Re: Your copy of ?Networking and Security for Dummies"

On 30 Jul 2010 at 14:55, richardmccl...@aspca.org wrote: > Hubs are still out there! Years ago, some folks did a great job of > hiding them, like over ceilings, etc for workgroups. I've heard some motels use them since they're cheaper than switches. Download without form here: http://lto.libr

Re: Vipre false positives?

On 30 Jul 2010 at 18:52, Alex Eckelberry wrote: > This is actually a really good idea. Thanks... please let me know when it's implemented ;-) ... and include my name on the patent application, please! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~

RE: Symantec Power Eraser ???

OK, that would be a resounding NO … Erik Goldoff IT Consultant Systems, Networks, & Security ' Security is an ongoing process, not a one time event ! ' From: Erik Goldoff [mailto:egold...@gmail.com] Sent: Friday, July 30, 2010 2:24 PM To: NT System Admin Issues Subject: Symantec Power E

RE: 2008 DC being offline

30 days not unless you tinkered with some tombstone lifetime settings which I don't know why you would lower it... Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: David Lum [mailto:david@nwea.org] Sent: Wednesday, July 28, 2010 2:55 PM To: N

RE: Possible Rogue device on the network

ARP tables are a layer above what you're troubleshooting. You need to look at the actual layer 2 switching/mac address tables. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 From: Fergal O'Connell [mailto:foconn...@curamsoftware.com] Sent: Tuesday, July 27, 2010 4:35 AM To: NT S

RE: setspn persistence

Well I assure you it's a persistent change so you've got something modifying this and taking it out. You should turn on auditing of the servicePrincipalNames attribute and enable DS Access auditing on your DCs. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Messa

RE: 2008 DC being offline

You'll be fine. Unless you've tinkered with the tombstone lifetime, even on Windows 2000 built domains you've got a 60 day TSL. Thanks, Brian Desmond br...@briandesmond.com c - 312.731.3132 -Original Message- From: jesse-r...@wi.rr.com [mailto:jesse-r...@wi.rr.com] Sent: Wednesday, J

Re: Vipre false positives?

Agreed. I just got done submitting (several days late) to virustotal.com a set of .LNK files that were marked on our file server. By the time I had submitted them, nobody thought that they were dangerous (except esafe, which is really weird.) They were marked as report only, so it was no big deal

Re: Auditing in Windows 2008 and R2 what are folks doing?

Sigh - yes you did, twice anyway. Can anyone tell I'm having a distracted day? "Agent management and change control would have been a nightmare." "servers and agents must have automatic failover and agents must be deployable by SMS/SCCM and centrally manageable" Those two seem to be stating the

RE: Vipre false positives?

This is actually a really good idea. From: Angus Scott-Fleming [mailto:an...@geoapps.com] Sent: Thursday, July 29, 2010 9:43 PM To: NT System Admin Issues Cc: Alex Eckelberry Subject: Re: Vipre false positives? On 26 Jul 2010 at 9:08, Jeff Cain wrote: > These should have been addressed in d

RE: Auditing in Windows 2008 and R2 what are folks doing?

I have at least 4 or 5 times in this thread I believe ;-] -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Friday, July 30, 2010 2:45 PM To: NT System Admin Issues Subject: Re: Auditing in Windows 2008 and R2 what are folks doing? Care to elaborate on that a bit? Wha

Re: Your copy of “Networking and Security f or Dummies"

Sure thing - enjoy your weekend folks! Don K From: "gro...@beachcomp.com" To: NT System Admin Issues Sent: Fri, July 30, 2010 2:52:42 PM Subject: RE: Your copy of “Networking and Security for Dummies" Thanks Man   From:Don Kuhlman [mailto:drkuhl...@yahoo.co

RE: Symantec Power Eraser ???

+10 Well played sir... well played. -sc -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, July 30, 2010 4:40 PM To: NT System Admin Issues Subject: Re: Symantec Power Eraser ??? On Fri, Jul 30, 2010 at 2:24 PM, Erik Goldoff wrote: > Has anyone evaluated th

Re: Auditing in Windows 2008 and R2 what are folks doing?

Care to elaborate on that a bit? What about the complication makes syslog a poor choice for you? Is it line length limitations, sheer volume, client software management or something else? Kurt On Fri, Jul 30, 2010 at 13:40, Free, Bob wrote: > Yea, we have a grid of LogLogic appliances, they are

Re: Your copy of ?Networking and Security for Dummies"

I just did a quick scan - date says 2010 - wow that is a bit funny using those old legacy terms, but they are also saying hubs are older, rings are gone, buses are out of favor... It may be a compilation of stuff which is why there are some outdated terms in there...not sure. Hopefully the la

Re: Hyper-V and 'Default Gateway'

Thanks for the replies! Now I just need to beg our network team for addresses in the same subnet!!! ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ ~

RE: Symantec Power Eraser ???

> What does it do, erase all Symantec products? That might be useful... LOL. Made me think of the old axiom that the only solution one ever needed for Symantec was fdisk :-] -Original Message- From: Ben Scott [mailto:mailvor...@gmail.com] Sent: Friday, July 30, 2010 1:40 PM To: NT Sys

RE: Auditing in Windows 2008 and R2 what are folks doing?

They are also in cleartext which always bothers me with authentication logs, I can often correlate passwords to user IDs by looking at failed logins in DC logs where the user accidentally puts their password in the user name box. It appears way more often than some might think, especially when a lo

RE: Auditing in Windows 2008 and R2 what are folks doing?

Yea, we have a grid of LogLogic appliances, they are quite cool for pure syslog from the *NIX boxes, IDS, routers, switches, firewalls etc. Managing agents on thousands of Windows systems is another story and a major PITA on all the implementations I've seen. Syslog is cool for what it was ori

Re: Symantec Power Eraser ???

On Fri, Jul 30, 2010 at 2:24 PM, Erik Goldoff wrote: > Has anyone evaluated this tool yet ? What does it do, erase all Symantec products? That might be useful... -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~

Re: Your copy of ?Networking and Security for Dummies"

On Fri, Jul 30, 2010 at 3:55 PM, wrote: > Hubs are still out there! Maybe they're using "hub" in the classic sense, to mean the equipment in the center of any star topology network. ... You're not buying it, are you? Me neither. -- Ben ~ Finally, powerful endpoint security that ISN'T a

RE: Your copy of “Networking and Security for Dummies"

Hubs caught your attention but not RING TOPOLOGY ??? LOL ! Erik Goldoff IT Consultant Systems, Networks, & Security ' Security is an ongoing process, not a one time event ! ' From: gro...@beachcomp.com [mailto:gro...@beachcomp.com] Sent: Friday, July 30, 2010 3:54 PM To: NT System

RE: Your copy of ?Networking and Security for Dummies "

Hubs are still out there! Years ago, some folks did a great job of hiding them, like over ceilings, etc for workgroups. -- richard wrote on 07/30/2010 02:54:20 PM: > Thanks a bunch. > > Although? they talk about hubs? when was this written?! > > From: Don Kuhlman [mailto:drkuhl...@yahoo.com]

RE: Your copy of “Networking and Security for Dummies"

Thanks a bunch. Although… they talk about hubs… when was this written?! From: Don Kuhlman [mailto:drkuhl...@yahoo.com] Sent: Friday, July 30, 2010 3:47 PM To: NT System Admin Issues Subject: Your copy of “Networking and Security for Dummies" Not sure if anyone's interested but thought

RE: Your copy of “Networking and Security for Dummies"

Thanks Man From: Don Kuhlman [mailto:drkuhl...@yahoo.com] Sent: Friday, July 30, 2010 3:47 PM To: NT System Admin Issues Subject: Your copy of “Networking and Security for Dummies" Not sure if anyone's interested but thought I would share...could be good for educating non-technical type f

Your copy of “Networking and Security for D ummies"

Not sure if anyone's interested but thought I would share...could be good for educating non-technical type folks or just a review of some basics... Don K SonicWALL.com| MySonicWALL.com View this newsletter in your browser Online Book July 28, 2010 Want to learn more about Networking an

Re: Auditing in Windows 2008 and R2 what are folks doing?

The systems I've seen described don't depend on a single syslog server - it's usually a set of them, and the data is aggregated. to a central repository. Mind you, I've not worked in a large scale environment, but discussion on lists like the one at loganalysis.org has been interesting. On Fri, J

RE: Hyper-V and 'Default Gateway'

The short story is that although the two IP subnets may be on the same physical "segment" (or virtual physical segment), they are not on the same IP subnet or, as you call it, network. Therefore, there has to be a router with an interface on each subnet to act as the default gateway to the oth

Re: Hyper-V and 'Default Gateway'

The problem is not that the host address is different, but that the gateway address is not on the same subnet as the machine's IP address. The machine had to be able to figure out how to reach its default gateway, so it cannot be on a different subnet. -ASB: http://XeeSM.com/AndrewBaker Sent fr

Symantec Power Eraser ???

Has anyone evaluated this tool yet ? They position it alongside Malwarebytes as a supplementary tool to their primary (SEP) software, but state it is aggressive and errs towards the side of false positives Erik Goldoff IT Consultant Systems, Networks, & Security ' Security is an ongoing

Re: It's that day!

And congrats on the Twins too Tony! Woohooo From: tony patton To: NT System Admin Issues Sent: Fri, July 30, 2010 10:59:37 AM Subject: Re: It's that day! Thx folks, hope it rubs off on everyone else that needs/wants it :) Its an advancement career-wise, mov

Re: It's that day!

Tony, are you an Irishman? - Original Message - From: tony patton To: NT System Admin Issues Sent: Friday, July 30, 2010 11:59 AM Subject: Re: It's that day! Thx folks, hope it rubs off on everyone else that needs/wants it :) Its an advancement career-wise, moving to fu

Re: It's that day!

Too bad I cant drink coffee, even decaf, due to MY BLEEDING ULCER! - Original Message - From: Maglinger, Paul To: NT System Admin Issues Sent: Friday, July 30, 2010 9:46 AM Subject: RE: It's that day! This, and $1.75 gets you a cup of coffee at Starbucks. And there was m

RE: It's that day!

Congrats Tony! From: tony patton [mailto:tony.pat...@quinn-insurance.com] Sent: Friday, July 30, 2010 10:27 AM To: NT System Admin Issues Subject: RE: It's that day! I got offered a new job today, so I'm happy :) Regards Tony Patton Desktop Support Analyst - Cavan Ext 8078 Direct Dial 0

Re: It's that day!

Thx folks, hope it rubs off on everyone else that needs/wants it :) Its an advancement career-wise, moving to full-time server support with another company. It's a bit of a pay-cut, but it'll pay off in the long term, the new company will provide a new challenge and the technologies that they ar

RE: It's that day!

Congrats! John-AldrichTile-Tools From: tony patton [mailto:tony.pat...@quinn-insurance.com] Sent: Friday, July 30, 2010 11:27 AM To: NT System Admin Issues Subject: RE: It's that day! I got offered a new job today, so I'm happy :) Regards Tony Patton Desktop Support Analyst - Cavan

Re: It's that day!

Congrats Tony! Hopefully some of that good fortune will rub off :) Don K From: tony patton To: NT System Admin Issues Sent: Fri, July 30, 2010 10:26:40 AM Subject: RE: It's that day! I got offered a new job today, so I'm happy :) Regards Tony Patton Deskt

Re: It's that day!

Congrats! Die dulci fruere! Roger Wright ___ On Fri, Jul 30, 2010 at 11:26 AM, tony patton wrote: > I got offered a new job today, so I'm happy :) > > Regards > > Tony Patton > Desktop Support Analyst - Cavan > Ext 8078 > Direct Dial 049 435 2878 > email: tony.pat...@quinn-insurance.com > >

Hyper-V and 'Default Gateway'

Is it possible to use a different default gateway on one Hyper-V guest than the Hyper-V host is using? What I have is a situation where we have multiple IP ranges within the "same network" meaning there is no router nor firewall between the different IP segments, but each IP subnet is different so

RE: It's that day!

I got offered a new job today, so I'm happy :) Regards Tony Patton Desktop Support Analyst - Cavan Ext 8078 Direct Dial 049 435 2878 email: tony.pat...@quinn-insurance.com From: richardmccl...@aspca.org To: "NT System Admin Issues" Date: 30/07/2010 15:22 Subject:RE: It's that

RE: OT: Vipre effectiveness & false positives

I can understand FP's against lesser used applications, but when part of Windows or a commonly installed MS product is tagged, there's no real excuse for that IMHO. Still, I've asked Alex to provide any comparison data he can come up with, and to the extent the evidence is unbiased and convinci

RE: Wireless Machine Authentication

We use EAP-TLS authenticating to Microsoft's IAS. The workstations all have a machine certificate generated by an internal certificate server. Workstations authenticate and connect to wireless before the user ever logs in. From: Kelsey, John [mailto:jckel...@drmc.org] Sent: Friday, July 30, 2010

RE: It's that day!

I'd say, more like oxym-oronic From: Maglinger, Paul [mailto:pmaglin...@scvl.com] Sent: Friday, July 30, 2010 9:12 AM To: NT System Admin Issues Subject: RE: It's that day! Just got an email from a co-worker. "Happy S.A.D." Ironic? From: Brumbaugh, Luke [mailto:luke.brumba...@b

FW: Wireless Machine Authentication

All Cisco LWAP access points using a 5508 wireless controller. We have PEAP set up so users can authenticate on the wireless network using their AD login...peachy. BUT...we have some machines that need to authenticate on the wireless before the user logs on (so they get can group policies and

RE: Auditing in Windows 2008 and R2 what are folks doing?

They still don't scale -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Thursday, July 29, 2010 9:26 AM To: NT System Admin Issues Subject: Re: Auditing in Windows 2008 and R2 what are folks doing? There are TCP syslog options. On Thu, Jul 29, 2010 at 01:50, Ken

RE: It's that day!

It's just been a rough week. People on vacation and I can't get anything done on my projects. I'm hoping to get out on the water this weekend and recharge for next week. From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org] Sent: Friday, July 30, 2010 9:22 AM To: NT System Admin I

RE: Vipre effectiveness & false positives

I think it all comes down to what you feel comfortable using and feel will protect you environment the best. That could be with Vipre or SEP, McAfee, etc... as others have said... no one solution will be 100% perfect. Vipre isn't perfect, but the product itself has proven itself valuable in our e

RE: It's that day!

Anyway, for those of us who feel our career is in the crapper- I had to replace one of those on Sysadmin Appreciation Day a few years back. -- richard "Maglinger, Paul" wrote on 07/30/2010 09:11:52 AM: > Just got an email from a co-worker. > ?Happy S.A.D.? > > Ironic? > > > From: Brumbaugh,

RE: Vipre effectiveness & false positives

We've been on Vipre (and was one CounterSpy) for several years now and have had less than a handful of issues with being infected. Not to say that we haven't been infected, but we've had a pretty good success rate compared to when we had Symantec's Endpoint Protection. In regards to the false

RE: It's that day!

Just got an email from a co-worker. "Happy S.A.D." Ironic? From: Brumbaugh, Luke [mailto:luke.brumba...@butlerschein.com] Sent: Friday, July 30, 2010 9:03 AM To: NT System Admin Issues Subject: RE: It's that day! So it's worth 25cents? Starbucks is $2 here. I like that miserable

RE: It's that day!

So it's worth 25cents? Starbucks is $2 here. I like that miserable stuff from Mickey D's ($1) From: Maglinger, Paul [mailto:pmaglin...@scvl.com] Sent: Friday, July 30, 2010 9:47 AM To: NT System Admin Issues Subject: RE: It's that day! This, and $1.75 gets you a cup of coffee at Starbucks. And

RE: It's that day!

This, and $1.75 gets you a cup of coffee at Starbucks. And there was much rejoicing. yea... From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org] Sent: Friday, July 30, 2010 8:10 AM To: NT System Admin Issues Subject: It's that day! http://www.sysadminday.com/ And my

RE: It's that day!

Bummer. wish *I* could get some appreciation here. L Oh, well.. John-AldrichTile-Tools From: Vicky Spelshaus [mailto:vicky.spelsh...@gmail.com] Sent: Friday, July 30, 2010 9:37 AM To: NT System Admin Issues Subject: Re: It's that day! Top 4 things you should NEVER tell a sysadmin on SY

Re: It's that day!

Top 4 things you should NEVER tell a sysadmin on SYSTEM ADMINISTRATOR APPRECIATION DAY (or any other day) http://www.pcweenies.com/ On Fri, Jul 30, 2010 at 8:10 AM, wrote: > > http://www.sysadminday.com/ > > And my Help Desk guy got the day off! > -- > Richard > > > > > > -- Organization an

It's that day!

http://www.sysadminday.com/ And my Help Desk guy got the day off! -- Richard ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ ~

Re: WDS, PXE Proxy & Split DHCP

This is similar to our setup here, WDS is installed on the secondary DCs on each of our sites, this was to overcome the PXE across VLANs without the networks team changing the config of the switches with the IP helper of our MDT servers. In the properties for WDS, under the DHCP tab 'Do not lis

OT: Sprint SmartView, U301, Win 7x64 and failure to connect

All Reached the end of my rope. Have a Dell Latitude D531 laptop I rebuilt on 7/10 with Win 7 Pro x64. Have a known-working U301 modem (works on another machine) issued by Sprint. Am using Sprint SmartView 2.40. Device is detected fine, but when you press Connect button, it thinks about it

RE: Password question

I thought so... but a couple of the other replies make me doubt myself now... - the grey matter has been thinning for quite a few years now, but I'm *sure* I remember this happening to me several times over the years as I've hit my company password expiry policy limit whilst offsite, and have seen