According to these guys, they've found 121 vulnerabilities in 41 Microsoft
products. And over 512 issues altogether...
http://acrossecurity.blogspot.com/
Cheers
Ken
From: HELP_PC [mailto:g...@enter.it]
Sent: Thursday, 26 August 2010 1:15 PM
To: NT System Admin Issues
Subject: R: Insecure
I don't see where MS advised that many things may not work after
implementing the 2264107 patch. I just re-read the security advisory and
there is no impact of workaround mentioned for the patch. In short, MS has
fairly much implied that the patch is without severe consequences.
You should
Can you explain to me how to apply it ? Launch the MS file locally and revisit
the registry ? Is it doable through GPO?
TIA
GuidoElia
HELPPC
_
Da: Carl Houseman [mailto:c.house...@gmail.com]
Inviato: giovedì 26 agosto 2010 8.21
A: NT System Admin Issues
Oggetto: RE: Insecure
It is definitely going to take some time before vendors implement the
following: http://support.microsoft.com/kb/2389418
The number is definitely going to get well into the hundreds of apps.
Interestingly enough, I'll bet that fixing this one issue is going to lead
to all sorts of improved
***Can you explain to me how to apply it ? Launch the MS file locally and
revisit the registry ? Is it doable through GPO?*
Um... The instructions for installation are right here:
http://support.microsoft.com/kb/2264107
What about them do you not understand?
Software installation can be handled
We currently use a GPO to redirect users my documents to their home folder
share. Since switching to Windows 7, whenever a user logs in their folder name
on the server appears to change to Documents. If I UNC out to their folder
(ie. //server/share/username) I can access it no problem,
Delete the desktop.ini file in the folder.
On 26 August 2010 12:13, Wilhelm, Scott swilh...@mcs.k12.ny.us wrote:
We currently use a GPO to redirect users my documents to their home folder
share. Since switching to Windows 7, whenever a user logs in their folder
name on the server appears to
No you understood just fine. Things could break afterwards.
Z
Edward E. Ziots
CISSP, Network +, Security +
Network Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: HELP_PC [mailto:g...@enter.it]
Sent: Thursday, August 26, 2010 1:29 AM
To: NT
Zzz...huh...what's dead? Who said that?...where am I?...who are you
people?oh...nevermind.
Zz
JIM
Jim Holmgren
Manager of Server Engineering
XLHealth Corporation
The Warehouse at Camden Yards
351 West Camden Street, Suite 100
Baltimore, MD 21201
410.625.2200 (main)
You make a grown man cry!
Terry Dickson te...@treasurer.state.ks.us wrote on 08/25/2010 03:55:34
PM:
Hey for all of you who missed this like me, Happy Belated Birthday
to Windows 95. It turned 15 yesterday.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
Nope. I still have one machine that's running it only because I have
just one application that refuses to run on anything else. *sigh*.
From: Jonathan Link [mailto:jonathan.l...@gmail.com]
Sent: Wednesday, August 25, 2010 4:05 PM
To: NT System Admin Issues
Subject: Re: Windows 95.
I
You don't happen to work around the Chicago area do you? I just heard a
similar story from my brother-in-law.
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Wednesday, August 25, 2010 9:27 PM
To: NT System Admin Issues
Subject: Re: Windows 95.
On Wed, Aug 25,
-sa-bi?
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Wednesday, August 25, 2010 9:21 PM
To: NT System Admin Issues
Subject: Re: Javacode Help again
wa?
--
ME2
On Wed, Aug 25, 2010 at 12:02 PM, techconnect
techconn...@bellsouth.net wrote:
Thank you Andrew for
Repost from BugTraq, ( There is multiple vulnerabilities in adobe that
are fixed with the APSB10-020 not just this one. Also it seems they have
found a .DLL hijack in Adobe Illustrator CS4 and Firefox 3.6.8 from some
reports accordingly too.,
ZDI-10-164: Adobe Shockwave Player Director File
Egads.
For all the kludge it was under the covers... it is what introduced the
Win32 API to the masses, and ultimately paved the way for XP which
unified the Windows families on the NT kernel codebase...
I wonder if I still have my copy of Andrew Schulman's Windows 95
Undocumented
I wonder if anybody cares
Shook
From: Steven M. Caesare [mailto:scaes...@caesare.com]
Sent: Thursday, August 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
Egads.
For all the kludge it was under the covers... it is what introduced the Win32
API to the masses, and
When one goes to update Shockwave, the installer also tries to install
some Symantec product via Piggyback. Some may consider this also to be an
exploit - $#* piggy-backers!
--
richard
Ziots, Edward ezi...@lifespan.org wrote on 08/26/2010 07:54:27 AM:
Repost from BugTraq, ( There is multiple
You make a grown man cry!
Andy Shook andy.sh...@peak10.com wrote on 08/26/2010 08:02:33 AM:
I wonder if anybody cares?.
Shook
From: Steven M. Caesare [mailto:scaes...@caesare.com]
Sent: Thursday, August 26, 2010 9:01 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
Egads.
For all of the bashing MS gets, I think it's good to see that internally the
security teams take the vuln notifications seriously and were diligent in
cooperating...
-sc
From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Thursday, August 26, 2010 2:14 AM
To: NT System Admin Issues
Seriously?
-sc
From: HELP_PC [mailto:g...@enter.it]
Sent: Thursday, August 26, 2010 2:42 AM
To: NT System Admin Issues
Subject: R: Insecure Library Loading Vulnerability
Can you explain to me how to apply it ? Launch the MS file locally and revisit
the registry ? Is it doable through
Ok, that worked. Now, how can I prevent that file from being created on the
server?
Thanks!
Scott
---
Scott Wilhelm
Computer Technician
Massena Central School District
St. Lawrence-Lewis BOCES
(315) 764-3700 ext. 3046
The harder I work, the luckier I get. Samuel Goldwyn
From: James Rankin
When that song was dissected during the product launch, there was some
d...@mn funny commentary...
You, you make a dead man come as well...
-sc
From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
Sent: Thursday, August 26, 2010 8:15 AM
To: NT System Admin Issues
Subject:
I FINALLY let go and just threw out the Win 95 floppies that I had kept.
J
Don Guyer
Systems Engineer - Information Services
Prudential, Fox Roach/Trident Group
431 W. Lancaster Avenue
Devon, PA 19333
Direct: (610) 993-3299
Fax: (610) 650-5306
don.gu...@prufoxroach.com
On Thu, Aug 26, 2010 at 8:42 AM, Maglinger, Paul pmaglin...@scvl.com wrote:
Until a few months ago, we had a measurement system in production
that was still running Win 3.x. ... Then a few months ago the interface
board died.
You don't happen to work around the Chicago area do you? I just
Or...
zz-up?!?
-sc
From: Maglinger, Paul [mailto:pmaglin...@scvl.com]
Sent: Thursday, August 26, 2010 8:43 AM
To: NT System Admin Issues
Subject: RE: Javacode Help again
-sa-bi?
From: Micheal Espinola Jr [mailto:michealespin...@gmail.com]
Sent: Wednesday, August 25, 2010 9:21
That issue has been around since Vista.
http://minasi.com/forum/topic.asp?TOPIC_ID=28984
Webster
From: Wilhelm, Scott [mailto:swilh...@mcs.k12.ny.us]
Subject: Windows 7 Folder Redirection Issue
We currently use a GPO to redirect users my documents to their home folder
share.
That leaves Shooky Baby out of this then. J
Webster
From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
Subject: Re: Windows 95.
You make a grown man cry!
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
Don't hate just because technical talk scares you.
-sc
From: Andy Shook [mailto:andy.sh...@peak10.com]
Sent: Thursday, August 26, 2010 9:03 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
I wonder if anybody cares
Shook
From: Steven M. Caesare
It's because Shooky doesn't reciprocate.
-sc
From: richardmccl...@aspca.org [mailto:richardmccl...@aspca.org]
Sent: Thursday, August 26, 2010 9:04 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
You make a grown man cry!
Andy Shook andy.sh...@peak10.com wrote on 08/26/2010
Hey!
I can talk mega-rams and 1.21 gigawatts as good as anyone.
You're mean.
Shook
From: Steven M. Caesare [mailto:scaes...@caesare.com]
Sent: Thursday, August 26, 2010 9:24 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
Don't hate just because technical talk scares you.
-sc
From:
Hi list,
We use HP MSL6060 Tape Library for backup solution. Some backup sessions
sometimes gives the error Cannot load exchanger medium (Mutex already
locked.) We could manually start the session and no error occurs.
Any suggestions?
Thanks.
Okan Bostan
~ Finally, powerful endpoint
And you're average.
-sc
From: Andy Shook [mailto:andy.sh...@peak10.com]
Sent: Thursday, August 26, 2010 9:29 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
Hey!
I can talk mega-rams and 1.21 gigawatts as good as anyone.
You're mean.
Shook
From: Steven M.
But do you have the wi-fi's ?
From: Andy Shook [mailto:andy.sh...@peak10.com]
Sent: Thursday, August 26, 2010 9:29 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
Hey!
I can talk mega-rams and 1.21 gigawatts as good as anyone.
You're mean.
Shook
From: Steven M.
The wi-fi's what?
On Thu, Aug 26, 2010 at 9:29 AM, Jim Holmgren jholmg...@xlhealth.comwrote:
But do you have the wi-fi’s ?
*From:* Andy Shook [mailto:andy.sh...@peak10.com]
*Sent:* Thursday, August 26, 2010 9:29 AM
*To:* NT System Admin Issues
*Subject:* RE: Windows 95.
Hey!
I
Just the wi-fi's - it is what makes the iPhone4 the best phone.
From: Richard Stovall [mailto:rich...@gmail.com]
Sent: Thursday, August 26, 2010 9:32 AM
To: NT System Admin Issues
Subject: Re: Windows 95.
The wi-fi's what?
On Thu, Aug 26, 2010 at 9:29 AM, Jim Holmgren
I don't care
From: Jim Holmgren [mailto:jholmg...@xlhealth.com]
Sent: Thursday, August 26, 2010 9:39 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
Just the wi-fi's - it is what makes the iPhone4 the best phone.
From: Richard Stovall [mailto:rich...@gmail.com]
Sent: Thursday, August
The workaround for setting a Deny perm for Administrators on the desktop.ini
files seems a good idea. You'd probably have to enforce it with a GPO.
On 26 August 2010 14:21, Webster carlwebs...@gmail.com wrote:
That issue has been around since Vista.
Hi all,
If a default domain policy GPO states min password length is 7 and I
change it to min password length 8... what will happen to those users
who are currently using 7 characters?
Win 2003 Domain.
Thanks!
.
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
On Thu, Aug 26, 2010 at 1:18 AM, Carl Houseman c.house...@gmail.com wrote:
And those are likely just the beginning. I'd expect the number to get to
100's of apps.
I expect it to be in the thousands, if not tens or hundreds of
thousands. Keep in mind that most executables probably won't be
My cat is now homeless.
From: John Cook [mailto:john.c...@pfsf.org]
Sent: Thursday, August 26, 2010 9:44 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
I don't care
From: Jim Holmgren [mailto:jholmg...@xlhealth.com]
Sent: Thursday, August 26, 2010 9:39 AM
To: NT System Admin
AFAIK, it will enforce the new policy next time they opt, or are forced to,
change their password.
On 26 August 2010 14:42, David Mazzaccaro david.mazzacc...@hudsonhhc.comwrote:
Hi all,
If a default domain policy GPO states min password length is 7 and I
change it to min password length 8…
Nothing until their password expires
Ron J Wulff · The Bank of New York Mellon
·412-236-0494 · Mobile 412-770-6099 · ron.wu...@bnymellon.com
From:
David Mazzaccaro david.mazzacc...@hudsonhhc.com
To:
NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com
Date:
08/26/2010 09:44 AM
On Thu, Aug 26, 2010 at 9:08 AM, Steven M. Caesare scaes...@caesare.com wrote:
For all of the bashing MS gets, I think it’s good to see that internally the
security teams take the vuln notifications seriously and were diligent in
cooperating…
Seriously? As I mentioned earlier, Microsoft's
Nothing.
Password policy is processed (and enforced) when a user changes a password.
Cheers
Ken
From: David Mazzaccaro [mailto:david.mazzacc...@hudsonhhc.com]
Sent: Thursday, 26 August 2010 9:43 PM
To: NT System Admin Issues
Subject: Minimum password length GPO
Hi all,
If a default domain
On Thu, Aug 26, 2010 at 9:42 AM, David Mazzaccaro
david.mazzacc...@hudsonhhc.com wrote:
If a default domain policy GPO states min password length is 7 and I
change it to min password length 8… what will happen to those users who
are currently using 7 characters?
Password policy is enforced
Our old phone system still runs on DOS. I've been sweating this for years...
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Wednesday, August 25, 2010 10:27 PM
To: NT System Admin Issues
Subject: Re: Windows 95.
On Wed, Aug 25, 2010 at 9:14 PM, Richard Stovall
Thank you all for confirming this.
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Thursday, August 26, 2010 9:48 AM
To: NT System Admin Issues
Subject: Re: Minimum password length GPO
On Thu, Aug 26, 2010 at 9:42 AM, David Mazzaccaro
Good God. I've only got eight 2003 R2 systems left to upgrade, and three XP
workstations.
On 26 August 2010 14:55, Holstrom, Don dholst...@nbm.org wrote:
Our old phone system still runs on DOS. I've been sweating this for
years...
-Original Message-
From: Ben Scott
Yeah, seriously.
Is it a flaw that should have been rectified earlier? Sure.
Is there response NOW what I would hope for? Yes.
I'd rather a company be willing to change posture for the better than
not.
-sc
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent:
I can't go along with you here.
This has been documented as an issue -- for decades -- and MSFT has told people
how to do it right -- for decades. Don't blame MSFT as a company for people
(including some internal programmers!) for not following safe programming
recommendations.
Changing this
On Thu, Aug 26, 2010 at 9:54 AM, James Rankin kz2...@googlemail.com wrote:
Good God. I've only got eight 2003 R2 systems left to upgrade, and three XP
workstations.
IBM mainframe systems are well-known for having programs written in
assembler in the 1960s still in production.
We PC people
their
Oof.
Apparently I can blame Jeff.
-sc
-Original Message-
From: Steven M. Caesare [mailto:scaes...@caesare.com]
Sent: Thursday, August 26, 2010 9:57 AM
To: NT System Admin Issues
Subject: RE: Insecure Library Loading Vulnerability
Yeah, seriously.
Is it a flaw that
The problem is one of market share and compatibility. (not the normal
market share argument)
- Microsoft made a bad decision long ago.
- Changing that decision very early would have been good, but that didn't
happen.
- Changing that decision more recently (via OS upgrade or patch)
I still have a set or two in the safe across the room, boy do I need to clean
that out.
From: Don Guyer [mailto:don.gu...@prufoxroach.com]
Sent: Thursday, August 26, 2010 8:15 AM
To: NT System Admin Issues
Subject: RE: Windows 95.
I FINALLY let go and just threw out the Win 95 floppies that I
Apply the hotfix accordingly. Set the registry key on a machine, export the
.REG file and apply via a computer Startup GPO to the targeted systems. Or you
can use regini to script out the install, etc etc.
Z
Edward E. Ziots
CISSP, Network +, Security +
Network Engineer
Lifespan
Anything Symantec is pushing, I don't want a part of J
Like I said before, Mcafee ( Ugh_ Symantec, more Ugh)
Z
Edward E. Ziots
CISSP, Network +, Security +
Network Engineer
Lifespan Organization
Email:ezi...@lifespan.org
Cell:401-639-3505
From: richardmccl...@aspca.org
On Thu, Aug 26, 2010 at 9:56 AM, Michael B. Smith mich...@smithcons.com wrote:
Microsoft's software has been criticized for its search path
behavior for literally decades.
This has been documented as an issue -- for decades -- and MSFT
has told people how to do it right -- for decades.
A
+1,
M$ has documented the right way of doing it, it's the developers of the
software that is vulnerable that are the main culprit.
Doesn't mean that we aren't going to live a lot of pain from this
one
Just another issue on the pile to deal with. Glad I got a HIPS around
the workstations,
The cardboard floppy box I was carrying around in my laptop bag, for
probably 10+ years, literally fell apart in my hands when I took it out,
so I figured it was time to send them off to the next world.
Don Guyer
Systems Engineer - Information Services
Prudential, Fox Roach/Trident Group
On Thu, Aug 26, 2010 at 10:00 AM, Andrew S. Baker asbz...@gmail.com wrote:
Changing that decision more recently (via OS upgrade or patch)
would have a debilitating impact on compatibility ...
My beef is not that Microsoft valued compatibility, but that they
didn't take this vulnerability
Customers can't have it both ways.
You (the editorial you, not you specifically) can't require MSFT to always
provide compatible interfaces and then scream when that causes problems.
Regards,
Michael B. Smith
Consultant and Exchange MVP
http://TheEssentialExchange.com
-Original
Outlook relies on it? What version? My 2007 hasn't noticed a difference
since applying the workaround patch and registry value=2.
Carl
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Thursday, August 26, 2010 10:18 AM
To: NT System Admin Issues
Subject: Re:
I know someone that still has a 98 machine. Every now and then he will call
me to fix some issue with it. His calls just go to my voice mall ;-)
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Thursday, August 26, 2010 6:18 AM
To: NT System Admin Issues
Subject:
There are quite a number of programs that break with the change. People
have found some mitigation for some of them already.
See the comments here: http://isc.sans.edu/diary.html?storyid=9445
*ASB *(My XeeSM Profile) http://XeeSM.com/AndrewBaker
*Exploiting Technology for Business
Problems occur more with the 0x option, than the others.
*ASB *(My XeeSM Profile) http://XeeSM.com/AndrewBaker
*Exploiting Technology for Business Advantage...*
* *
Signature powered by
http://www.wisestamp.com/email-install?utm_source=extensionutm_medium=emailutm_campaign=footer
Change the password age. :)
That'll take impact rather quickly.
*ASB *(My XeeSM Profile) http://XeeSM.com/AndrewBaker
*Exploiting Technology for Business Advantage...*
* *
Signature powered by
http://www.wisestamp.com/email-install?utm_source=extensionutm_medium=emailutm_campaign=footer
You can also just mass select the accounts in ADUC, right click properties and
hit the checkbox for must change password at next login. That is how I did our
migration to more complex passwords. That let me do it a department at a time
and control the help desk load.
From: Andrew S. Baker
I once enforced a password age policy on an NT4 domain where previously
there had been none. And where about 300 of the salesforce users had
machines that couldn't find a route to the PDC (they were using lmhosts
files for resolution with old entries in them). I was popular that morning
:-)
On 26
Ah.. great idea!
thx!
From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
Sent: Thursday, August 26, 2010 10:37 AM
To: NT System Admin Issues
Subject: RE: Minimum password length GPO
You can also just mass select the accounts in ADUC, right click
Our voicemail system runs on OS/2. Fortunately, I have an image of the hard
drive, should it ever crash. Of course, if the Dialogic boards ever die,
we're up a creek. :-)
-Original Message-
From: Holstrom, Don [mailto:dholst...@nbm.org]
Sent: Thursday, August 26, 2010 9:55 AM
To: NT
On Thu, Aug 26, 2010 at 10:21 AM, Carl Houseman c.house...@gmail.com wrote:
Outlook relies on it? What version?
Someone has reported that Outlook 2002 changes directory to load the
MAPI DLLs:
http://isc.sans.edu/diary.html?storyid=9445 (comment from Erik van Straten)
My 2007 hasn't noticed
On Thu, Aug 26, 2010 at 10:21 AM, Michael B. Smith
mich...@smithcons.com wrote:
You (the editorial you, not you specifically) can't require MSFT to
always provide compatible interfaces and then scream when that causes
problems.
Why not, people do that all the time? ;-)
-- Ben
~ Finally,
Our NEC Electra voicemail system is DOS based. Not a very large image either.
The hard disk is 1.2gb, out of which maybe a hundred megabytes is used.
I have an image of it, but the bummer is that the mainboard is picky about hard
disk size. I procured a 8gb PATA SSD that I thought would work
On Thu, Aug 26, 2010 at 10:32 AM, Andrew S. Baker asbz...@gmail.com wrote:
There are quite a number of programs that break with the change.
People have found some mitigation for some of them already.
See the comments here: http://isc.sans.edu/diary.html?storyid=9445
Ah, some new comments
Never mind, and Outlook's behavior (assuming it does need .DLLs from the CWD)
isn't significant to the problem at hand. I doubt that any COTS app will
break with the Microsoft patch installed and system-wide registry setting=2.
Carl
-Original Message-
From: Carl Houseman
Thanks for advice. I haven't bitten the PS bullet yet. I guess now is as
good a time as any. Even though there are probably easier ways to accomplish
my task. I still want to know why my method isn't working.
- Sean
On Wed, Aug 25, 2010 at 4:22 PM, KenM kenmli...@gmail.com wrote:
Not sure if
On Thu, Aug 26, 2010 at 11:00 AM, Phillip Partipilo p...@psnet.com wrote:
Our NEC Electra voicemail system is DOS based. ...
I have an image of it, but the bummer is that the mainboard is picky about
hard disk size.
One thing going for you is that DOS stuff largely didn't care about
Why would anyone use the 0x option to combat the vulnerability? CWD
on the local system is not a part of the threat landscape.
I can't help myself - it's another Dr. Dr. it hurts when I do this...
problem.
Carl
From: Andrew S. Baker [mailto:asbz...@gmail.com]
Sent: Thursday,
Let me guess... ActiveVoice Repartee?
You can still source dialogic boards, by the way...
http://www.voxeo.com/dialogic/
Jonathan L. Raper, A+, MCSA, MCSE
Technology Coordinator
Eagle Physicians Associates, PA
jra...@eaglemds.com
www.eaglemds.com
-Original Message-
From: John Aldrich
On Thu, Aug 26, 2010 at 11:05 AM, Carl Houseman c.house...@gmail.com wrote:
Never mind, and Outlook's behavior (assuming it does need .DLLs from the CWD)
isn't significant to the problem at hand. I doubt that any COTS app will
break with the Microsoft patch installed and system-wide registry
See my response to ASB. Those who are setting the registry value to INT_MAX
don't understand the problem they are trying to prevent.
Carl
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Thursday, August 26, 2010 10:53 AM
To: NT System Admin Issues
Subject: Re:
On Thu, Aug 26, 2010 at 11:09 AM, Carl Houseman c.house...@gmail.com wrote:
Why would anyone use the 0x option to combat the vulnerability?
For the same reason people wanted a way to influence this behavior
before it started being attacked: Because it's quite likely that
someday it
On Thu, Aug 26, 2010 at 11:11 AM, Carl Houseman c.house...@gmail.com wrote:
Only CWDIllegalInDllSearch=INT_MAX would cause the problem.
See my response to ASB. Those who are setting the registry value to INT_MAX
don't understand the problem they are trying to prevent.
See my response to
I didn't forget, I read the patch documentation thoroughly. With registry
value=2, if the app is run from a network share then loading DLLs from a
network share is *allowed*.
I guess that means vulnerable apps running from a network share aren't
protected by the patch with registry value=2.
Not entirely.
My current customer is a government, and they are worried about APT (advanced
persistent threats). The fear isn't that one breach and it's game over. It's
a fear that a vulnerability can be used to inject something, that will then be
utilised sometime down the track when defences
That's not quite the same as what Ben's asking for. It will force everyone to
change their password, regardless of whether their current password meets the
new requirement or not.
Cheers
Ken
From: David Mazzaccaro [mailto:david.mazzacc...@hudsonhhc.com]
Sent: Thursday, 26 August 2010 10:42 PM
Our Voicemail machine is an NEC NEAXMail AD-40 Repartee system running on
a Dell Optiplex G1. Fortunately, there is a monitor hooked up to the system,
so I can see the boot messages, etc.
-Original Message-
From: Phillip Partipilo [mailto:p...@psnet.com]
Sent: Thursday, August 26,
Yep. Repartee indeed. :-)
As for the Dialogic cards, yes, you can get them, but do they still make
them in ISA??? I'm not sure if the card slots in this computer are PCI or
ISA. It's an old Optiplex G1, no X in there anywhere...
-Original Message-
From: Raper, Jonathan - Eagle
If an attacker can get his .DLL into your local CWD, he can probably get his
.EXE to run on your computer as well, so why bother with the .DLL-based
attack.
Point is, the MS patch and reg value=2 has a very slim chance of breaking
something and provides excellent protection against known attack
Anyone on list going?
John W. Cook
Systems Administrator
Partnership for Strong Families
CONFIDENTIALITY STATEMENT: The information transmitted, or contained or
attached to or with this Notice is intended only for the person or entity to
which it is addressed and may contain Protected Health
We have a lot of Oce 3165/2050/1055 printers that have a PC attached to
them, they all run OS/2.
Thankfully we don't have to do anything with them, but it's fun when there
is a power failure, facilities won't put them on the UPS circuit.
Regards
Tony Patton
Desktop Support Analyst - Cavan
Ext
Thanks guys for trying to help.
We have a 20MB MetroEthernet that was plugged into a Cisco router, the cisco
was removed last night as a possible issue, and it wasn't needed anyway. We
have jumbo frames throughout, but on the WAN I cannot enable more than 1500
MTU.
I am installing
Rich, all the security stuff is disabled, we didn't need it anyway but I
took it off as a precaution the other day.
From: Richard Stovall [mailto:rich...@gmail.com]
Sent: Wednesday, August 25, 2010 12:19 PM
To: NT System Admin Issues
Subject: Re: Bandwidth problems
Do you have any of the
True, but short of running password audit tools it is the only way to
guarantee that all users meet the new complexity requirement.
-Jeff
On Thu, Aug 26, 2010 at 11:28 AM, Ken Schaefer k...@adopenstatic.com wrote:
That’s not quite the same as what Ben’s asking for. It will force everyone
to
We're running our Repartee on a G1 tower as well. The Optiplex G1 has both ISA
and PCI slots.
http://support.dell.com/support/systemsinfo/document.aspx?c=usl=ens=hea~file=/systems/ddur/specs.htm
The voicemail you have actually has an option for email integration...pretty
snazzy for circa 2000.
Not as dead as you might think. We have (2) Mitsubishi Lasers we purchased
within the last 3 years and guess what they use on the controls for these
$800,000 machines? Windows 95 :-(
--
Bob Hartung
Wisco Industries, Inc.
736 Janesville St.
Oregon, WI 53575
Tel: (608)
That *almost* sounds like a DNS issue, like maybe the Sonicwall is blocking
DNS requests for HTTP/HTTPS.
John-AldrichTile-Tools
From: Lists - Level5 [mailto:li...@levelfive.us]
Sent: Thursday, August 26, 2010 11:38 AM
To: NT System Admin Issues
Subject: RE: Bandwidth problems
Thanks
Eh? I just went to www.adobe.com, clicked get Adobe shockwave player,
installed it, and I have nothing from Symantec on the computer. I only had
to uncheck a free Google toolbar checkbox.
Exactly what Symantec product are we talking about?
Carl
From: richardmccl...@aspca.org
Nope. I was not aware that it had email integration available. As for the
OS/2, I'll keep that handy. Hopefully I never will need help, but you never
know. :-)
-Original Message-
From: Raper, Jonathan - Eagle [mailto:jra...@eaglemds.com]
Sent: Thursday, August 26, 2010 11:40 AM
To: NT
If you are supporting a WinXP and/or Server 2003 environment you can use a
tool such as 'Exe to MSI Converter' to wrap the executable in an MSI package
and deploy via GPO.
'Exe to MSI Converter' can be found here.
http://www.qwertylab.com/FreeTools.aspx
-Jeff
On Thu, Aug 26, 2010 at 2:41 AM,
1 - 100 of 152 matches
Mail list logo