|
Isn't it borderline illegal to have patient information on a legacy O/S? I know it is for banks, unless you have an extended-extended support contract with Microsoft like JPMorgan has...
|
# ? Aug 12, 2014 19:41 |
|
|
# ? May 16, 2024 18:20 |
|
Tab8715 posted:Isn't it borderline illegal to have patient information on a legacy O/S? I know it is for banks, unless you have an extended-extended support contract with Microsoft like JPMorgan has... You poor, sheltered soul. I would think that if I were compelled to report every HIPAA violation I ran into as an MSP, I'd not have time for anything else. I think the issue is with enforcement and certification more than anything else. All we can do is make recommendations, unfortunately. Whether or not the client acquiesces is up to them. And yeah, the worst offenders I've seen with regard to legacy systems have been healthcare, state, and federal agencies, and flow control software actually is right up there.
|
# ? Aug 12, 2014 19:47 |
|
Well, yea if a client doesn't upgrade then that's there deal but if they get audited...
|
# ? Aug 12, 2014 19:53 |
|
This is kind of cool, mostly because I've been in no way affected by it: some routers have so many BGP routes in their routing tables that they are literally hitting their limits and crashing. http://seclists.org/nanog/2014/Aug/162 Apparently it's been causing some major problems today for a ton of providers.
|
# ? Aug 12, 2014 22:08 |
|
beepsandboops posted:This is kind of cool, mostly because I've been in no way affected by it: some routers have so many BGP routes in their routing tables that they are literally hitting their limits and crashing. I was actually going to suggest this was the cause for some of the ISP/backbone problems some other posters were having but I didn't want to jump the gun.
|
# ? Aug 12, 2014 22:11 |
|
Tab8715 posted:Isn't it borderline illegal to have patient information on a legacy O/S? I know it is for banks, unless you have an extended-extended support contract with Microsoft like JPMorgan has... Think about this: we have one application written by a company that closed shop in the 90s. It uses a proprietary database of some kind, and was originally installed on NT4.0. The data has to remain accessible until 2027. We have three options: run the NT4.0 machine as a VM until then, print every record and rescan them into our current document imaging system, or find a vendor to perform an expensive data conversion. The choice is easy, we just firewall the machine off with a windows 7 VM and RDP into the windows 7 machine. It works well, is perfectly secure, and satisfies our regulators.
|
# ? Aug 12, 2014 22:27 |
|
Also, regulators often have no loving clue what is going on. When NASDAQ got compromised (to the point where the NSA was involved) the people who came in to do the forensics described their environment as "a dirty swamp." And that's a major exchange, not some hospital or even a bank.
|
# ? Aug 12, 2014 22:35 |
|
adorai posted:Think about this: we have one application written by a company that closed shop in the 90s. It uses a proprietary database of some kind, and was originally installed on NT4.0. The data has to remain accessible until 2027. We have three options: run the NT4.0 machine as a VM until then, print every record and rescan them into our current document imaging system, or find a vendor to perform an expensive data conversion. The choice is easy, we just firewall the machine off with a windows 7 VM and RDP into the windows 7 machine. It works well, is perfectly secure, and satisfies our regulators. Are you still using the application, or just using it for historical purposes/reference? I think that makes a big difference...
|
# ? Aug 12, 2014 22:37 |
|
So I got an e-mail today extending an offer for a place I interviewed with. Right now I am doing shift work, and bored with the environment and management structure so I have had enough. They did however mention the possibility of me stepping into a tech lead role, which would pay more (and probably require 60 hours of boring work, and having some clueless sys admins under me which I am tired of working with). So I pretty much am going to take this other job offer before: 1. 100% remote, no commuting 2. Flexible schedule outside of on call 3. Better benefits 4. They pay for phone and internet The offer I got though is pretty much what I am already making. I guess I couldn't live with myself if I didn't ask if they could come up at least a bit even though the offer is more than fair. I never gave them a salary during the 2 phone calls, and probably should have during the second call cause they might have started out higher. If I landed a gig in NYC (I am in NJ) I would be making six figures but then I have to go through all the job hunting, and the job would have the extra commute time/expense.
|
# ? Aug 12, 2014 23:09 |
|
It's not too late to negotiate the terms. Just give them a counteroffer with some higher salary that you'd like. They may want to meet in the middle somewhere, but even then you still end up ahead. You have literally nothing to lose--if they retract your offer because you want to negotiate (and assuming you're not a prick about it) then that's probably not a place you want to work anyway.
|
# ? Aug 12, 2014 23:17 |
|
Alfajor posted:Are you still using the application, or just using it for historical purposes/reference? I think that makes a big difference...
|
# ? Aug 12, 2014 23:39 |
|
adorai posted:Historical data. However, read the post I quoted. "To have ... information on a legacy O/S" No worries, I wasn't fishing for a fight I work in HealthIT and we do have a few older systems that we have floating around because they're used for reference. If they were used to conduct business, I would flat out refuse to keep them alive.
|
# ? Aug 13, 2014 00:02 |
|
Docjowles posted:Do not get suckered in by stock options in lieu of actual salary. Unless you're a founder or coming in as an executive you are probably being granted a trivial amount of stock. Then you're gambling on the extremely small chance that the company is bought or IPO's for a gigantic multiplier that makes your small amount of stock worth the years of lost salary. Sure, they might get "purchased by Google or something" but it's literally a million times more likely that the company either goes bankrupt or just continues chugging along, privately owned. Stock options are fine, but the offer should be "competitive salary, and also stock options". Not "half of a competitive salary, but wow, just look at all these <worthless> options!" For every Instragram or WhatsApp that wins the lottery, there's thousands that just fail and fade away. Most that do get bought are deals that won't make anyone but the primary investors a noticeable profit. Digging back a few pages, but depending on the structure of a buyout, there are plenty of ways to screw over the valuation of employee stock - loading up on preferred debt is the most typical one, but if you're being purchased by a financial buyer the book of tricks runs deep. Employee common stock tends to be far down on the waterfall when cash events happen, make sure she has a solid understanding of any equity compensation.
|
# ? Aug 13, 2014 00:22 |
|
Yeah I'm not sure if either of us will fully understand equity compensation if there happens to be any. And it's not like she can afford a lawyer to explain it to her.
|
# ? Aug 13, 2014 00:26 |
|
AreWeDrunkYet posted:Digging back a few pages, but depending on the structure of a buyout, there are plenty of ways to screw over the valuation of employee stock - loading up on preferred debt is the most typical one, but if you're being purchased by a financial buyer the book of tricks runs deep. Employee common stock tends to be far down on the waterfall when cash events happen, make sure she has a solid understanding of any equity compensation. I'm no where near talented enough to be in a position where this would matter to me, but hypothetically, if I was offered that kind of deal, how would I figure out how to protect my financial stake? Is there a name for the kind of lawyer or accountant that specializes in that?
|
# ? Aug 13, 2014 00:27 |
|
Alfajor posted:I work in HealthIT and we do have a few older systems that we have floating around because they're used for reference. If they were used to conduct business, I would flat out refuse to keep them alive. That was the first time I had ever touched OpenVMS. What a mindfuck coming from Linux.
|
# ? Aug 13, 2014 01:44 |
|
I listen to the IT in the D podcast off and on. Sometimes they get off topic but its interesting.
|
# ? Aug 13, 2014 01:57 |
|
I'm on vacation and away from steady internet or I'd elaborate but I can't emphasize enough how important it is to limit negativity in regards to former employers. Definitely seen it cost people jobs before. Spin it quickly if you have to talk about it at all.
|
# ? Aug 13, 2014 02:50 |
|
.
Methanar fucked around with this message at 05:14 on Aug 6, 2016 |
# ? Aug 13, 2014 02:53 |
|
There's roughly a billion HIPAA violations out there and only so many people who give a drat so short of just publishing patient info in a newspaper you can get away with most anything
|
# ? Aug 13, 2014 05:54 |
|
For those of us who work a little quicker, is there a better gift than Outlook's delay delivery? My god do I love doing 8 hours worth of work in some subset of that, while setting emails to fire off throughout the day at appropriate times to show how hard I am working. I also want to make clear that this is a parody post and I would never do such a thing.
|
# ? Aug 13, 2014 07:23 |
|
MC Fruit Stripe posted:For those of us who work a little quicker, is there a better gift than Outlook's delay delivery? My god do I love doing 8 hours worth of work in some subset of that, while setting emails to fire off throughout the day at appropriate times to show how hard I am working.
|
# ? Aug 13, 2014 07:28 |
|
Misogynist posted:Delay delivery is actually awesome for dealing with people who are really lovely at responding to emails that arrive while they're not at their desk.
|
# ? Aug 13, 2014 07:41 |
|
Misogynist posted:Delay delivery is actually awesome for dealing with people who are really lovely at responding to emails that arrive while they're not at their desk. Also useful for getting mail into someone's inbox after they come back from vacation.
|
# ? Aug 13, 2014 08:56 |
|
MC Fruit Stripe posted:For those of us who work a little quicker, is there a better gift than Outlook's delay delivery? My god do I love doing 8 hours worth of work in some subset of that, while setting emails to fire off throughout the day at appropriate times to show how hard I am working. My ex-boss would want me to send "reminder" emails as well as calendar appointments for weekend DR test things. I learned how to delay mail specifically for those.
|
# ? Aug 13, 2014 14:14 |
|
Long shot time: Anyone familiar with Symantec's Veritas Cluster? aka VCS? Trying to figure out how to set all outbound traffic to use the virtual IP of the cluster as the "source" IP, instead of each host sending through their own... and failing This link appears that would help if Symantec's KB wasn't down http://www.symantec.com/business/support/index?page=content&id=HOWTO58872 , and google's cached version is a failing with CSS... but apparently the trick involves some "ip route" commands, but I don't want to just experiment without really understanding. My servers are both Win 2008 R2, if that makes a difference.
|
# ? Aug 13, 2014 16:07 |
|
Dr. Arbitrary posted:I'm no where near talented enough to be in a position where this would matter to me, but hypothetically, if I was offered that kind of deal, how would I figure out how to protect my financial stake? Is there a name for the kind of lawyer or accountant that specializes in that? Any corporate law firm should have employment contract specialists. The larger issue though is just a lack of control. You need pretty specific anti-dilution provisions to cut out that risk, and even then some creative accounting can circumvent those. If the controlling equity holders are trying to sell the company and avoid paying out employee options, all they need to do is vote to load up the company with higher priority tranches of investments that they also own. If it's particularly egregious a court may do something about it, but that's a lengthy and expensive process in its own right. That said, all of this assumes that the owners are actively trying to screw over the employees. If it's a close-knit group of programmers that's probably less likely than in a company with financial owners, for example. e: Also, if you're not commuting on a bicycle you're doing it wrong AreWeDrunkYet fucked around with this message at 16:42 on Aug 13, 2014 |
# ? Aug 13, 2014 16:31 |
|
Anyone who manages Macs have any experience setting up a new Munki server? I'm also having a really dumb problem with an IMAP email box using Outlook 2011 on Mac. I have two accounts setup, an exchange account which is my default and an IMAP account which is my departments IT help email box. For some reason Outlook will not sync IMAP unless that specific inbox is selected. If I have the unified inbox or my exchange inbox selected new emails will not show up until I select the IMAP box. My email team has us deselecting 'Sync all IMAP folders every X minutes' but that is the only thing that makes it behave as I would assume it should. Are they being dumb (apologies if you're a lurker on that team and we should talk) or am I doing something wrong? edit: realized this probably should go in the ticket thread but oh well Teabag Dome Scandal fucked around with this message at 23:26 on Aug 13, 2014 |
# ? Aug 13, 2014 22:58 |
|
Tonight is the first production code deployment in over two years that I am not a part of. The guys who are handling it are fine - a new guy with a solid baseline of knowledge, and the guy who trained me, so it's not like they're going to struggle. Still, I feel like I'm missing a limb or something, someone hold me.
|
# ? Aug 14, 2014 04:41 |
|
MC Fruit Stripe posted:Tonight is the first production code deployment in over two years that I am not a part of. Until you get paged
|
# ? Aug 14, 2014 04:46 |
|
MC Fruit Stripe posted:Tonight is the first production code deployment in over two years that I am not a part of. The guys who are handling it are fine - a new guy with a solid baseline of knowledge, and the guy who trained me, so it's not like they're going to struggle. Still, I feel like I'm missing a limb or something, someone hold me.
|
# ? Aug 14, 2014 05:05 |
|
Misogynist posted:Our dev team just did theirs last night; didn't even ask me. Awesome feeling. Our devs just send out an email saying "yo we're gonna deploy in a bit unless anyone says OH GOD JESUS NO". Ops never does say no unless we are fighting a giant outage, and in that case it's already probably our fault for not telling them about it so they'd know making a change is a bad idea. I'm not sure we even have the authority to say no, it's more of a courtesy. At the end of the day both groups report to the CTO and he'd resolve any theoretical massive dispute. That's actually one of my favorite things about my workplace. The devs totally own deploys, and it's been that way for a while. We're not a DevOps "2000 deploys a day" utopia but we can deploy at any time, and routinely do so several times a week for both features and bug fixes. Devs also participate in on-call. Not as the first one to get paged but if it's determined that it's likely their stuff causing an outage, they get woken up too. The obvious caveat is that we're a startup web company where it's not the end of the world if a deploy sucks because we ship format_c.exe by accident, and we're not handling bank accounts or HIPAA protected data. Usually we notice the error and resolve it quickly with a second deploy. But I've also worked at web companies where we deployed twice a year and ALL of dev and ops had to be in the office for 16 hours on a Sunday to deal with the awful fallout. It was The Phoenix Project loving verbatim and the complete polar opposite of Agile/DevOps/CI/CD. I am so, so glad the world is moving on from that.
|
# ? Aug 14, 2014 06:28 |
|
They're 80 minutes into the deployment, I am secretly listening, and poo poo is hosed all to pieces. I'm taking a personal day through September.
|
# ? Aug 14, 2014 07:20 |
|
You raised our hopes and dashed them quite expertly, sir!
|
# ? Aug 14, 2014 08:25 |
|
I am about to begin preparing a Mac Pro with an 8TB RAID array for deployment. I don't really have anything else to add to this statement.
|
# ? Aug 14, 2014 17:00 |
|
Japanese Dating Sim posted:I am about to begin preparing a Mac Pro with an 8TB RAID array for deployment. Wait, what?
|
# ? Aug 14, 2014 17:05 |
|
orange sky posted:Wait, what? Okay, nevermind. That's an external NAS that will also be given to the user. It's just a single TB on here, with 64GB of RAM. Sorry.
|
# ? Aug 14, 2014 17:10 |
|
Japanese Dating Sim posted:Okay, nevermind. That's an external RAID array that will also be given to the user. It's just a single TB on here, with 64GB of RAM. Sorry. Is this guy gonna run a ton of VM's? Deal with heavy duty encryption? Where is that array gonna run (drat your edit), is it dedicated just for him? My head hurts. Can a laptop processor even "keep up" with 64GB? Is it useful?
|
# ? Aug 14, 2014 17:13 |
|
orange sky posted:Is this guy gonna run a ton of VM's? Deal with heavy duty encryption? Where is that array gonna run (drat your edit), is it dedicated just for him? My head hurts. I honestly couldn't say, but given where I work, likely some big data economics simulations / predictive analysis / other things I know nothing about. And no, not MacBOOK Pro, Mac Pro. This thing:
|
# ? Aug 14, 2014 17:20 |
|
|
# ? May 16, 2024 18:20 |
|
Oh. My bad.
|
# ? Aug 14, 2014 17:35 |