RE: Been a long day today, but I won...

Someone's blocking ICMP Fragmentation Needed messages on your firewall(s), then? A common firewall admin beginner's mistake :-) http://packetlife.net/blog/2008/aug/18/path-mtu-discovery/ Cheers, Phil -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: 30 January 2013

RE: Speaking of Barracuda...

I had no port 80 hits originating from my web filter. From: Richard Stovall [mailto:rich...@gmail.com] Sent: Tuesday, January 29, 2013 4:33 PM To: NT System Admin Issues Subject: Re: Speaking of Barracuda... Thanks for having a look at it. The activity is pretty

RE: Speaking of Barracuda...

I mean SPAM filter, to early to be responding to emails. From: N Parr Sent: Wednesday, January 30, 2013 7:45 AM To: NT System Admin Issues Subject: RE: Speaking of Barracuda... I had no port 80 hits originating from my web filter.

Re: Speaking of Barracuda...

Thanks for checking. Out of curiosity, do you have Intent Analysis enabled? How about Multi-Level Intent Analysis? On Wed, Jan 30, 2013 at 8:48 AM, N Parr wrote: > ** > I mean SPAM filter, to early to be responding to emails. > > -- > *From:* N Parr > *Sent:* Wedn

RE: Shocking? Somehow, not...

Rapid7 has a tool to scan for this vulnerability, it does require Java(!) and registration, but is otherwise free. From: Patrick Salmon [mailto:psal...@gmail.com] Sent: Tuesday, January 29, 2013 1:01 PM To: NT System Admin Issues Subject: Re: Shocking? Somehow, not... Not surprisingly, you're go

Re: Windows Network Awareness and "Public Network"

Can't you just change it? I remember having to switch some lab systems to Private to get them to talkdon't remember if you can force the Domain profile though Sent from my Blackberry, which may be an antique but delivers email RELIABLY -Original Message- From: David Lum Date: Wed,

Re: Been a long day today, but I won...

No icmp is blocked - hell, nothing is blocked outbound, which I'm unhappy with, but have to follow policy. Don't know why it wasn't detected. Kurt On Wed, Jan 30, 2013 at 3:30 AM, Randal, Phil wrote: > Someone's blocking ICMP Fragmentation Needed messages on your firewall(s), > then? > > A com

RE: Shocking? Somehow, not...

Just tried to run it on my systems and sure enough since I have totally disabled java it barfs. That and Zero Vulnerability Exploitshield catches its .dll being invoked into java as an exploit and stops it. Z Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan Organization

RE: Been a long day today, but I won...

Or over zealous and disabled a lot of the ICMP type messages you can always use hping to craft packets that will test what responses are utilized when sending packets asking for fragmentation and just use tcpdump to look at the return packets. Z Edward E. Ziots, CISSP, Security +, Network + S

RE: Been a long day today, but I won...

Ouch on the nothing is blocked outbounds, especially in these days of malware where it hits the endpoint and start attacking other systems out on the internet at reckless abandon. I have looked at enough malware samples in the last 2 months to prove without a doubt egress filtering is needed and

Re: Been a long day today, but I won...

On Wed, Jan 30, 2013 at 10:26 AM, Kurt Buff wrote: >> Someone's blocking ICMP Fragmentation Needed messages on your firewall(s), >> then? > > No icmp is blocked - hell, nothing is blocked outbound, which I'm > unhappy with, but have to follow policy. It's blocked somewhere. Maybe you're not a

RE: Been a long day today, but I won...

You'd need to ensure that incoming ICMP can't fragment (type 3, code 4) messages get through. Cheers, Phil -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: 30 January 2013 15:26 To: NT System Admin Issues Subject: Re: Been a long day today, but I won... No icmp i

Re: Where to get copies of my various documentation scripts

http://www.hanselman.com/blog/YouAreNotYourCode.aspx I don't always agree with Scott but this is timely. On Tue, Jan 29, 2013 at 7:27 PM, Kurt Buff wrote: > I do not use XenApp, nor Citrix, but I do have a word of advice. > > Do not deprecate your skills with PowerShell. You have to start > some

RE: Been a long day today, but I won...

Well done ! Stu -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, January 30, 2013 1:42 AM To: NT System Admin Issues Subject: Been a long day today, but I won... So, it's month end, and our UK office is noticing that emails are not processing outbou

RE: Where to get copies of my various documentation scripts

Nice Thanks Webster From: Steven Peck [mailto:sep...@gmail.com] Subject: Re: Where to get copies of my various documentation scripts http://www.hanselman.com/blog/YouAreNotYourCode.aspx I don't always agree with Scott but this is timely. On Tue, Jan 29, 2013 at 7:27 PM, Kurt Buff mailto:kurt.

Re: Been a long day today, but I won...

Nice detective work! Don K -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wednesday, January 30, 2013 1:42 AM To: NT System Admin Issues Subject: Been a long day today, but I won... So, it's month end, and our UK office is noticing that emails are not processing

RE: Windows Network Awareness and "Public Network"

Oy. Found It and made the change. A little slow today... From: kz2...@googlemail.com [mailto:kz2...@googlemail.com] Sent: Wednesday, January 30, 2013 7:07 AM To: NT System Admin Issues Subject: Re: Windows Network Awareness and "Public Network" Can't you just change it? I remember having to swit

RE: Favorite VPN solution?

Are there 'clientless' VPN solutions that don't use Java? I don't know much about the new VPN solutions out there. ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ ~ --- To manage subscriptions click here: http

Dumping DHCP to a File

Everyone, I'm looking for a way to dump the DHCP info to a text/CSV file. I know how to export it to a DAT file to move it to another server but, I need to create a spreadsheet with the data because we are moving DHCP management to non-Windows devices. Regards, Don Guyer Catho

RE: Dumping DHCP to a File

Try "netsh dhcp server dump" DAMIEN SOLODOW Systems Engineer 317.447.6033 (office) 317.447.6014 (fax) HARRISON COLLEGE From: Guyer, Don [mailto:dgu...@che.org] Sent: Wednesday, January 30, 2013 12:55 PM To: NT System Admin Issues Subject: Dumping DHCP to a File Everyone, I'm loo

RE: Favorite VPN solution?

I'm 99 percent sure the MS vpn solution in server 2012 doesn't require java. -Original Message- From: Sam Cayze [mailto:sca...@gmail.com] Sent: Wednesday, January 30, 2013 12:54 PM To: NT System Admin Issues Subject: RE: Favorite VPN solution? Are there 'clientless' VPN solutions that do

RE: Dumping DHCP to a File

Yes... I've got powershell scripts that post-process this file, but that's where the data has to come from... From: Damien Solodow [mailto:damien.solo...@harrison.edu] Sent: Wednesday, January 30, 2013 1:03 PM To: NT System Admin Issues Subject: RE: Dumping DHCP to a File Try "netsh dhcp server

RE: Dumping DHCP to a File

Thx guys. Yes, I just ran it. Would take longer to manipulate that data than the current process that the person working on this currently showed me. However, Michael, anything you could throw my way would be greatly appreciated, as usual! Regards, Don Guyer Catholic Health East - Information

Re: Favorite VPN solution?

The DirectAccess solution from Microsoft definitely doesn't require Java. However, at least for Win7, it does require Enterprise or Ultimate - I believe Win8 must be Enterprise as well. For the server, it requires either Server 2008 R2 with UAG, or Server 2012. The 2008 R2 with UAG requires a wo

RE: Favorite VPN solution?

Server 2012 setup is a dream. And it deals much better with IPv4-only solutions. Also any VPN provided as part of RRAS (just RAS in Server 2012) has built-in clients for Windows. This includes PPTP and L2TP VPNs. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wedn

RE: Favorite VPN solution?

Kurt. Spot on analysis. If I were starting from scratch 2012 is the bees knees as they say. And I've never understood the client requirements, enterprise and ultimate editions. IMO should have been pro and above. -Original Message- From: Kurt Buff [mailto:kurt.b...@gmail.com] Sent: Wedne

Re: Favorite VPN solution?

On Wed, Jan 30, 2013 at 10:50 AM, Michael B. Smith wrote: > Server 2012 setup is a dream. And it deals much better with IPv4-only > solutions. I hope to upgrade to that toward the end of the calendar year. That depends on budgeting/schedule, however. > Also any VPN provided as part of RRAS (jus

Re: Favorite VPN solution?

I'm sure MSFT wanted a differentiator (along with AppLocker and BitLocker, etc.) - something to make the EA and other high-end customers feel like they're getting a good deal, if nothing else. Not saying I *like* that, you understand... In fact, IIRC, BitLocker is now part of Win8 Pro - but I won

Re: Mobile Device Management

MobileNow from AppSense can handle the phone and tablet piece, the demos I saw looked very good and it has just been released. I can get some more info on it for you in a little while - not sure whether it is specifically MAM or MDM though. Sent from my Blackberry, which may be an antique but d

RE: Mobile Device Management

We use Zenprise. Adds device policy management to your list of requirements. Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory & Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.org Office:

RE: Mobile Device Management

Interesting, Web, interesting... :) Regards, Don Guyer Catholic Health East - Information Technology Enterprise Directory & Messaging Services 3805 West Chester Pike, Suite 100, Newtown Square, Pa 19073 email: dgu...@che.org Office: 610.550.3595 | Cell: 610.955.6528 | Fa

Re: Mobile Device Management

Damn - almost went to work for them many years ago - I could have been rich from the buyout! They were less than 2 miles from my house at the time, which was very attractive at the time! On Wed, Jan 30, 2013 at 12:57 PM, Guyer, Don wrote: > Interesting, Web, interesting… > > ** ** > > J***

Re: Progress in password cracking

On 26 Jan 2013 at 14:50, Kurt Buff wrote: > Grammar badness makes cracking harder the long password > Password crackers get an English lesson. > > by Dan Goodin > Jan 24 2013 > Ars Technica > > When it comes to long phrases used to defeat recent advances in > password cracking, bigger isn't nec

Re: Mobile Device Management

I'm guessing (I haven't tried) that this is not a problem if you have Win7 Enterprise and BitLocker - it'll boot up without a password just fine, and still be protected. Might have to try it out on one of my lab machines, to see if it works. Kurt On Wed, Jan 30, 2013 at 1:48 PM, Angus Scott-Flem