Re: RESOLVED: Excel 2010 problem - can't quite figure it out

[Robert Cato]

That was a good hire and a big win for him on the first day.


On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff  wrote:

> The young pup whose first day was today opened it in compatibility
> mode, did a Save As and it worked, then closed Excel and tried it in
> native mode, and it worked again.
>
> Gotta love having a new set of eyes on a problem.
>
> Don't know what root cause was, but it's a win, and I'll take it.
>
> Kurt
>
> On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
>  wrote:
> > Have you tried starting Excel with no add-ins as well (safemode)?
>  Should be a /s on the command line.
> >
> >
> http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
> >
> > -Original Message-
> > From: Kurt Buff [mailto:kurt.b...@gmail.com]
> > Sent: Saturday, April 06, 2013 4:28 PM
> > To: NT System Admin Issues
> > Subject: Re: Excel 2010 problem - can't quite figure it out
> >
> > I will try that, and let you know on Monday.
> >
> > Kurt
> >
> > On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen 
> wrote:
> >> Book.xltx is the name of the template. The location should be in the
> >> XLSTART folder in Office. If not, then try this in VBE
> >> :
> >>
> >> Press [Alt]+[F11] to launch the VBE.
> >> If the Immediate window isn’t visible, press [Ctrl]+g.
> >> In the Immediate window, type ? application.StartupPath and press
> Enter. VBA will display the path to XLStart.
> >>
> >> -Original Message-
> >> From: Terry Dickson [mailto:te...@treasurer.state.ks.us]
> >> Sent: Saturday, April 06, 2013 2:07 PM
> >> To: NT System Admin Issues
> >> Subject: Re: Excel 2010 problem - can't quite figure it out
> >>
> >> I forget what it is called in 2010 but if you delete the default Excel
> Template and let Excel create a new one next time the user opens it.  We
> have not had this problem since 2007 but in 2003 it was common.  We would
> just delete the default and it would create a new one and the problem went
> away.
> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >>   ~
> >>
> >> ---
> >> To manage subscriptions click here:
> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> with the body: unsubscribe ntsysadmin
> >>
> >>
> >> -
> >> No virus found in this message.
> >> Checked by AVG - www.avg.com
> >> Version: 2013.0.3272 / Virus Database: 3162/6228 - Release Date:
> >> 04/06/13
> >>
> >>
> >> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >>   ~
> >>
> >> ---
> >> To manage subscriptions click here:
> >> http://lyris.sunbelt-software.com/read/my_forums/
> >> or send an email to listmana...@lyris.sunbeltsoftware.com
> >> with the body: unsubscribe ntsysadmin
> >>
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Keeping 550+ systems maintained

[Robert Cato]

In my experience the "Users are local admins." bullet is going to add to
the manpower hours. You probably already know this first hand and unable to
change it, but it does add to the manpower requirements.

We have roughly the same number of workstations, and our helpdesk breaks
down like this
1 FTE - Helpdesk level 1
3 FTE - Helpdesk level 2
3 FTE - Helpdesk level 3 / Server engineers (We have ~250 servers
test/dev/prod)

Robert


On Tue, Mar 12, 2013 at 10:39 AM, David Lum  wrote:

>  Scenario: 
>
> **· **550 Windows workstations, with 100+ of them remote. 
>
> **· **Active Directory (W2K8R2 and W2K3 DCs).
>
> **· **Windows 7 and Windows XP. 
>
> **· **Users are local admins. 
>
> **· **Some remote users VPN in daily, others only VPN in
> once/month, a few others almost never
>
> **· **30+ onsite users frequently jump between wired and wireless
> (in my experience this occasionally trips up DNS and thus management agents
> for a bit)
>
> **· **Systems are cycled out at the rate of about 30 machines
> every quarter (relevant because finding a noncompliant machine often means
> knows if a system has been decommissioned or not). Systems are not always
> immediately removed from AD for various reasons.
>
> ** **
>
> Task: Keep them up to date on anti-virus and patches, incl. 3rd party
> (Java/Adobe/Chrome/etc.). This includes coordinating (with select users)
> installing/testing the patches on their systems before full rollout to the
> rest of the org.
>
> ** **
>
> Is this enough info to give a SWAG for how many hours/week you would you
> tell management this would take? A rough number works.
>
> *David Lum*
> Sr. Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Handy Java website.

[Robert Cato]

My favorite thing about this site is that it uses three digit counter. I
guess there are optimists everywhere.

Robert


On Mon, Mar 4, 2013 at 1:42 PM, Kennedy, Jim
wrote:

>  Days since the last 0-day.
>
> ** **
>
> http://java-0day.com/
>
> ** **
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Semi-OT: Vsphere shutdown

[Robert Cato]

I would not put the hosts in maintenance mode.

You are correct, connect to the last host with the client directly. You
should keep track of which host has the VC and start that host up first,
connect using the client directly so you can start the VC.

Update your resume :)

On Fri, Mar 1, 2013 at 11:52 AM, Richard Stovall  wrote:

> In a few days time I will have to completely shutdown my datacenter for
> some electrical maintenance.  (Yes, I'm nervous.  It's been online non-stop
> for 6.5 years.)
>
> I have 3 Vsphere ESX 4.1 hosts that I need to shutdown along with
> everything else.  My vcenter server is virtualized.  Two questions:
>
> 1) Do I need to put the hosts into maintenance mode before powering them
> off?  All of the VMs will already be powered off.
>
> 1) I can poweroff two of the hosts using the vcenter client, but after I
> shutdown the vcenter VM how should I poweroff the final host?  Just connect
> the client directly to the host and shut it down that way?  I can't think
> why this wouldn't work.
>
> Thanks in advance,
> RS
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: VMWare snapshot issue

[Robert Cato]

I had this happen when using a VDR (vmware data recovery) appliance. I
would have to shut down the VDR appliance, create a snapshot from vcenter,
then choose delete all snapshots. It would take a significant amount of
time, but it worked.

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1019849

Robert


On Mon, Feb 4, 2013 at 12:05 PM, Damien Solodow  wrote:

>  But that doesn’t answer my question. You can’t delete the snapshots by
> browsing the datastore, but you can delete them via PowerCLI. This would
> allow you to delete the snapshots one or two at a time to try and
> workaround the issue since consolidate fails.
>
> ** **
>
> DAMIEN SOLODOW
>
> Systems Engineer
>
> 317.447.6033 (office)
>
> 317.447.6014 (fax)
>
> HARRISON COLLEGE
>
> ** **
>
> *From:* Tom Miller [mailto:tmil...@sfgtrust.com]
> *Sent:* Monday, February 04, 2013 11:59 AM
>
> *To:* NT System Admin Issues
> *Subject:* RE: VMWare snapshot issue
>
>  ** **
>
> I see them when I browse the datastore.  
>
> ** **
>
> *From:* Damien Solodow 
> [mailto:damien.solo...@harrison.edu]
>
> *Sent:* Monday, February 04, 2013 11:37 AM
> *To:* NT System Admin Issues
> *Subject:* RE: VMWare snapshot issue
>
> ** **
>
> Do you see the snapshots from PowerCLI?
>
> ** **
>
> DAMIEN SOLODOW
>
> Systems Engineer
>
> 317.447.6033 (office)
>
> 317.447.6014 (fax)
>
> HARRISON COLLEGE
>
> ** **
>
> *From:* Tom Miller [mailto:tmil...@sfgtrust.com ]
> *Sent:* Monday, February 04, 2013 11:30 AM
> *To:* NT System Admin Issues
> *Subject:* RE: VMWare snapshot issue
>
> ** **
>
> They don't appear in snapshot manager.  But I can select the consolidate
> option.  After an hour or so is when I get the input/output error.
>
> ** **
>
> *From:* Richard McClary 
> [mailto:richard.mccl...@aspca.org]
>
> *Sent:* Monday, February 04, 2013 11:11 AM
> *To:* NT System Admin Issues
> *Subject:* RE: VMWare snapshot issue
>
> ** **
>
> Have you started at the oldest snapshot and deleted (rather than
> consolidate)?   To delete each snapshot may take some time – perhaps hours!
> 
>
> ** **
>
> *From:* Tom Miller [mailto:tmil...@sfgtrust.com ]
> *Sent:* Monday, February 04, 2013 9:49 AM
> *To:* NT System Admin Issues
> *Subject:* VMWare snapshot issue
>
> ** **
>
> Hi Folks,
>
> ** **
>
> VMWare question for you VMWare gurus:  I'm running ESX 5.0, vShpere client
> 5.0.  I  have one server that has many snapshots.  It is probably because
> BackupExec wasn't able to delete the snaphot properly after the vm backup.
> This is only an issue on this server.  When I browse the datastore -->
> server name, I see at least 10 snapshots.  I've tried to consolidate the
> snapshots via the client, but each time I get an i/o error.  
>
> ** **
>
> Suggestions or is this a call to support?
>
> ** **
>
> Thanks,
>
> Tom
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ** **
>
>
> The information contained in this e-mail, and any attachments hereto, is
> from The American Society for the Prevention of Cruelty to Animals®
> (ASPCA®) and is intended only for use by the addressee(s) named herein and
> may contain legally privileged and/or confidential information. If you are
> not the intended recipient of this e-mail, you are hereby notified that any
> dissemination, distribution, copying or use of the contents of this e-mail,
> and any attachments hereto, is strictly prohibited. If you have received
> this e-mail in error, please immediately notify me by reply email and
> permanently delete the original and any copy of this e-mail and any
> printout thereof. 
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadm

Re: File Services Clustering in Server 2012

[Robert Cato]

Did you not license CIFS on the NetApp? Have you considered using the
NetApp as your file server? That is a far simpler and has several benefits
(de-duplication, snapshots, replication).

Robert


On Wed, Dec 5, 2012 at 5:16 PM, Patrick Hasenjager wrote:

> We want "services" clustering in addition to the hardware clustering
> already in our ESXi environment.
>
> >>> Ken Cornetet  12/5/2012 4:03 PM >>>
> Why in the world would you use a Microsoft cluster when you have the
> vastly superior and easier ESX clustering to provide failover?
>
> -Original Message-
> From: Patrick Hasenjager [mailto:phasenja...@kcumb.edu]
> Sent: Wednesday, December 05, 2012 4:33 PM
> To: NT System Admin Issues
> Subject: File Services Clustering in Server 2012
>
> We are just getting into clustering services, now that we have been
> allowed to purchase a SAN (we have only been asking for more years than I
> can count!).  I created a failover cluster in Server 2012 Standard and
> attached 4 nodes to it (all virtuals with VMware ESXi 5.1 - the same
> problem exists whether 1 node is connected or up to all 4).  They are
> connected to common LUNs on a NetApp appliance.
>
> Yesterday, everything went to hell.  It started off that I could not
> access one of the file shares and then two... then all 4 that we had
> configured.  Because this system was not yet being utilized for anyone
> other than myself, I decided to just recreate it.  Now that I have done
> that, I cannot configure any file shares.
>
> When I click the "Add File Share" to the cluster role (File Server), the
> "volumes" is blank and I cannot use the browse button.  I can type a path,
> but it states that it is not valid for the particular server.  According to
> the console, everything is "Running" and "Online."  I also cannot access
> the administrative share for the drive which is attached to the role.
>
> I am at a complete loss for ideas and Internet searches have turned up
> absolutely nothing regarding the problem I am having.  I'm sure I am
> missing something simple, but cannot come up with what that is.  Can anyone
> assist me?  Feel free to contact me off-list if it is more convenient.
>
>
>
> PATRICK HASENJAGER | Network Administrator Kansas City University of
> Medicine and Biosciences | Information Technology phone 816.654.7712 | fax
> 816.654.7701 email phasenja...@kcumb.edu |  www.kcumb.edu
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

I'm not familiar with all of the features of the product, that is handled
by the security team. They were on the phone with Symantec over 15 hours
straight. The two features I kept hearing coming up was Sonar and proactive
threat protection.

I had the exact same question about why it would quarantine files on other
machines where the hash did not change. Right now, the security team is
focusing on testing replacement products, so I have not been able to get
any specifics on what went wrong.

Robert


On Thu, Nov 8, 2012 at 8:41 PM, Ken Schaefer  wrote:

>  What setting is this? 
>
> ** **
>
> If it’s quarantined new files that have just been deployed, I’m surprised
> that it’s quarantining older files on other machines that would have a
> different signature.
>
> ** **
>
> Cheers****
>
> Ken
>
> ** **
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Friday, 9 November 2012 12:57 AM
> *To:* NT System Admin Issues
> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>
> ** **
>
>  
>
> Yep, all on its own. Granted this was based on setting that were made
> during installation, based on recommendations from the onstie Symantec
> vendor/engineer.
>
>  
>
> ** **
>
> On Thu, Nov 8, 2012 at 8:48 AM, Kennedy, Jim 
> wrote:
>
> “SEP quarantined the files and then went to all machines on the network
> and quarantined them on all machines…”
>
>  
>
> Holy smokes, it decided to do that on it’s own? And quarantined the
> machines that had NOT been updated yet?
>
>  
>
> So glad I don’t run AV.
>
>  
>
>  
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, November 08, 2012 8:45 AM
>
>
> *To:* NT System Admin Issues
>
> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>
>  
>
> Ken
>
>  
>
> These two updates were only installed on a couple of Win7 machines at
> most. They were approved during the day for install overnight, a couple of
> users saw the pop-up and installed. SEP quarantined the files and then went
> to all machines on the network and quarantined them on all machines (Win7,
> Vista, and XP).
>
>  
>
> It would be nice if we had a separate network, but I'm not sure that will
> get approved.
>
>  
>
> Robert
>
>  
>
> On Thu, Nov 8, 2012 at 6:41 AM, Ken Schaefer  wrote:
> 
>
> Even if you don’t have a separate network, you can create a separate group
> in WSUS, and put a test machine(s) with your SOE image in that group. ****
>
>  
>
> That would allow you to test patches prior to mass deployment. Checking
> for AV issues would be just one thing – I’d recommend that you have some
> test cases for all your important apps as well.
>
>  
>
> Cheers
>
> Ken
>
>  
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 9:48 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>
>  
>
> Ken,
>
>  
>
> That was my first question, but it is still unanswered. I am still new at
> this %dayjob%. 
>
>  
>
> In this case, the testing would have had to be done in a separate network,
> which I am fairly sure we don't have. I will take that suggestion to the
> table when we analyze the breakdowns of this incident.
>
>  
>
> Robert
>
>  
>
> On Wed, Nov 7, 2012 at 9:37 PM, Ken Schaefer  wrote:
> 
>
> No matter who you migrate to, you’ll also run into issues (false positives
> seem to occur all the time, with all vendors).
>
>  
>
> Did you test the patches before releasing to Production? Might be worth
> beefing up the testing regime.
>
>  
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 5:22 AM
> *To:* NT System Admin Issues
> *Subject:* Symantec %@(*&OI:TNGF(P*
>
>  
>
>  
>
> FYI
>
>  
>
> We approved two MS patches yesterday (KB2574819 KB2592687) in WSUS. One
> user installed the two updates in the afternoon and Symantec Endpoint
> Protection 12 with several advanced features enabled (threat protection,
> hurestics, SONAR, etc). SEP quarrantined 15 system files, run32.dll among
> them. The real problems started when SEP decided to quarantine the files
> across all ~600 workstations taking us completely offline.
>
>  
>
> The fix was to boot each workstation into safe mode and removing SEP.
>
>  
>
> It was a long night.
>
>  ***

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

We are in the first year, the ~$8K included ~$2K in annual maintenance.


On Thu, Nov 8, 2012 at 12:22 PM, Jonathan Link wrote:

> Excellent.  May I ask about your annual maintenance costs?
>
>
> On Thu, Nov 8, 2012 at 11:53 AM, Robert Cato wrote:
>
>> CheckPoint has a full disk encryption solution that has those features.
>> We purchased 100 seats for ~$80 a seat.
>>
>>
>> On Thu, Nov 8, 2012 at 11:40 AM, Jonathan Link 
>> wrote:
>>
>>> Do you have a suitable repalcement for PGP Whole Disk Encryption that
>>> includes centralized management and SSO capabilities?
>>>
>>>
>>> On Thu, Nov 8, 2012 at 11:32 AM, James Rankin wrote:
>>>
>>>> No, the first rule of Symantec is you don't use any of their products
>>>> :-)
>>>>
>>>>
>>>> On 8 November 2012 16:23, Steven Peck  wrote:
>>>>
>>>>> The first rule of Symantec is you don't talk about symantec
>>>>>
>>>>>
>>>>> On Thu, Nov 8, 2012 at 6:54 AM, Robert Cato wrote:
>>>>>
>>>>>>
>>>>>> It is SEP12, I'm sorry I do not know the definition file, that is
>>>>>> handled by the security group...and they don't really want to talk about
>>>>>> Symantec right now.
>>>>>>
>>>>>>
>>>>>>  On Thu, Nov 8, 2012 at 9:05 AM, Erik Goldoff wrote:
>>>>>>
>>>>>>>  curious, SEP 11 or 12, and what definitions when this happened ?
>>>>>>>
>>>>>>> Thanks
>>>>>>>
>>>>>>>  On Thu, Nov 8, 2012 at 8:57 AM, Robert Cato 
>>>>>>> wrote:
>>>>>>>
>>>>>>>>
>>>>>>>> Yep, all on its own. Granted this was based on setting that were
>>>>>>>> made during installation, based on recommendations from the onstie 
>>>>>>>> Symantec
>>>>>>>> vendor/engineer.
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>>  On Thu, Nov 8, 2012 at 8:48 AM, Kennedy, Jim <
>>>>>>>> kennedy...@elyriaschools.org> wrote:
>>>>>>>>
>>>>>>>>>   “SEP quarantined the files and then went to all machines on the
>>>>>>>>> network and quarantined them on all machines…”
>>>>>>>>>
>>>>>>>>> ** **
>>>>>>>>>
>>>>>>>>> Holy smokes, it decided to do that on it’s own? And quarantined
>>>>>>>>> the machines that had NOT been updated yet?
>>>>>>>>>
>>>>>>>>> ** **
>>>>>>>>>
>>>>>>>>> So glad I don’t run AV.
>>>>>>>>>
>>>>>>>>> ** **
>>>>>>>>>
>>>>>>>>> ** **
>>>>>>>>>
>>>>>>>>> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
>>>>>>>>> *Sent:* Thursday, November 08, 2012 8:45 AM
>>>>>>>>>
>>>>>>>>> *To:* NT System Admin Issues
>>>>>>>>> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>>>>>>>>>
>>>>>>>>>   ** **
>>>>>>>>>
>>>>>>>>> Ken
>>>>>>>>>
>>>>>>>>>  
>>>>>>>>>
>>>>>>>>> These two updates were only installed on a couple of Win7 machines
>>>>>>>>> at most. They were approved during the day for install overnight, a 
>>>>>>>>> couple
>>>>>>>>> of users saw the pop-up and installed. SEP quarantined the files and 
>>>>>>>>> then
>>>>>>>>> went to all machines on the network and quarantined them on all 
>>>>>>>>> machines
>>>>>>>>> (Win7, Vista, and XP).
>>>>>>>>>
>>>>>>>>>  
>>>>>>>>>
>>>>>>>>> It would be nice if we had a separate network, but I'm not sure
>>>>>>>>> that will get approved.
>>&g

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

CheckPoint has a full disk encryption solution that has those features. We
purchased 100 seats for ~$80 a seat.


On Thu, Nov 8, 2012 at 11:40 AM, Jonathan Link wrote:

> Do you have a suitable repalcement for PGP Whole Disk Encryption that
> includes centralized management and SSO capabilities?
>
>
> On Thu, Nov 8, 2012 at 11:32 AM, James Rankin wrote:
>
>> No, the first rule of Symantec is you don't use any of their products :-)
>>
>>
>> On 8 November 2012 16:23, Steven Peck  wrote:
>>
>>> The first rule of Symantec is you don't talk about symantec
>>>
>>>
>>> On Thu, Nov 8, 2012 at 6:54 AM, Robert Cato wrote:
>>>
>>>>
>>>> It is SEP12, I'm sorry I do not know the definition file, that is
>>>> handled by the security group...and they don't really want to talk about
>>>> Symantec right now.
>>>>
>>>>
>>>>  On Thu, Nov 8, 2012 at 9:05 AM, Erik Goldoff wrote:
>>>>
>>>>>  curious, SEP 11 or 12, and what definitions when this happened ?
>>>>>
>>>>> Thanks
>>>>>
>>>>>  On Thu, Nov 8, 2012 at 8:57 AM, Robert Cato wrote:
>>>>>
>>>>>>
>>>>>> Yep, all on its own. Granted this was based on setting that were made
>>>>>> during installation, based on recommendations from the onstie Symantec
>>>>>> vendor/engineer.
>>>>>>
>>>>>>
>>>>>>
>>>>>>  On Thu, Nov 8, 2012 at 8:48 AM, Kennedy, Jim <
>>>>>> kennedy...@elyriaschools.org> wrote:
>>>>>>
>>>>>>>   “SEP quarantined the files and then went to all machines on the
>>>>>>> network and quarantined them on all machines…”
>>>>>>>
>>>>>>> ** **
>>>>>>>
>>>>>>> Holy smokes, it decided to do that on it’s own? And quarantined the
>>>>>>> machines that had NOT been updated yet?
>>>>>>>
>>>>>>> ** **
>>>>>>>
>>>>>>> So glad I don’t run AV.
>>>>>>>
>>>>>>> ** **
>>>>>>>
>>>>>>> ** **
>>>>>>>
>>>>>>> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
>>>>>>> *Sent:* Thursday, November 08, 2012 8:45 AM
>>>>>>>
>>>>>>> *To:* NT System Admin Issues
>>>>>>> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>>>>>>>
>>>>>>>   ** **
>>>>>>>
>>>>>>> Ken
>>>>>>>
>>>>>>>  
>>>>>>>
>>>>>>> These two updates were only installed on a couple of Win7 machines
>>>>>>> at most. They were approved during the day for install overnight, a 
>>>>>>> couple
>>>>>>> of users saw the pop-up and installed. SEP quarantined the files and 
>>>>>>> then
>>>>>>> went to all machines on the network and quarantined them on all machines
>>>>>>> (Win7, Vista, and XP).
>>>>>>>
>>>>>>>  
>>>>>>>
>>>>>>> It would be nice if we had a separate network, but I'm not sure that
>>>>>>> will get approved.
>>>>>>>
>>>>>>>  
>>>>>>>
>>>>>>> Robert
>>>>>>>
>>>>>>> ** **
>>>>>>>
>>>>>>> On Thu, Nov 8, 2012 at 6:41 AM, Ken Schaefer 
>>>>>>> wrote:
>>>>>>>
>>>>>>> Even if you don’t have a separate network, you can create a separate
>>>>>>> group in WSUS, and put a test machine(s) with your SOE image in that 
>>>>>>> group.
>>>>>>> 
>>>>>>>
>>>>>>>  
>>>>>>>
>>>>>>> That would allow you to test patches prior to mass deployment.
>>>>>>> Checking for AV issues would be just one thing – I’d recommend that you
>>>>>>> have some test cases for all your important apps as well.
>>>>>>>
>>>>>>>  
>>>>>>&g

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

It is SEP12, I'm sorry I do not know the definition file, that is handled
by the security group...and they don't really want to talk about Symantec
right now.


On Thu, Nov 8, 2012 at 9:05 AM, Erik Goldoff  wrote:

> curious, SEP 11 or 12, and what definitions when this happened ?
>
> Thanks
>
> On Thu, Nov 8, 2012 at 8:57 AM, Robert Cato  wrote:
>
>>
>> Yep, all on its own. Granted this was based on setting that were made
>> during installation, based on recommendations from the onstie Symantec
>> vendor/engineer.
>>
>>
>>
>> On Thu, Nov 8, 2012 at 8:48 AM, Kennedy, Jim <
>> kennedy...@elyriaschools.org> wrote:
>>
>>>  “SEP quarantined the files and then went to all machines on the
>>> network and quarantined them on all machines…”
>>>
>>> ** **
>>>
>>> Holy smokes, it decided to do that on it’s own? And quarantined the
>>> machines that had NOT been updated yet?
>>>
>>> ** **
>>>
>>> So glad I don’t run AV.
>>>
>>> ** **
>>>
>>> ** **
>>>
>>> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
>>> *Sent:* Thursday, November 08, 2012 8:45 AM
>>>
>>> *To:* NT System Admin Issues
>>> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>>>
>>>  ** **
>>>
>>> Ken
>>>
>>>  
>>>
>>> These two updates were only installed on a couple of Win7 machines at
>>> most. They were approved during the day for install overnight, a couple of
>>> users saw the pop-up and installed. SEP quarantined the files and then went
>>> to all machines on the network and quarantined them on all machines (Win7,
>>> Vista, and XP).
>>>
>>>  
>>>
>>> It would be nice if we had a separate network, but I'm not sure that
>>> will get approved.
>>>
>>>  
>>>
>>> Robert
>>>
>>> ** **
>>>
>>> On Thu, Nov 8, 2012 at 6:41 AM, Ken Schaefer 
>>> wrote:
>>>
>>> Even if you don’t have a separate network, you can create a separate
>>> group in WSUS, and put a test machine(s) with your SOE image in that group.
>>> 
>>>
>>>  
>>>
>>> That would allow you to test patches prior to mass deployment. Checking
>>> for AV issues would be just one thing – I’d recommend that you have some
>>> test cases for all your important apps as well.
>>>
>>>  
>>>
>>> Cheers
>>>
>>> Ken
>>>
>>>  
>>>
>>> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
>>> *Sent:* Thursday, 8 November 2012 9:48 PM
>>> *To:* NT System Admin Issues
>>> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>>>
>>>  
>>>
>>> Ken,
>>>
>>>  
>>>
>>> That was my first question, but it is still unanswered. I am still new
>>> at this %dayjob%. 
>>>
>>>  
>>>
>>> In this case, the testing would have had to be done in a separate
>>> network, which I am fairly sure we don't have. I will take that suggestion
>>> to the table when we analyze the breakdowns of this incident.
>>>
>>>  
>>>
>>> Robert
>>>
>>>  
>>>
>>> On Wed, Nov 7, 2012 at 9:37 PM, Ken Schaefer 
>>> wrote:
>>>
>>> No matter who you migrate to, you’ll also run into issues (false
>>> positives seem to occur all the time, with all vendors).
>>>
>>>  
>>>
>>> Did you test the patches before releasing to Production? Might be worth
>>> beefing up the testing regime.
>>>
>>>  
>>>
>>> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
>>> *Sent:* Thursday, 8 November 2012 5:22 AM
>>> *To:* NT System Admin Issues
>>> *Subject:* Symantec %@(*&OI:TNGF(P*
>>>
>>>  
>>>
>>>  
>>>
>>> FYI
>>>
>>>  
>>>
>>> We approved two MS patches yesterday (KB2574819 KB2592687) in WSUS. One
>>> user installed the two updates in the afternoon and Symantec Endpoint
>>> Protection 12 with several advanced features enabled (threat protection,
>>> hurestics, SONAR, etc). SEP quarrantined 15 system files, run32.dll among
>>> them. The re

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

Yep, all on its own. Granted this was based on setting that were made
during installation, based on recommendations from the onstie Symantec
vendor/engineer.



On Thu, Nov 8, 2012 at 8:48 AM, Kennedy, Jim
wrote:

>  “SEP quarantined the files and then went to all machines on the network
> and quarantined them on all machines…”
>
> ** **
>
> Holy smokes, it decided to do that on it’s own? And quarantined the
> machines that had NOT been updated yet?
>
> ** **
>
> So glad I don’t run AV.
>
> ** **
>
> ** **
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, November 08, 2012 8:45 AM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>
> ** **
>
> Ken
>
>  
>
> These two updates were only installed on a couple of Win7 machines at
> most. They were approved during the day for install overnight, a couple of
> users saw the pop-up and installed. SEP quarantined the files and then went
> to all machines on the network and quarantined them on all machines (Win7,
> Vista, and XP).
>
>  
>
> It would be nice if we had a separate network, but I'm not sure that will
> get approved.
>
>  
>
> Robert
>
> ** **
>
> On Thu, Nov 8, 2012 at 6:41 AM, Ken Schaefer  wrote:
> 
>
> Even if you don’t have a separate network, you can create a separate group
> in WSUS, and put a test machine(s) with your SOE image in that group. 
>
>  
>
> That would allow you to test patches prior to mass deployment. Checking
> for AV issues would be just one thing – I’d recommend that you have some
> test cases for all your important apps as well.
>
>  
>
> Cheers
>
> Ken
>
>  
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 9:48 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>
>  
>
> Ken,
>
>  
>
> That was my first question, but it is still unanswered. I am still new at
> this %dayjob%. 
>
>  
>
> In this case, the testing would have had to be done in a separate network,
> which I am fairly sure we don't have. I will take that suggestion to the
> table when we analyze the breakdowns of this incident.
>
>  
>
> Robert
>
>  
>
> On Wed, Nov 7, 2012 at 9:37 PM, Ken Schaefer  wrote:
> 
>
> No matter who you migrate to, you’ll also run into issues (false positives
> seem to occur all the time, with all vendors).
>
>  
>
> Did you test the patches before releasing to Production? Might be worth
> beefing up the testing regime.
>
>  
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 5:22 AM
> *To:* NT System Admin Issues
> *Subject:* Symantec %@(*&OI:TNGF(P*
>
>  
>
>  
>
> FYI
>
>  
>
> We approved two MS patches yesterday (KB2574819 KB2592687) in WSUS. One
> user installed the two updates in the afternoon and Symantec Endpoint
> Protection 12 with several advanced features enabled (threat protection,
> hurestics, SONAR, etc). SEP quarrantined 15 system files, run32.dll among
> them. The real problems started when SEP decided to quarantine the files
> across all ~600 workstations taking us completely offline.
>
>  
>
> The fix was to boot each workstation into safe mode and removing SEP.
>
>  
>
> It was a long night.
>
>  
>
> The good news:
>
> None of the advanced features were enabled on the servers.
>
> We are migrating away from SEP as of this morning.
>
>  
>
> Robert
>
>  
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>  
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions clic

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

Ken

These two updates were only installed on a couple of Win7 machines at most.
They were approved during the day for install overnight, a couple of users
saw the pop-up and installed. SEP quarantined the files and then went to
all machines on the network and quarantined them on all machines (Win7,
Vista, and XP).

It would be nice if we had a separate network, but I'm not sure that will
get approved.

Robert


On Thu, Nov 8, 2012 at 6:41 AM, Ken Schaefer  wrote:

>  Even if you don’t have a separate network, you can create a separate
> group in WSUS, and put a test machine(s) with your SOE image in that group.
> 
>
> ** **
>
> That would allow you to test patches prior to mass deployment. Checking
> for AV issues would be just one thing – I’d recommend that you have some
> test cases for all your important apps as well.
>
> ** **
>
> Cheers****
>
> Ken
>
> ** **
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 9:48 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Symantec %@(*&OI:TNGF(P*
>
> ** **
>
> Ken,
>
>  
>
> That was my first question, but it is still unanswered. I am still new at
> this %dayjob%. 
>
>  
>
> In this case, the testing would have had to be done in a separate network,
> which I am fairly sure we don't have. I will take that suggestion to the
> table when we analyze the breakdowns of this incident.
>
>  
>
> Robert
>
> ** **
>
> On Wed, Nov 7, 2012 at 9:37 PM, Ken Schaefer  wrote:
> 
>
> No matter who you migrate to, you’ll also run into issues (false positives
> seem to occur all the time, with all vendors).
>
>  
>
> Did you test the patches before releasing to Production? Might be worth
> beefing up the testing regime.
>
>  
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 5:22 AM
> *To:* NT System Admin Issues
> *Subject:* Symantec %@(*&OI:TNGF(P*
>
>  
>
>  
>
> FYI
>
>  
>
> We approved two MS patches yesterday (KB2574819 KB2592687) in WSUS. One
> user installed the two updates in the afternoon and Symantec Endpoint
> Protection 12 with several advanced features enabled (threat protection,
> hurestics, SONAR, etc). SEP quarrantined 15 system files, run32.dll among
> them. The real problems started when SEP decided to quarantine the files
> across all ~600 workstations taking us completely offline.
>
>  
>
> The fix was to boot each workstation into safe mode and removing SEP.
>
>  
>
> It was a long night.
>
>  
>
> The good news:
>
> None of the advanced features were enabled on the servers.
>
> We are migrating away from SEP as of this morning.
>
>  
>
> Robert
>
>  
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

ntsysadmin@lyris.sunbelt-software.com

[Robert Cato]

Ken,

That was my first question, but it is still unanswered. I am still new at
this %dayjob%.

In this case, the testing would have had to be done in a separate network,
which I am fairly sure we don't have. I will take that suggestion to the
table when we analyze the breakdowns of this incident.

Robert


On Wed, Nov 7, 2012 at 9:37 PM, Ken Schaefer  wrote:

>  No matter who you migrate to, you’ll also run into issues (false
> positives seem to occur all the time, with all vendors).
>
> ** **
>
> Did you test the patches before releasing to Production? Might be worth
> beefing up the testing regime.****
>
> ** **
>
> *From:* Robert Cato [mailto:cato.rob...@gmail.com]
> *Sent:* Thursday, 8 November 2012 5:22 AM
> *To:* NT System Admin Issues
> *Subject:* Symantec %@(*&OI:TNGF(P*
>
> ** **
>
>  
>
> FYI
>
>  
>
> We approved two MS patches yesterday (KB2574819 KB2592687) in WSUS. One
> user installed the two updates in the afternoon and Symantec Endpoint
> Protection 12 with several advanced features enabled (threat protection,
> hurestics, SONAR, etc). SEP quarrantined 15 system files, run32.dll among
> them. The real problems started when SEP decided to quarantine the files
> across all ~600 workstations taking us completely offline.
>
>  
>
> The fix was to boot each workstation into safe mode and removing SEP.
>
>  
>
> It was a long night.
>
>  
>
> The good news:
>
> None of the advanced features were enabled on the servers.
>
> We are migrating away from SEP as of this morning.
>
>  
>
> Robert
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: recommendations for Bluetooth stereo headset that multi-pairs and is not an earbud?

[Robert Cato]

I have a set of these LG-700 (<$50 from Amazon). They are really nice. I
have never tried pairing with more than one device. They do get
uncomfortable after a long time, but less than other earbuds I have used.

Robert

On Mon, Jul 9, 2012 at 7:59 PM, Steven M. Caesare wrote:

> I have a Motorola S10... I like the build quality, and sound is
> reasonably good, but after a while the earbuds hurt my ears. They, as an
> endpoint, can be the target of multiple devices.
>
> I'm considering trying these, based on a recommendation I got:
>
> http://www.meritline.com/lg-hbs-700-wireless-stereo-bluetooth-headset-lg
> sgbs0005201---p-77447.aspx
>
> -sc
>
> > -Original Message-
> > From: Michael Leone [mailto:oozerd...@gmail.com]
> > Sent: Monday, July 09, 2012 6:12 PM
> > To: NT System Admin Issues
> > Subject: OT: recommendations for Bluetooth stereo headset that
> multi-pairs and is not an earbud?
> >
> > Lot of conditions, I know. :-) But I'm looking for a *stereo* BT
> headset, that I can pair with both my Android phone and my
> > iPad2.
> > (most of the time I will be listening to music through it, but if a
> call comes in on the Android phone, I want to be able to take
> > it directly. I've read reviews of many, but they either don't mention
> whether the headset will pair with more than one
> > device (obviously not at the same time :-) without deleting the
> pairing on one device, or say that it will only pair with one
> > device. To narrow it down even further, I dislike earbuds, and so
> would prefer over-the-ear style (altho I will take earbuds,
> > if that is all that meets the 2 important requirements (stereo, and
> multi-pairing).
> >
> > Thanks, and sorry for the silly questions. I have a friend who really
> likes a Jaybird model with his Iphone ... but it's earbuds.
> > Another really likes his Motorola S10 .. again, earbuds (and
> supposedly, not good sound).
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>  > Enterprise/>  ~
> >
> > ---
> > To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Is it just me (KB2282241,KB2275950...)

[Robert Cato]

Dead for me also, from FL.

On Tue, Jun 19, 2012 at 5:25 PM, David Lum  wrote:

> I can’t view any of these KB articles, from two different networks I get
> failures:
>
> KB946405
> http://support.microsoft.com/kb/946405
>
> ** **
>
> KB942564
> http://support.microsoft.com/kb/942564
>
> ** **
>
> KB2275950
> http://support.microsoft.com/kb/2275950
>
> ** **
>
> KB2282241
> http://support.microsoft.com/kb/228224
>
> *David Lum*
> Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764 
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Content Filter for Dual Networks

[Robert Cato]

We were looking to do the same thing for a lab network that we have...until
business direction changed.

I was looking at an iPrisim box, they said it would do it and they were
about to send me a demo box so I could confirm before the purchase. I
suggest you give them a call. I had used them for a single network 10+
years ago and it was a real good box.

Robert

On Wed, Apr 18, 2012 at 3:23 PM, Matthew W. Ross
wrote:

> We are currently using Lightspeed System's Total Traffic Control. I'm not
> in love with the product, but it has a lot of good features.
>
> We have the option of moving to Lightspeed's new appliance (We are
> currently running TTC on a windows server), which would be an $6000-$7000
> investment. The salesman says he thinks it can do what I want it to do, but
> what a salesman says, I can't currently verify.
>
> For due-diligence, I'm looking for other solutions to compare. I was
> hoping to hear from the list if there were others who were doing something
> simular to my proposed "Dual Network setup.
>
> Thanks in advance.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: Micheal Espinola Jr
> [mailto:michealespin...@gmail.com]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Wed, 18 Apr 2012
> 11:49:00 -0700
> Subject: Re: Content Filter for Dual Networks
>
>
> > Please define what you are looking for in a content filter, and your
> price
> > range.  There are many devices that support multiple WAN ports that
> provide
> > different levels of content filtering at different price ranges.
> >
> > --
> > Espi
> >
> >
> >
> >
> > On Wed, Apr 18, 2012 at 10:34 AM, Matthew W. Ross
> > wrote:
> >
> > > **
> > > Hey List.
> > >
> > > I'm curious if anybody here knows of a content filtering system that is
> > > able to handle two networks simultaneously.
> > >
> > > What I'm looking for: We have a "School" network, which should be for
> all
> > > computes that are owned by the school. We are working to implement a
> > > wireless "Guest" network. I want this network to be completely separate
> > > from the school network, including what internet ISP they are going to
> > use.
> > >
> > > I know I could do this by using 2 separate content filters. I'm
> interested
> > > to see if there is a solution that can do it with a single device. I
> want
> > > to be able to manage/search the content filter on both networks.
> > >
> > > So in the end, I'm looking for something like this:
> > >
> > > ISP1 ---  --- Guest Network
> > >
> > > + Filter +
> > >
> > > ISP2 ---  --- School Network
> > >
> > > --Matt Ross
> > > Ephrata School District
> > >
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > > ~   ~
> > >
> > > ---
> > > To manage subscriptions click here:
> > > http://lyris.sunbelt-software.com/read/my_forums/
> > > or send an email to listmana...@lyris.sunbeltsoftware.com
> > > with the body: unsubscribe ntsysadmin
> > >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
> > ---
> > To manage subscriptions click here:
> > http://lyris.sunbelt-software.com/read/my_forums/
> > or send an email to listmana...@lyris.sunbeltsoftware.com
> > with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Hooray, I'm moving to VMware!

[Robert Cato]

I like my VDR appliances. I had some trouble with the 2.x, it kept
corrupting the backup desinations. I have rolled back to v1.2 and all is
good. They will lock-up occasionally, but a hard bounce will fix it
usually. I have had to re-deploy the appliance on occasion.

Robert

On Fri, Apr 13, 2012 at 3:47 PM, John Cook  wrote:

> I think he meant how are you going to backup your VMDK files.
> Read this
> http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1016407
>
>  John W. Cook
> Network Operations Manager
> Partnership For Strong Families
> 5950 NW 1st Place
> Gainesville, Fl 32607
> Office (352) 244-1610
> Cell (352) 215-6944
> MCSE, MCP+I, MCTS, CompTIA A+, N+, VSP4, VTSP4
>
>
> -Original Message-
> From: David Mazzaccaro [mailto:david.mazzacc...@hudsonmobility.com]
> Sent: Friday, April 13, 2012 3:45 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> I assume I will back up to tape?
>
>
> -Original Message-
> From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
> Sent: Friday, April 13, 2012 3:29 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> What are you doing to backup your VM's?
> 
> From: David Mazzaccaro [david.mazzacc...@hudsonmobility.com]
> Sent: 13 April 2012 8:06 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> Wow. This is perfect.
> You probably just saved me some serious coin.
> Thank you!!!
>
>
> -Original Message-
> From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
> Sent: Friday, April 13, 2012 2:45 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> vSphere will see all the RAM, but the amount you'll be able to use
> (assuming vSphere 5) is licensed/controlled by your vRAM entitlement.
>
> It's one of the biggest and most contentious changes moving from 4.1 to 5.
>
> Here's VMware's licensing paper which lists it in all its glorious
> detail:
>
> http://www.vmware.com/files/pdf/vsphere_pricing.pdf
>
> So in a nutshell, yes, you'll have almost 600gb of RAM but will only be
> able to use 1/3rd of it without ponying up for more licenses.  Nice eh?!
> 
> From: David Mazzaccaro [david.mazzacc...@hudsonmobility.com]
> Sent: 13 April 2012 7:26 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> So, even though I will have 588GB of RAM across all 3 hosts, VMware is
> only going to see and utilize 192GB?
> 
>
>
>
>
> -Original Message-
> From: Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
> Sent: Friday, April 13, 2012 2:05 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> OK one more thing:
>
> vSphere Essentials Plus gives you 6 socket licenses for vSphere Standard.
>
> Each license gives you 32gb of vRAM entitlement.
>
> 6 x 32 = 192gb vRAM across all three hosts.
>
> So 196gb per host seems slightly excessive (consider we can and
> occasionally do run around 50 VM's on one host with 144gb).
> 
> From: David Mazzaccaro [david.mazzacc...@hudsonmobility.com]
> Sent: 13 April 2012 5:54 PM
> To: NT System Admin Issues
> Subject: RE: Hooray, I'm moving to VMware!
>
> LOL
> Yes, that is per host.. and it is HP memory (hence the premium)
>
>
> -Original Message-
> From: Matthew W. Ross [mailto:mr...@ephrataschools.org]
> Sent: Friday, April 13, 2012 12:42 PM
> To: NT System Admin Issues
> Subject: Re: Hooray, I'm moving to VMware!
>
> I'm a penny-pincher, and I saw a only one thing that really stuck out...
>
> > 196 G RAM <- this was $45k alone
>
> Ouch! Is that 196 Gig per computer, or total for the 3 servers? Even if
> it's 196 per computer, Crucial can get you that much ram for $8100... As
> long as I'm looking at the right memory.
>
> http://www.crucial.com/store/listparts.aspx?model=ProLiant%20DL380%20G7&;
> Cat=RAM
> 48GB Kit - ($899.99 each) * 3 for each server ($2699.97) * 3 servers =
> $8099.91
>
> Hey, I just saved you $36k! Can I get a commission for that?
> Sm:)e.
>
>
> --Matt Ross
> Ephrata School District
>
>
> - Original Message -
> From: David Mazzaccaro
> [mailto:david.mazzacc...@hudsonmobility.com]
> To: NT System Admin Issues
> [mailto:ntsysadmin@lyris.sunbelt-software.com]
> Sent: Fri, 13 Apr 2012
> 08:38:47 -0700
> Subject: Hooray, I'm moving to VMware!
>
>
> > Just got the ok to move forward with VMware/Citrix/Domain upgrade.
> > I have 10 physical servers, and it looks like this will be the
> solution:
> >
> > 3 hosts: ($21k each)
> > HP DL380 G7 E5660
> > Pair of 146 15k drives mirrored
> > 196 G RAM <- this was $45k alone
> > Quad port gig adapter
> >
> > 2 Switches: ($1,800 each)
> > HP 2910
> >
> > 1 SAN ($22,700)
> > NetApp 2240
> > 12 x 600GB
> >
> > VSphere Essentials Plus ($5,200)
> >
> > 6 Windows licenses ($13,600):
> > Server 2008 Datacenter
> >
> > Windows/X

Re: New to virtualization

[Robert Cato]

We priced NetApp and EMC a couple of years back and they were very close in
price, but NetApp had better features.

The features we found valueable were:
Hybrid - SAN and NAS in one box. Using it as our file server.
Deduplication - We are getting over 40% space savings on file server files
and 70% on virtual machine files (VMware)
Replication - Only block level changes get pushed over the wire.
Backups - SMVI (snap manager for virtual infrastructure) is fantastic.
Takes snapshot of the VM, takes snapshot of the storage, then rolls back
the vm snapshot. Takes maybe 20 minutes for ~25 servers. You can then do a
restore or just mount the backup and extract single file(s).

I have not looked at the EMC offerings in a while, maybe they offer similar
features now.

Robert
On Tue, Apr 3, 2012 at 2:17 PM, Chinnery, Paul  wrote:

> Why did you choose Netapp?  I'm looking to budget for a replacement SAN in
> the next or so.  Currently, we're using a EMC CX500.
> We're also looking into VDI, which would necessitate a new SAN due to my
> CX500 basically being maxed out on drives.  I've got a price on an EMC
> VNX5300 but the consultant said he could also price out a Netapp.  (I've
> also heard some good things about Dell's Compellent line.)
>
> ** **
>
> *From:* Stefan Jafs [mailto:stefan.j...@gmail.com]
> *Sent:* Tuesday, April 03, 2012 1:43 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: New to virtualization
>
> ** **
>
> I'm just in the middle up upgrading from an 4 year old HP EVA 4000 to an
> $130k NetApp solution, this includes 2 new DL380 G7 192 GB of ram dual
> X5650 processors and yes no HD’s just SD for the VMware. AI also got 2
> NetApp shelves FAS-2240 production with 24 * 600GB Drives and the DR with
> 24 * 1Tb drives and an HP Tape loader including installation and setup
> services but I’m re-using my fibe switches and also re-using older ML370
> for my DR. DE duplication has already given me back 1.3Tb and counting.***
> *
>
>  
>
> I’m very impressed.
>
> Stefan
>
> ** **
>
> On Tue, Apr 3, 2012 at 12:50 PM, David Mazzaccaro <
> david.mazzacc...@hudsonmobility.com> wrote:
>
> I am still researching and meeting w/ vendors.
>
> One thing that has just come up w/ a particular vendor.
>
> They are telling me that they would put in 3 hosts, w/ no hard drives and
> that VMware would run off a USB stick???
>
> This sounds pretty cheesy to me… is this common practice?
>
> What are the pros/cons to USB stick vs a pair of mirrored drives on the
> hosts?
>
>  
>
>  
>
>  
>
> *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
> *Sent:* Thursday, March 15, 2012 10:44 AM
> *To:* NT System Admin Issues
> *Subject:* RE: New to virtualization
>
>  
>
> The reality here is that you’re not going to spend $130k on a
> virtualisation solution and *not* want to add more VM’s,
>
>  
>
> Honestly, just add DataCenter from the get-go – you’ll make use of it I
> guarantee it.
>
>  
>
> *From:* Jonathan Link 
> [mailto:jonathan.l...@gmail.com]
>
> *Sent:* 15 March 2012 14:03
> *To:* NT System Admin Issues
> *Subject:* Re: New to virtualization
>
>  
>
> I admit it was a while back, it may have changed, or my understanding was
> incorrect.  Or someone told me that and I read it that way.  In any event,
> I think 12 total servers for his environment may be a bit low...  Or it may
> not be.  With Datacenter licensing, if he loses a host, he can move the
> guests to the other machines and do some back of the hand guestimate based
> on load balancing not licensing.
>
>
>
>  
>
> On Wed, Mar 14, 2012 at 10:51 PM, Ken Schaefer 
> wrote:
>
> No this is incorrect. Check the Microsoft Windows Server licensing guide:*
> ***
>
>
> http://download.microsoft.com/download/0/D/9/0D9DDF52-A855-487B-9B74-5A09A9389551/Windows%20Server%20System%20Center%20and%20Forefront%20Pricing%20and%20Licensing%20Guide.pdf
> 
>
>  
>
> You can move individual VOSE licenses between Enterprise Hosts, provided
> that no host ends up exceeding the 1 POSE + 4 VOSE limit per enterprise
> license. For more than 4 VOSEs on a physical host, you need 2 (or more)
> enterprise licenses.
>
>  
>
> Check out page 8 on the document above – has this exact example in a
> diagram.
>
>  
>
> Cheers
>
> Ken
>
>  
>
> *From:* Jonathan Link [mailto:jonathan.l...@gmail.com]
> *Sent:* Thursday, 15 March 2012 1:24 AM
>
>
> *To:* NT System Admin Issues
>
> *Subject:* Re: New to virtualization
>
>  
>
> It's even a more (unenforcebly) stringent than that.  If you run 4 VMs on
> 3 hosts with enterprise server on each host, you power down two and do a
> switch, you're in a licensing violation situation.  Technically, you have
> to move all 3 from one host to another.  So single licensing or Datacenter,
> or some oddball combination of single licenses and enterprise
> licenses (DAMHIKT).
>
>  
>
> Someone correct me if 

Re: OT - ugh!

[Robert Cato]

I do not agree with the mentality, but I have heard the argument: "If they
were any good, they would be changing jobs every 2-5 years to expand their
skills". Depending on the environment, most companies change (refresh
technology) every 2-5 years so that would force some expansion of skills.
Another scenario is that you started in one role and changed your role,
probably more than once in that 15 years.

Sorry for the bad news, hopefully you will find something.

Robert

On Wed, Feb 1, 2012 at 6:19 PM, Jacob Kisner  wrote:

> Nothing sucks more than being interviewed for a position at a
> different company last Tuesday, then being called Thursday to say we
> are going to offer you a position and finally being told today that we
> changed our mind... "We did not realize you were with the same company
> for 15 years..."  WTF?
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: did i screw up? need to fix fast.

[Robert Cato]

Nice.

This free tool is great for keeping up with all kinds of things in a vmware
environment. I run it from my Win7 workstation.
http://www.robware.net/

Robert

On Sat, Jan 21, 2012 at 9:42 AM, Paul Hutchings
wrote:

> I've found this command to be very useful for monitoring snapshot deletion
> as the VI Client basically lies:
>
> watch "ls -luth *.vmdk"
>
> -Original Message-
> From: Martin Blackstone [mailto:mblackst...@gmail.com]
> Sent: 21 January 2012 13:46
> To: NT System Admin Issues
> Subject: RE: did i screw up? need to fix fast.
>
> This is something that bugs about ESX. Once it gets to 99% it may sit
> there for hours depending on the size of the snapshot. You never know how
> long it will take.
>
> -Original Message-
> From: Rankin, James R [mailto:kz2...@googlemail.com]
> Sent: Friday, January 20, 2012 2:11 PM
> To: NT System Admin Issues
> Subject: Re: did i screw up? need to fix fast.
>
> I once saw an exchange server that took about two hours after reaching 99
> per cent deleting a snapshot --Original Message--
> From: WJH
> To: NT System Admin Issues
> ReplyTo: NT System Admin Issues
> Subject: RE: did i screw up? need to fix fast.
> Sent: 20 Jan 2012 21:24
>
> i did delete it using esxi.  removing snapshot task has been sitting on
> 99% for about 5 minutes now.
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> Sent from my SR-71 Blackbird
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <
> http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> --
> MIRA Ltd
>
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
> Registered in England and Wales No. 402570
> VAT Registration  GB 100 1464 84
>
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: GPO reset of local non-builtin accounts

[Robert Cato]

The SID is the same for the built-in local administrator account, even if it is 
renamed. It is best to rename and disable the account if possible. These steps 
are like any security implementation (lock), they keep the honest people 
honest. 

Robert

On Jan 5, 2012, at 9:54 AM, Cameron  wrote:

> Re #2why would you disable the local admin account and create a new one 
> instead of just renaming the local admin account?
> 
> 
>  
> On Wed, Jan 4, 2012 at 6:04 PM, James Hill  wrote:
> 1.   You’d still have a local admin account.  I prefer to used restricted 
> groups GPO so that it forces the local admin memberships.
> 
> 2.   Yes, not sure how really effective it is though apart from being one 
> more step to take when attempting a breach.
> 
>  
> 
> From: David Lum [mailto:david@nwea.org] 
> Sent: Thursday, 5 January 2012 8:18 AM
> 
> 
> To: NT System Admin Issues
> Subject: RE: GPO reset of local non-builtin accounts
>  
> 
> Good suggestion. Questions:
> 1. If you need to log on locally and the domain is unavailable (it happens), 
> how do you log in?
> 
> 2. Isn’t it best practice to disable the builtin admin account and use a new 
> local admin account with a different name?
> 
>  
> 
> IIRC #2 was suggested practice years ago (I can’t remember from where).
> 
>  
> 
> Dave
> 
>  
> 
> From: ed ziots [mailto:ezi...@hotmail.com] 
> Sent: Wednesday, January 04, 2012 1:37 PM
> To: NT System Admin Issues
> Subject: RE: GPO reset of local non-builtin accounts
> 
>  
> 
> You can use cusrmgr.exe from the Windows 2000 Resource kit tools to script 
> out the GPO changes. 
>  
> Better yet, as mentioned earlier it would be best to control who is in your 
> local administrators to domain based accounts that are added by GPO/GPP and 
> remove any others from those privileged groups. 
>  
> HTH, 
>  
> Sincerely,
> EZ
> 
> Edward E. Ziots 
> Senior Informational Security Engineer
> CISSP,Security +,Network+ 
> 
>  
> 
> > From: kennedy...@elyriaschools.org
> > To: ntsysadmin@lyris.sunbelt-software.com
> > Date: Wed, 4 Jan 2012 13:39:08 -0500
> > Subject: RE: GPO reset of local non-builtin accounts
> > 
> > Then convert it to an exe or encrypt it to help keep prying eyes out of it.
> > 
> > http://www.abyssmedia.com/quickbfc/
> > 
> > 
> > -Original Message-
> > From: Matthew W. Ross [mailto:mr...@ephrataschools.org] 
> > Sent: Wednesday, January 04, 2012 1:37 PM
> > To: NT System Admin Issues
> > Subject: RE: GPO reset of local non-builtin accounts
> > 
> > Try:
> > 
> > net user localuser n3wP@ssw0rd
> > 
> > 
> > --Matt Ross
> > Ephrata School District
> > 
> > 
> > - Original Message -
> > From: David Lum
> > [mailto:david@nwea.org]
> > To: NT System Admin Issues
> > [mailto:ntsysadmin@lyris.sunbelt-software.com]
> > Sent: Wed, 04 Jan 2012
> > 10:27:38 -0800
> > Subject: RE: GPO reset of local non-builtin accounts
> > 
> > 
> > > Ohh..do tell - have a script handy that I can modify?
> > > 
> > > From: Michael B. Smith [mailto:mich...@smithcons.com]
> > > Sent: Wednesday, January 04, 2012 10:21 AM
> > > To: NT System Admin Issues
> > > Subject: RE: GPO reset of local non-builtin accounts
> > > 
> > > Startup/boot script?
> > > 
> > > Regards,
> > > 
> > > Michael B. Smith
> > > Consultant and Exchange MVP
> > > http://TheEssentialExchange.com
> > > 
> > > From: David Lum
> > > [mailto:david@nwea.org]
> > > Sent: Wednesday, January 04, 2012 1:14 PM
> > > To: NT System Admin Issues
> > > Subject: GPO reset of local non-builtin accounts
> > > 
> > > Is there a way to GPO a password change of added-in local machine 
> > > accounts if the account is the same across all systems? I can do it 
> > > easily enough with the BuiltIn ones, but see no GPO way to do added ones.
> > > David Lum
> > > Systems Engineer // NWEATM
> > > Office 503.548.5229 // Cell (voice/text) 503.267.9764
> > > 
> > > 
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
> > >  ~
> > > 
> > > ---
> > > To manage subscriptions click here:
> > > http://lyris.sunbelt-software.com/read/my_forums/
> > > or send an email to
> > > listmana...@lyris.sunbeltsoftware.com > > software.com>
> > > with the body: unsubscribe ntsysadmin
> > > 
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
> > >  ~
> > > 
> > > ---
> > > To manage subscriptions click here:
> > > http://lyris.sunbelt-software.com/read/my_forums/
> > > or send an email to
> > > listmana...@lyris.sunbeltsoftware.com > > software.com>
> > > with the body: unsubscribe ntsysadmin
> > > 
> > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ 
> > >  ~
> > > 
> > > ---
> > > To manage subscriptions click here:

Re: Sharepoint as file storage

[Robert Cato]

We ran into several issues when one PHB wanted this:

File size limitation. Default size limit is 50mb for SharePoint. This can
be modified, but we did not.

File type exclusion. There is a laundry list of file types that are
prohibited from SP by default. This can be modified, and we did allow some.

Special characters. There are several characters that are not allowed in
file/folder names. This can not be modified.

URL length. We found out that SP would allow you to upload files/folders in
excess of the 400 character limit, but then the files/folders become
inaccessible due to URL being too long. The fix was to browse a lower level
folder and reduce the character count.

Robert

On Mon, Nov 28, 2011 at 12:06 PM, David Lum  wrote:

>  Last week I found out my director has told her team to put all
> files/documents into Sharepoint instead of a network folder – basically
> stop using the shared drive and use Sharepoint instead, for ALL MS Office
> documents that are to be shared.
>
> ** **
>
> This seems like a bad idea but I cannot articulate why. From a
> technological standpoint it seems crazy to store everything into a SQL
> database, but from a user standpoint…?
>
> *David Lum*
> Systems Engineer // NWEATM
> Office 503.548.5229 //* *Cell (voice/text) 503.267.9764
>
> ** **
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Query re Virtual CPUs

[Robert Cato]

I setup a WSS3 (previous version) single server farm using the included MSDE
database. I had no budget and used VMware Server on a Windows 2003 build,
8GB RAM, and 5 146G drives in a Raid5 setup. I had a couple of low use (WSUS
and DPM) VMs on the host also. The WSS VM only had 1G of RAM, single
vCPU, and the site grew to over 40GB in size. This was supporting probably
40 sharepoint users. When I got budget, we did a complete infrastructure
upgrade. The WSS database was put into a MOSS 2007 farm with separate front
end, clustered SQL running on SAS SAN drives, and index server. I can tell
you that performance only improved marginally.

I would allocate 4-6GB and then move up only if performance dictated.

Robert

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: PMI PMP Certification

[Robert Cato]

I thought it was 10,000...

A good start.

On Mon, Aug 1, 2011 at 5:57 PM, John Cook  wrote:

> What do you call 100 lawyers on the bottom of the ocean?
> John W. Cook
> Systems Administrator
> Partnership for Strong Families
>
> - Original Message -
> From: Ben Scott 
> To: NT System Admin Issues 
> Sent: Mon Aug 01 17:54:35 2011
> Subject: Re: PMI PMP Certification
>
> On Mon, Aug 1, 2011 at 5:42 PM, John Cook  wrote:
> > You should NEVER use the words honest and lawyer in the same sentence!
>
>  I thought lawyers were like politicians -- the ones on your payroll
> are the ones you like.
>
>  ;-)
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
> attached to or with this Notice is intended only for the person or entity to
> which it is addressed and may contain Protected Health Information (PHI),
> confidential and/or privileged material. Any review, transmission,
> dissemination, or other use of, and taking any action in reliance upon this
> information by persons or entities other than the intended recipient without
> the express written consent of the sender are prohibited. This information
> may be protected by the Health Insurance Portability and Accountability Act
> of 1996 (HIPAA), and other Federal and Florida laws. Improper or
> unauthorized use or disclosure of this information could result in civil
> and/or criminal penalties.
>  Consider the environment. Please don't print this e-mail unless you really
> need to.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Is anyone else seeing MSNBC being down?

[Robert Cato]

I had to use www to get the site to load from FL.

On Mon, Jul 11, 2011 at 8:41 AM, Ziots, Edward  wrote:

>  Anyone seeing that MSNBC is down?
>
> ** **
>
> Getting the page can’t be displayed here. 
>
> ** **
>
> Z
>
> ** **
>
> Edward E. Ziots
>
> CISSP, Network +, Security +
>
> Security Engineer
>
> Lifespan Organization
>
> Email:ezi...@lifespan.org
>
> Cell:401-639-3505
>
> [image: CISSP_logo]
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin<>

Re: Previous Version snapshots causing locked files

[Robert Cato]

Is this file server underlying location on a SAN? If so, what brand?

Robert

On Fri, Jun 3, 2011 at 3:48 AM, Oliver Marshall <
oliver.marsh...@g2support.com> wrote:

> Hi chaps,
>
>
>
> One one of our servers some people are reporting problems with files being
> locked “by another user” during the time of the daily previous version
> snapshots.
>
>
>
> This only appears to happen on a small number of spreadsheets (3 so far)
> out of tens of thousands of files across hundreds of users here. Those 3
> files are in a folder on our main 2003 64 bit file server.
>
>
>
> I’m not aware of the previous version feature causing file lockouts, but it
> does appear to be related. If we change the time of the snapshots in windows
> then the locked file issues change time as well. Keep retrying to between 1
> to 15 mins and it goes away.
>
>
>
> Anyone seen this before? Any idea why it would be only a few files out of
> so many on the same server?
>
>
>
> Olly
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Encrypting Event Logs

[Robert Cato]

DISA requires renaming and disabling the guest account. I understand the
logic, rename the account from the get-go and then if you use it (not that I
know anyone that does), it is not the default name. This is easily done with
a GPO.

DISA has guidelines about seriously restricting access to the log files but
makes no mention of encryption.

Robert

On Tue, May 10, 2011 at 11:19 PM, Sean Martin wrote:

>  Thanks, everyone, for confirming I wasn't off base for thinking this was
> an unusual request. I should've known better because these are the same
> auditors that "preferred" we rename the domain guest account even though it
> is disabled. Just another line item to cross off their checklists I guess.
>
> - Sean
>
>
> On May 10, 2011, at 6:58 PM, Level 5 Lists  wrote:
>
>   I have 2 clients that get audited by trustwave annually onsite, and
> quarterly pen tests. In all the audits I have done with different auditors
> no one has requested us to do this. We do event log collection into an sql
> database that is not encrypted. No one has also ever asked that we encrypt
> that database either.
>
>
>
> You can look for yourself on the PCI requirements checklist and see if this
> is mentioned anywhere. They are updated annually at least.
>
>
>
> *From:* Andrew S. Baker [mailto:asbz...@gmail.com]
> *Sent:* Tuesday, May 10, 2011 10:51 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Encrypting Event Logs
>
>
>
> Indeed!  :)
>
>
>
>
> *ASB *(Professional Bio )
> *Harnessing the Advantages of Technology for the SMB market...**
> *
> * *
>
>
>
>  On Tue, May 10, 2011 at 7:42 PM, Free, Bob  wrote:
>
> Yea, what you said. Another in a long line of totally clueless auditors….
>
>
>
> Sometimes I think their only goal in life is to come up with a finding that
> no one else ever has before..
>
>
>
> *From:* Michael B. Smith [mailto:mich...@smithcons.com]
> *Sent:* Tuesday, May 10, 2011 3:04 PM
>
>
> *To:* NT System Admin Issues
>
> *Subject:* RE: Encrypting Event Logs
>
>
>
> Ttttbt.
>
>
>
> Regards,
>
>
>
> Michael B. Smith
>
> Consultant and Exchange MVP
>
> http://TheEssentialExchange.com 
> 
>
>
>
> *From:* Sean Martin [mailto:seanmarti...@gmail.com]
> *Sent:* Tuesday, May 10, 2011 3:43 PM
> *To:* NT System Admin Issues
> *Subject:* Encrypting Event Logs
>
>
>
> Good morning/afternoon,
>
>
>
> My manager has requested I look for ways to "encrypt the event logs on our
> DCs". Apparently during one of our many audits (governing body to remain
> nameless) one of the auditors insisted that we should be encrypting the
> event logs on our DCs. I have since requested a formal finding be provided
> by the auditor indicating the perceived risks so that I can first identify
> if we have any mitigating controls already in place.
>
>
>
> With that, I thought I would start looking around for specific solutions.
> We're currently running Windows 2003 DCs in a Windows 2003 Native AD
> environment. I'm not finding a whole lot of solutions specific to encrypting
> "event logs". We are planning on introducing Windows 2008 R2 DCs this year
> so I will research bit locker, but, I'm concered about the inter-operability
> with Symantec SIM.
>
>
>
> I'm still working with very little information so I'm probably missing a
> lot of content. I guess I would just like to find out if anyone else has
> received similiar directives from an audit and what solutions or mitigating
> controls helped satisfy the auditor's concerns.
>
>
>
> - Sean
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Trouble with dc after reboot HELP!

[Robert Cato]

>From Experts Exchange - with the exact same symptoms.

Man, things were getting tense in the workplace with a completely
non-functional network!  One of the guys stumbled across the problem though
which was that the Default *Domain* *Controller* GPO was corrupt (not that
you'd know by looking at it).

We issued the following command from one of the non-functional *domain* *
controllers*;
* dcgpofix /ignoreschema
* Press OK twice and run gpupdate /force
* Reboot

Now if only Windows Server was able to tell us this was the problem instead
of leading us on a wild goose chase about *unknown* *interfaces* and storage
issues!

Just a quick tip, if you have important settings in either the Default *
Domain* Policy or the Default *Domain* *Controllers* Policy be sure to print
them out BEFORE issuing the above command.
Good luck,
Robert

On Sat, Mar 5, 2011 at 6:50 PM, James Kerr  wrote:

> I was moving our servers this afternoon and when I turned back on my dc
> after a few hours its been having some major issues. The event log service
> will not start nor will the DNS server service as well as acouple of others
> such as WDS and WSUS. I get access denied when trying to start the event
> service and I get error 1717 the interface is unknown. Anyone have any idea
> why this occuring?
>
> James
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: Brief and to the point MS KB article

[Robert Cato]

When did they start tweeting their KBs?

On Fri, Jan 21, 2011 at 9:46 AM, Webster  wrote:

>  http://support.microsoft.com/kb/2499807/en-us?sd=rss&spid=12925
>
>
>
>
>
>
>
> Carl Webster
>
> Citrix Technology Professional
>
> http://dabcc.com/Webster
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: OT the OT OT KVM recommondation

[Robert Cato]

We started buying diapers/wipes several months ahead of the birth of our
triplets. It was only a little addition to each shopping trip, but helped
ease the financial burden when they showed up. Stick to size newborn/1/2.
They really go through them at first.



On Wed, Sep 22, 2010 at 8:53 AM, Maglinger, Paul wrote:

>  You better be catching up on as many diapers as possible.
>
>
>
> *From:* Tony Patton [mailto:apco...@gmail.com]
> *Sent:* Wednesday, September 22, 2010 1:33 AM
> *To:* NT System Admin Issues
> *Subject:* Re: OT the OT OT KVM recommondation
>
>
>
> My wife is expecting twin boys around the week leading up to Xmas, I'm
> trying to catch up on as much sleep as possible on preparation :)
>
> On 20 Sep 2010 14:42, "James Rankin"  wrote:
>
> Twins rock...but I couldn't imagine coping with mine on my own
>
> I met a couple last week who had quintuplets. And they already had a
> six-year old. The thought of that made me shiver.
>
>
>
> On 20 September 2010 14:39, William J. Robbins 
> wrote:
> >
> > Holy cow! I can't...
>
> --
> "On two occasions...I have been asked, 'Pray, Mr Babbage, if you put into
> the machine wrong figures, will the right answers come out?' I am not able
> rightly to apprehend the kind of confusion of ideas that could provoke such
> a question."
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ 
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ---
> To manage subscriptions click here:
> http://lyris.sunbelt-software.com/read/my_forums/
> or send an email to listmana...@lyris.sunbeltsoftware.com
> with the body: unsubscribe ntsysadmin
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
To manage subscriptions click here: 
http://lyris.sunbelt-software.com/read/my_forums/
or send an email to listmana...@lyris.sunbeltsoftware.com
with the body: unsubscribe ntsysadmin

Re: SAN Storage

[Robert Cato]

I will be the NetApp fanboy. I love my filers, why?

Dedupe - I am getting about 33% space saving on my CIFS shares. This number
will increase now that I have upgraded to a more recent firmware release and
can combine volumes.
Snapshots - I am keeping 6 months of snapshots that allow for easy/fast data
retrieval, at a cost of less than 5% of volume space
Replication - I am replicating between two sites, it only replicates the
deltas. Nightly replication takes less than 5 minutes. I have created a
share on the remote site for a read-only copy for the people traveling
between sites.
Simplicity - They just work.

I need to rebuild my VMs on NFS and from what i hear 50+% space savings is
the norm, 80% is not out of the question.

Their software options can get rather expensive. The dedupe is free, almost
everything else is a cost item. You need to decide which options you need,
everything is a-la-carte.

Robert

On Mon, Aug 30, 2010 at 5:21 PM, Paul Hutchings
wrote:

>  The 20xx offer FC and iSCSI standard unless I’ve misunderstood (switch
> cost aside of course)?
>
>
>
> The NAS thing, other than seeing a potential benefit in NFS, isn’t of much
> interest – I’m struggling to see a benefit running CIFS from a NAS rather
> than doing what we do now and having a VM as a file server?
>
>
>
> One thing I am keen on is, as much as possible, keeping it simple – the old
> “if I’m not around” scenario.
>
>
>
> *From:* Steven M. Caesare [mailto:scaes...@caesare.com]
> *Sent:* 30 August 2010 20:19
>
> *To:* NT System Admin Issues
> *Subject:* RE: SAN Storage
>
>
>
> Their feature licensing is expensive… FC connectivity for VMWare is cheaper
> on Dell/EMC, and for NAS connectivity, front-ending the EqualLogic boxes
> offer’s more bang for the buck.
>
>
>
> -sc
>
>
>
> *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
> *Sent:* Monday, August 30, 2010 12:17 PM
>
> *To:* NT System Admin Issues
> *Subject:* RE: SAN Storage
>
>
>
> Can you expand a little on “migrating away from NetApp primarily due to
> cost”?
>
>
>
> Regarding the NFS question, only that I’ve heard a lot of good things about
> the flexibility NFS brings you and the fact you can expand and shrink on the
> fly so if you need 500gb for a VM to test something you can provision it and
> then reclaim it – obviously without the pricing I don’t yet know what sort
> of premium we’re talking.
>
>
>
> *From:* Steven M. Caesare [mailto:scaes...@caesare.com]
> *Sent:* 30 August 2010 17:14
>
> *To:* NT System Admin Issues
> *Subject:* RE: SAN Storage
>
>
>
> We are using Dell sourced EMC’s for FC storage for our VM’s. We are
> migrating away from NetApp primarily due to cost.
>
>
>
> We are spinning up EqualLogics as iSCSI targets for our file servers and
> backup-to-disk options.
>
>
>
> Is there something that makes you want to lean towards NFS as a mount
> technology?
>
>
>
> -sc
>
>
>
> *From:* Paul Hutchings [mailto:paul.hutchi...@mira.co.uk]
> *Sent:* Monday, August 30, 2010 11:30 AM
>
> *To:* NT System Admin Issues
> *Subject:* SAN Storage
>
>
>
> Looking for a little feedback folks.
>
>
>
> We’ve got a SAN replacement coming up in a few months.  We’re pretty much a
> vmware shop except where a service has to run on a physical server (IO cards
> etc.).
>
>
>
> The vendors I’m primarily looking at are Lefthand, Equallogic and Netapp,
> and possibly EMC since Dell can quote on an EMC solution as well as
> Equallogic.
>
>
>
> I’ve not had quotes yet, but so far my instincts are leaning towards
> Netapp, mainly because of the things I keep hearing about NFS for vmware, as
> well as the fact they seem to offer a lot of flexibility whereas Lefthand
> and Equallogic offer iSCSI and, well yeah, they offer iSCSI.
>
>
>
> Be interested to hear any experiences, especially around vmware and
> replication between SANs at live/backup sites (not a live failover site but
> a “this will take a little work but we have a copy of the data that’s an
> hour old” site).
>  --
>
> *MIRA Ltd*
>
>
>
> Watling Street, Nuneaton, Warwickshire, CV10 0TU, England
>
> Registered in England and Wales No. 402570
>
> VAT Registration  GB 114 5409 96
>
>
>
> The contents of this e-mail are confidential and are solely for the use of
> the intended recipient.  If you receive this e-mail in error, please delete
> it and notify us either by e-mail, telephone or fax.  You should not copy,
> forward or otherwise disclose the content of the e-mail as this is
> prohibited.
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

---
You are currently subscribed to ntsysadmin as: arch...@mail-archive.com.
To unsubscribe click here: 
http://lyris.sunbelt-software.com/u?id=8142875.a9cf90b99baa17cb4fcf8293a59eb3b1&n=T&l=ntsysadmin&o=9079818
or send a bla

Re: OT: ID-10-T users and large attachments

[Robert Cato]

.357 on the first offense, if they continue after that I say let them
do what they want.

On Thu, Jul 22, 2010 at 5:36 PM, Angus Scott-Fleming
 wrote:
> Does anyone know of any way to prevent Outlook 2003 and Outlook 2007 users
> running without Exchange from attaching huge files to email? These large
> attachments are being emailed back to the office by the field crews and 
> they're
> clogging up the tubes.
>
> NOTE: WITHOUT EXCHANGE.  I know Exchange can enforce an attachment-size limit.
>
> Outlook 2010 has a new registry key "MaximumAttachmentSize" I can use, but I
> don't have any OL2010 users yet.
>
> Looking to solve the same problem with Thunderbird 3.x. There are some
> attachment-related add-ons for TBird but none address size.
>
> TIA
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Power meter

[Robert Cato]

APC website

On Thu, Jul 15, 2010 at 2:33 PM, Adam Meixler  wrote:
> Hi all,
>
>
>
> I know this has been asked a million times but haven’t found it in the
> archive.
>
>
>
> We need to size a new UPS. Any suggestions on how to get accurate readings
> for our current power consumption?
>
>
>
> Thank you!
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Passwords on paper? Seriously?

[Robert Cato]

http://howsecureismypassword.net/

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: OT: Bad joke contest

[Robert Cato]

How do you tell the difference between a regular themometer and a
rectal themometer?  The taste


What is the difference between bird flu and swine flu?
For bird flu you need tweetment, for swine flu you need oinkment.


Have a great weekend
Robert

On Fri, Jul 9, 2010 at 3:59 PM, Andy Shook  wrote:
> For the last little bit of Friday, I’m now declaring a bad joke contest for
> this here NT list.  I’m the sole judge and decision maker.
>
>
>
> I’ll start off (and probably win)
>
>
>
> --
>
>
>
> What do you call in when you feed a steer a stick of dynamite?
>
>
>
> Abominable (say it slow)
>
>
>
> Shook
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: DNS alias change, no http to alias unless FQDN

[Robert Cato]

If this is SharePoint, look at AAC in Central Admin.

On Fri, May 28, 2010 at 9:09 AM, David Lum  wrote:
> I have an internal website we connect to by http://. This morning
> I changed the alias to point to a new server, but while the http://FQDN of
> the alias works, using just http://hostname doesn’t.
>
>
>
> Example: DNS alias is a CNAME of SharePointNew pointing to a host name of
> ServerA, and HTTP://SharePointNew.ourcompany.local works, but
> http://SharePointNew does not.
>
>
>
> That it would be a NetBIOS thing right? We use WINS, but I see no entry for
> COMMONS that would tell me something other than DNS is resolving that host
> name.
>
> David Lum // SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025 // (Cell) 503.267.9764
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Wireless KB's and mice

[Robert Cato]

Not cheap, but we've had good luck with these in conference rooms.
http://www.logitech.com/en-us/keyboards/keyboard/devices/192

Robert

On Sun, May 9, 2010 at 8:48 PM, Joseph L. Casale
 wrote:
> I need to get some of these for some computers running big screens in a
> showroom.
>
> Not having used any recently, does anyone know of a good model that has
> 35-50 foot range and is very reliable?
>
>
>
> The sales people will be writing invoices amongst other things and won’t
> have patience for anything that isn’t working reliably.
>
>
>
> Thanks!
> jlc
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Upgrading from 2003R2 to 2008R2 (or later)

[Robert Cato]

+1

Well articulated arguments for physical DC(s).

On Fri, Mar 26, 2010 at 3:48 PM, Christopher Bodnar
 wrote:
> In regards to having DCs virtualized. We have 15 DCs and only 2 of them are 
> physical (PDCe and another GC). When we bring down the data center for a 
> recovery exercise or a scheduled power outage, we need to have AD come up 
> first since other things are authenticating against it. This makes it much 
> quicker then waiting for the VMWare environment to come online. Another 
> benefit is that if there is an issue with the back end storage where the 
> VMWare LUNS reside, we have something to authenticate against until it comes 
> back.
>
> YMMV
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Audit File Permissions

[Robert Cato]

AccessEnum (http://technet.microsoft.com/en-us/sysinternals/bb897332.aspx)
or calcs



On Tue, Mar 2, 2010 at 5:05 PM, mqcarp  wrote:
> Does anyone have a clean way of auditing file permissions on your file
> server for example?
>
> I am reviewing huge lists of folder paths. There must be a simpler way
> to go through these. Clean reports of some kind maybe?
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: MS10-015 on W2K3 systems?

[Robert Cato]

Are they available for WSUS download/distribution? 


On Wed, Feb 17, 2010 at 10:06 AM, Steven M. Caesare
 wrote:
> LOL….
>
>
>
> Malware patches to restore functionality… awesome.
>
>
>
> -sc
>
>
>
> From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
> Sent: Wednesday, February 17, 2010 9:02 AM
>
> To: NT System Admin Issues
> Subject: Re: MS10-015 on W2K3 systems?
>
>
>
> http://blogs.pcmag.com/securitywatch/2010/02/rootkit_authors_issue_patch_fo.php
>
> Since late last week, it has been reported that the machines which
> blue-screened after this MS update were found to have been infected with a
> root kit called "TDSS".
>
> This morning, I see a report that the authors of this root kit have
> developed a patch for it.  So, rooted machines should all boot as "normal"
> now.
> --
> Richard D. McClary
> Systems Administrator, Information Technology Group
> ASPCA®
> 1717 S. Philo Rd, Ste 36
> Urbana, IL  61802
>
> richardmccl...@aspca.org
>
> P: 217-337-9761
> C: 217-417-1182
> F: 217-337-9761
> www.aspca.org
>
>
> The information contained in this e-mail, and any attachments hereto, is
> from The American Society for the Prevention of Cruelty to Animals® (ASPCA®)
> and is intended only for use by the addressee(s) named herein and may
> contain legally privileged and/or confidential information. If you are not
> the intended recipient of this e-mail, you are hereby notified that any
> dissemination, distribution, copying or use of the contents of this e-mail,
> and any attachments hereto, is strictly prohibited. If you have received
> this e-mail in error, please immediately notify me by reply email and
> permanently delete the original and any copy of this e-mail and any printout
> thereof.
>
>
> "Christopher Bodnar"  wrote on 02/17/2010
> 07:52:41 AM:
>
>> Just talking about server OS here, not XP.
>>
>> We deployed this to our test systems last week (about 150 systems),
>> with no issues.  Preparing for production this weekend, and with all
>> the talk about this patch, I just wanted to see if anyone did run
>> into issues with W2K3 systems. And if so, what was the scale?
>>
>> Thanks,
>>
>>
>>
>> Chris Bodnar, MCSE
>> Systems Engineer
>> Distributed Systems Service Delivery - Intel Services
>> Guardian Life Insurance Company of America
>> Email: christopher_bod...@glic.com
>> Phone: 610-807-6459
>> Fax: 610-807-6003 - This
>> message, and any attachments to it, may contain information that is
>> privileged, confidential, and exempt from disclosure under
>> applicable law. If the reader of this message is not the intended
>> recipient, you are notified that any use, dissemination,
>> distribution, copying, or communication of this message is strictly
>> prohibited. If you have received this message in error, please
>> notify the sender immediately by return e-mail and delete the
>> message and any attachments. Thank you.
>>
>>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: building a new server

[Robert Cato]

It's OK to think it, but to out him in a worldwide fourm. That's cold. 

Robert

On Thu, Jan 21, 2010 at 1:01 PM, Steven M. Caesare  wrote:
> That wasn’t nice to think of Glen.
>
>
>
> -sc
>
>
>
> From: Jon Harris [mailto:jk.har...@gmail.com]
> Sent: Thursday, January 21, 2010 12:59 PM
>
> To: NT System Admin Issues
> Subject: Re: building a new server
>
>
>
> Amen and here I thought I was the only one that thought that.
>
>
>
> Jon
>
> On Thu, Jan 21, 2010 at 12:55 PM, Glen Johnson  wrote:
>
> Don’t beat yourself up.
>
> If I had $10 for every stupid thing I’ve done, I could buy google, ms and
> still have money left over.
>
>
>
> From: David W. McSpadden [mailto:dav...@imcu.com]
> Sent: Thursday, January 21, 2010 12:31 PM
>
> To: NT System Admin Issues
> Subject: Re: building a new server
>
>
>
> Damn it I am so stupid most of the time.
>
>
>
> From: Steve Ens
>
> Sent: Thursday, January 21, 2010 12:28 PM
>
> To: NT System Admin Issues
>
> Subject: Re: building a new server
>
>
>
> Like the others, it is a controller driver, but funny that the new OS's
> don't have those drivers built in yet.
>
> On Thu, Jan 21, 2010 at 11:16 AM, David W. McSpadden 
> wrote:
>
>  I have a DL320 G5 with SATA Raid controller and two 160GB drives.  I want
> to mirror them and I did that through the BIOS. I boot and see 1 logical
> disk but when windows Cd boots it says no valid drive was found???
>
> What am I doing wrong???
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Google Wave Invite Available

[Robert Cato]

I'll take one if there are any left

Thanks,
Robert

On Tue, Nov 24, 2009 at 5:58 PM, Jeff Johnston  wrote:

>  thx Don, now to figure out how to share my invites
> -
> Jeff J
>
>
> - Original Message -
> *From:* Don Ely 
> *To:* NT System Admin Issues 
> *Sent:* Tuesday, November 24, 2009 4:36 PM
> *Subject:* Re: Google Wave Invite Available
>
> Sent
>
> On Tue, Nov 24, 2009 at 1:36 PM, Jeff Johnston  wrote:
>
>>  any spare would be greatly appreciated
>>
>> -
>> Jeff J
>>
>>
>>
>>
>>
>>
>
>
>
>
>  --
>
>
> No virus found in this incoming message.
> Checked by AVG - www.avg.com
> Version: 9.0.709 / Virus Database: 270.14.80/2523 - Release Date: 11/24/09
> 02:46:00
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Exchange email archiving

[Robert Cato]

Anyone have experience or opinion about Mimosa archive solution (not the
adult beverage)?

On Wed, Nov 4, 2009 at 4:50 PM, Michael B. Smith
wrote:

>  Redgate and GFI
>
> Obdisclaimer: I've done reviews of both of those products for money.
>
>  --
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Sunbelt Tech.Ed Bike Give Away Survey

[Robert Cato]

That is the only people that can afford a HD...not really but they ARE
overpriced and not worth it IMHO. I really hate the HD snobs "If it's not a
HD then it's not a real bike!".

My dad just bought a BMW and it is nicelots of features and ride is
fantastic. It got my vote in the poll, even though my gut told me busa. I
saw a really good comparison review of the busa, BMW and another bike on
youtube. The busa won on power, but the BMW won for comfort. I like to ride
my bike so that is why the BMW got my vote.



On Mon, Oct 26, 2009 at 3:37 PM, andy  wrote:

> yea, sorry about that, its just the harley discussions on if they should
> get glitter tassels for their handlebars, and if their jackets are matching
> the powder blue of their bikes, is getting to me.  And the whining about
> getting water spots on the bike and having to polish their cupholders.  If
> they ride, will the full face helmet mess up their hair.
>
> Then the women, wondering if their fingernail polish is proper for bike
> riding, whether the crimsen red clashes with the black of the motorcycle.
> If their prada handbags clash with the chrome.  What perfume you should wear
> on a bike.
>
> every other word is "like" and "awesome"
>
> all of these harley discussions are really getting to me.I guess it is
> just the changing harley image from when I was growing up.  Now harley
> images are vera wang and yves st laurent.  Changing of the times I guess.
>
>
>
>
>
> At 02:39 PM 10/26/2009, Richard Stovall wrote:
>
> Does that mean that they are resigned to being yuppies?
>
> I do have a request.  Don’t hold back next time.  Go ahead and tell us how
> you really feel.  J
>
> *From:* andy [ mailto:afo...@psu.edu ]
> *Sent:* Monday, October 26, 2009 2:34 PM
> *To:* NT System Admin Issues
> *Subject:* RE: Sunbelt Tech.Ed Bike Give Away Survey
>
> Any crotch rocket is a performance bike.
>
> harleys are just bikes made for whiny, wimpy, pansy yuppies, who think that
> if they own a harley they are not whiny, wimpy pansies.  and of course, they
> are only assembled in the US.
>
> If you want a "real" performance bike get a Boss Hoss.
> www.bosshoss.com   Why go for a wimpy harley.  Just for the name I would
> guess.  Or to belong to HUG  -- Harley Users Group.
>
>
>
> At 10:55 AM 10/26/2009, Erik Goldoff wrote:
>
>  "Forget the rice-grinders, offer me a Hawg."
>
> Not everything listed is Asian, and if you check the sources for H-D
> components you'll likely be very disappointed to find that they have a
> number of parts that are NOT made in the U.S.
>
>
>
> Erik Goldoff
> IT  Consultant
> Systems, Networks, & Security
>
>
> -Original Message-
> From: Angus Scott-Fleming [ mailto:angu...@geoapps.com]
>
> Sent: Monday, October 26, 2009 10:16 AM
> To: NT System Admin Issues
> Subject: Re: Sunbelt Tech.Ed Bike Give Away Survey
>
> On 25 Oct 2009 at 13:53, Stu Sjouwerman  wrote:
>
> > Hi All,
>
> [quibble] Shouldn't this have an "OT:" prefix? [/quibble] [g,d,rlh]
>
> > Sunbelt is considering giving away a VIPRE-themed motorcycle at
> > Tech.Ed this year.
> > Which motorcycle brand first comes to mind when you hear the words
> > 'high-performance'?
> > http://www.surveymonkey.com/s.aspx?sm=VY10nJC7fD_2bZ_2frYAaSCiVA_3d_3d
> > This is a 10 second, two-click survey !
>
> Forget the rice-grinders, offer me a Hawg.
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> < http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>
> ~
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~ < http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
>
>
>
> Andy-Ofalt---863-3449--405-Ag-Admin-Bldg--for more
> information go  to 
> http://ict.cas.psu.edu/Contacts.html--
>  My little blurb to eat up bandwidth and make your mail box even
> larger
> +++
>  The real problem is that IP, a connectionless protocol, was never
> developed to be the universal protocol. ATM was developed to serve that
> purpose and failed.
> +++
>
>
>
>
>
>
>
>
>
>
>
>
>
> Andy-Ofalt---863-3449--405-Ag-Admin-Bldg--for more
> information go  to 
> *http://ict.cas.psu.edu/Contacts.html*
> -- My little blurb to eat
> up bandwidth and make your mail box even larger
> +++
>  The real problem is that IP, a connectionless protocol, was never
> developed to be the universal protocol. ATM was developed to serve that
> purpose and failed.
> +++
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Analytics

[Robert Cato]

Take a look at Google Analytics. http://www.google.com/analytics/

Not sure it can do what you want, but the price is right.

On Tue, Oct 6, 2009 at 4:55 PM, Joe Heaton  wrote:

> What website analytic programs are you guys using?  Currently, we're using
> Weblog Expert, but it doesn't seem to be able to do what I'm looking for.
>
> I need something that can tell me how many hits, over x period of time, to
> whatever internal webpage I want to point it to. For instance, I have
> website.com.  I also have website.com/news/projectX.  I want to be able to
> see how many hits the /projectX received over the last 30 days.
>
> The product also needs to be able to access the weblogs within a zip file,
> as we zip up the logs after the current month.
>
> Any ideas?
>
> Thanks,
>
> Joe Heaton
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Job resume fun

[Robert Cato]

I say "If it's within 50 feet of a computer, it's my responsibility"

On Wed, Sep 30, 2009 at 4:17 PM, Sam Cayze  wrote:

>  LOL.  What's funny is since I have been in IT, I have actually had to do
> some of those tasks :)
> Perhaps that's 'cause they know I'm quite handy, and it's a small business.
>
> But my moto here is "If it uses electricity, Sam supports it"
>
>  --
> *From:* David Lum [mailto:david@nwea.org]
> *Sent:* Wednesday, September 30, 2009 3:09 PM
> *To:* NT System Admin Issues
> *Subject:* Job resume fun
>
>   We have an opening for a Service Desk Professional / IT support
> position.
>
>
>
> This is on a resume we received: “Operate backhoe, dump truck, street
> sweeper and snowplow. Various maintenance and cleaning duties, minor
> electrical maintenance, light carpentry, road repair. Grounds keeping around
> city including mowing, weed eating, tree trimming, signage and flagging”
>
>
>
> And
>
>
>
> “Maintain account security for customers. Take payments over the
> telephone”
>
>
>
> Plus
>
>
>
> “Monitor and maintain chlorine dosage”
>
>
>
> All on the same resume. Dude you’re overqualified….
>
>
>
> *David Lum** **// *SYSTEMS ENGINEER
> NORTHWEST EVALUATION ASSOCIATION
> (Desk) 971.222.1025
> *// *(Cell) 503.267.9764
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: MICROSOFT SECURITY ESSENTIALS

[Robert Cato]

Changing the name/logos isin't a valid engineering process?!?



On Mon, Sep 28, 2009 at 3:15 PM, Sam Cayze  wrote:

> OneCare is already defunct?  Just another reason I don't trust MS's
> consumer grade security products.
>
> I can't keep up with them.
>
> Defender>OneCare> and now Security Essentials?
>
> Defender and OneCare both would bring a machine to a halt, how am I
> going to trust the next version?
>
> -Original Message-
> From: David W. McSpadden [mailto:dav...@imcu.com]
> Sent: Monday, September 28, 2009 1:58 PM
> To: NT System Admin Issues
>  Subject: Re: MICROSOFT SECURITY ESSENTIALS
>
> Good read Stu.
> - Original Message -
> From: "Stu Sjouwerman" 
> To: "NT System Admin Issues" 
> Sent: Monday, September 28, 2009 2:49 PM
> Subject: RE: MICROSOFT SECURITY ESSENTIALS
>
>
> Here is some more from PCMag.com's Neil Rubenking
>
> Microsoft Security Essentials beta
> REVIEW DATE:  06.18.09
>
> BOTTOM LINE:
> Microsoft Security Essentials is the promised successor to the defunct
> Windows Live OneCare. Focused solely on anti-malware functions, it has
> average performance, as OneCare did. But that may improve during the
> beta-and the software is free.
>
> PROS:
> Generally decent at removing and blocking malware. Small download.
> Simple user interface. Free for personal use.
>
> CONS:
> Less effective against rootkits and scareware. Requires surprisingly
> large amount of disk space. Forces Windows Update into full automatic
> mode.
>
> RATING: 3.5 out of 5.
>
> Also, I added MSE compared to VIPRE over here:
>
> http://www.sunbeltsoftware.com/documents/vipre_vs_mse.pdf
>
>
>
> Warm regards,
>
>
> Stu Sjouwerman
> Founder, VP Marketing.
> P: +1-727-562-0101 ext 218
> F: +1-727-562-5199
> s...@sunbelt-software.com
>
>
>
> -Original Message-
> From: Rod Trent [mailto:rodtr...@myitforum.com]
> Sent: Friday, September 25, 2009 5:42 PM
> To: NT System Admin Issues
> Subject: RE: MICROSOFT SECURITY ESSENTIALS
>
> Very nice.
>
> It's quiet, unobtrusive.  Performance is excellent.
>
> -Original Message-
> From: Murray Freeman [mailto:mfree...@alanet.org]
> Sent: Friday, September 25, 2009 5:39 PM
> To: NT System Admin Issues
> Subject: MICROSOFT SECURITY ESSENTIALS
>
> Anyone using the new Microsoft Security Essentials? What are your
> observations?
>
> Murray
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
> ..
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Is this a good SMTP transaction?

[Robert Cato]

I have personally had a couple of bad transactions with Verizon over the
years. I have several friends that work for Verizon and they have serious
integration problems with the numerous acquisitions. My guess is that
many/all telecom companies suffer from this same problem.

On Fri, Sep 18, 2009 at 2:44 PM, Maglinger, Paul wrote:

> I am constantly amazed that AT&T remains in business.  Their
> incompetence is almost legendary.
>
> -Original Message-
> From: David W. McSpadden [mailto:dav...@imcu.com]
> Sent: Friday, September 18, 2009 12:06 PM
> To: NT System Admin Issues
> Subject: Re: Is this a good SMTP transaction?
>
> Turns out it is just smtp traffic to AT&T cellphones.
> Specifically my operators cellphones.  Seems sometime on Saturday they
> updated a rule that any smtp traffic sent to txt.att.net and  coming
> from
> 206.18.123.221 was to be accepted and then blackholed.
>
> Now my AT&T rep was glad to tell me that they have a service that will
> fix
> it for 9.99 a month per phone.
> So now I have an additional $60/month expense for 6 operators to send
> smtp
> traffic to page.att.net from 206.18.123.221.
>
> See everybody's happy
>
> Idiots wouldn't even give me a log entry showing they had received and
> killed my messge.  Just said buy this service or fail to get messages.
>
> I feel diry.
> - Original Message -
> From: "Ben Scott" 
> To: "NT System Admin Issues" 
> Sent: Thursday, September 17, 2009 12:00 PM
> Subject: Re: Is this a good SMTP transaction?
>
>
> On Wed, Sep 16, 2009 at 10:48 AM, David W. McSpadden 
> wrote:
> > Current: v=spf1 include:mailanyone.net include:fusemail.net ~all
> >
> > Proposed v=spf1 include:mailanyone.net include:fusemail.net
> > include:imcu.local ~all ???
>
>  The proposed addition won't work for two reasons:
>
> (1)  is not resolvable in the public DNS, so the rest of
> the world won't be able to query for the needed records.
>
> (2) The  directive means "Include SPF records from this
> other domain", and I'm guessing you haven't published an SPF record in
> your  domain.  :-)
>
>  You'll generally want to specify the IP address(es) mail can come
> from.  Suppose your IronPort's apparent public IP address is
> <192.0.2.42>.  If so, you'd want your SPF record to read:
>
> v=spf1 include:mailanyone.net include:fusemail.net ip4:192.0.2.42 ~all
>
>  Alternatively, if you own the 192.0.2.32 - 192.0.2.63 range, and you
> want any host in that netblock to be able to send mail:
>
> v=spf1 include:mailanyone.net include:fusemail.net ip4:192.0.2.32/26
> ~all
>
>  OpenSPF  is useful here.  They publish a
> FAQ, "Common mistakes" list, a formal SPF syntax spec, etc.  I went
> there to double-check my memory of the syntax, for example.  They also
> offer a "Setup Wizard" that may be useful to you:
>
> http://old.openspf.org/wizard.html?mydomain=imcu.com
>
>  The SPF records for the two domains you're including may be useful
> for illustration purposes:
>
> BSCOTT>dig +short mailanyone.net TXT
> "v=spf1  ip4:208.101.54.178 ip4:208.70.128.0/21 ~all"
>
> BSCOTT>dig +short fusemail.net TXT
> "v=spf1 ip4:10.0.5.0/24 ip4:208.101.54.178 ip4:208.70.128.0/21 ~all"
>
>  I note that  is saying mail can come from a subnet of
> 10/8, which is one of the RFC-1918 private blocks.  They shouldn't be
> publishing that on the public net.  While it's unlikely be a big
> problem, it's still a nonsense thing to do, and might potentially let
> some spam through.  You may want to contact them and tell them to fix
> it.
>
>  Hope this helps!
>
> -- Ben
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Home drive mapping quizzler

[Robert Cato]

We're having the exact same issue, so I hope someone out there has some
insight.

All workstations here are XPSP3 fully patched in a Server 2008 domain. The
two users that happen frequently have similar user names (eg TPain and
TMPain) although it does happen to others. I have been focusing on other
issues so I have not dug through the event logs as it is an easy fix and
does not happen all that often...maybe once or twice a week.
Other facts: Completely new infrastructure: new switches, all LAN drops
tested to CAT5E specs as part of a VoIP roll out, new servers, new racks,
new patch cords, new image on the workstations.

Thanks,
Robert

On Tue, Aug 11, 2009 at 5:40 PM, Eisenberg, Wayne <
wayne.eisenb...@pbvllc.com> wrote:

>
> My google-fu is below par right now, maybe some of you have the answer:
>
> We use the AD home folder info (on the profile tab) to map users' H:
> drive to \\fileserver\users\username . 97% of the time it works as
> advertised. However, sometimes it just maps the H: drive to
> \\fileserver\users and doesn't go all the way to the next level. We
> unmap and remap the user to the proper location manually and life goes
> on. But why is this happening at all? Is it just a Microsoft-ism? Is
> there some bizarre glitch running amok? Any ideas?
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Paging the scripting Guru's - mass shortcut properties rename???

[Robert Cato]

You could create an A record also


Sent from my mobile computing device.

On Jul 31, 2009, at 4:49 AM, Gavin Wilby  wrote:

> Hi,
>
> I'm on a site that uses a Document Management system that was  
> recently (not by me) moved to a different server. There are  
> thousands of files that live in a repository:
>
> \\server01\documents\clients\*
>
> Unfortunately, what we have now found is that the users use  
> shortcuts inside this structure to point to other parts of the  
> repository, these obviously reference the old server, that no longer  
> exists.
>
> I thought of removing the DNS name of the old server and using a  
> cname to redirect it, but that's a bit of a cludge IMO.
>
> Can I go to the root of the store, and get a script to look at all  
> the shortcuts and change the path from say:
>
> \\server01\documents\clients\document.doc to \\server02\documents 
> \clients\document.doc
>
> This needs to be done with no danger to the containers or the  
> folders within...
>
> Any ideas?
>
> -- 
> Gavin Wilby,
> Twitter: http://twitter.com/gavin_wilby
> GSXR Blog: http://www.stoof.co.uk
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Scan to Email

[Robert Cato]

Digital sender is what you want. I have used several HP models in recent
years.



>   *From:* Chris Blair [mailto:chris_bl...@identisys.com]
> *Sent:* Friday, July 10, 2009 11:06 AM
> *To:* NT System Admin Issues
> *Subject:* Scan to Email
>
>
>
> I think I know the answer, but figured it would see if anyone has such as
> device. We need to scan documents and then email them. The preferred format
> would be PDF. We have a copier, but it does not email, it will save to a
> network share. Saving to a network share present some issues if the person
> scanning does not remove the document on the shared location. A new copier
> is out of the question at this time (politics…).
>
>
>
> So, does anyone know of a device that will scan and email the document with
> a multi-feeder on it and is NOT a copier?
>
>
>
> Thanks!
>
>
>
>
>
>
>
> Checked by AVG - www.avg.com
> Version: 8.5.387 / Virus Database: 270.13.9/2229 - Release Date: 07/10/09
> 07:05:00
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Two Factor Authentication

[Robert Cato]

Thought of another question

Does you implementation have special requirements (Cisco hardware or ISA
server for example)?



On Tue, May 26, 2009 at 9:07 AM, Robert Cato  wrote:

> Good morning,
>
> Anybody using two-factor authentication that would care to share opinions
> and an overview of how you are using?
>
> We are looking to protect E2K7 OWA, MOSS07, and Terminal Services.
>
> Here are a couple I have found that look promising.
> http://www.multifa.com/
>
> http://enterprise.comodo.com/security-solutions/authentication-identity-assurance/two-factor/
> http://www.entrust.com/two-factor-authentication/
> http://www.rsa.com/node.aspx?id=1156
>
> Thanks,
> Robert
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Two Factor Authentication

[Robert Cato]

Good morning,

Anybody using two-factor authentication that would care to share opinions
and an overview of how you are using?

We are looking to protect E2K7 OWA, MOSS07, and Terminal Services.

Here are a couple I have found that look promising.
http://www.multifa.com/
http://enterprise.comodo.com/security-solutions/authentication-identity-assurance/two-factor/
http://www.entrust.com/two-factor-authentication/
http://www.rsa.com/node.aspx?id=1156

Thanks,
Robert

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Sub Laptop Device

[Robert Cato]

Redfly by Celio   http://www.celiocorp.com/

Pretty cool device, I'm in the middle of a huge migration so I need the
computing power of my laptop but I'm looking forward to casual use with the
Redfly.

On Wed, Apr 15, 2009 at 2:22 PM, Daniel Rodriguez  wrote:

> I have seen this on the web and have read about it, but it was over four
> months ago.
>
> There is a company that makes a sub-notebook that connects to your
> smartphone, PPC phone, Blackberry. I can't remember their name or their
> products name... It's 'Red' something.
>
> Are they still in business and does anyone have a link/url to them?
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Conflicker detector

[Robert Cato]

Conficker Eye Chart - Easy detector.
http://www.confickerworkinggroup.org/infection_test/cfeyechart.html

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: resize system partition

[Robert Cato]

+1

There may also be a gparted ISO out on the web.


On Thu, Feb 19, 2009 at 8:56 AM, Jon Bjerke  wrote:

> I've used Ubuntu.  Boot from the Ubuntu CD and run gparted.  It works and
> it's free.
>
> -Original Message-
> From: SMREKAR, JACK [mailto:smre...@aasd.k12.wi.us]
> Sent: Thursday, February 19, 2009 7:49 AM
> To: NT System Admin Issues
> Subject: resize system partition
>
> I have been doing so research into products that will allow me to resize my
> system partition (c Drive) without having to rebuild the server. so far I
> have found 2 products that seem to be very good. I was wondering if any one
> has used either of these products and if so how they work or if there are
> better products out there to do this. The server operating system is Win
> 2003
>
> The 2 products are
>
> 1.  Partition Manager 9.0 Server
> 2.  Acro(R) Disk Direct���½ Server 10.0
>
> Thanks
>
> Jack Smrekar
> Appleton Area School District
> 920-993-7062 Ext. 2123
> A+  N+  Server +
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Comcast pays customers to watch porn!

[Robert Cato]

You must not be doing it right.  :P



On Tue, Feb 3, 2009 at 5:20 PM, Micheal Espinola Jr <
michealespin...@gmail.com> wrote:

> Sex is bad, mkay?
>
> --
> ME2
>
>
>
> On Tue, Feb 3, 2009 at 4:46 PM, Ben Scott  wrote:
> > On Tue, Feb 3, 2009 at 3:50 PM, John Hornbuckle
> >  wrote:
> >> They pay people $10 for being exposed to 30 seconds of porn, but won't
> >> credit me jack for having an outage that keeps me offline for hours or
> days?
> >
> >  Welcome to America, where a man sleeping with his wife yields an "R"
> > rating, but a man killing his wife only warrants "PG".
> >
> > -- Ben
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> > ~   ~
> >
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: windows internal database

[Robert Cato]

My WSS3 install uses the same exact db (MSSQL$MICROSOFT##SSEE). If you are
running SP that is not connected to a SQL back end then most likely it is
the SP instance.




On Tue, Jan 6, 2009 at 1:17 PM, jesse-r...@wi.rr.com
wrote:

> I am trying to determine what application on a 2003 Server is using the
> "Windows Internal Database".  No one seems to know anymore how this service
> got installed and for what...  Sharepoint 3.0 is on the box, so it's likely
> that's how the Windows Internal Database got installed, but I'm not 100%
> sure.  I do NOT want to remove the program from Add/Remove Programs until I
> first know exactly what it's used for.  If it's really for Sharepoint, it
> can be removed so we are no longer using Sharepoint...
>
> Any idea how I can tell what app the ( MSSQL$MICROSOFT##SSEE ) is being
> used for specifically?
>
> Thanks.
> JR
>
>
> 
> myhosting.com - Premium Microsoft(R) Windows(R) and Linux web and application
> hosting - http://link.myhosting.com/myhosting
>
>
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Declining an already approved WSUS update

[Robert Cato]

http://www.windowsecurity.com/articles/How-Force-Remote-Group-Policy-Processing.html
psexec = must have
flex command.hta = looks promising

On Tue, Dec 9, 2008 at 11:43 AM, <[EMAIL PROTECTED]> wrote:

>
> "Alex Carroll" <[EMAIL PROTECTED]> wrote on 12/09/2008 11:34:36 AM:
>
> > You could always do a "wuauclt.exe /resetauthorization /detectnow"
> > on the client – that will force it to report to the WSUS server and
> > then it will go away now instead of having to wait for them to
> > report… just to make sure that waiting will work.
>
>
> That is what I did, on the WSUS server. And the V3 Framework did not then
> appear on the list of waiting updates.
>
> Since I don't have an easy way to run the "detectnow" on all the other
> clients automatically, I will just wait for them to check in and update
> themselves normally.
>
> Thanks
>
> >
> > Alex Carroll
> > Software Support
> > Crabtree Companies, Inc.
> > 651-688-2727
> >
> >
> > From: Martin Blackstone [mailto:[EMAIL PROTECTED]
> > Sent: Tuesday, December 09, 2008 10:20 AM
> > To: NT System Admin Issues
> > Subject: RE: Declining an already approved WSUS update
> >
> > I think it will go away next time the clients report in.
> >
> > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
> > Sent: Tuesday, December 09, 2008 7:21 AM
> > To: NT System Admin Issues
> > Subject: Declining an already approved WSUS update
> >
> >
> > I made a bonehead mistake, and approved the installation of .NET
> > Framework 3.0 (I wanted to just approve the updates to it, so that
> > any system that had it was updated,  but didn't want to just
> > generally install it). Luckily, none of my WSUS clients auto-
> > install., so it didn't get pushed out to the clients. But I did see
> > that WSUS thought a substantial number of clients needed it, and now
> > I see that update on the clients, as an update waiting to be downloaded..
>
> >
> > Now I've gone back into the list of approved updates, and declined
> > that specific item. I'm hoping that any of the systems that had been
> > listed as "needing installation" from when it was approved, will now
> > just remove that item from the list of needed updates, the next time
> > the clients check into the WSUS server? For example, I still see it
> > in the list of updates waiting to be downloaded on the WSUS server
> > itself, even after declining the update and rebooting.
> >
> > What else do I need to do, to ensure that the v3 Framework is not
> > installed on the clients?
> >
> > Thanks
> >
> > --
> > Michael Leone
> > Network Administrator, ISM
> > Philadelphia Housing Authority
> > 2500 Jackson St
> > Philadelphia, PA 19145
> > Tel:  215-684-4180
> > Cell: 215-252-0143
> > 
> >
> >
> >
> >
> >
> >
> >
> >
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Counter Spy T-Shirt sighted

[Robert Cato]

I'm in "Tampa" (work in Brandon live in central Pasco) and would likely
attend.

Robert

On Mon, Dec 1, 2008 at 9:23 AM, Fred Sawyer <[EMAIL PROTECTED]>wrote:

>  If they had a Counterspy shirt on and weren't swimming odds are they are
> local.  As Kevin points out only northerners will go swimming this time of
> year.
>
> Just wondering how many admins on this list live in the Tampa area?  If
> their are enough admins maybe we could start a once a month pub club?
>
> Thank you,
>
> Fred Sawyer
> Sunbelt Software
>
>
>  --
> *From:* Kevin Lundy [mailto:[EMAIL PROTECTED]
> *Sent:* Monday, December 01, 2008 9:14 AM
> *To:* NT System Admin Issues
> *Subject:* Re: Counter Spy T-Shirt sighted
>
>  Not this person :)
>
> There were others - seemed a bit cold to  me and some people were in the
> water without a wet suit.  Must have been northerners :)
>
> On Mon, Dec 1, 2008 at 8:59 AM, John Hornbuckle <
> [EMAIL PROTECTED]> wrote:
>
>>  Were they swimming with the manatee?
>>
>>
>>
>>
>>
>>
>>
>> *From:* Kevin Lundy [mailto:[EMAIL PROTECTED]
>> *Sent:* Monday, December 01, 2008 8:12 AM
>> *To:* NT System Admin Issues
>> *Subject:* OT: Counter Spy T-Shirt sighted
>>
>>
>>
>> Ok - who on the list was wearing a Counter Spy t-shirt Friday at
>> Homassassa Wildlife Park?
>>
>>
>>
>> Kevin
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Adobe Acrobat won't convert files to PDF after MS Update

[Robert Cato]

Look at the MSI cleanup from MS. http://support.microsoft.com/kb/290301

Robert

On Mon, Nov 17, 2008 at 3:29 PM, Sam Cayze <[EMAIL PROTECTED]> wrote:

>  Mine does this everytime I start Acrobat Standard on new XP install.
> Can't get rid of it :(
>
>
>  --
> *From:* Alex Carroll [mailto:[EMAIL PROTECTED]
> *Sent:* Monday, November 17, 2008 9:21 AM
> *To:* NT System Admin Issues
> *Subject:* Adobe Acrobat won't convert files to PDF after MS Update
>
>  I have a single user here that converts a lot of documents into PDF
> files.  Everything was running smoothly until we installed Service Pack 3 on
> his XP system.  Now every time a Microsoft update is run he is unable to
> convert files to PDF using Adobe Acrobat – it just hangs in the creation
> process.  The temporary fix for this is to delete the Application Date
> (C:\Documents and Settings\USER\Application Data\Adobe).  This is starting
> to get rather annoying as our updates are run every Sunday.  Has anyone else
> here encountered this?  I have tried looking on the Adobe forums and have
> found nothing (even googling has failed me!)  I have gone as far as granting
> him local admin rights but this failed as well.
>
>
>
> Thanks in advance J
>
>
>
> Alex Carroll
>
> Software Support
>
> Crabtree Companies, Inc.
>
> 651-688-2727
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~
<>

Re: SharePoint Server

[Robert Cato]

I have been running WSS3 in a VMware server VM for almost two years. 1GB
RAM, 1 CPU. About 5 heavy users, 15 medium users, and 30 light users. MSDE
back end, one content db that is over 40GB. No serious complaints about
performance.

I'm in the planning phase of upgrading to MOSS'07 with a SQL back end. All
as VMs on ESX.

The default file size limit is 50MB, and MS recommends not changing. This
can be a limiting factor for some files.

Recommend that content DBs not be more than 15G to get acceptable restore
times.

Get the administrators guide and read the chapter on search a couple of
times. If you have to reindex your search it can overload your system, CPU
and storage. There are ~6 things that kick off a reindex...know what they
are. Search is off by default because of the gotchas. Make sure you have
everything configured like you want it before turning it on (info from the
MOSS class I took earlier this year)

Robert

On Thu, Nov 13, 2008 at 2:16 PM, Bob Fronk <[EMAIL PROTECTED]> wrote:

>  I am gearing up to deploy SharePoint Server 2007.  The main goal is to
> help eliminate "Outlook as a file transport", but eliminate the 100's of
> file shares we have.  But I also know there is much more to the product.
>
>
>
> I would appreciate replies from those that have deployed SharePoint or have
> SharePoint experience on what your deployment experience was and what you
> would or wouldn't do again.
>
>
>
> Also, anyone have SharePoint running in a VM?
>
>
>
> As I type this, I am loading up a test server to experience the install
> process and do some testing.
>
>
>
> Thanks for any info.
>
>
>
> Bob Fronk
>
> [EMAIL PROTECTED]
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Strange Behavior

[Robert Cato]

PowerToys not installed.

Nothing significant/correlating in the event viewer.

Don't have good details on the process leading up to the issue. One user
is insistent that they rebooted upon leaving for the day, but walked
away before getting confirmation that the process started or
completed. UPHClean is being installed on a couple of the machines to see if
that helps.


Discussing the problem with another tech savvy user in the building revealed
that it happened on his home PC a couple of times in the past week.

Will let you know what if/when we find resolution.

Robert

On Tue, Nov 4, 2008 at 12:16 PM, Miller Bonnie L. <
[EMAIL PROTECTED]> wrote:

>  Sounds like the account is not really getting logged out—do they stay to
> watch that part?  If it is still trying to log out when the screen saver
> kicks on it could then be locking the station.  And, they probably can't log
> on while it's logging them out.
>
>
>
> If you can confirm that, the question becomes, why do these machines or
> user accounts not get fully logged out?  Do you have UPHClean installed?
>
>
>
> -Bonnie
>
>
>
> *From:* Robert Cato [mailto:[EMAIL PROTECTED]
> *Sent:* Tuesday, November 04, 2008 8:25 AM
> *To:* NT System Admin Issues
> *Subject:* Strange Behavior
>
>
>
>
>
> I have about six workstations (xp sp3 fully patches using SCE) that are
> behaving strange.
>
>
>
> W2K3 domain (native mode)
>
> User will log out at the end of day or lunch. Upon return to their PC they
> are logged in with screen locked (screen lock set by GPO). Have not had a
> chance to see what happens first hand. I am called because the user is
> unable to unlock/sign on. I am unable to force the user off by signing on as
> domain or local administrator. A hard boot will allow the user to sign in,
> but it returns.
>
>
>
> Anybody seen anything like this?
>
>
>
> I have been googling and searching around Sans with no luck.
>
>
>
> TIA,
> Robert
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/>  ~

Strange Behavior

[Robert Cato]

I have about six workstations (xp sp3 fully patches using SCE) that are
behaving strange.

W2K3 domain (native mode)
User will log out at the end of day or lunch. Upon return to their PC they
are logged in with screen locked (screen lock set by GPO). Have not had a
chance to see what happens first hand. I am called because the user is
unable to unlock/sign on. I am unable to force the user off by signing on as
domain or local administrator. A hard boot will allow the user to sign in,
but it returns.

Anybody seen anything like this?

I have been googling and searching around Sans with no luck.

TIA,
Robert

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Password policy

[Robert Cato]

Yes, password changes only are affected by the default domain policy.

On Fri, Oct 24, 2008 at 6:15 PM, Joe Heaton <[EMAIL PROTECTED]> wrote:

>  Are you saying I have to do this in the default domain policy?  Do I set
> it at the same point within?
>
>
>
> Joe Heaton
>
> Employment Training Panel
>
>
>
> *From:* Carl Houseman [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, October 24, 2008 3:13 PM
> *To:* NT System Admin Issues
> *Subject:* RE: Password policy
>
>
>
> Password policies are set at the domain level, assuming 2003 or earlier.
>
> You can't get there from here unless you create a new domain for those 27
> people.
>
>
>
> Carl
>
>
>
> *From:* Joe Heaton [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, October 24, 2008 6:10 PM
> *To:* NT System Admin Issues
> *Subject:* Password policy
>
>
>
> This may be a stupid question, but my google-fu is just giving me generic
> answers.
>
>
>
> I want to enforce some password requirements, that are not in effect now.
> I've done this by creating a new group policy, at the top level of my user
> OUs.  I've gone into Computer configuration -> Windows settings -> Security
> settings -> Account policies -> Password policy.  I set the minimum length,
> etc.  Then, in the right side window for the GPO in GPMC, I use Security
> filtering to apply the policy to one specific user, for testing.  I then
> went into that user's account, and checked the box for must change
> password.  Then, I go to the machine where I have this user account logged
> in, go to command prompt and type in gpupdate /force, reboot the machine,
> and go to change the password.  To test it, I tried using a very short
> password, and it was allowed.
>
>
>
> What am I doing wrong here?  I've got 27 new computers rolling out
> tomorrow, and we want to enforce the password stuff for those 27 people, but
> I need to get this right.
>
>
>
> Joe Heaton
>
> AISA
>
> Employment Training Panel
>
> 1100 J Street, 4th Floor
>
> Sacramento, CA  95814
>
> (916) 327-5276
>
> [EMAIL PROTECTED]
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: IT Portal / Wiki Suggestion

[Robert Cato]

http://www.metadot.com/

On Thu, Oct 9, 2008 at 9:44 AM, Garcia-Moran, Carlos <
[EMAIL PROTECTED]> wrote:

>  Hey All;
>
>
>
> I've been tasked with the job to create an IT site where all the teams here
> can share Docs, info, something of a central repository of info in case of
> disaster as well. Does anyone have any suggestions on a good Portal app to
> try? It needs to be run in Linux, free or inexpensive
>
>
>
> Ive already played with Mediawiki, Joomla, Drupal, and Sharepoint , any
> others out there?
>
>
>
> Carlos Garcia-Moran
>
> Server / Storage Engineer
>
> Sprague Energy
>
> www.spragueenergy.com
>
> P: 603-430-5355
>
> C: 857-234-0343
>
> F: 603-430-7219
>
>
>
> _
> This e-mail, including attachments, contains information that is
> confidential and may be protected by attorney/client or other privileges.
> This e-mail, including attachments, constitutes non-public information
> intended to be conveyed only to the designated recipient(s). If you are not
> an intended recipient, you are hereby notified that any unauthorized use,
> dissemination, distribution or reproduction of this e-mail, including
> attachments, is strictly prohibited and may be unlawful. If you have
> received this e-mail in error, please notify me by e-mail reply and delete
> the original message and any attachments from your system.
> _
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Good text editor

[Robert Cato]

Give Notepad++ a try.

On Thu, Oct 2, 2008 at 9:16 AM, <[EMAIL PROTECTED]> wrote:

>  Morning everyone,
>
>
>
> What's the best text editor out there for writing code and scripts and
> such?  I'd like to find one that does line numbering obviously, and does
> some formatting to keep things neat.  Like color coding expressions,
> functions, etc.  I'm trying to learn JavaScript, and using Notepad and
> Dreamweaver are proving difficult.
>
>
>
> Thanks,
>
>
>
> Eric Brown
>
> IT Manager
>
> Forest Post Productions
>
> [EMAIL PROTECTED]
>
> (248) 855-4333
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Open iMac

[Robert Cato]

If that does not work...bigger hammer!

On Tue, Sep 30, 2008 at 2:21 PM, Bob Fronk <[EMAIL PROTECTED]> wrote:

>  Hammer?
>
>
>
> Bob Fronk
>
> [EMAIL PROTECTED]
>
>
>
> *From:* Vue, Za [mailto:[EMAIL PROTECTED]
> *Sent:* Tuesday, September 30, 2008 1:47 PM
> *To:* NT System Admin Issues
> *Subject:* Open iMac
>
>
>
> Has anyone recently tried opening up the new iMac? How?
>
>
>
> -Z.V.
>
>
>
>
>  --
>
> This e-mail message (including any attachments) is for the sole use of
> the intended recipient(s) and may contain confidential and privileged
> information. If the reader of this message is not the intended
> recipient, you are hereby notified that any dissemination, distribution
> or copying of this message (including any attachments) is strictly
> prohibited.
>
> If you have received this message in error, please contact
> the sender by reply e-mail message and destroy all copies of the
> original message (including attachments).
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: $700B?

[Robert Cato]

It takes time to posture/spin this to make it appear that "my party has
saved the country from financial meltdown". It could last well into next
week.

On Fri, Sep 26, 2008 at 9:55 AM, Doige, Clayton
<[EMAIL PROTECTED]>wrote:

>  That long?
>
>
>
> *From:* Martin Blackstone [mailto:[EMAIL PROTECTED]
> *Sent:* 26 September 2008 14:54
> *To:* NT System Admin Issues
> *Subject:* RE: $700B?
>
>
>
> I estimate this list will now be in full tilt mode within the next 3 hours.
>
> Happy Friday.
>
>
>
> *From:* Vue, Za [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, September 26, 2008 6:33 AM
> *To:* NT System Admin Issues
> *Subject:* $700B?
>
>
>
> This sounds more like a ransom from the master of evil for wanting to take
> over Earth or a Lewis Farrakhan lawsuit.
>
>
>
> -Z.V.
>
>
>
>
>
>
>  --
>
> This e-mail message (including any attachments) is for the sole use of
> the intended recipient(s) and may contain confidential and privileged
> information. If the reader of this message is not the intended
> recipient, you are hereby notified that any dissemination, distribution
> or copying of this message (including any attachments) is strictly
> prohibited.
>
> If you have received this message in error, please contact
> the sender by reply e-mail message and destroy all copies of the
> original message (including attachments).
>
>
>
>
>
>
>
>
>
>
>
>
> __
> This email has been scanned by the MessageLabs Email Security System.
> __
>
> __
> This electronic mail message and any attached files contain information
> intended for the exclusive use of the person(s) to whom it is addressed and
> may contain information that is proprietary, privileged, confidential and/or
> exempt from disclosure under applicable law. If you are not the intended
> recipient, you are hereby notified that any viewing, copying, disclosure or
> distribution of this message or its contents may be subject to legal
> restriction or sanction. If you have received this message in error, please
> notify the sender immediately by electronic mail and delete the original
> message and any attachments without retaining any copies.
> _
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: We're all doomed

[Robert Cato]

Only 10%? My broker called me to say my account is -$600. I have to write
myself a check, just to get back to a zero balance.

Tongue in cheekmostly

On Wed, Sep 17, 2008 at 5:54 PM, Roger Wright <[EMAIL PROTECTED]> wrote:

> I'm beginning to wonder if the Large Hadron Collider is actually located
> under Manhattan.  It seems like Wall Street is falling into a big black
> hole.
>
> Whooosh!!!  There goes another 10% of my retirement savings   :(
>
>
> Roger Wright
> Network Administrator
> Evatone, Inc.
> 727.572.7076  x388
> _
>
>
>
> -Original Message-
> From: Ziots, Edward [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, September 16, 2008 2:49 PM
> To: NT System Admin Issues
> Subject: RE: We're all doomed
>
> Yes its true, and you too can have your portable Black hole for the OHH
> S***T emergencies for the affordable price of $19.95, checks made
> payable, to me.
>
> Z
>
> Edward E. Ziots
> Network Engineer
> Lifespan Organization
> MCSE,MCSA,MCP,Security+,Network+,CCA
> Phone: 401-639-3505
>
> -Original Message-
> From: Mike French [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, September 16, 2008 12:02 PM
> To: NT System Admin Issues
> Subject: RE: We're all doomed
>
> SWEET! So the "Blackhole" effect is TRUE!
>
> -Original Message-
> From: David Mazzaccaro [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, September 16, 2008 10:35 AM
> To: NT System Admin Issues
> Subject: RE: We're all doomed
>
> http://www.cyriak.co.uk/lhc/lhc-webcams.html
>
>
> -Original Message-
> From: Micheal Espinola Jr [mailto:[EMAIL PROTECTED]
> Sent: Tuesday, September 16, 2008 11:29 AM
> To: NT System Admin Issues
> Subject: Re: We're all doomed
>
> And then bend-over and KYAG.   lol.
>
> On Tue, Sep 16, 2008 at 11:04 AM, James Kerr <[EMAIL PROTECTED]>
> wrote:
> > Hug your children people
> >
> >
> > - Original Message - From: "Mike French"
> > <[EMAIL PROTECTED]>
> > To: "NT System Admin Issues" 
> > Sent: Tuesday, September 16, 2008 10:51 AM
> > Subject: OT: We're all doomed
> >
> >
> > September 15, ABC News - (International) Large Hadron Collider's
> > hacker infiltration highlights vulnerabilities. Though the Large
> > Hadron Collider's infiltration by hackers did not disrupt the historic
>
> > project, experts warn that its computer systems are vulnerable.
> > Shortly after physicists activated the Collider on Wednesday, hackers
> > identifying themselves as Group 2600 of the Greek Security Team
> > accessed computers connected to the Compact Muon Solenoid detector,
> > one of four key subsystems responsible for monitoring the collisions
> > of protons speeding around the 18-mile track near Geneva, Switzerland.
>
> > A few scientists had worried that the experiment could inadvertently
> > create a planet-swallowing black hole. Physicists called this
> > impossible, or at least extraordinarily unlikely. But the hack raises
> > a different sort of worst-case scenario: the largest and most
> > complicated science experiment in history, intended to reveal basic
> > information about the composition of matter, derailed by malevolent
> > intruders. The LHC experiments have very complex computer systems for
> > data recording and analysis and even more sensitive systems for
> > experiment control, trigger and data acquisition," said an MIT
> > physicist and Collider collaborator. "You could imagine that
> > penetrating the 'real time domain' could have catastrophic
> consequences." Source:
> > http://www.abcnews.go.com/Technology/story?id=5804254&page=1
> >
> > MIKE FRENCH
> > NETWORK ENGINEER
> > ~EQUITY BANK
> > [EMAIL PROTECTED]
> > Doing IT Right!
> >
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >   ~
> >
> > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
> >   ~
> >
>
>
>
> --
> ME2
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~
>   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>
> ~ Finally, powerful endpoint security that ISN'T a resource hog! ~
> ~   ~
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

VMworld - Vegas!

[Robert Cato]

Anybody else headed out there this week?

Robert

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: iSCSI SAN for esx and general use

[Robert Cato]

Went to an Equallogic/VMWare DR luncheon yesterday. We (management) have
issues with buying from Dell, but that SAN was sweet. They will be debuting
a 48 drive 5U SAN very soon. I could not find the specs online, but the guy
said they were full 3.5" drives (SAS or SATA), but I find it hard to believe
that many would fit in a 5U box.

Virtualized storage is way cool.

   *From:* Don Ely [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, August 22, 2008 12:48 PM
> *To:* NT System Admin Issues
> *Subject:* Re: iSCSI SAN for esx and general use
>
>
>
> H, I can get the S550 for over half of that cost with more space..
>
> On Tue, Aug 19, 2008 at 12:53 PM, Jonathan Link <[EMAIL PROTECTED]>
> wrote:
>
> What Equallogic, seriously?  I was looking at PS5000E for like $26,000, 2TB
> single controler config.
>
>
>
>
>
> On Tue, Aug 19, 2008 at 3:50 PM, Andy Shook <[EMAIL PROTECTED]> wrote:
>
> You couldn't handle it.
>
>
>
> Shook
>
>
>
> *From:* Jonathan Link [mailto:[EMAIL PROTECTED]
> *Sent:* Tuesday, August 19, 2008 3:38 PM
>
>
> *To:* NT System Admin Issues
>
> *Subject:* Re: iSCSI SAN for esx and general use
>
>
>
> Man, I need to get some of that...
>
> On Tue, Aug 19, 2008 at 3:29 PM, Andy Shook <[EMAIL PROTECTED]> wrote:
>
> Yep and just sent you something off-list…
>
>
>
> Shook
>
>
>
> *From:* Joseph L. Casale [mailto:[EMAIL PROTECTED]
> *Sent:* Tuesday, August 19, 2008 2:24 PM
>
>
> *To:* NT System Admin Issues
> *Subject:* RE: iSCSI SAN for esx and general use
>
>
>
> Equallogic is cheaper then an S550? I am seeing ~5k for an S550 w/o drives?
> You sure?
>
> Thanks!
> jlc
>
>
>
> *From:* Andy Shook [mailto:[EMAIL PROTECTED]
> *Sent:* Tuesday, August 19, 2008 11:53 AM
> *To:* NT System Admin Issues
> *Subject:* RE: iSCSI SAN for esx and general use
>
>
>
> JLC,
>
> Look at Equallogic. Better IO's and cheaper than S550's.  If you need
> a referral to the partner I used to get the primo pricing, let me know.
>
>
>
> Shook
>
>
>
> *From:* Joseph L. Casale [mailto:[EMAIL PROTECTED]
> *Sent:* Tuesday, August 19, 2008 11:54 AM
> *To:* NT System Admin Issues
> *Subject:* iSCSI SAN for esx and general use
>
>
>
> I need some more IO and don't have time to roll my own solution as I cant
> afford the testing interval.
>
>
>
> Looking at some cheap Netapp S550's right now. Anyone got any
> experiences/reco's they can share?
>
>
>
> Thanks!
> jlc
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Sharepoint / MOSS woes

[Robert Cato]

Stsadm does not flush the logs. I have downloaded the SQL Express management
tools, but I still need to research how to use them.

Robert

On Mon, Aug 18, 2008 at 7:18 AM, Michael B. Smith <
[EMAIL PROTECTED]> wrote:

>  Stsadm –o backup DOES include a sql backup.
>
>
>
> Regards,
>
>
>
> Michael B. Smith
>
> MCITP:SA,EMA/MCSE/Exchange MVP
>
> http://TheEssentialExchange.com 
>
>
>
> *From:* Oliver Marshall [mailto:[EMAIL PROTECTED]
> *Sent:* Monday, August 18, 2008 5:42 AM
> *To:* NT System Admin Issues
> *Subject:* Sharepoint / MOSS woes
>
>
>
> Can I start by just saying AGHHH!
>
>
>
> Thanks
>
>
>
> We decided to upgrade our WSS 3 box to MOSS2007 on Thursday. We went
> through all the docs before hand, got a copy of the backups (we run full
> backups nightly using STSADM and also get backup of the AAM  and the
> Metabase). As is the way, the install went badly. After 24 hours of us
> trying to coax the configuration tool to tell us what useraccount it was
> referring to when it said "invalid user account" we called PSS. That's when
> the fun really started. We've been assigned a PSS member who's English is
> poor and their accent is so strong that we've given up asking them to repeat
> themselves and have just asked them email everything to us, which means
> things are taking ages. The configuration tool failed to complete at all,
> even with PSS talking to it, so we started down the route of uninstalling
> MOSS/WSS and then starting again. Guess what?...you can't uninstall MOSS/WSS
> unless the configuration tool has completed successfully!! Which is nice,
> and the 'official' manual uninstall guidelines from MS require that you
> remove it from add/remove, which you can't.
>
>
>
> So, after stepping in to the dark, this time with a chap who can speak
> English and was happy to sit and chat, we've manually removed MOSS and are
> starting again. And this is really where my question comes in.
>
>
>
> When using WSS3 in standalone mode (ie just one box running WSS without SQL
> server installed), does the "STSADM –o backup ..." command constitute a full
> backup? We thought it did, and have checked the docs which also imply it
> does. However the PSS chap (now back the non-english speaker) seems to think
> that we would also need an SQL backup. This in itself is odd, as the
> standalone install of WSS3 appears to use Windows Internal Database (ie SQL
> Server 2005 compact or embedded). This doesn't have any management tools
> with it, and there's no clear indication that it's meant to be managed
> outside of the app thats written to use it.
>
>
>
> I'm losing the will to live, and am apparently paying good money for
> someone to email me links and to confuse us even more than we are able to do
> ourselves.
>
>
>
> Rant over :S
>
>
>
> Olly
>
>
>
>
>
>
>
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: After-hours work

[Robert Cato]

Durf,

Thanks for the interesting thread.

Salary, on site IT guy. Company pays for data plan on my Tilt, so I get
e-mail as it's sent. I am supposed to get 50% comp time but it has not
worked out like that so I will put myself in the #1 category. There are a
ton of hours, but I'm getting to play with some fun stuff after years of
tight enterprise controls. The company actually adjusts my hourly rate down
to meet my salary number. It can get a bit sad when I get over 120 hours
in a pay period.

Robert

On Sat, Aug 16, 2008 at 11:07 AM, Durf <[EMAIL PROTECTED]> wrote:

> Hey all,
>
> Taking a little informal poll about compensation for after hours / weekend
> works.  This is mostly geared at consultants, so if you're an onsite IT guy,
> please indicate.
>
> 
> If you work after-hours on-call, or are expected to carry the beeper, how
> are you compensated?
>
> 1. None, just man up and be an IT cowboy and glad you have a job.
> 2. Flat fee for being on-call.
> 3. Overtime or time-and-a-half bonus for hours actually worked.
> 4. Straight hourly at my normal rate
> 5. Flex time - no extra compentation, but I come in late the next day /
> take a day off later in the week.
>
> Thanks all.   Yes, I'm on the beeper this weekend (OK, there's no actual
> beeper) so it's on my mind. :)
>
> -- Durf
>
> --
> --
> Give a man a fish, and he'll eat for a day.
> Give a fish a man, and he'll eat for weeks!
>
>
>
>
>
>

~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~   ~

Re: Smartphone Recommendations

[Robert Cato]

 TVK,

Where did you get WM6.1 for the Diamond? Which version?

Thanks,
Robert



>   *From:* Tim Vander Kooi [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, August 01, 2008 10:40 AM
> *To:* NT System Admin Issues
> *Subject:* RE: Smartphone Recommendations
>
>
>
> I have the AT&T Tilt and LOVE it. I am running WM6.1 for the Diamond on it
> and after upgrading the radio from the "craptastic" one that AT&T loads, I
> now get 4-5 days per charge and I use it for Email, Texting, camera, and
> playing games while waiting to be seated at restaurants etc. Really a great
> device, I highly recommend it. And I would seriously doubt that a Blackberry
> could possibly be any less work since managing WM devices is EXTREMELY
> simple to do.
>
> TVK
>
>
>
> *From:* Ken Schaefer [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, August 01, 2008 8:52 AM
> *To:* NT System Admin Issues
> *Subject:* RE: Smartphone Recommendations
>
>
>
> I think the two leading WM phones at the moment are the HTC Touch Diamond
> (Diamond Pro coming soon with a keyboard) and the Samsung i900. The Samsung
> Blackjack II is also good if you don't need the latest, and want the
> thumbboard style keyboard:
>
>
>
> Here's a length HTC Diamond vs. I900 review.
>
>
> http://www.gsmarena.com/htc_touch_diamond_vs_samsung_i900_omnia-review-262.php
>
>
>
> Of course, with mobile telephony being so backward in the US (g, d & r),
> who knows when you'll see these phone available :-)
>
>
>
> Cheers
> Ken
>
>
>
> *From:* Roger Wright [mailto:[EMAIL PROTECTED]
> *Sent:* Friday, 1 August 2008 11:37 PM
> *To:* NT System Admin Issues
> *Subject:* OT: Smartphone Recommendations
>
>
>
> A couple of or sales people are asking for recommendations to replace their
> cell phones.  I'm dated enough that all I look for is a phone I can use as a
> phone, and although my Cingular 3125 runs Windows Mobile I'm not using it
> for email or internet access.  But I know the sales staff would need both.
> We're running Exchange 2003 with OWA so WM5/6 should work fine for us.
>
>
>
> Any recommendations for a solid phone and/or service I could pass on to
> them?  All the other cool features (camera/media player/games/texting, etc.)
> would only be of considered if the phone and internet/email capabilities
> were reliable.
>
>
>
>
>
>
>
>
>
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: WYSE Terminal thin clients

[Robert Cato]

I used Wyse thin clients many years ago with good results. We used them for
continuity operations or temporary PC needs.

I've been looking at the Wyse website recently, specifically x90 series with
XPembedded. It says other applications can be embedded, but I'm trying to
figure out if Word or Excel can be embedded to allow for disconnected
editing of documents.
Anyone have any experience with this? Several Google searches have not
turned up any good hits.

I'm waiting on a Wyse salesman to respond so I can get my hands on one and
do some testing.

Thanks,
Robert
On Mon, Jul 7, 2008 at 10:45 PM, Mike Semon <[EMAIL PROTECTED]> wrote:

>  The Wyse OS such as in the S10 you can't install local apps and setting
> up local printers can be a pain. If you are connecting
>
> To just a published app or desktop then that may be fine. For manufacturing
> environment like yours that is probably ok. Just
>
> replace when it breaks. For users with higher computing needs they can be
> frustrated by the limitations. The S90 with the
>
> embedded XP has more of the look and feel of a normal desktop. WDM replaces
> rapport. Rapport was very buggy.
>
>
>
>
>  --
>
> *From:* Rebecca Van Acker [mailto:[EMAIL PROTECTED]
> *Sent:* Monday, July 07, 2008 6:57 PM
> *To:* NT System Admin Issues
> *Subject:* RE: WYSE Terminal thin clients
>
>
>
> How do you plan on using them?
>
> We use them in our manufacturing environment running the Wyse OS to run an
> HP/UX app (IP and Digiport printing is fine), a couple ASP.Net apps on IIS
> (IP printing is fine) and several Win 2K3 TS apps (forget about printing).
> I've never installed anything locally.  If one breaks (which is rare -- and
> warranty repairs are quick), I just replace it and move on.
>
> We use Rapport (the Wyse software) for remote administration.
>
> ~Becky
>
> > From: [EMAIL PROTECTED]
> > To: ntsysadmin@lyris.sunbelt-software.com
> > Date: Mon, 7 Jul 2008 16:26:23 -0400
> > Subject: RE: WYSE Terminal thin clients
> >
> > I have worked with the S90 which has the embedded XP. It is fine for that
> > right environment. Places like manufacturing or Kiosk are a great place.
> > The drawbacks in the
> > corporate environment are that they have to be managed like any other
> > device so you need another tool which for Wyse is WDM. Also if you need
> to
> > install small programs on the device there is not alot of room to work. I
> > think it is like 512-1MB local storage. You can have them customize a
> build
> > for you. Test printing before you make your decision. Installing local
> > print drivers can cause problems. The thing to look at is buying thin
> > clients going to save money in the long run if they cost about the same
> as
> > PC's? A desktop locked down with group policy offers the same
> functionality
> > and more flexibility.
> >
> > Mike
> >
> > Original Message:
> > -
> > From: Joseph L. Casale [EMAIL PROTECTED]
> > Date: Mon, 07 Jul 2008 13:51:02 -0600
> > To: ntsysadmin@lyris.sunbelt-software.com
> > Subject: RE: WYSE Terminal thin clients
> >
> >
> > Shawn,
> > If its ok to you, keep it on list :P
> > I may be buying some too...
> > jlc
> >
> > 
> > From: Shawn Everett [EMAIL PROTECTED]
> > Sent: Sunday, July 06, 2008 5:49 PM
> > To: NT System Admin Issues
> > Subject: WYSE Terminal thin clients
> >
> > Hi All,
> >
> > Is there anyone on the list with experience with XP on Wyse thin clients?
> >
> > Could someone drop me a note off list? Aside from some general concept
> > knowledge I don't know much about them and would like to understand them
> > better.
> >
> > Shawn
> >
> >
> > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~
> > ~  ~
> >
> > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~
> > ~  ~
> >
> >
> >
> > 
> > mail2web LIVE – Free email based on Microsoft(R) Exchange technology -
> > http://link.mail2web.com/LIVE
> >
> >
> >
> > ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~
> > ~  ~
>
>
>
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: MOSS for Search

[Robert Cato]

48% of the multi-TB file server is going to be a big index, not to mention
you would want to have 2x just in case your index became corrupt and needed
to re-index.

Can you share the article on sizing?
Robert
On Mon, Jun 23, 2008 at 1:26 PM, Kevin Lundy <[EMAIL PROTECTED]> wrote:

> Thanks Robert.  That helps.  I didn't know about the re-index.  I just read
> a case study that said the index took 35 days.  So doing a re-index is not
> something I'd want to do often.
>
> My TAM also finally responded with an article on sizing.  I've only quickly
> read it, but it looks like the live example they gave would be about 48%.
> That's not too awful until you plan for 2x for the re-index.
>
> Kevin
>
> On Mon, Jun 23, 2008 at 1:06 PM, Robert Cato <[EMAIL PROTECTED]>
> wrote:
>
>>
>> The rule of thumb from the MOSS class I attended was 30%. The big gotcha
>> is that if you make a change that requires a re-index it makes a new index
>> file before it removes the old one. You better make sure you have plenty of
>> space. There are search add-ons for the non-Microsoft file types (like Adobe
>> pdf for example), if you add a new add-on it initiates a re-index.
>> Still working out the details of our deployment to happen later this year,
>> but the instructor said if you do nothing else read the search chapter in
>> the administrators guide multiple times before you implement search, mostly
>> because you want to avoid a re-index.
>>
>> Hope that helps,
>> Robert
>>
>>   On Mon, Jun 23, 2008 at 11:39 AM, Kevin Lundy <[EMAIL PROTECTED]> wrote:
>>
>>> Has anyone implemented MOSS for Search on a sizeable file shares?
>>> (multi-TB)
>>>
>>> What I'm looking for is some guidance on estimating the index size.  I'm
>>> putting together a project for upgrading to MOSS and the index size is the
>>> one piece I can't find any help on.  Maybe it is just my search skills on MS
>>> site.
>>>
>>> I've used the Capacity Planning tool and it doesn't mention disk space.
>>> I've downloaded many whitepapers, including the MOSS for Search Guide.
>>>
>>> Any direct guidance or just better search terms would be appreciated.
>>>
>>> Kevin
>>>
>>>
>>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm>  ~

Re: MOSS for Search

[Robert Cato]

The rule of thumb from the MOSS class I attended was 30%. The big gotcha is
that if you make a change that requires a re-index it makes a new index file
before it removes the old one. You better make sure you have plenty of
space. There are search add-ons for the non-Microsoft file types (like Adobe
pdf for example), if you add a new add-on it initiates a re-index.
Still working out the details of our deployment to happen later this year,
but the instructor said if you do nothing else read the search chapter in
the administrators guide multiple times before you implement search, mostly
because you want to avoid a re-index.

Hope that helps,
Robert

On Mon, Jun 23, 2008 at 11:39 AM, Kevin Lundy <[EMAIL PROTECTED]> wrote:

> Has anyone implemented MOSS for Search on a sizeable file shares?
> (multi-TB)
>
> What I'm looking for is some guidance on estimating the index size.  I'm
> putting together a project for upgrading to MOSS and the index size is the
> one piece I can't find any help on.  Maybe it is just my search skills on MS
> site.
>
> I've used the Capacity Planning tool and it doesn't mention disk space.
> I've downloaded many whitepapers, including the MOSS for Search Guide.
>
> Any direct guidance or just better search terms would be appreciated.
>
> Kevin
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

OT: $75 Shell Gas Card

[Robert Cato]

http://www.206inc.com/dockersgiftcard2008

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Office 2007 and Office XP on the same Terminal Services Box?

[Robert Cato]

Thinstall

On Mon, Jun 2, 2008 at 11:15 AM, Tom Miller <[EMAIL PROTECTED]> wrote:

>  Hi Folks:
>
> Anyone running Office 2007 and Office XP (or another older version) of on
> the same Terminal Server/Citrix servers?  I have users here and some use
> 2007 and some use Office XP.  I wondering if I need to keep them on separate
> Citrix servers or can mix them.  I found an old MS KB, 290576, but that does
> not apply to Office 2007.
>
> Tom
>
> Confidentiality Notice: This e-mail message, including attachments, is for
> the sole use of the intended recipient(s) and may contain confidential and
> privileged information. Any unauthorized review, use, disclosure, or
> distribution is prohibited. If you are not the intended recipient, please
> contact the sender by reply e-mail and destroy all copies of the original
> message.
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Miami Salary survey?

[Robert Cato]

Haven't tried it lately but salary.com had a customizable (including
city/job title/etc) salary calculator. The free one was a bit of a pain, but
it should give you a ballpark. I think a couple of the big job boards had a
similar service.

Miami is one of the more expensive areas of FL, I would SWAG at ~25% more
than Tampa Bay area. I think you are in the Tampa market and you have a good
grasp of those numbers.
Hope it helps,
Robert
On Sun, Apr 13, 2008 at 9:20 PM, <[EMAIL PROTECTED]> wrote:

>  Hey guys and gals,
>
>
>
> What would be a fair salary for someone in the Miami area who service
> primarily the downtown and surrounding area.  They would have to be fairly
> strong in Small Business Server, Windows server, overall general network
> understanding.  IP, switching, nothing too crazy.  Have good desktop support
> skills and be able to interface with clients taking technical jargon down to
> a client level.  Some more advanced understanding would be great, but
> primarily just a support technician that has a working understanding on
> server level stuff.
>
>
>
> Thanks
>
>
> Greg
>
>
>
>
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Turning on Win2k3 RDP remotely?

[Robert Cato]

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal
Server\fDenyTSConnections set to 0



On Mon, Mar 10, 2008 at 4:15 PM, Kurt Buff <[EMAIL PROTECTED]> wrote:

> How would I do this? My google-fu today is just crappy.
>
> I've got admin rights on the box in our AU office, but can't figure
> out how to turn it on. I can connect to the various admin shares
> (ipc$, c$, etc.) and have access to the other things you'd expect.
>
> I suspect the admin at the remote site turned it off in a fit of
> pique, as I am *certain* I turned it on during install, before
> shipping it from the US to him, but I can't prove it.
>
> Kurt
>
> ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
> ~   ~
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Strange occurrences after rebuilding Print Server

[Robert Cato]

Try this:
On the properties of each printer (on the server), select the "port" tab,
local the correct port, click on "configure" and uncheck "SNMP enabled".
Once you click "ok" the printer's status will be instantly turned back to
normal.
Quoted from:
http://episteme.arstechnica.com/eve/forums/a/tpc/f/12009443/m/752004225831

Had this problem after I upgraded our servers to SP2.
HTH,
Robert
On Wed, Mar 5, 2008 at 8:03 PM, Walt Hundleby <
[EMAIL PROTECTED]> wrote:

> Hi All
> I had to rebuild our Print Server because the system partition was created
> too small and kept running out of space.
> Original Printer Server was W2K3, Enterprise Ed. with SP2
> New Print Server is W2K3 R2, Ent. Ed. with SP2
> I used Microsoft's Print Migrator to recreate the queues, renamed the old
> print server and then renamed the new print server to the original print
> server's name to save on profile changes.
>
> Since then 2 or our ~35 networked printers have given a lot of grief, an
> HP LJ 2100 and an HP LJ 4000.  I went searching for new drivers but there
> were none.  I reloaded the drivers just in case.  The 2100 prints a few jobs
> and then goes offline.  To get it going again you have to pull the plug and
> then cycle the on/off.  Both HP and Microsoft drivers have been tried.  The
> 4000 - with the HP driver the printer receives the job but does not print
> it, with the Microsoft driver it does print everything but way slower than
> before.
>
> And on top of that I have the Print Spooler service just stop on several
> PCs and Terminal Servers with no error message.  So far there has been only
> one occurance per PC or Terminal Server of the computers that have
> experienced the problem.
>
> Any ideas on solutions would be appreciated...Thanks...Walt
> ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
> ~   ~
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: AT&T Provider Down for Blackberry

[Robert Cato]

Not working for us in Tampa.

On Jan 31, 2008 1:44 PM, Bill Lambert <[EMAIL PROTECTED]> wrote:

>
>  All our AT&T BBerrys have the Data Connection Refused message and RIM
> says there is a nation-wide problem with AT&T.  Anyone else seeing this?
>
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: OT - Now it's cold...

[Robert Cato]

We bought season passes this year and have been ~15 times since September.
Go to this website (
http://disneyworld.disney.go.com/wdw/myVacation/customizedMaps/index?id=CustomizedMapsSampleMapsPage)
to create custom maps of each park.
Comfortable shoes for everyone.
Concur about bringing food/drinks into the park(s).
I did not expect much from Animal Kingdom, but they have the best show hands
down. Nemo live on stage. It is a top notch production. The Lion King show
at AK is also very good.
Lights Motor Action! at MGM was a big hit with our crew.

Have fun,
Robert

On Jan 26, 2008 8:25 PM, Steve Ens <[EMAIL PROTECTED]> wrote:

> Hey Jon
> We'll bring some down when we come midFebruary...how cold do you want
> it?  I can basically accomodate anything down to -40C with wind
> We're bringing the kids down for Disney...got any good tips?
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: A very timely movie clip

[Robert Cato]

Yeah! It could have been 40 or 50 degrees colder before those freaks (no
offense) would consider it "a bit nippy". I survived 10 years in New England
and was miserable ~6 months each "Winter".

Robert
Happy when it's 90+ with 100% humidity

On Jan 22, 2008 8:15 PM, Sherry Abercrombie <[EMAIL PROTECTED]> wrote:

>
> Not that cold
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

SCOM Through WSS or MOSS

[Robert Cato]

Anyone out there running SCOM with a front end interface/dashboard in WSS or
MOSS?

TIA,
Robert

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: orange county, California

[Robert Cato]

Go to Hell!

It is a town on Grand Cayman. They have a gift shop with everything
(postcard/t-shirt/etc) from Hell.



On Jan 11, 2008 11:01 AM, Jacob <[EMAIL PROTECTED]> wrote:

>
>  All my vacation have been in the Caribbean.  Going again in November for
> diving in the Caymans.
>
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Network monitoring tools

[Robert Cato]

VMWare lets you mount a .iso file in the virtual CD-ROM drive. It's how most
people build a virgin VM. If you want to do it with physical hardware then
you have the steps down.

On Jan 10, 2008 6:37 PM, Joe Heaton <[EMAIL PROTECTED]> wrote:

>
>  So, with OSSIM, you basically download the .iso, burn that on a CD, throw
> it into the CD drive of a virgin machine (no OS installed), and let it do
> its thing?
>
>
>
>
>
> Joe Heaton
>  --
>
> *From:* Don Ely [mailto:[EMAIL PROTECTED]
> *Sent:* Thursday, January 10, 2008 12:34 PM
>
> *To:* NT System Admin Issues
> *Subject:* Re: Network monitoring tools
>
>
>
>
> http://www.ossim.net
>
> On Jan 10, 2008 12:31 PM, Ziots, Edward <[EMAIL PROTECTED]> wrote:
>
>
>
> What is the link again, if they got a VM for ESX I definitely want to try
> this out.
>
>
>
> Z
>
>
>  --
>
> *From:* Benjamin Zachary [mailto: [EMAIL PROTECTED]
> *Sent:* Thursday, January 10, 2008 3:26 PM
>
>
> *To:* NT System Admin Issues
>
> *Subject:* RE: Network monitoring tools
>
>
>
>
>
> I saw the link and grabbed the vm and ported it over to my esx box. Runs
> pretty well, the doc had an error that the file is /etc/network/interfaces
> not networking
>
>
>
> *From:* Don Ely [mailto: [EMAIL PROTECTED]
> *Sent:* Thursday, January 10, 2008 3:06 PM
> *To:* NT System Admin Issues
> *Subject:* Re: Network monitoring tools
>
>
>
>
> Has it's own ISO which I installed in a VM, will be looking at it more
> this afternoon...
>
> On Jan 10, 2008 11:50 AM, Kurt Buff <[EMAIL PROTECTED]> wrote:
>
> OK - not in ports though.
>
> I'll download the .tgz and see how much trouble it gives me.
>
>
> On Jan 9, 2008 7:05 PM, Don Ely <[EMAIL PROTECTED]> wrote:
> >
> >
> > Main page is where I read it...
> >
> > Project Admins: dkarg, jcasal
> > Operating System: All POSIX (Linux/BSD/UNIX-like OSes)
> > License: BSD License
> > Category: Security, Monitoring
> >
> >
> >
> > On Jan 9, 2008 6:31 PM, Don Ely < [EMAIL PROTECTED]> wrote:
> >
> > >
> > >
> > > I didn't read the FAQ yet and I may be wrong could have been something
> > else I was reading on sourceforge...
> > >
> > >
> > >
> > >
> > >
> > > On Jan 9, 2008 5:27 PM, Kurt Buff <[EMAIL PROTECTED]> wrote:
> > >
> > > > I did a search on the site (which redirected me to a search page on
> > > > their wiki) for FreeBSD, and it came up with a placeholder page.
> > > >
> > > > I haven't gotten to the docs yet, but the FAQ says nothing about
> BSD.
> > > >
> > > >
> > > >
> > > >
>
> > > > On Jan 9, 2008 5:18 PM, Don Ely <[EMAIL PROTECTED]> wrote:
> > > > >
> > > > >  I'm DLing the VM.  I believe I read in the docs in can be
> installed
> > on the
> > > > > BSD's though...
> > > > >
> > > > >
> > > > >
> > > > >
> > > > > On Jan 9, 2008 5:16 PM, Kurt Buff < [EMAIL PROTECTED]> wrote:
> > > > >
> > > > > > Looks really dang cool.
> > > > > >
> > > > > > No port for FreeBSD, though. Looks like the missing bit is
> spade.
> > > > > >
> > > > > > Doesn't look as if any of the BSDs have it.
> > > > > >
> > > > > > Well, I'm downloading the install ISO - I wonder what OS it
> > installs.
> > > > > >
> > > > > >
> > > > > >
> > > > > >
> > > > > > On Jan 9, 2008 3:57 PM, Don Ely < [EMAIL PROTECTED]> wrote:
> > > > > > >
> > > > > > >  Go have a look at OSSIM...  ;o)  It has EVERYTHING
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > >
> > > > > > > On Jan 9, 2008 3:54 PM, Kurt Buff < [EMAIL PROTECTED]>
> wrote:
> > > > > > >
> > > > > > > > Another good tool for this kinda thing is ntop, but it must
> be
> > > > > > > > positioned correctly - you will most likely need a
> SPAN/mirror
> > port in
> > > > > > > > your infrastructure, or else use the netflow or sflow
> plugins to
> > get
> > > > > > > > reports from your routers/switches.
> > > > > > > >
> > > > > > > > Either way, it's extremely useful, as it doesn't merely
> measure
> > > > > > > > packets in/out of interfaces, it actually categorizes
> packets
> > and
> > > > > > > > keeps track of top talkers, etc.
> > > > > > > >
> > > > > > > > Excellent for tracking down who is downloading that huge iso
> > file, and
> > > > > > > > where it's coming from. Lets you ask more pointed questions,
> if
> > > > > > > > nothing else.
> > > > > > > >
> > > > > > > > Differentiates between tcp/udp/etc., and puts up some nice
> RRD
> > > > > graphics.
> > > > > > > >
> > > > > > > > Kurt
> > > > > > > >
> > > > > > > >
> > > > > > > > On Jan 9, 2008 2:28 PM, Joe Heaton < [EMAIL PROTECTED]>
> wrote:
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > >
> > > > > > > > > I know we have these discussions every couple of months at
> > least,
> > > > > but
> > > > > > > here
> > > > > > > > > goes:
> > > > > > > > >
> > > > > > > > >
> > > > > > > > >
> > > > > > > > > What are you guys using to monitor your networks so that
> you
> > have an
> > > > > > > answer
> > > > > > > > > to the age-old user question of:
> > > > > > >

Re: VMWare ESX and Storevault S300

[Robert Cato]

This (http://www.vmware.com/pdf/vi3_san_guide.pdf) says the S500. Have you
checked the VMW forums?

On Jan 9, 2008 1:43 PM, Phil Guevara <[EMAIL PROTECTED]> wrote:

>
> Anyone know if vmware ESX works with Storevault S300??
>
>
>
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: WHOIS information

[Robert Cato]

Seriously consider not putting a direct mailto: link on any public web site.
The address will be crawled immediately and put into the spam archives.
Google "obfuscate email address" and you will find many alternatives to hide
your addresses from the spider crawlers. There are different
technologies/methodologies available, some require javascript or other
features be enabled on the receiving end. Take these into consideration when
making your choice.

Robert
On Jan 3, 2008 4:17 PM, Kurt Buff <[EMAIL PROTECTED]> wrote:

> We've changed ours to [EMAIL PROTECTED], and set up a separate
> mailbox. We purge the spam regularly.
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Adobe rant resumes...

[Robert Cato]

Not the easiest thing to find on the Adobe site
http://kb.adobe.com/selfservice/viewContent.do?externalId=b0dba60b#deploy
This includes a link to their licensing page
http://www.adobe.com/licensing/ where
you need to sign up so they know who is distributing their code. Once you
sign up they will send you a link to a page where you can download Flash
and/or Shockwave players.

HTH,
Robert

On Dec 31, 2007 9:37 AM, <[EMAIL PROTECTED]> wrote:

> Greetings!
>
> For the past month or so, I've been reading about vulnerabilites in
> "Flash".  I went to the Adobe sites (both HTTP and FTP) looking for an
> MSI-based patch and could not find one...
>
> Does one exist?  If not, how are folks out there forcing updates for this?
>  Thanks!
> --
> Richard McClary, Systems Administrator
> ASPCA Knowledge Management
> 1717 S Philo Rd, Ste 36, Urbana, IL  61802
> 217-337-9761
> http://www.aspca.org
>
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~

Re: Looking for a DNS provider

[Robert Cato]

NSOL is fine for A records, but they do not offer reverse DNS for MX
records. I learned this mistake the hard way. They are one of the biggest
brand names in the space and I found it hard to believe they did/do not
provide this "basic" service required to properly handle MX records.

Robert

On Dec 28, 2007 9:58 AM, David Mazzaccaro <[EMAIL PROTECTED]>
wrote:

>
>  My registrar is Network Solutions - any reason I can't (or shouldn't) be
> using them?
>
> It looks like if they are hosting our DNS as well as our domain names, I
> can make DNS changes 24x7 (and at no additional cost).
>
> Thanks,
>
> Dave
>

~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~
~   ~