes an issue of why weren't we aware of these threats and why didn't we do more to prevent them. So it’s a no win in either direction for us. Now the loss/theft of a mobile device is a completely different story. What happens if the user has like logmein or some other remote desktop software installed with cached credentials(without encryption or password protection on the device) plus being configured for email, the stakes could be very high as it’s a good bet that it will go unreported for a while. -Mike -Original Message- From: David Lum Sent: Friday, March 02, 2012 12:59 PM To: NT System Admin Issues Subject: Do you think the security industry exaggerates the threat of mobile malware? Would like to see your guys' opinion on this. I have an enterprise architect here that says so what if a C-level loses his smartphone, it's only contacts in there... Agree? Disagree? Take the poll :-) Dave ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: ATT iPhone
Just ATT users? it appears that Verizon is having issues today http://www.myfoxny.com/dpp/news/report-verizon-wireless-data-outage-20111221-KC From: Cesare' A. Ramos Sent: Wednesday, December 21, 2011 1:24 PM To: NT System Admin Issues Subject: ATT iPhone Anyone seeing or experiencing any issues with e-mail / calendar syncing over the last 2 days? We have a handful of users seeing this on their phones. They are via ActiveSync. No issues on the servers and no changes in the environment. CAR This e-Mail and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this e-Mail in error please notify the sender via returned e-Mail. Please note that any views or opinions presented in this e-Mail are solely those of the author and do not necessarily represent those of the company. Although IDF operates anti-virus programs, it does not accept responsibility for any damage whatsoever that is caused by viruses being passed. ** Think before you print this message. ** ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: iPhone user can still send emails after being disabled in AD
Its on by default in 2010 as well From: Kennedy, Jim Sent: Friday, November 11, 2011 1:52 PM To: NT System Admin Issues Subject: RE: iPhone user can still send emails after being disabled in AD +1 Is it still turned on by default in 2010? If so that isn’t a bug anymore, that is negligence. Imnsho. From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, November 11, 2011 1:48 PM To: NT System Admin Issues Subject: Re: iPhone user can still send emails after being disabled in AD the bug is that it's turned on by default, and requires effort to turn it off. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Blackberry having issues or just me
Got several reports from my users saying that they are not receiving emails on their blackberries. However they can send from them. I have verified this on my blackberry as well. Not seeing anything on my BES server that would indicate a problem multiple carriers (vz, att, t-mobile) in the boston area ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Blackberry having issues or just me
reboot took care of that. but even a manual restart of it didn't make a difference - Original Message - From: David Mazzaccaro david.mazzacc...@hudsonmobility.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Tuesday, March 8, 2011 4:25:48 PM Subject: RE: Blackberry having issues or just me CT here… Sprint. No problems. Quick fix is usually to restart the “BB Synchronization service” on the BES. From: Mike Tavares [mailto:miketava...@comcast.net] Sent: Tuesday, March 08, 2011 4:16 PM To: NT System Admin Issues Subject: Blackberry having issues or just me Got several reports from my users saying that they are not receiving emails on their blackberries. However they can send from them. I have verified this on my blackberry as well. Not seeing anything on my BES server that would indicate a problem multiple carriers (vz, att, t-mobile) in the boston area ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin . ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Blackberry having issues or just me
4.1.7 MR3 and exchange 2007 - Original Message - From: My New Display Name for Bob. :) don@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Tuesday, March 8, 2011 4:26:43 PM Subject: Re: Blackberry having issues or just me Versions of BES and Exchange? Sent from my Verizon Wireless BlackBerry From: Mike Tavares miketava...@comcast.net Date: Tue, 8 Mar 2011 21:15:44 + (UTC) To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com ReplyTo: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Subject: Blackberry having issues or just me Got several reports from my users saying that they are not receiving emails on their blackberries. However they can send from them. I have verified this on my blackberry as well. Not seeing anything on my BES server that would indicate a problem multiple carriers (vz, att, t-mobile) in the boston area ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Verizon Data Services down
http://www.inquisitr.com/96530/verizon-extended-blackberry-outage-due-to-system-update/ I have several users that are affected by this as well. - Original Message - From: Jeff Brown 2jbr...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Monday, January 24, 2011 11:42:23 PM Subject: Verizon Data Services down About 20% of my users have been without data services, a crippling problem for a company that relies heavily on email for nearly all communications. How is it that after over 3 days there is virtually NO news coverage of this issue??? We have been told by our cell consultant that this is in fact a problem affecting accounts nationwide. Anyone else but me here affected? We started having trouble just after 11:30 central last Friday, Jan. 221st. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
Re: Windows 95.
it is seems like yesterday that I was invited to the 95 (Chicago) beta. If I remember correctly the first 2 or 3 beta versions were shipped to us on Floppies, and then by the final they were shipping CD's to those of us that could afford cd rom drives. How times have changed. - Original Message - From: Terry Dickson te...@treasurer.state.ks.us To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, August 25, 2010 4:55 PM Subject: Windows 95. Hey for all of you who missed this like me, Happy Belated Birthday to Windows 95. It turned 15 yesterday. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: BES Express
Exchange and Lotus Notes are the 2 supported platforms. - Original Message - From: John Aldrich jaldr...@blueridgecarpet.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, August 11, 2010 3:38 PM Subject: BES Express Anyone know if BES Express can work if you DON'T have an Exchange server? I was under the impression that pretty much all flavors of Blackberry server required an Exchange server. Our CEO just forwarded me something about BES Express, and the website it directs you to isn't clear about whether it'll work if your on a POP3 server. John-AldrichTile-Tools ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Where's my disk space gone ?
Oliver, Did you check the size of the WINSXS folder (in the C:\windows\ directory). You may need to show hidden files and protected operating system files to see it. I know on all my 2008 boxes this is where the diskspace appears to dissapear into. - Original Message - From: Oliver Marshall oliver.marsh...@g2support.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, June 30, 2010 4:06 PM Subject: Where's my disk space gone ? Hi, I have a Windows 2008 server with a 100GB C partition. It has 8GB free, meaning 92GB is in use. However every disk space tool I use shows that only 34GB of data is on the drive. I've tried clearing the shadow copies and that freed a few GB. Any idea where the other 60'ish GB may be lurking ? Olly [cid:personal229.jpg] [cid:g2supportsmall_250x58border4823.png] Network Support Online Backups Server Management Tel: 0845 307 3443 Email: oliver.marsh...@g2support.com Web: http://www.g2support.comhttp://www.g2support.com/ Twitter: g2supporthttp://twitter.com/home?stat...@g2support Newsletter: http://www.g2support.com/newsletter Mail: 2 Roundhill Road, Brighton, Sussex, BN2 3RF G2 Support LLP is registered at Mill House, 103 Holmes Avenue, HOVE BN3 7LE. Our registered company number is OC316341. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: How to block, but not block?!
then there is always the Camera in their cell phones as well. - Original Message - From: gro...@beachcomp.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, June 16, 2010 12:37:54 PM GMT -05:00 US/Canada Eastern Subject: RE: How to block, but not block?! Good stuff but I did forget to add something. A user taking a screenshot of the spreadsheet, then saving it. So while they are locked down from doing any mods on the file, they can always screenshot and retype. Plot thickens. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: How to block, but not block?!
behavioral problems. - Original Message - From: Carl Houseman c.house...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, June 16, 2010 1:14:25 PM GMT -05:00 US/Canada Eastern Subject: RE: How to block, but not block?! Quiz time! There are seldom technological solutions to . -Original Message- From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org] Sent: Wednesday, June 16, 2010 12:46 PM To: NT System Admin Issues Subject: RE: How to block, but not block?! And cell phone cameras. -Original Message- From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Wednesday, June 16, 2010 12:40 PM To: NT System Admin Issues Subject: RE: How to block, but not block?! From a security standpoint, wouldn't you also need to block screen prints/screen captures with the spreadsheet open ? Erik Goldoff IT Consultant Systems, Networks, Security ' Security is an ongoing process, not a one time event ! ' -Original Message- From: gro...@beachcomp.com [mailto:gro...@beachcomp.com] Sent: Wednesday, June 16, 2010 12:13 PM To: NT System Admin Issues Subject: How to block, but not block?! Hi all, I have been asked to provide a solution which I don't think can be provided, but figured I'd get your input any see if you know of anything out there. The concept is as follows: There is an excel file which is highly secretive and guarded. The CEO wants to make sure people have no way of leaking it out of the company, but be free to use it. He wants to know if anyone prints it, or saves it externally, or e-mails it. This would be fine if the user was on a locked down machine, but he wants them to be able to do this on their daily use workstations. Anyone have any thoughts or ideas? Thanks! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: ISA 2004 in a 2008 network
I have been running an ISA 2004 server running in a 2008 based domain with no issues. - Original Message - From: Oliver Marshall oliver.marsh...@g2support.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Monday, June 14, 2010 7:04 AM Subject: ISA 2004 in a 2008 network Does anyone know if ISA 2004 will work in a Windows 2008 based network? We are upgrading some old kit here and we want to keep ISA (rather than upgrade to Forefront) but it will need to work in a 100% 2008 network. Anyone done this ? Olly [cid:personal24823.jpg] [cid:g2supportsmall_250x58border18be.png] Network Support Online Backups Server Management Tel: 0845 307 3443 Email: oliver.marsh...@g2support.com Web: http://www.g2support.comhttp://www.g2support.com/ Twitter: g2supporthttp://twitter.com/home?stat...@g2support Newsletter: http://www.g2support.com/newsletter Mail: 2 Roundhill Road, Brighton, Sussex, BN2 3RF G2 Support LLP is registered at Mill House, 103 Holmes Avenue, HOVE BN3 7LE. Our registered company number is OC316341. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Virtualisation structural question
I would make the AD its own VM. On the off chance that you need to do something with AD that requires a reboot you don't have to reboot everything (also makes life easier in the future) The one caveat to this is you want to set the priority so AD boots before Exchange (I assume hyper-v gives you this ability). -Mike - Original Message - From: Oliver Marshall oliver.marsh...@g2support.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Monday, June 14, 2010 7:14 AM Subject: Virtualisation structural question Hi chaps. Can I kick some thoughts around here and look for some comments? We have a few old servers that we need to upgrade to new versions. Basically we will be upgrading several Windows 2003 servers running file services, AD and Exchange 2003. We will be replacing these with 2008 64bit R2 servers running Exchange 2010. As running Exchange 2010 on a DC isn't recommended (though it appears that it isn't not-supported as such) we are looking at having two servers; one for AD and file roles and one for Exchange roles. Clearly this lends itself to virtualisation quite nicely with both 'servers' running on a parent host. The question is really this: Should the AD/File roles run in a VM or on the parent host itself, with Exchange being a child VM on the parent host ? So this; Physical Host: VM-HOST1 Roles: Hyper-V Host Domain: Workgroup VM Name: AD-1 Role: DC/GC/FILE Host: VM-HOST1 Domain: MYDOMAIN VM Name: EX-1 Roles: Exchange 2010 Host: VM-HOST1 Domain: MYDOMAIN Or this; Physical Host: VM-HOST1 Roles: Hyper-V Host, DC/GC/FILE Domain: MYDOMAIN VM Name: EX-1 Roles: Exchange 2010 Host: VM-HOST1 Domain: MYDOMAIN My feeling is that the former is neater, that is with both the AD server and the Exchange server being VMs on a parent host, than the latter. Any suggestions? How are you chaps structuring things ? Olly [cid:personal27e87.jpg] [cid:g2supportsmall_250x58border390c.png] Network Support Online Backups Server Management Tel: 0845 307 3443 Email: oliver.marsh...@g2support.com Web: http://www.g2support.comhttp://www.g2support.com/ Twitter: g2supporthttp://twitter.com/home?stat...@g2support Newsletter: http://www.g2support.com/newsletter Mail: 2 Roundhill Road, Brighton, Sussex, BN2 3RF G2 Support LLP is registered at Mill House, 103 Holmes Avenue, HOVE BN3 7LE. Our registered company number is OC316341. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Exchange TLS (ssl) cert ???
self signed cert, it is free. - Original Message - From: Erik Goldoff egold...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, July 29, 2009 2:19 PM Subject: Exchange TLS (ssl) cert ??? I've got a law office client ( cheap ) that needs to have TLS setup for secure email with a european colleague ... anybody have a recommended source for inexpensive SSL certs that would work for this ? Erik Goldoff IT Consultant Systems, Networks, Security ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: iPhone and battery life
with the exception of the blackberry storms which make the iPhones battery life good. - Original Message - From: Micheal Espinola Jr michealespin...@gmail.com To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Monday, May 18, 2009 6:50 PM Subject: Re: iPhone and battery life No doubt. And the BB is exceptional for that - no argument from me. -- ME2 On Mon, May 18, 2009 at 6:05 PM, Stefan Jafs sj...@amico.com wrote: Still reading this humorous thread on my bb bold with lots of battery left and a spear battery if ever needed __ Sent from BlackBerry Bold -- *From*: Erik Goldoff egold...@gmail.com *To*: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com *Sent*: Mon May 18 18:02:40 2009 *Subject*: RE: iPhone and battery life OK, thanks ... that's a bit different then, but the functionality is still a benefit, just not unique to the iPod Erik Goldoff *IT Consultant* *Systems, Networks, Security * -- *From:* Mayo, Bill [mailto:bem...@pittcountync.gov] *Sent:* Monday, May 18, 2009 4:47 PM *To:* NT System Admin Issues *Subject:* RE: iPhone and battery life Just to be clear, the (Cisco) VPN is built-in, the other 2 things were applications I purchased. The RDP client was $5.99, as was the telnet/ssh client. -- *From:* Erik Goldoff [mailto:egold...@gmail.com] *Sent:* Monday, May 18, 2009 4:37 PM *To:* NT System Admin Issues *Subject:* RE: iPhone and battery life I can tell you that the built-in VPN + remote desktop client + telnet/ssh application have saved me a lot of hassles. Now there is useful, specific information, that makes a difference. I was unaware they had RDP built in, thanks Erik Goldoff *IT Consultant* *Systems, Networks, Security * ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Barracuda stuff?
So some where in Canada a system that is using the barracuda software is blocking you. It could be that barracuda as evaluated the emails you are sending and decided it didn't like them for whatever reason. If that is the case then following the link they provided and appealing the listing should get you delisted. If it is just this 1 barracuda device then it might be the administrator at that site that has blocked, and appealing via the link they provide will probably do you no good. I know if I have to personally block a site it is generally for good reason, and I am a very hard person to convience to unblock one that I have manually blocked. I don't get what you mean by Somehow, it seems to be tracing beyond our SMTP host, finding our firewall, and then refusing the connection: The barracuda device is not tracing to or past anything on your network and then block the connection. All the barracuda device is doing is accepting your inital connection, then most likely doing a Reverse DNS lookup of your IP address and plugging in the fg400-1.calgaryzoo.ab.ca for the hostname, and since the barracuda database has 12.15.29.130 listed as an address not to allow message through for it kicks out the error 554 message. They are not doing anything funny to try and get by smtp host or firewall. -Mike - Original Message - From: richardmccl...@aspca.org To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Friday, April 17, 2009 10:27 AM Subject: Barracuda stuff? Greetings! Our Notes server is on a private network behind a firewall. A year or two ago, we found that spam filters were not able to get to our actual SMTP server, so most mail (including hundreds of medical case records) was bouncing. We contracted with Postini for hosted SMTP services... Somewhere in Canada, there is a Barracuda system blocking us. Somehow, it seems to be tracing beyond our SMTP host, finding our firewall, and then refusing the connection: Error transferring to OUTBOUNDS5.GA.OBSMTP.COM; SMTP Protocol Returned a Permanent Error 554 Service unavailable; Client host [fg400-1.calgaryzoo.ab.ca] blocked using Barracuda Reputation; http://bbl.barracudacentral.com/q.cgi?ip=12.15.29.130; This error is unique to this institution, and it is repeatable. I have followed the link and then made my appeal through that web site, but...??? -- Richard D. McClary Systems Administrator, Information Technology Group ASPCA® 1717 S. Philo Rd, Ste 36 Urbana, IL 61802 richardmccl...@aspca.org P: 217-337-9761 C: 217-417-1182 F: 217-337-9761 www.aspca.org The information contained in this e-mail, and any attachments hereto, is from The American Society for the Prevention of Cruelty to Animals® (ASPCA ®) and is intended only for use by the addressee(s) named herein and may contain legally privileged and/or confidential information. If you are not the intended recipient of this e-mail, you are hereby notified that any dissemination, distribution, copying or use of the contents of this e-mail, and any attachments hereto, is strictly prohibited. If you have received this e-mail in error, please immediately notify me by reply email and permanently delete the original and any copy of this e-mail and any printout thereof. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: OT Texas Hold'em Money on BB's
As with any BB application, if you use the desktop software to do a back of the device (or at least the Texas hold'em app) you should be able to restore it in full. - Original Message - From: Stefan Jafs [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Wednesday, October 15, 2008 4:47 PM Subject: OT Texas Hold'em Money on BB's Does anyone know how to save and restore the Texas Hold'em bankroll when a BB device is wiped or a new version installed? I have users that do not want to upgrade to 4.5 due to their large bank roll. I have done a backup in the desktop manager but I don't see a way to resort the Bank Roll. I know I'm just trying to be nice to my users! ___ Stefan Jafs This email and any attached files are confidential and intended solely for the intended recipient(s). If you are not the named recipient you should not read, distribute, copy or alter this email. Any views or opinions expressed in this email are those of the author and do not represent those of the Amico Corpoartion company. Warning: Although precautions have been taken to make sure no viruses are present in this email, the company cannot accept responsibility for any loss or damage that arise from the use of this email or attachments. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Postini RBL?
they use there own RBL to block balant spam (you can choose to enable this or not). IF you do, it gets blackholed. IF you don't then most of it ends up in the users quarantine. - Original Message - From: Roger Wright [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Friday, August 29, 2008 3:59 PM Subject: Postini RBL? For those of you using Postini for your mail filtering: Does Postini utilize RBL lists to drop connections, or is everything identified as spam moved to the quarantine? Roger Wright ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Perhaps a bit OT - mail bouncing
My first thoughts on this. 1. from the smtp server sending the emails can you do an NSLOOKUP (set type=mx) of company.com and see what it resolves to. 2. once you have the IP address can you TELNET to that ip address on port 25 (you should get a banner of some type). Almost willing to bet you won't get a banner at this stage. in most case REMOTE SYSTEM is no longer responding errors mean exactly that, the server did not respond to the original request for connection. in the case of a server not responding because of precevied bad MX records, or REVERSE DNS issues, the error message generally states that. I noticed from your header that you are using Notes as your mail client. Is the Sending SMTP server a Domino server? if so you can turn up the SMTP logging level on outbound mail to show the entire process from the DNS query for the MX record, to the handshake, to the message being delivered, and that should point you in the right direction as to where to look. (if you are using domino as the smtp server let me know, there are several other things you can check also). -Mike - Original Message - From: [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Tuesday, August 26, 2008 3:39 PM Subject: Perhaps a bit OT - mail bouncing Greetings! We are the mid-west office of the ASPCA (Illinois). Our HQ is in NYC. Our wires, DNS, etc are via ATT. Their wires, DNS, etc are through QualityTech. As NY is the parent office (to say nothing of older and bigger), the QualityTech system is the SOA for ASPCA.ORG. For the Illinois public addresses (including the IP address stamped onto all our outgoing email), we have NS records on the QualityTech system pointing our network (mwro.aspca.org) to the ATT name servers. All had been well the past several months... Last week, attempts to send mail to various corporations and educational institutions has been bouncing. The headers of our bounce notices say simply Failed to connect to SMTP host COMPANY.COM because: Remote system no longer responding One company told us it is because the IP address is not resolving properly... I have checked the DNS tables for QualityTech, and they do show mwro being delegated to a pair of ATT DNS servers. I have checked the DNS tables for ATT, and we do have records in both forward and reverse lookup zones (br.mwro.aspca.org - 12.15.29.130). Any ideas (while I wait and wait and wait to talk to ATT)? The Boss suggests the fix for last month's DNS Poisoning might have fixed things so that anything claiming to be from [anything].aspca.org must resolve to a QualityTech address and not to an ATT address. Still, I don't see that we can do much to fix this... We are considering using a VPN tunnel to try to use a NY machine as an outgoing SMTP server. What else might we try? Other folks experiencing this? Thanks! -- Richard McClary, Systems Administrator ASPCA Knowledge Management 1717 S Philo Rd, Ste 36, Urbana, IL 61802 217-337-9761 http://www.aspca.org ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/ ~
Re: Lotus Notes Help
any idea what version of notes the server is running? - Original Message - From: Bob Smith [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Tuesday, July 22, 2008 9:58 AM Subject: Lotus Notes Help Good morning, A little background, this company had a outside firm doing all their support and someone in that firm starting doing bad stuff like coping the a sql database filled with private info..long story short looks like they made have done some damage as well, The notes server is unable to start, it just says starting, no mail is moving so I copied, rename and backup the notes.ini file this morning and stripped out all but the first 4 line in notes.ini, I also renamed the names.nsf and bookmarks.nsf file and was able to get it start but and I notice in the task manager that the server configuration opens but I am not seeing it so I am assuming since I am connected to a terminal session it is probably opening on the console? How can I get to an administrative screen? Where can I get the admin client? Any tips/suggestions? Thanks for any assistance, Bob Smith ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~