Personally I am all for your solution. Too bad it is not legal.
Jon
> Date: Fri, 19 Jul 2013 16:15:25 -0700
> Subject: Re: [NTSysADM] A little afield of the normal topic - ShoreTel
> installation
> From: [email protected]
> To: [email protected]
>
> Any remedies for this kind of stupidity that you can recommend?
>
> Other than hunting down and hurting the devs?
>
> Kurt
>
> On Fri, Jul 19, 2013 at 4:05 PM, Webster <[email protected]> wrote:
> > I see mostly the same stupid requirements for most healthcare and finance
> > related software. IOW, their devs are either too stupid or too lazy to
> > build proper Windows apps. But that is just my rant from working so long
> > in the TS/RDS/XenApp world.
> >
> > Thanks
> >
> >
> > Webster
> >
> >
> >> -----Original Message-----
> >> From: [email protected]
> >> [mailto:[email protected]] On Behalf Of Kurt Buff
> >> Sent: Friday, July 19, 2013 6:01 PM
> >> To: [email protected]
> >> Subject: [NTSysADM] A little afield of the normal topic - ShoreTel
> >> installation
> >>
> >> All,
> >>
> >> We are using ShoreTel for our phone solution. Works well.
> >>
> >> I have just recently upgraded from 10.2 to 11.2 to 12.3, after I moved it
> >> to a
> >> new VLAN - that was a bit of a late night...
> >>
> >> However, it's running on an ancient SuperMicro server, on Server 2003 R2.
> >>
> >> It's time to move it to a new Dell machine, running 2008 R2, and to get to
> >> the
> >> current version of 13.2.
> >>
> >> I've looked at the prerequisites for installing 12.3, and am appalled at
> >> what
> >> they suggest, and was hoping for a bit of feedback from anyone here
> >> regarding this.
> >>
> >> Here's what they want me to do:
> >>
> >> o- Turn off the firewall - disable all of the profiles (Domain, Public and
> >> Private), then turn off and disable the service.
> >> o- Turn off the Base Filtering Engine (disable the service)
> >> o- Set DEP for essential Windows programs and services only
> >> o- Turn off UAC
> >> o- Do not apply patches released past a certain date, stating
> >> "When releasing a new build, ShoreTel publishes build notes
> >> listing
> >> the Microsoft
> >> patches that are certified against the build. ShoreTel also
> >> highlights
> >> software
> >> changes required by the Microsoft patches. Note that no
> >> additional
> >> Microsoft
> >> updates should be applied to your ShoreWare server between
> >> ShoreTel builds. If
> >> you install Microsoft updates between ShoreTel builds, they may
> >> have
> >> an adverse
> >> effect on your telephone system.
> >> Disable Microsoft updates until you review the detailed
> >> certification
> >> provided with
> >> each release."
> >>
> >>
> >> If you are running ShoreTel, have you run into this, and how do you protect
> >> your ShoreTel environment, other than firewalling the subnet that it's on?
> >>
> >> To me, this seems like egregiously broken software, requiring me to reduce
> >> the security of the server to near zero.
> >>
> >> Thoughts appreciated.
> >>
> >> Kurt
> >>
> >>
> >
>
>
