Thanks, Z
* *
*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…
*
On Thu, Sep 6, 2012 at 12:53 PM, Ziots, Edward ezi...@lifespan.org wrote:
BEAST creators develop new SSL attack - The H Security: News and Features:
“If these policies are retained, then there will be a systematic vulnerability
window. Microsoft will patch Internet Explorer, and then a week or two later,
Adobe will reveal a raft of new Flash security flaws when it patches Flash.
Windows users will then have to wait several weeks for
I’m pretty sure there’s a direct line between the Adobe Flash people and the
Microsoft IE people…
From: David Lum [mailto:david@nwea.org]
Sent: Friday, 7 September 2012 11:32 PM
To: NT System Admin Issues
Subject: RE: Did y'all know...
“If these policies are retained, then there will be a
Your confidence in Microsoft amazes me...
On Fri, Sep 7, 2012 at 9:34 AM, Ken Schaefer k...@adopenstatic.com wrote:
I’m pretty sure there’s a direct line between the Adobe Flash people and
the Microsoft IE people…
** **
*From:* David Lum [mailto:david@nwea.org]
*Sent:* Friday, 7
NUTS! No Win8 for me J
Z
Edward E. Ziots, CISSP, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
From: Jonathan Link [mailto:jonathan.l...@gmail.com]
Sent: Thursday, September 06, 2012 10:45 PM
To: NT System Admin Issues
Subject: Re: Did y'all
Yeah. Like two tin cans and string. :)
Daniel
On Sep 7, 2012 9:37 AM, Ken Schaefer k...@adopenstatic.com wrote:
I’m pretty sure there’s a direct line between the Adobe Flash people and
the Microsoft IE people…
** **
*From:* David Lum [mailto:david@nwea.org]
*Sent:* Friday, 7
Bears repeating.
Your confidence in Microsoft amazes me.
On Friday, September 7, 2012, Daniel Rodriguez wrote:
Yeah. Like two tin cans and string. :)
Daniel
On Sep 7, 2012 9:37 AM, Ken Schaefer
k...@adopenstatic.comjavascript:_e({}, 'cvml', 'k...@adopenstatic.com');
wrote:
I’m pretty
Is there another download site for Adobe Reader with the versions on 1
site?
Z
Edward E. Ziots, CISSP, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
-Original Message-
From: Glen Johnson [mailto:gjohn...@vhcc.edu]
Sent: Wednesday, June 13, 2012
www.ninite.com shows they are distributing Flash version 11.4.402.265, which
seems later than 11.3
-Original Message-
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Friday, September 07, 2012 7:52 AM
To: NT System Admin Issues
Subject: RE: Latest flash
Is there another
You can't see the FAQ because your Flash is out of date. ;)
There is just one installer now for 64/32so one for 64/32 plugin and one
for 64/32 IE. Not sure what version that changed at, it was fairly recent
since I still remember it.
-Original Message-
From: Glen Johnson
You mean a telephone line or a line in the sand?
From: Ken Schaefer [mailto:k...@adopenstatic.com]
Sent: Friday, September 07, 2012 6:35 AM
To: NT System Admin Issues
Subject: RE: Did y'all know...
I’m pretty sure there’s a direct line between the Adobe Flash people and the
Microsoft IE people…
Most times it’s a keylogger or other malicious code downloaded from multiple
sources that will hook processes inject into other processes (legit) and try to
remain persistent.
If you can disable java invocation in the Internet Zone, which will stop the
drive-by’s for the time being.
Z
Thanks. If a user gets a message from the Java updater, should they accept it
if it’s verified from Oracle, or is that potentially an exploit?
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Friday, September 07, 2012 8:31 AM
To: NT System Admin Issues
Subject: RE: Java vulnerability Q
And then phone home with the loot. netstat for odd outgoing connections.
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Friday, September 07, 2012 11:33 AM
To: NT System Admin Issues
Subject: RE: Java vulnerability Q
Most times it’s a keylogger or other malicious code downloaded from
I would semi-trust the java updaters, but honestly, I would be pushing java 7
version 7 if you have a centralized platform for software updates. And if you
don’t need java on your systems for functionality, remove it altogether.
Z
Edward E. Ziots, CISSP, Security +, Network +
Security
I see these on my IPS, and add to my firewall block list so those nets are dead
to us going forward.
Again I posted a list of sites in which you can look up these domains/IP
networks that are usually most virtulent and do a full block egress/ingress. I
currently have 500+ networks blocked
I am betting you intentionally skip over the hidden tidbit in his question.
“If a user gets a message from the Java updater, should they accept it…”
What kind of user can install a Java update? ☺
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Friday, September 07, 2012 11:54 AM
To: NT
I have an SMS package (two, actually) and Shavlik and am pushing with both. I
still get some users asking about the Java updater and since our main product
here uses Java (and our outsourced HR stuff uses it) , I can’t really pull it
off anything…
I’m getting to the Windows machines, the Mac’s
Yes. Starting to move to a new platform for reading PDF’s
Stephen L. Holtz, MCSE, MCT
Director of Information Technology
Addison Reserve Country Club
7201 Addison Reserve Blvd.
Delray Beach, Fl. 33446
Ph: 561-455-1220
Cell: 561-441-0646
http://www.addisonreserve.cc/ www.addisonreserve.cc
Thanks. Kind of what I was afraid of.
From: Kennedy, Jim [mailto:kennedy...@elyriaschools.org]
Sent: Friday, September 07, 2012 8:14 AM
To: NT System Admin Issues
Subject: RE: Java vulnerability Q
The exploit is used to drop code on the target. That is how most of the
exploits that you hear
I my environment, anyone, because they’re all local admins. I don’t think it’s
entirely my fault, but it’s not because I haven’t tried to change it….the
Service Desk guys are unwilling to make the effort and neither is
management…I’ve vented about that here before.
From: Kennedy, Jim
I'm trying to understand why a previous vendor (who no longer supports
them) at one of my customers had setup a 2008 R2 terminal server to use MS
APP-V.
The environment consists of 25 thin client devices in a school/lab setting.
The ONLY software used on the terminal server is Office 2007 and
App-V let's you run the software without installing it, speaking simply, so it
can get around a lot of conflicts due to the isolation it offers, but if there
are no conflictstotal overkill.
For a small setup the simple overhead of creating and updating app sequences
makes it unsuitable.
Because they were either stupid or just didn't know what they were doing
(or both).
Office 2xxx belongs in the base image.
Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com http://www.carlwebster.com/
On 9/7/12 12:55 PM, jesse-r...@wi.rr.com
Agreed, unless you've got really poor Office add-ons that can't co-exist
---Blackberried
-Original Message-
From: Webster webs...@carlwebster.com
Date: Fri, 7 Sep 2012 17:15:49
To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com
Reply-To: NT System Admin Issues
That’s scary.
One of the first things I did when I started here 12 years ago is take away
local admin from everyone. I got some pushback, griping, and even threats
initially, but we haven’t had any malware since, and we can directly control
what gets installed on PCs. The result is that the
Preaching to the choir, brother ☺. Environments under my full control don’t
have users as local admins, but %dayjob% isn’t one of them.
From: Derek Harris [mailto:dhar...@panoramaortho.com]
Sent: Friday, September 07, 2012 1:41 PM
To: NT System Admin Issues
Subject: RE: Java vulnerability Q
As you are well aware some organizations are not as security aware as others.
I just had to remove Java 7 v 7 from my daughters machine as her University
secure(?) connection would not work with Java 7. Jon
Subject: RE: Java vulnerability Q
Date: Fri, 7 Sep 2012 11:40:57 -0400
From:
Has anyone been deploying VMs on Azure? I need to role out SharePoint, XenAPP,
AD, System Center , Dynamics CRM and Dynamics AX. I was thinking of completely
using Azure.
Cheers
Ryan
~ Finally, powerful endpoint security that ISN'T a resource hog! ~
~
No, I haven't, but I'll gladly pay your first year's fee for blog hosting
if you'll do it first and describe the entire process in detail.
:-)
On Fri, Sep 7, 2012 at 8:05 PM, Ryan Finnesey r...@finnesey.com wrote:
Has anyone been deploying VMs on Azure? I need to role out SharePoint,
XenAPP,
30 matches
Mail list logo