I have seen the same BS for library systems. Dev's are just plain lazy in that
field as far as I saw. I talked to one that insisted their system could not be
run on a standard server their requirement was NO security at all. They were
still using Win 98 and DOS machines for development and said they did not have
time to keep up with IT developments. That was 20 years ago now but last time
I talked to them they still recommend the disk be formatted FAT32.
Jon
> From: [email protected]
> To: [email protected]
> Subject: RE: [NTSysADM] A little afield of the normal topic - ShoreTel
> installation
> Date: Fri, 19 Jul 2013 23:05:31 +0000
>
> I see mostly the same stupid requirements for most healthcare and finance
> related software. IOW, their devs are either too stupid or too lazy to build
> proper Windows apps. But that is just my rant from working so long in the
> TS/RDS/XenApp world.
>
> Thanks
>
>
> Webster
>
>
> > -----Original Message-----
> > From: [email protected]
> > [mailto:[email protected]] On Behalf Of Kurt Buff
> > Sent: Friday, July 19, 2013 6:01 PM
> > To: [email protected]
> > Subject: [NTSysADM] A little afield of the normal topic - ShoreTel
> > installation
> >
> > All,
> >
> > We are using ShoreTel for our phone solution. Works well.
> >
> > I have just recently upgraded from 10.2 to 11.2 to 12.3, after I moved it
> > to a
> > new VLAN - that was a bit of a late night...
> >
> > However, it's running on an ancient SuperMicro server, on Server 2003 R2.
> >
> > It's time to move it to a new Dell machine, running 2008 R2, and to get to
> > the
> > current version of 13.2.
> >
> > I've looked at the prerequisites for installing 12.3, and am appalled at
> > what
> > they suggest, and was hoping for a bit of feedback from anyone here
> > regarding this.
> >
> > Here's what they want me to do:
> >
> > o- Turn off the firewall - disable all of the profiles (Domain, Public and
> > Private), then turn off and disable the service.
> > o- Turn off the Base Filtering Engine (disable the service)
> > o- Set DEP for essential Windows programs and services only
> > o- Turn off UAC
> > o- Do not apply patches released past a certain date, stating
> > "When releasing a new build, ShoreTel publishes build notes
> > listing
> > the Microsoft
> > patches that are certified against the build. ShoreTel also
> > highlights
> > software
> > changes required by the Microsoft patches. Note that no additional
> > Microsoft
> > updates should be applied to your ShoreWare server between
> > ShoreTel builds. If
> > you install Microsoft updates between ShoreTel builds, they may
> > have
> > an adverse
> > effect on your telephone system.
> > Disable Microsoft updates until you review the detailed
> > certification
> > provided with
> > each release."
> >
> >
> > If you are running ShoreTel, have you run into this, and how do you protect
> > your ShoreTel environment, other than firewalling the subnet that it's on?
> >
> > To me, this seems like egregiously broken software, requiring me to reduce
> > the security of the server to near zero.
> >
> > Thoughts appreciated.
> >
> > Kurt
> >
> >
>
