If I had one, I would.
We're a small org, and a smartcard setup isn't gonna fly.
Kurt
On Mon, Apr 8, 2013 at 8:34 PM, Ken Schaefer wrote:
> Why don't you use smart card login instead?
>
> Security is about managing risk, and not about avoiding every possible risk.
> Work in a big enough org, a
Why don't you use smart card login instead?
Security is about managing risk, and not about avoiding every possible risk.
Work in a big enough org, and the risks are so numerous there's simply no way
to avoid them all - some of them just have to be accepted as is.
Cheers
Ken
-Original Messa
On Mon, Apr 8, 2013 at 8:04 PM, Ben Scott wrote:
> On Mon, Apr 8, 2013 at 8:01 PM, Kurt Buff wrote:
>> Agree with MBS that other tools could stand in for PowerShell, but WCE
>> was actually new to me.
>
> Well, then, you didn't say that, you seemed focused on PoSh.
>
> WCE in particular is ne
On Mon, Apr 8, 2013 at 8:01 PM, Kurt Buff wrote:
> Agree with MBS that other tools could stand in for PowerShell, but WCE
> was actually new to me.
Well, then, you didn't say that, you seemed focused on PoSh.
WCE in particular is new to me, too, but I've certainly read of
attacks on the runn
It would not surprise me if it were true.
I'm studying for the CISSP exam.
I figure that will give me a better chance of finding a job - one
that pays well, anyway.
Kurt
On Mon, Apr 8, 2013 at 7:40 PM, Jon Harris wrote:
> It was on LinkedIn Today not something that Andrew post.
>
> Jon
>
It was on LinkedIn Today not something that Andrew post. Jon From:
jk.har...@live.com
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: RESOLVED: Excel 2010 problem - can't quite figure it out
Date: Mon, 8 Apr 2013 22:38:56 -0400
Your manager maybe aware of your intention thus restricting
Your manager maybe aware of your intention thus restricting your input into
hiring or he/she may just have an ego that is too large to fit in a multistory
warehouse. Either way good luck getting out. A recent article I saw (I think
it was Andrew that posted it) on LinkedIn seems to indicate th
I was told to interview him only for cultural/team fit, in a separate
and shorter interview, and I had to push to get that.
Manager wanted to be the one who interviewed for technical ability - all alone.
New guy interviewed very well, and I liked him a lot.
Just one more reason why I'm not happy
Yes, and even if not a local admin you can run a physical keylogger on
a workstation and try to entice someone with more privileges than your
account has to log in an capture their credentials.
That's not exactly the point of my post.
The point is, as pointed out in another part of the thread, th
If you had anything to do with the hiring of the young pup then take partial
credit for being smart enough to know talent when you see it. If not then
watch your back he may be really good. Jon > Date: Mon, 8 Apr 2013 18:57:39
-0700
> Subject: Re: RESOLVED: Excel 2010 problem - can't quite figu
Absolutely - but I had to very unseriously threaten to kick his butt
for showing me up in front of customers. :-o
Kurt
On Mon, Apr 8, 2013 at 6:32 PM, Robert Cato wrote:
>
> That was a good hire and a big win for him on the first day.
>
>
> On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff wrote:
>>
>>
If you're admin on the machine, can't you just run a keylogger? Then you've got
the DA's credentials in the clear (assuming they use a password)
Cheers
Ken
-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com]
Sent: Tuesday, 9 April 2013 10:01 AM
To: NT System Admin Issues
Sub
That was a good hire and a big win for him on the first day.
On Mon, Apr 8, 2013 at 8:06 PM, Kurt Buff wrote:
> The young pup whose first day was today opened it in compatibility
> mode, did a Save As and it worked, then closed Excel and tried it in
> native mode, and it worked again.
>
> Gotta
I don't know about their claims but I would think that a switch with
programming time would cost the company a lot more than UPS batteries. It
sounds to me as if the UPS staff are just being lazy. Jon From:
bill.m...@pittcountync.gov
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: UPS vs
On Mon, Apr 8, 2013 at 5:01 PM, Kurt Buff wrote:
> On Mon, Apr 8, 2013 at 4:17 PM, Ben Scott wrote:
>> On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff wrote:
>>> Amusing? Alarming? Both?
>>> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.html
>>
>> Neither?
>>
>> It seem to
The young pup whose first day was today opened it in compatibility
mode, did a Save As and it worked, then closed Excel and tried it in
native mode, and it worked again.
Gotta love having a new set of eyes on a problem.
Don't know what root cause was, but it's a win, and I'll take it.
Kurt
On M
On Mon, Apr 8, 2013 at 4:17 PM, Ben Scott wrote:
> On Mon, Apr 8, 2013 at 7:06 PM, Kurt Buff wrote:
>> Amusing? Alarming? Both?
>> http://labofapenetrationtester.blogspot.in/2013/04/poshing-the-hashes.html
>
> Neither?
>
> It seem to boil down to, if you steal credentials, you gain access
> t
Tried that today.
Not successful - I've looked at the addins, too, and all that are
there are from MSFT - nothing strange or out of the ordinary.
Kurt
On Mon, Apr 8, 2013 at 6:14 AM, Miller Bonnie L.
wrote:
> Have you tried starting Excel with no add-ins as well (safemode)? Should be
> a /s o
Did VBE thing. Nice - I like that, have never played with it.
c:\users\%username%\AppData\Roaming\Microsoft\Excel\XLSTART
It's empty, and I can't find a book.xltx on the system.
Kurt
On Sat, Apr 6, 2013 at 1:56 PM, Orland, Kathleen wrote:
> Book.xltx is the name of the template. The location s
+1
PowerShell really didn't add anything here. In every case, psexec or winrm
could be used instead.
-Original Message-
From: Ben Scott [mailto:mailvor...@gmail.com]
Sent: Monday, April 8, 2013 7:17 PM
To: NT System Admin Issues
Subject: Re: POSH PtH - this is...
On Mon, Apr 8, 2013 at
On Mon, Apr 8, 2013 at 4:03 PM, Christopher Bodnar
wrote:
> I know that AD supports both Simple and SASL methods for LDAP binds:
>
> http://msdn.microsoft.com/en-us/library/cc223499.aspx
>
> What I was surprised is that there doesn't seem to be a way to disable the
> Simple method. It supports SSL
Maybe being difficult simply means you stop and think before you leap.
Being difficult can be a good thing.
James.
From: Mayo, Bill [mailto:bill.m...@pittcountync.gov]
Sent: Tuesday, 9 April 2013 6:41 AM
To: NT System Admin Issues
Subject: RE: UPS vs Switch Sanity Check
Thanks all
Thanks for the feedback Matt. I actually want the wireless to be on a
different subnet so I’m ok with that.
The Fortigate's support http://en.wikipedia.org/wiki/Capwap
Although of the existing AP's this customer has there is only one that I wanted
to support Capwap and it doesn't so I'll be lo
LOL yeah, and simpler/faster to replace :-P.
Unless a long steep downhill is in play here...
From: Steven Peck [mailto:sep...@live.com]
Sent: Monday, April 08, 2013 1:31 PM
To: NT System Admin Issues
Subject: RE: UPS vs Switch Sanity Check
Do they also say to use the clutch to slow the car down
>From a security perspective. It's allowing the username and password to be
sent over the wire in clear text.
You could say the same thing about NTLM, not that it's going over the wire
in clear text. But you have the ability to not allow NTLM or LANMan
authentication, why not also limit the S
Thanks all for the input. The outage in question was during the weekend and
one of the buildings in question has 24 hour staff. I think the big thing is
that they didn't want to come in on Saturday twice to power the UPS down and
back up. I am not terribly familiar with the UPS's, so I wasn't
Do they also say to use the clutch to slow the car down when going downhill
because they want to save the brakes? I mean brakes are more expensive then
clutch replacements right?
Steven Peckhttp://www.blkmtn.org From: sstri...@lrlaw.com
To: ntsysadmin@lyris.sunbelt-software.com
Subject: RE: UPS
What benefit do you think there would be to disable it?
From: Christopher Bodnar [mailto:christopher_bod...@glic.com]
Sent: Monday, April 8, 2013 4:03 PM
To: NT System Admin Issues
Subject: AD Simple LDAP authentication question
I know that AD supports both Simple and SASL methods for LDAP binds:
I know that AD supports both Simple and SASL methods for LDAP binds:
http://msdn.microsoft.com/en-us/library/cc223499.aspx
What I was surprised is that there doesn't seem to be a way to disable the
Simple method. It supports SSL/TLS but does not require it. Is that
correct?
Christopher Bodn
Have them set the UPS units to turn themselves off when the battery level gets
below a specified threshold. They should have complete control over this.
Also, are you not creating a chance for the switches to be damaged by the
various power surges. Sometimes the power company will have a on/off/
Hi,
Sorry, resending it.
Any suggestion?
From: Haritwal, Dhiraj [mailto:dhiraj.harit...@ap.sony.com]
Sent: 05 April 2013 21:49
To: NT System Admin Issues
Subject: Script to Enable Bitlocker
Hi,
I am trying to create a Powershell script to enable bitlocker on windows 7 like
below but don't k
Since we've been on the subject of Office 365, I was wondering if anyone has a
high level set of steps they use for migrating user email from on premise to
Office 365 - on premise outllook client is XP or up. On Premise Exchange server
is 2008 SBS.
I've done a few and have some steps that requi
It should be turned on. I generally enable it on a couple of DCs. Remember, you
have to enable it on the zone and then the DNS Server(s) that will perform the
scavenging.
First time you do this you might find some record gets cleaned up that was
dynamically registered but the registrar is long
> Has anyone used a Fortigate to manage WAP's?
We received a free FAP-221A with our Fortigate 300C. It was part of their
promotion, trying to sell us their APs.
Using the FortiOS 4.x software, the APs were forced to be on a different subnet
than our normal networks, and this was not what we wan
We have it turned on, and to clean up issues with stale entries and some DDNS
issues with our DHCP appliance.
Z
Edward E. Ziots, CISSP, CISA, Security +, Network +
Security Engineer
Lifespan Organization
ezi...@lifespan.org
Work:401-444-9081
This electronic message and any attachments may be p
Hopefully should definitely be there, if I ever get through this legal battle I
am having over an agency that owe me a load of money.
Sent from my Blackberry, which may be an antique but delivers email RELIABLY
-Original Message-
From: Webster
Date: Mon, 8 Apr 2013 14:57:31
To: NT
LOL, that is one of my three topics for my conference presentations this year.
There are a lot of TechNet and MVP articles on the topics of DNS A&S, DHCP and
what to do, how it works, scripts, etc. I am trying to figure out how to cover
this topic and multiple site, multiple domain configurati
Have you tried starting Excel with no add-ins as well (safemode)? Should be a
/s on the command line.
http://office.microsoft.com/en-us/excel-help/command-line-switches-for-excel-HA010158030.aspx
-Original Message-
From: Kurt Buff [mailto:kurt.b...@gmail.com]
Sent: Saturday, April 06,
Thanks Ken.
I've got the dumps ok, but the resulting analysis isn't proving anything
useful. Whilst I am willing to post the results on the IIS forums, I've opened
a PSS case as I was under some pressure to get this resolved.
Of course, it's not happening at the moment and probably never will w
39 matches
Mail list logo