I don't follow anyone on Twitter. (That I know of. My Twitter
registration is defensive.)
But now I'm tempted. :)
On Sun, Dec 3, 2017 at 7:23 PM, Michael B. Smith
wrote:
> That's what I always like to hear!
>
> -Original Message-
> From:
On a similar (not really, but kind of) note, I present (courtesy of today's
SANS @Risk):
The Absurdly Underestimated Dangers of CSV Injection
http://georgemauer.net/2017/10/07/csv-injection.html
Seriously.
On Tue, Oct 3, 2017 at 11:03 PM, Kurt Buff wrote:
>
OpenVAS is free.
On Mon, Sep 18, 2017 at 9:47 AM, Michael Leone wrote:
> We had a pen test done recently, and so I've been fixing some of our
> external web servers, per their recommendations (i.e., turning off
> this protocol, enabling that one, etc).
>
> I'm curious what
It's a bit more than that now for corporate. $2,190 on their website.
Don't know if you get edu pricing.
On Mon, Sep 18, 2017 at 10:00 AM, Kennedy, Jim wrote:
> Nessus, it's only a grand a year and you can scan everything.
>
> -Original Message-
> From:
I seem to remember Vipre causing that occasionally, in its early
incarnations.
On Tue, Oct 10, 2017 at 10:12 AM, Kennedy, Jim wrote:
> Still having this issue, and it has spread to many of my 2008 R2 servers
> including non hyper V guests. They all start with
I think, and I could be wrong, but I think that if you pass a GIAC exam and
stay current, you are entitled to updated books. In your case with GCIH,
you'd have to pay for the cert attempt and use the books you've got. I
don't have the GCIH yet, but for GIAC the index is everything.
EVERYTHING.
Well done, Kurt. Congratulations.
On Fri, Oct 6, 2017 at 9:24 PM, Kurt Buff wrote:
> It's a good start
> https://www.giac.org/certified-professional/kurt-buff/162966
>
> Passed with 85%, in 1h 12m.
>
>
>
I concur. I have it at home. It alerted me when my mom clicked on some
PUP or other after analyzing the file in the cloud sandbox.
On Mon, Oct 9, 2017 at 5:02 PM, Michael B. Smith
wrote:
> I don’t sell hardware, but my partner that does, pushes it. In my view
> it’s
wow. Thanks for the follow-up on this!
>
> --
> Espi
>
>
> On Mon, Jan 16, 2017 at 8:02 AM, Richard Stovall <rich...@gmail.com>
> wrote:
>
>> For anyone else that may be seeing the Flash update issues in Chrome. If
>> you're using SEP, this may be your issue.
>&
doublepulsar.below0day.com/ <<< scan public addresses from a
> web site, which seems to use the above script
>
> Kurt
>
>
> On Fri, Jun 23, 2017 at 3:44 PM, Richard Stovall <rich...@gmail.com>
> wrote:
> > What I want to know is how to find a machine already
More interesting info.
https://threatpost.com/nsas-doublepulsar-kernel-exploit-in-use-internet-wide/125165/
On Jun 23, 2017 6:51 PM, "Richard Stovall" <rich...@gmail.com> wrote:
> What I want to know is how to find a machine already infected with double
> pulsar.
>
What I want to know is how to find a machine already infected with double
pulsar.
On Jun 23, 2017 4:49 PM, "Kurt Buff" wrote:
> I know that EternalBlue was fixed in the March round of patches, and
> my quick googling indidates that DoublePulsar was covered in MS17-010
>
>
I love Mimecast -vs- the other services I've used. They're not perfect,
but they're really, really good if you set it up correctly.
I used Cylance at a previous job. Nothing but praise from that experience,
but that's over a year ago.
I once heard someone say the six best things you can do to
User training.
Regular, frequent patching.
On Jun 12, 2017 8:42 AM, "Tom Miller" wrote:
> Hi All,
>
> What would you recommend as specific software solutions to protect against
> Ransomware? In my company we use:
>
> - Sonicwall firewalls, and the gateway security
Good info here: https://mjg59.dreamwidth.org/48429.html
On Wed, May 3, 2017 at 12:48 PM, Andrew S. Baker wrote:
> This is HUGE.
>
> And, no doubt, this being actively exploited and has been for some time.
>
> Regards,
>
> *ASB*
> *http://XeeMe.com/AndrewBaker
cidental Citrix Admin
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:listsadmin@lists.
> myitforum.com] *On Behalf Of *Richard Stovall
> *Sent:* Tuesday, May 2, 2017 8:40 AM
> *To:* ntsysadm@lists.myitforum.com
> *Subject:* [NTSysADM] Terminal server sizing
>
>
>
> Does anyone have a good, current reference for speccing out hardware for a
> new MS terminal server?
>
>
>
> Thanks,
> RS
>
Does anyone have a good, current reference for speccing out hardware for a
new MS terminal server?
Thanks,
RS
Ouch.
On Apr 8, 2017 5:29 PM, "Kurt Buff" wrote:
> Let's just quote an old maxim here:
>
> "Sufficiently advanced forms of incompetence are indistinguishable from
> evil":
> http://www.mcclatchydc.com/news/politics-government/national-politics/
> article143509739.html
>
>
Cheap is a zxyel wap 3205. I have used them, but I loves me some ubiquiti
gear.
On Apr 4, 2017 6:41 PM, "J- P" wrote:
> Way too much $$$, need to use a minimum of 3 per job, sometimes up to 6
>
> if they have 3 jobs on the same day that could mean anywhere between 9 and
>
I went to a lunch-n-learn sponsored by NetBrain at a SANS conference a few
months ago. I second the cool factor and the expense factor.
On Tue, Mar 28, 2017 at 2:55 PM, Don Ely wrote:
> It is cool and it IS expensive
>
> On Tue, Mar 28, 2017 at 11:37 AM Kurt Buff
Shazam!
On Mar 24, 2017 12:48 PM, "Kurt Buff" wrote:
> -- Forwarded message --
> From: Stefan Kanthak
> Date: Tue, Mar 21, 2017 at 11:09 AM
> Subject: [FD] Defense in depth -- the Microsoft way (part 47):
> "AppLocker bypasses are
omething
> from an A/V exception for a security product I'm very familiar with, and in
> that context, %[system]% is a prefix variable that usually resolves to
> c:\windows\system32 (or whatever drive windows is installed to)
>
>
>
> On Tue, Mar 21, 2017 at 11:14 AM, Richard Stovall &
I have run across this in a path in a config file and I'm wondering exactly
what it means / points to.
e.g. %[SYSTEM]%\filename
It doesn't seem to work as intended and my Google-fu is weak on this one.
Thanks,
RS
I sure hope so. I am so sleepy right now...
On Mar 2, 2017 4:05 PM, "D R" wrote:
Uh, are you giving all of us permission to Sign Off and go home?
Daniel Rodriguez
On Thu, Mar 2, 2017 at 2:44 PM, Brown, Ken F. wrote:
>
>
--
Daniel Rodriguez
Is that a metric S-ton, or the other kind?
The is a difference.
On Mar 2, 2017 2:38 AM, "Don Ely" wrote:
It is pretty trivial if you're setup correctly, but the setup takes an
S-Ton of work and testing...
On Wed, Mar 1, 2017 at 3:30 PM Michael B. Smith
SMB works great, if, as MBS said, you're running v3.
On Feb 23, 2017 9:46 AM, "James Rankin" wrote:
> Ah. So looks like SMB share is a big no-go.
>
>
>
> Time to do some LUN creation…
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:listsadmin@lists.
> myitforum.com] *On
to mention that this morning. Sorry.)
On Wed, Jan 25, 2017 at 5:09 PM, Michael B. Smith <mich...@smithcons.com>
wrote:
> What’s wrong with BitLocker?
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:listsadmin@lists.
> myitforum.com] *On Behalf Of *Richard Sto
How are folks encrypting files on shares? I need to have files on some
shares encrypted with transparent decryption when authorized users access
the files.
Looking at Symantec/PGP file share encryption, but it is way overkill for
what I'm trying to do.
Ideally, the shares should be able to be
;
> On Mon, Jan 16, 2017 at 8:02 AM, Richard Stovall <rich...@gmail.com>
> wrote:
>
>> For anyone else that may be seeing the Flash update issues in Chrome. If
>> you're using SEP, this may be your issue.
>>
>> https://bugs.chromium.org/p/chromium/issue
;
> --
> Espi
>
>
> On Mon, Oct 31, 2016 at 3:41 PM, Richard Stovall <rich...@gmail.com>
> wrote:
>
>> Well, this pretty much explains what I'm seeing.
>> https://forums.adobe.com/thread/2221587.
>>
>>
>> On Mon, Oct 31, 2016 at 6:23 PM, Micheal
I have had good luck with Synology and QNAP devices.
On Tue, Dec 20, 2016 at 4:31 PM, Gordon Pegue wrote:
> I’ve a 4-disk Buffalo Terastation 2TB unit that I inherited when I got
> this %job% 4 years ago. It is used in essentially the same way as what you
> described and has
been purchased
> for the product in question.) Microsoft will not accept requests for
> warranty support, design changes, or new features during the Extended
> Support phase.”
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:listsadmin@lists.
> myitforum.c
PM, Don Ely <don@gmail.com> wrote:
> Non R2, yes
>
> On Wed, Nov 16, 2016, 19:17 Richard Stovall <rich...@gmail.com> wrote:
>
>> 2008 is EOL for MS support?
>>
>> On Nov 16, 2016 7:25 PM, "Webster" <webs...@carlwebster.com>
2008 is EOL for MS support?
On Nov 16, 2016 7:25 PM, "Webster" wrote:
Anyone ever had to use this KB to fix SYSVOL?
https://support.microsoft.com/en-us/kb/2218556
Unfortunately, the two DCs are Server 2008 so they can't call Microsoft for
support.
I was looking
I used Cylance at a previous employer and was very impressed. Bromium
wouldn't sell to me because they weren't interested anything fewer than
1000 licenses (or maybe it was 10,000). Cylance's minimum was 100 I think.
On Thu, Nov 10, 2016 at 9:00 AM, James Rankin wrote:
>
ps the issue is with Ninite, and not Google
> Chrome itself. Or perhaps you need to review your methodologies inline
> with your download restrictions.
>
> --
> Espi
>
>
> On Mon, Oct 31, 2016 at 2:36 PM, Richard Stovall <rich...@gmail.com>
> wrote:
&g
If you don't have seriously high iops needs, I doubt you need raid 10.
Jmho.
If I thought it was a site I couldn't get to quickly, I'd consider raid 6
with 2 hot spares. Call me crazy...
On Sep 20, 2016 4:10 PM, "J- P" wrote:
> I was thinking a big raid 10, (8x500= 2tb)
Did they hit 88 mph? That would explain it.
On Sep 3, 2016 10:29 PM, "Bourque Daniel"
wrote:
> Anybody just got a problem with their GPS clocks at 20 :15 EST tonight?
> My 2 old GPS Clock move by more than 800 seconds suddenly (probably much
> more) before
Is it a real outbreak? Everything I can find about that name is really
old. Bad defs from Sophos resulting in false positives?
On Sep 4, 2016 7:34 AM, "Beard, Julius" wrote:
> Yep, we’re seeing the same on a number of machines running Sophos. I see
> they updated
ary and those who don't.
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:listsadmin@lists.
> myitforum.com] *On Behalf Of *Richard Stovall
> *Sent:* Friday, August 26, 2016 12:14 PM
> *To:* ntsysadm@lists.myitforum.com
> *Subject:* RE: [NTSysADM] Windows 7 Hyper-V VM Com Port
>
>
>
Use a USB to serial device on the physical PC and USB over network software
to connect it to the VM? Never done this with a serial cable, but have
with licensing dongles many times.
On Aug 26, 2016 11:21 AM, "Carol Fee" wrote:
I do now – thanks – and thanks for the link.
Thinking of disabling Javascript execution in Reader and Acrobat at $WORK.
Does anyone have any experience doing this and what the big gotchas are? I
know every environment is different, etc...
Thanks,
Richard
Does anyone know if there is a publicly queryable (is that a word?)
repository of software versions out there on the Interwebz? Since that
makes no sense, let me (attempt to) explain what I mean. It would be
freaking awesome if I could write a script that says give me the current
release version
Perhaps the ethical thing is for tech firms of substance to just say no to
acquisition by Symantec? For the good of the community. (For the security
of the world?)
On Aug 1, 2016 4:24 PM, "Andrew S. Baker" wrote:
> Not sure how I feel about this, but I rarely feel good
There you go.
On Thu, Jul 28, 2016 at 10:35 AM, David McSpadden <dav...@imcu.com> wrote:
> Yes
>
> Sent from my iPhone
>
> On Jul 28, 2016, at 10:29 AM, Richard Stovall <rich...@gmail.com> wrote:
>
> What do you have set in the GPO? Are you blocking "All Re
What do you have set in the GPO? Are you blocking "All Removable Storage
classes?"
On Thu, Jul 28, 2016 at 9:44 AM, David McSpadden wrote:
> I have a GPO that is set to block all Removable Storage devices.
>
> I have 1 app that fires up a CD/DVD that is not accessible now
TMI.
:p
On Jul 21, 2016 4:23 PM, "David McSpadden" wrote:
> I think it was actually the ISO this time.
>
> Downloaded again and Rufus it having his way with the stick and the ISO.
>
>
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:
> listsad...@lists.myitforum.com] *On
.
Perhaps a restart of the server/service is in order, though the problematic
server was just restarted a little over a week ago.
On Jun 30, 2016 10:59 PM, "Richard Stovall" <rich...@gmail.com> wrote:
> Some folks I'm working with have 2 DCs that are also DHCP servers. Each
Some folks I'm working with have 2 DCs that are also DHCP servers. Each
server hands out part of the scope. Long story short, clients who receive
ips from DC1/DHCP1 have PTR records. Clients who receive ips from
DC2/DHCP2 do not. All clients are Win7. If, on a client that has an ip
received
That's what I recall the recommendation to be.
On Jun 29, 2016 10:29 AM, "Charles F Sullivan"
wrote:
> That’s more generous than what we do.
>
>
>
> The Enterprise and Schema Admins groups are empty, enforced by a
> Restricted Groups GPO setting. There is another one
, and in the end there weren't. The .mdf is 1.3GB. I still have
to add about 1.5 million rows to the big list, but that won't add too much
to the file size.
Thank you very, very much for suggestion.
On Tue, Jun 28, 2016 at 6:37 PM, Richard Stovall <rich...@gmail.com> wrote:
> Shazam! What a g
> text file, if you’d like.
>
>
>
> HTH
>
>
>
> Frank Ress
>
> Gas Technology Institute
>
>
>
> *From:* listsad...@lists.myitforum.com [mailto:
> listsad...@lists.myitforum.com] *On Behalf Of *Richard Stovall
> *Sent:* Tuesday, June 28, 2016 1:03 PM
Not necessarily Windows-related.
I need to compare a list of about 300,000 file hashes against a larger list
of ~30,000,000 and find ones that are represented in both data sets.
I'm not a database guy, nor have I ever played one on TeeVee.
Any ideas about how to go about this with standard/free
A couple of years ago I saw something similar, though I can't remember if
it was exactly the same thing. It had to do with the Network
service not being started. I think it was the Network Connections
service. Are all the services whose names start with Network running on
the offending
Yep.
On Jun 20, 2016 10:46 AM, "Kurt Buff" <kurt.b...@gmail.com> wrote:
> AKA RequestTracker, if we're thinking of the same package.
>
> Kurt
>
> On Mon, Jun 20, 2016 at 6:22 AM, Richard Stovall <rich...@gmail.com>
> wrote:
> > RT has a big following
RT has a big following.
On Jun 20, 2016 9:03 AM, "Jesse Rink" wrote:
> Anyone have suggestions or experience with any free helpdesk/inventory
> software? I know of Spiceworks, but looking for alternatives out there.?
>
>
>
>
> Jesse Rink
>
> Source One Technology,
Free Google accounts have a calendar...
On Jun 16, 2016 1:51 PM, "Jonathan Raper" wrote:
> We have no desire to implement PRTG or Nagios, as we have a management
> system in place (Zenoss). It does alert on some of the certs, but only if
> the device is monitored/managed. Some
See? I go and rail on how worthless 10 is, and they go and do something
like this...
PS I wonder how many e-mail opens they're going to see for Susan Bradley
on this one? :)
On Tue, May 31, 2016 at 4:34 PM, Susan Bradley wrote:
> Windows Defender Advanced Threat
Nothing but bad experiences here. 10 is a disaster on older hardware.
There is no compelling reason to upgrade on hardware that can run 7 or 8.1
until their EOL dates.
Speaking of Win 10 upgrades…. I’ll preface this question by saying I am
almost a luddite at home. If I didn’t have to feed my
Please $Deity, let it be true. I'm so sick of this, it makes me sick
On May 25, 2016 9:39 PM, "Jonathan Link" wrote:
> Aren't we almost through the free Windows X period? A month or so left?
>
> Also GWX control panel and group policy to disable GWX from running work
>
http://www.dell.com/support/home/us/en/19/Drivers/DriversDetails?driverId=R64398
On Tue, Apr 7, 2015 at 10:54 AM, David McSpadden dav...@imcu.com wrote:
I have a Server 2003 that will not get decommissioned anytime soon.
Really need to extend the C: (OS) drive (Dynamic no pagefile).
It
You may have to import the drives (and the RAID configuration information
they contain) by entering the controller setup while the server is
starting. (Ctrl-R, maybe? I can't remember offhand.) The tech may know
how to do it. Or you could call Dell Support and have them walk you
through it.
How do you let users install fonts? If there is a simple workaround for
that, I'd be glad to hear it.
On Fri, Mar 27, 2015 at 3:23 AM, Hank Arnold arnol...@optonline.net wrote:
I have to jump in and concur 1000%. allowing any user or computer to have
local admin rights is a disaster waiting
That's pretty much it. You might need to clean up stale DNS records and
whatnot. Should be a non-event if the environment is healthy.
Why don't you go ahead and make all your DCs GCs while you're at it? Any
reason not to?
On Tue, Mar 17, 2015 at 7:23 AM, Gavin Wilby
] *On Behalf Of *Richard Stovall
*Sent:* 17 March 2015 13:37
*To:* ntsysadm@lists.myitforum.com
*Subject:* Re: [NTSysADM] Demote a DC
That's pretty much it. You might need to clean up stale DNS records and
whatnot. Should be a non-event if the environment is healthy.
Why don't you go ahead
Stuart Smalley mode
And doggoneit, people like me!
/
On Fri, Jan 30, 2015 at 2:45 PM, James Button jamesbut...@blueyonder.co.uk
wrote:
Maybe stick a list of things into excel and then go to the diagramming
facility
Or build a database with entity sets being shown as tables and get that
drive, and how long did it take to do the
encryption with what interface/connection?
And – Thanks for the link about Truecrypt
JimB
*From:* listsad...@lists.myitforum.com [mailto:
listsad...@lists.myitforum.com] *On Behalf Of *Richard Stovall
*Sent:* Thursday, January 29, 2015 1:55 PM
, and
probably right on the money. Thank you.
On Thu, Jan 29, 2015 at 9:27 AM, Klaus Hartnegg hartn...@uni-freiburg.de
wrote:
Am 29.01.2015 um 14:54 schrieb Richard Stovall:
Another thread mentioned the difficulty of guaranteeing the secure
erasure of data from SSDs.
I recently had to return
Another thread mentioned the difficulty of guaranteeing the secure erasure
of data from SSDs.
I recently had to return a personal laptop for replacement and could not
find a method for securely erasing its SSD. Googling around for answers, I
came upon the idea of encrypting the entire drive as
...@lists.myitforum.com] *On Behalf Of *Richard Stovall
*Sent:* Thursday, January 29, 2015 9:19 AM
*To:* ntsysadm@lists.myitforum.com
*Subject:* Re: [NTSysADM] SSD scrub/sanitize/wipe
It was a 128GB mSATA SSD. My home PC does not have an mSATA slot, so I
had to purchase an external device with a USB
It may not be ideal, and it wouldn't scale well beyond a smallish number of
users, but you could just give each person an RDP file customized for them
with their PC name pre-entered as the remote computer and the RD Gateways
settings already filled out.
On Wed, Jan 28, 2015 at 6:34 AM, Gavin
I have this working, but am I missing something? For this to work does a
user absolutely, positively _*have*_ to be logged on using an Enhanced
Session Mode VM connection? I need to have a piece of software connect to
a USB licensing dongle, and it would be, shall we say, less than optimal to
, but I thought it worked with Win8.1
RDP as well (which is available as a separate download for Win7 and Win8).
Have you tried that?
*From:* listsad...@lists.myitforum.com [mailto:
listsad...@lists.myitforum.com] *On Behalf Of *Richard Stovall
*Sent:* Thursday, January 22, 2015 5:19 PM
it
would obviate the need for a 3rd party solution. Oh well.
On Thu, Jan 22, 2015 at 10:50 PM, Richard Stovall rich...@gmail.com wrote:
Thanks for the tip about 8.1's RDP. That does indeed work. It's still
based on RDP, which doesn't suit my original goal of having true
passthrough, but it is very
Well, right now it sounds like you're not a relay at all.
On Thu, Jan 22, 2015 at 12:50 PM, J- P jnat...@hotmail.com wrote:
200GB of free space, will test open realy and report back
--
From: art.dekn...@cox.net
To: ntsysadm@lists.myitforum.com
Subject: RE:
: Domain Server down
I do not believe that is what Brian Desmond told me. It is just the DC OS.
Thanks
Webster
*From:* listsad...@lists.myitforum.com [
mailto:listsad...@lists.myitforum.com listsad...@lists.myitforum.com] *On
Behalf Of *Richard Stovall
*Sent:* Tuesday, January
No need to wait until the AM. They'll take your $500 any time day or night.
On Sun, Jan 18, 2015 at 9:47 PM, J- P jnat...@hotmail.com wrote:
I found it odd that a Livecd from DELL , designed for servers wouldnt
include the package to read NTFS, anyhow I'm not even going that route now,
Does anyone out there have a Barracuda WAF sitting behind a SonicWall fw at
the edge? If so, may I ping you offline?
Thanks,
RS
Gateway set properly on 0.5? Static route?
On Sun, Jan 11, 2015 at 2:55 PM, Charles F Sullivan
charles.sulliva...@bc.edu wrote:
I assume that you are using the IP addresses of the remote machines so
that you’re not relying on DNS resolution. If server B had a wacky subnet
mask, that may
So no actual RAID array involving multiple disks?
There are so many unanswered questions here that it's pretty much
impossible to offer advice.
The only thing I'll say is that I would be completely sure of good backups
before tampering with that disk.
On Jan 8, 2015 7:10 PM, J- P
Got it. I did not understand that there was a RAID 1 array involved.
On Thu, Jan 8, 2015 at 7:45 PM, J- P jnat...@hotmail.com wrote:
the server had a hardware raid mirror , it stopped booting, can only
assume that a port on the card failed- my Swahili is a bit off so its hard
for me to
The question is, can you pronounce it?
On Mon, Dec 15, 2014 at 8:37 AM, Webster webs...@carlwebster.com wrote:
I believe it was just a form to fill out. If you can’t find the form,
let me know and I will email the PM to see if you can be added in my place
since I have no customers
Google DNS here. Still doesn't work. The expiry setting in the
authorization.xml file sure looks like the culprit.
On Thu, Nov 20, 2014 at 11:46 AM, Susan Bradley sbrad...@pacbell.net
wrote:
About a month ago in the answers forum we had a RASH of folks having MU/WU
errors where it wouldn't
No real help, but I did completely patch and restart my three Hyper-V
servers without incident after the first iteration of 2992611 from 11/11.
On Wed, Nov 19, 2014 at 11:53 AM, Andrew S. Baker asbz...@gmail.com wrote:
Windows Server 2012-R2, DataCenter Edition
Two boxes.
One has been
I'm seeing this on at least two 2003 servers (I've only checked two) that
do NOT yet have MS14-068 installed but do have MS14-066 (initial release).
We deploy via WSUS so the 14-068 patches are downloaded and ready to
install, but I can't successfully run MU or WU from either server. I get
the
*(^*# ^$*#^
On Tue, Nov 18, 2014 at 9:45 AM, Kennedy, Jim kennedy...@elyriaschools.org
wrote:
https://technet.microsoft.com/library/security/ms14-nov
Well, TMG is Windows, right? Personally, out of an abundance of caution, I
would assume the TMG server itself is also vulnerable until patched. And
even when it is patched, the underlying web server would need to be patched
as well unless TMG inspects encrypted traffic and has a valid signature
Was a reboot required when you did it?
On Wed, Nov 12, 2014 at 3:11 PM, Matthew Topper mtop...@capstoneitinc.com
wrote:
I’ve applied the patch to servers that are Internet facing outside of
normal maintenance and am letting servers that are not Internet facing
apply it during their regularly
...@lists.myitforum.com [mailto:
listsad...@lists.myitforum.com] *On Behalf Of *Richard Stovall
*Sent:* Wednesday, November 12, 2014 3:16 PM
*To:* ntsysadm@lists.myitforum.com
*Subject:* Re: [NTSysADM] MS14-066 - secure channel vulnerability
Was a reboot required when you did it?
On Wed, Nov 12, 2014
Patching public-facing systems now...
Grrr.
On Wed, Nov 12, 2014 at 8:56 PM, Andrew S. Baker asbz...@gmail.com wrote:
There's nothing in the wild *as yet*, but given the wormable potential, I
would expect exploit code within 4-6 business days.
Patch perimeter exposed systems as soon as
Here's a portion of a Powershell script I use for a daily disk space report
that will get you going. I have all my servers nested in a Servers OU so
this will work. It won't work as is if your AD structure is different.
There are probably tons of optimizations that could be made, but this works
Time to disable Adobe*?
On Fri, Oct 24, 2014 at 4:30 PM, Kurt Buff kurt.b...@gmail.com wrote:
I saw a couple of links/articles like that, but even disabling sandbox
protection didn't help. Sigh.
Kurt
On Fri, Oct 24, 2014 at 12:32 PM, Susan Bradley sbrad...@pacbell.net
wrote:
Totally.
That's almost as good as Löded Diper.[1]
[1] Courtesy of Jeff Kinney
On Fri, Oct 24, 2014 at 9:54 AM, David McSpadden dav...@imcu.com wrote:
Wow.
*From:* listsad...@lists.myitforum.com [mailto:
listsad...@lists.myitforum.com] *On Behalf Of *Cain, Steven
*Sent:* Friday, October
Would that I could...
On Fri, Oct 24, 2014 at 10:27 PM, Kurt Buff kurt.b...@gmail.com wrote:
I think that's the direction we're heading.
Kurt
On Fri, Oct 24, 2014 at 7:19 PM, Richard Stovall rich...@gmail.com
wrote:
Time to disable Adobe*?
On Fri, Oct 24, 2014 at 4:30 PM, Kurt Buff
That's the band I was in back in high school.
On Thu, Oct 23, 2014 at 1:01 PM, David McSpadden dav...@imcu.com wrote:
Bash the Shellshocked Poodle??
*From:* listsad...@lists.myitforum.com [mailto:
listsad...@lists.myitforum.com] *On Behalf Of *Kennedy, Jim
*Sent:* Thursday, October 23,
Just move from The Dirty Duck to The Black Swan and have a bite to eat.
It'll all make sense after some food.
On Fri, Oct 17, 2014 at 3:44 PM, kz2...@googlemail.com wrote:
Embarrassed
It's late :-)
Despatched via Blackberry. Mock if you will, but it gets my email without
a fuss.
Are any of you replacing existing spinning drives with SSDs on your
servers? If so, which SSDs are you choosing? Are you running RAID for
safety?
Thanks,
Richard
and see
what fits for your use case.
Nathan Shelby
Lead Systems Engineer – Quote Wizard https://quotewizard.com/
nshe...@qw-corp.com / 206-753-2626
Malo Periculosam Libertatem Quam Quietum Servitium
On Wed, Oct 15, 2014 at 1:02 PM, Richard Stovall rich...@gmail.com
wrote:
Are any of you
You know why I want to do SSL inspection? So that my current
IPS/AV-enabled UTM firewall works on 99+% of the traffic it sees (both
inbound and outbound) instead of roughly 75% to 80%. We are replacing it
soon with hardware that will be capable of handling the increased load.
I'm with you on the
Wildcard is OK too, right?
On Wed, Sep 17, 2014 at 9:27 AM, Damien Solodow damien.solo...@harrison.edu
wrote:
A SAN certificate is your best bet; you’ll want the URL of your FS, as
well as the URL for deviceregistration
DAMIEN SOLODOW
Systems Engineer
317.447.6033 (office)
1 - 100 of 296 matches
Mail list logo