MS's response: http://technet.microsoft.com/en-us/security/advisory/2757760
From: Sam Cayze [mailto:sca...@gmail.com]
Sent: Monday, September 17, 2012 4:29 PM
To: NT System Admin Issues
Subject: RE: Hackers exploit new IE zero-day vulnerability - Computerworld
Looks like a good night to get
Lots of default mitigations.
I wonder if they've actually testing IE10... Their response is somewhat
ambiguous on that point.
* *
*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…
*
On Tue, Sep 18, 2012 at 9:08 AM, David Lum
Listed in the non-affected list.
Rod Trent http://myitforum.com/myitforumwp/community/members/rodtrent/
http://www.myitforum.com/ Description: myITSMButton
http://twitter.com/rodtrent Description: TwitterButton
http://www.facebook.com/rodtrent Description: Facebookbutton
Yep, I saw that, but the initial reading almost felt like the complaint we
are investigating is about IE7-9 :)
* *
*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…
*
On Tue, Sep 18, 2012 at 9:39 AM, Rod Trent rodtr...@myitforum.com wrote:
Are those calls documented? And what was the nature of the call?
After the initial transition, this will actually make admin's lives easier,
since they have a more controlled environment to work in.
Yeah, some things are easier when they have admin rights, but that doesn't
mean that users
None of my users are local admins. And they have no problems with it.
Am I just lucky to not have a complete nightmare because of it, or are
your users doing all sorts of crazy things that required elevated
privileges? Any more detail on what is/was the complete nightmare?
From:
You can get software to elevate user rights on-the-fly for tasks that users
demand admin rights for. It works very well too IME, but naturally weighs in
with a cost factor.
---Blackberried
-Original Message-
From: Jonathan Link jonathan.l...@gmail.com
Date: Tue, 18 Sep 2012 10:29:33
I hear you. I have exactly the same battle at this end, but it focuses
on the problems with legacy apps that don't play well under Win7.
It's incredible how much people fight this - but it's mostly about
their egos. They want the shred of illusion that they know what they
are doing and are
Go back through the job tickets and find the work they had to do because the
user has admin rights.
From: David Lum [mailto:david@nwea.org]
Sent: Tuesday, September 18, 2012 10:25 AM
To: NT System Admin Issues
Subject: This is what I get
Here's how much fight I get when I even SUGGEST
After I cooled off, I gave him this reply:
Clearly you've never tried to not make them local admins. Give me two of where
a typical employee (this mean not developers) , and I'll give you two examples
of how it can be accomplished WITHOUT them being local admin...
From: Jonathan Link
None of my users run with local admin rights. Not even my boss. Not even HER
boss--the superintendent of schools, at the top of our org chart.
The volume of information available to show why this is a best practice is
overwhelming.
But then, I suspect you already know this.
It does help that
Seriously,
That is pretty insane, because the higher level rights, when a 0 day
hits the box, it basically can own the system, I guess the other user
doesn't understand.
I can say that removing Admin rights doesn't solving everything some
malware definitely finds places to write where
There's no indication his users would have a problem with it. It's the
helpdesk/desktop support folks that have a problem here.
* *
*ASB* *http://XeeMe.com/AndrewBaker* *Harnessing the Advantages of
Technology for the SMB market…
*
On Tue, Sep 18, 2012 at 10:35 AM, David Mazzaccaro
We're going through the same issue here. For years, while on Novell and XP,
all of our users have been local admins. When we roll over to Active
Directory, and Win 7, no one will be local admins. We purchased Viewfinity for
our privilege elevation issues. Pretty slick software, doesn't need
Installation-wise, there's a few bits of software you can utilize that won't
actually necessitate local admin privs - personal vDisks, AppSense StrataApps,
etc.
---Blackberried
-Original Message-
From: Heaton, Joseph@DFG jhea...@dfg.ca.gov
Date: Tue, 18 Sep 2012 15:32:52
To: NT System
Depends what area you want to work in I guess. I have some legacy MS certs but
last few years have concentrated on Citrix/VMWare/AppSense because of the
relevance to the areas I wanted to specialize in.
---Blackberried
-Original Message-
From: Mathew Shember mathew.shem...@synopsys.com
I would do the VCP in a heartbeat but you are required to sit the 5 day class
and take the test to get it. The cheapest I've seen the course is around $2500.
Kind of out of my range.
John W. Cook
Network Operations Manager
Partnership for Strong Families
From: Mathew Shember
On Tue, Sep 18, 2012 at 9:07 AM, Mathew Shember
mathew.shem...@synopsys.com wrote:
First off to avoid the question and value of certifications; I tend to view
them as resume garnish which helps get you by HR filters.
The question is which to pursue? I think all of mine have expired and my
Vipre works well for us.
200 users across multiple locations.
The definition updates can be large, but I think that is industry
standard nowadays.
From: Ziots, Edward [mailto:ezi...@lifespan.org]
Sent: Tuesday, September 18, 2012 12:29 PM
To: NT System Admin Issues
Subject: Btw what
All of those certifications are valuable in the industry, but it's a very
subjective area. I'd say what are you trying to do in the next 3 years?
Moving into a specific area of expertise? Sys Admin, Network,
Virtualization, security? Or are you moving more towards management or
compliance? If
Also ClamAV, but all of them actually, included on a boot disk so that
the OS isn't running from the hard disk. Either UBCD4Win or Hiren's.
Failing that, running them from a write-protected USB stick as a
portable app - ClamAV comes in a portable version from
That’s one I am leaning towards.
Check the local community colleges as some might have programs with VMWare and
for 6 weeks you can take the requisite course.
One local school does that here ☺
From: John Cook [mailto:john.c...@pfsf.org]
Sent: Tuesday, September 18, 2012 9:25 AM
To: NT System
Yep that is step (2) in the process is persistence remains.. ( which
sometimes it does)
Z
Edward E. Ziots, CISSP, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
From: Crawford, Scott [mailto:crawfo...@evangel.edu]
Sent: Tuesday, September 18, 2012
We have Forefront on our Exchange servers behind an anti-spam/av gateway
appliance. For servers and desktops we have McAfee Enterprise controlled
through EPo. We combine this with a very aggressive patch update schedule
for OS and most applications.
That's pretty much it.
If something beyond a
+1. We'll download Windows Defender Offline or Malwarebytes on a per machine
basis if we think there's something lingering.
John W. Cook
Network Operations Manager
Partnership for Strong Families
From: David Mazzaccaro [mailto:david.mazzacc...@hudsonmobility.com]
Sent: Tuesday, September 18,
If I were you and Citrix is going to be a big part of your time I'd concentrate
on CCA and CCAA. Or if you can and you're interested enough, get some NetScaler
training and certification. Its under the Citrix umbrella and is a big growth
area, I'm sure Webster would agree.
But by all means
It really depends on what you are interested in and where you are leaning.
The MS System Center Suite of products is hot right now and a lot of the
training free can be had for free or inexpensive + time. I should probably
compile my list.
I am taking my VCP test in the next few days but it's a
There are a number of colleges that teach it - check the VMWare site
John W. Cook
Network Operations Manager
Partnership for Strong Families
From: Mathew Shember [mailto:mathew.shem...@synopsys.com]
Sent: Tuesday, September 18, 2012 12:44 PM
To: NT System Admin Issues
I see what you did there
On Tue, Sep 18, 2012 at 11:45 AM, Kennedy, Jim kennedy...@elyriaschools.org
wrote:
Ghost
** **
*From:* Ziots, Edward [mailto:ezi...@lifespan.org]
*Sent:* Tuesday, September 18, 2012 12:45 PM
*To:* NT System Admin Issues
*Subject:* Btw what is everyone
I agree. If networking runs in your blood, the there is even more NetScaler
work out there than XenApp/XenDesktop work. Google has a couple of thousand
NetScalers, McKesson has close to a thousand and every cloud provider I know of
uses the high-end NetScaler for the multi-tenancy capability.
More like it is the twine that permits them to interact (push/pull) with each
other.
From: Steven Peck [mailto:sep...@gmail.com]
Sent: Tuesday, September 18, 2012 1:58 PM
To: NT System Admin Issues
Subject: Re: Certification time?
It really depends on what you are interested in and where you
Why would you want the default to change? The problem is not a standard default
password. Heck, I'd prefer if the default password on everything was the same.
The problem is people not changing it. I'd find it rather unlikely for someone
to know what the DRAC is for, hook it up to an unsecured
A... nice refinement. Just finishing a new budget lab at home to play with
it all so I will keep that in mind.
On Tue, Sep 18, 2012 at 11:37 AM, Michael B. Smith mich...@smithcons.comwrote:
More like it is the twine that permits them to interact (push/pull) with
each other.
** **
I am trying to change from GPP items from directories like c:\windows\system32
to %SystemDir%. I push a number of icons to staff PCs, and use those icons for
various desktop links. It works fine when I use the full path for destination.
It never works when I use variables.
I also have
Daft question...do those variables resolve on the clients? If they are XP, do
they have the Group Policy Client Side Extensions installed?
---Blackberried
-Original Message-
From: Tom Miller tmil...@hnncsb.org
Date: Tue, 18 Sep 2012 15:23:51
To: NT System Admin
I think I need to add them to the PC's variables first - I can do that via GPP
as well. Using the SET command doesn't show them, so I''ll try that first.
Rankin, James R kz2...@googlemail.com 9/18/2012 3:37 PM
Daft question...do those variables resolve on the clients? If they are XP, do
I've never had to do that to get them to work, to be fair. The %systemdrive%
should resolve though, if that doesn't there's something up.
---Blackberried
-Original Message-
From: Tom Miller tmil...@hnncsb.org
Date: Tue, 18 Sep 2012 15:47:56
To: NT System Admin
On one of our XP systems:
%SystemDrive%=C:
%SystemRoot%=C:\WINDOWS
%ProgramFiles%=C:\Program Files
These are set by default
...Tim
From: Rankin, James R [mailto:kz2...@googlemail.com]
Sent: Tuesday, September 18, 2012 12:55 PM
To: NT System Admin Issues
Subject: Re: Variables in AD group policy
Hi folks,
I'm looking for recommendations for a small desktop page scanner
which has built in eMailing capabilities OR can invoke a command
line mailer (such as Blat) on the system to which it is connected.
Thanks.
Regards,
Charles
---
Charles Figueiredo PhD
Shouldn't you change the subject then?
Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com
-Original Message-
From: IS Technical [mailto:ist...@intsolcan.com]
Sent: Tuesday, September 18, 2012 4:32 PM
To: NT System Admin Issues
Subject: Re:
Oh no. It's much more inconvenient for everyone involved to just hijack the
thread.
Joe Heaton
ITB - Enterprise Server Support
-Original Message-
From: Webster [mailto:webs...@carlwebster.com]
Sent: Tuesday, September 18, 2012 2:38 PM
To: Heaton, Joseph@DFG; NT System Admin Issues
I thought maybe he was going to ask about scanner certification exams. :)
Carl Webster
Consultant and Citrix Technology Professional
http://www.CarlWebster.com
-Original Message-
From: Heaton, Joseph@DFG [mailto:jhea...@dfg.ca.gov]
Subject: RE: Certification time?
Oh no. It's
As long as the 'l' is put in its right place, anyway
---Blackberried
-Original Message-
From: Andrew S. Baker asbz...@gmail.com
Date: Tue, 18 Sep 2012 17:48:51
To: NT System Admin Issuesntsysadmin@lyris.sunbelt-software.com
Reply-To: NT System Admin Issues
That was the password on my first Dell with a Drac card and that was a first
generation model. Jon
From: r...@pge.com
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: OTish Dell DRAC default password.
Date: Tue, 18 Sep 2012 18:18:20 +
How long has that been the password? I
I am finding google hits back to 2001 with that combo.
From: Jon Harris [jk.har...@live.com]
Sent: Tuesday, September 18, 2012 6:34 PM
To: NT System Admin Issues
Subject: RE: OTish Dell DRAC default password.
That was the password on my first Dell with a Drac
IMHO this is just wasting your time, and could potentially backfire.
Write a business case instead, backed by actual figures/facts, and it needs to
go up the chain to management.
Making major changes to how a business works is not the job of IT (except in
the smallest of organisations), and IT
For post-infection? Assuming that the decision is that no further investigation
is required, then re-image. I don't think any enterprise would use any of the
tools below - it relies way too much on (usually lowly paid) field services
personnel to use their judgement on whether the machine is
47 matches
Mail list logo
