Re: Today is the end of the line for me,

Now I want to move on too ! From: Jonathan To: NT System Admin Issues Sent: Thu, February 17, 2011 11:13:39 PM Subject: Re: Today is the end of the line for me, +100 Wow. I wish I had read that a LONG time ago. On a positive note, I AM moving on, and quite

Re: How do you deploy AV?

I tried that in the past and did not like the results. I was using NOD32 at the time. Jon On Thu, Feb 17, 2011 at 5:26 PM, David Lum wrote: > Does anyone here deploy new systems with using some image and have AV on it > already? > > Dave > > -Original Message- > From: Roger Wright [mai

Re: Today is the end of the line for me,

A "security engineer" who doesn't even know how to start a new discussion on an email list? Sure. - Original Message - From: "Ziots, Edward" To: "NT System Admin Issues" Sent: Thursday, February 17, 2011 6:17 PM Subject: Today is the end of the line for me, I think after this day

Re: Today is the end of the line for me,

I'm starting a new job on Monday and am also very excited about it. Ask the Headhunter is a great resource for everyone - start reading it now as it is especially effective in preparing you for your *next* job search, although there is also great advice for those who are just starting to look now.

Re: Today is the end of the line for me,

+100 Wow. I wish I had read that a LONG time ago. On a positive note, I AM moving on, and quite excited about it. Hang in there Z! Jonathan - Thumb typed from my HTC Droid Incredible (and yes, it really is) on the Verizon network. On Feb 17, 2011 9:31 PM, "Andrew S. Baker" wrote: > Excellent a

RE: Today is the end of the line for me,

Care to share your day? Shauna Hensala > Subject: Today is the end of the line for me, > Date: Thu, 17 Feb 2011 20:17:40 -0500 > From: ezi...@lifespan.org > To: ntsysadmin@lyris.sunbelt-software.com > > I think after this day I have come to the conclusion is time to move on, > if there is

Re: How do you deploy AV?

+1 we had the same experience. And that would be one more reason that we decided to dump McCRAPfee for Trend last year. Jonathan - Thumb typed from my HTC Droid Incredible (and yes, it really is) on the Verizon network. On Feb 17, 2011 9:19 PM, "Rene de Haas" wrote: ~ Finally, powerful endpoint

RE: How do you deploy AV?

We pushed Sophos originally via OU, then decided to go with a startup script instead. From: Jim Holmgren [mailto:jholmg...@xlhealth.com] Sent: Thursday, February 17, 2011 1:25 PM To: NT System Admin Issues Subject: RE: How do you de

Re: Today is the end of the line for me,

Excellent article -ASB: http://about.me/Andrew.S.Baker Sent from my Motorola Droid On Feb 17, 2011 8:28 PM, "Jonathan Link" wrote: > This may be appropriate to your mood. > http://www.asktheheadhunter.com/hawall.htm > > > > On Thu, Feb 17, 2011 at 8:17 PM, Ziots, Edward wrote: > >> I think aft

Re: How do you deploy AV?

When I last used McAfee (about 1.5 years ago) ePO didn't like that. On Thu, Feb 17, 2011 at 11:26 PM, David Lum wrote: > Does anyone here deploy new systems with using some image and have AV on it > already? > > Dave > > -Original Message- > From: Roger Wright [mailto:rhw...@gmail.com] >

RE: Today is the end of the line for me,

Extremely appropriate, I think I will have a read tomorrow, I took a quick look and see some of me in there defintely. Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@lifespan.org Cell:401-639-3505 From: Jonathan Link [mailto:jona

Re: Today is the end of the line for me,

This may be appropriate to your mood. http://www.asktheheadhunter.com/hawall.htm On Thu, Feb 17, 2011 at 8:17 PM, Ziots, Edward wrote: > I think after this day I have come to the conclusion is time to move on, > if there is companies in the RI/MASS/CT area looking for a security > engineer, pl

Today is the end of the line for me,

I think after this day I have come to the conclusion is time to move on, if there is companies in the RI/MASS/CT area looking for a security engineer, please contact me at the email below. If the distance is under 1.5 hrs I am game. Z Edward E. Ziots CISSP, Network +, Security + Network Engineer

RE: Thoughts on this pitch from Trend

Every SBS site I manage has two servers just to offload some of that (that, and have redundant DC's). In some cases the "server" is a desktop, but it keeps that much less activity off the SBS server. AV and WSUS, that's what an older desktop is good for :-). Dave -Original Message- Fro

RE: How do you deploy AV?

Understood, hence the question. We have the McAfee agent on our image and it plays well enough with a rename. We have issues on the WSUS bit (MS fixed it with Vista and Win7) but I have an SMS push that resets the WSUS ID to something unique on the XP boxes. Dave -Original Message- Fro

Re: How do you deploy AV?

Depends how good your AV management software is at identifying a cloned system. Some apps get their knickers in a twist with clones, like WSUS used to. Some work may need to be done in the console, dependent on what poison you've chosen. Typed frustratingly slowly on my BlackBerry® wireless devi

Re: Bandwidth Usage

And your industry is familiar with handling multiple simultaneous interaces... On Thu, Feb 17, 2011 at 5:06 PM, Jacob wrote: > Oosp.. meant two OC3s > > > > *From:* Jacob [mailto:ja...@excaliburfilms.com] > *Sent:* Thursday, February 17, 2011 2:06 PM > > *To:* NT System Admin Issues > *Subject:*

RE: How do you deploy AV?

Does anyone here deploy new systems with using some image and have AV on it already? Dave -Original Message- From: Roger Wright [mailto:rhw...@gmail.com] Sent: Thursday, February 17, 2011 2:04 PM To: NT System Admin Issues Subject: Re: How do you deploy AV? Our VIPRE packages are deplo

RE: Bandwidth Usage

Oosp.. meant two OC3s From: Jacob [mailto:ja...@excaliburfilms.com] Sent: Thursday, February 17, 2011 2:06 PM To: NT System Admin Issues Subject: RE: Bandwidth Usage Dang.. and I thought my 40 plus users on a OC3 was not enough From: Sam Cayze [mailto:sca...@gmail.com] Sent: Wednesday

RE: Bandwidth Usage

Dang.. and I thought my 40 plus users on a OC3 was not enough From: Sam Cayze [mailto:sca...@gmail.com] Sent: Wednesday, February 16, 2011 1:03 PM To: NT System Admin Issues Subject: RE: Bandwidth Usage Ouch. From: itli...@imcu.com [mailto:itli...@imcu.com] Sent: Wednesday, February 1

Re: How do you deploy AV?

Our VIPRE packages are deployed via Group Policy. In the event of a problem we can also deploy/update/remove via the VIPRE Admin Console. Roger Wright ___ "The internet is a great way to get on the net." – Bob Dole On Thu, Feb 17, 2011 at 11:39 AM, David Lum wrote: > What methods do you gu

RE: Bandwidth Usage

"Upper Management".. Sometimes they are the problem. ;-) From: Mike Sullivan [mailto:neog...@gmail.com] Sent: Wednesday, February 16, 2011 9:48 AM To: NT System Admin Issues Subject: Re: Bandwidth Usage +1 Our exceptions are Upper Management. On Wed, Feb 16, 2011 at 9:46 AM, S Powell

RE: How do you deploy AV?

Since I have about 50 workstations / 80 servers. we just install the software on the systems. We use NOD32 Remote Admin to keep up to date. From: David Lum [mailto:david@nwea.org] Sent: Thursday, February 17, 2011 8:39 AM To: NT System Admin Issues Subject: How do you deploy AV?

RE: How do you deploy AV?

I'm a pretty firm believer in pushing these things through group policy. That way, there isn't a time when the computer is fully booted and logged into that its possibly missing AV. Waiting for Sophos or Vipre to push itself leaves you potentially exposed for the interval between scans. From:

Printer Driver isolation: shared or isolated?

I know there was a recent thread about this, but wanted some more input on this specific feature. Right now we have everything configured as "Shared". My reasoning was that it's less overhead, and since this is a new feature, that we could get a better gauge on how much additional overhead the

RE: How do you deploy AV?

Sophos will hook into AD OUs. As soon as we add a PC to an OU, Sophos will push itself to it. It also works well with SCCM. Jim Holmgren Senior Manager, Infrastructure Services XLHealth Corporation The Warehouse at Camden Yards 351 West Camden Street, Suite 100 Baltimore, MD 21201

Re: Thoughts on this pitch from Trend

I think some of the issues have to do with smaller installations. We have several clients that install the A/V server software on an SBS server...and Trend can bog it down with the smart scan features enabled. Jonathan wrote: Very interesting We switched from McAfee to Trend a year ago.

RE: Looking for logon/logoff times in old event logs

Sorry, I wasn't paying close attention, but they should be backed up by anything that does a SysState backup and anything that does a VSS backup. Regards, Michael B. Smith Consultant and Exchange MVP http://TheEssentialExchange.com -Original Message- From: Ben Scott [mailto:mailvor...@

RE: SQl Injection, Rainbow Tables, Social Engineering, oh my!

Fun and interesting read. Thanks. From: Jonathan Link [mailto:jonathan.l...@gmail.com] Sent: Thursday, February 17, 2011 10:31 AM To: NT System Admin Issues Subject: SQl Injection, Rainbow Tables, Social Engineering, oh my! Further detail of the HBGary comeuppance, beat down, or substitute your o

Re: Looking for logon/logoff times in old event logs

On Thu, Feb 17, 2011 at 9:48 AM, Mike Leone wrote: > But I don't see any event log files (*.evt) in the location > c:\windows\system32\config. I don't have a solution for you, but IIRC, the active Event Log files are opened by the EventLog service at startup and stay that way as long as the sys

re: Scanner recommendations please

Another vote for the Fuji ScanSnap S1500. We have 5 of them and they totally rock - autodetect whether the pages are 2-sided or not, etc. I have thrown away many cheap scanners (and 2 HP scanners that weren't cheap), and these are fantastic. Only drawback is that the outfeed tray seems like i

RE: Purchasing and license tracking

Most places I've worked have some sort of IT Business Manager type position that manages all this. They're responsible for getting the correct information to purchasing for cutting POs, executing contracts, etc. Thanks, Brian Desmond br...@briandesmond.com w - 312

RE: Thoughts on this pitch from Trend

Take a look at Avira Antivir. From: David Lum [mailto:david@nwea.org] Sent: 17 February 2011 17:25 To: NT System Admin Issues Subject: RE: Thoughts on this pitch from Trend Excellent to be aware of, thanks guys. %dayjob% environment is infinitely more complex than my client of 55 seats.

Re: Thoughts on this pitch from Trend

I've just gone to the new Trend Worry Free 7...it is nicer than 6 or 5 for that matter. On Thu, Feb 17, 2011 at 11:42 AM, Jonathan wrote: > Very interesting > > We switched from McAfee to Trend a year ago. Between 500 and 600 > nodes, including servers, and we have not experienced problems l

Re: Thoughts on this pitch from Trend

*crickets* On Thu, Feb 17, 2011 at 12:42 PM, Jonathan wrote: > Very interesting > > We switched from McAfee to Trend a year ago. Between 500 and 600 > nodes, including servers, and we have not experienced problems like > what some of you have described...we are controlling updates from our >

Re: Thoughts on this pitch from Trend

Very interesting We switched from McAfee to Trend a year ago. Between 500 and 600 nodes, including servers, and we have not experienced problems like what some of you have described...we are controlling updates from our own internal server, and we are not utilizing Trend's cloudy offering. [1]

Re: RE: Fixed Asset software?

As an asideone methodology we employed was to put a bar code label for locations, such as offices and equipment rooms. That way when doing audits we start off by scanning the bar code on the doorframe...then proceed to scan the assets in the room/area. Jonathan - Thumb typed from my HTC Droid

RE: Thoughts on this pitch from Trend

Excellent to be aware of, thanks guys. %dayjob% environment is infinitely more complex than my client of 55 seats. What AV do you recommend? Vipre is on the list, as is Symantec (beyond my control). Trend was the third but I am open to nixing them in favor of something else. %dayjob% = 450+ sea

Re: Thoughts on this pitch from Trend

Yeh happened all over apart from on the sites, that had brand new over specced servers, with brand new fast PC's with an abundance of memory but even they exhibited a measurable slowdown. I personally do not like any software package that at 850MB when downloaded expands to take up 8.5GB on the se

Re: Thoughts on this pitch from Trend

In my experience, if you enable the smart scan features in Worry Free it will suck. Too much overhead on the server, slowness on the clients when getting new definitions and eventually, gigs and gigs of definition files on the server that trend doesn't delete on a timely manner. Bill David L

RE: Fixed Asset software?

We just purchased FATS (Fixed Asset Tracking Software - http://www.fatsfixedassettracking.com/index.html) with a small barcode scanner with it. They have several different options to purchase, depending on the amount of assets you have. Also have several different scanners to chose from. You can

RE: Thoughts on this pitch from Trend

Weird, no issue in the environment I support when I upgraded them. Small environment though, 55 systems, fairly "clean" clients and just two sites. Dave From: Graeme Carstairs [mailto:loonyto...@gmail.com] Sent: Thursday, February 17, 2011 8:49 AM To: NT System Admin Issues Cc: Steven Peck Subje

RE: How do you deploy AV?

+1 Sean Rector, MCSE From: John Leto [mailto:jo...@colonialsavings.com] Sent: Thursday, February 17, 2011 11:41 AM To: NT System Admin Issues Subject: RE: How do you deploy AV? We deploy ours via the Vipre console and then verify compliance from the console. From: David Lum [mailto

Re: Disabled AD Accounts and BES

I just updated change control to check into BES enrollment status while going through the terminated user checklist. On Thu, Feb 17, 2011 at 11:46 AM, Bill Humphries wrote: > > +1 > > I just discovered that one of our guys did the same thing two weeks ago > when a director level user at a client

RE: How do you deploy AV?

I will say that sometimes if I can't deploy it from the Vipre console, I'll go to the local keyboard (or remote in via VNC) and deploy it manually using one of the "packages" that Vipre creates. From: John Leto [mailto:jo...@colonialsavings.com] Sent: Thursday, February 17, 2011 11:41 AM To: NT

RE: How do you deploy AV?

Ditto. From: John Leto [mailto:jo...@colonialsavings.com] Sent: Thursday, February 17, 2011 11:41 AM To: NT System Admin Issues Subject: RE: How do you deploy AV? We deploy ours via the Vipre console and then verify compliance from the console. From: David Lum [mailto:david@nwea.org] Sen

Re: Thoughts on this pitch from Trend

Would avoid Tren Worry Free like the plague. It killed (literally stopped servers and clients talking, due to scan overload, and resource hogging) 4 networks when it was upgraded from 5 to 6, Had to remove it and install vipre which made very angry clients very happy Graeme On 17 February 2011

Re: Disabled AD Accounts and BES

+1 I just discovered that one of our guys did the same thing two weeks ago when a director level user at a client got let go. user had access via BB for a week and a half. Bill Kurt Buff wrote: > Indeed, you are correct. > > I just ran into this today. > > One of my minions was given the tas

Re: Thoughts on this pitch from Trend

Here we go http://dilbert.com/strips/comic/2011-01-07/ Steven Peck http://www.blkmtn.org On Thu, Feb 17, 2011 at 7:58 AM, Mike Gill wrote: > Bla bla, our def files are I the cloud, bla bla, something about > virtualization density, bla bla cloud, bla bla bla. > > > > Of the different AV product

RE: How do you deploy AV?

We deploy ours via the Vipre console and then verify compliance from the console. From: David Lum [mailto:david@nwea.org] Sent: Thursday, February 17, 2011 10:39 AM To: NT System Admin Issues Subject: How do you deploy AV? What methods do you guys use to deploy AV to systems and what process

Re: Thoughts on this pitch from Trend

altogether now Cloud is the word Cloud is the word, is the word that you heard It's got groove it's got meaning Cloud is the time, is the place is the motion Cloud is the way we are feeling On Thu, Feb 17, 2011 at 10:58 AM, Mike Gill wrote: > Bla bla, our def files are I the cloud, bla

Re: Enterprise Vault 8.0 SP5

I was able to track down an answer. You can order the provisioning groups within the Vault Console which will dictate the priority of the mailbox policies. - Sean On Tue, Feb 15, 2011 at 2:31 PM, Sean Martin wrote: > Enterprise Vault 8.0 SP5 > Exchange 2003 SP2 > > Anyone familiar with Syman

RE: Thoughts on this pitch from Trend

Bla bla, our def files are I the cloud, bla bla, something about virtualization density, bla bla cloud, bla bla bla. Of the different AV product I have worked with, all of them allow for an alternate server location for def updates if a local store isn't available. I'm not sure what they're try

Re: Bandwidth Usage

Well, it *is* HyperText Transfer Protocol - it doesn't say anything about graphics, music, video, etc. Heh. On Thu, Feb 17, 2011 at 03:22, Andrew S. Baker wrote: > All of whom have mastered Lynx.  :) > > ASB (Find me online via About.Me) > Exploiting Technology for Business Advantage... > > > >

Looking for logon/logoff times in old event logs

I've had a request to provide logon/logoff times for a specific set of employees, from 6 months ago. At the time, we were a Win 2003 AD shop (since upgraded to Win 2008 R2 AD shop). We installed all new hardware, and upgraded that way, then retired the old hardware. Besides the fact that I don't t

Re: Registry permissions

+1 If I can make Quickbooks run without admin rights, you can make anything run without admin rights... On Thu, Feb 17, 2011 at 7:28 AM, Ziots, Edward wrote: > +1 on that recommendation, it takes time, but most times, it only needs > certain access to directories/registry or maybe to start a se

RE: Registry permissions

+1 on that recommendation, it takes time, but most times, it only needs certain access to directories/registry or maybe to start a service, but that all can be granted at a user level. Z Edward E. Ziots CISSP, Network +, Security + Network Engineer Lifespan Organization Email:ezi...@li

Re: Registry permissions

If they are local admins, you can permanently prevent nothing for them, as they will have the means to change it. It would be better to invest time in getting the app to work as a more restricted user. - http://blogs.msdn.com/b/aaron_margosis/archive/2009/11/03/luabuglight.asp

Re: Registry permissions

No, because they will just change them back. Admins are gods, whatever you do. I have *never *found a piece of software that "needed admin" that I couldn't make work as a regular user. Use LUA Buglight or Process Monitor to track down the offending areas. 99% of the time, it is either file permiss

Re: Bandwidth Usage

All of whom have mastered Lynx. :) *ASB *(Find me online via About.Me ) *Exploiting Technology for Business Advantage... * On Thu, Feb 17, 2011 at 1:32 AM, My New Display Name for Bob. :) < don@gmail.com> wrote: > I got ya beat. 1200 users on a 10mb

RE: Registry permissions

Hi I had some success calling the registry settings from a batch file at login Is there a better way Apart from removing local admin Thanks Nigel -Original Message- From: Nigel Parker [mailto:nigel.par...@ultraframe.co.uk] Sent: 17 February 2011 11:17 To: NT System Admin Issues Su

Registry permissions

Hi We have some people who sadly have to be local admins due to the software I would like to change some of the Registry permissions via a login script to stop them being able to change certain settings So give them Read to certain keys etc Is this possible? Nigel Parker Systems Engineer Ult