|
SentinelXS posted:A password stealing trojan came in, on a VP's machine. Adobe Reader was crashing on his machine, and supposedly this was after downloading an email attachment sent by "the IRS". I saw that Endpoint Protection had removed a virus already, and we have a Group Policy that blocks executables from auto-running in the temp directory. Don't forget to put in writing somewhere that they deliberately went around your policies in place to keep that from happening.
|
# ? Jul 6, 2016 02:45 |
|
|
# ? May 29, 2024 09:21 |
|
MJP posted:Edit: boss gave the go-ahead to test and -whatif bulk removal options, which worked like a charm. The offending item no longer exists in anyone's mailboxes, no matter the folder. Sometimes the good guys win. I'd love to see the code for that.
|
# ? Jul 6, 2016 08:28 |
|
A stolen laptop came in! How do you guys handle stolen equipment? Our laptops aren't encrypted (nothing on them, just used to access web services) so I'm not super worried about things but it'd still be nice to have something that would let me hit 'FORMAT' when this happens. We have Meraki Systems Manager but it doesn't really have any sort of proper full-system wipe capability. Alternatively, any ideas for quickly trashing a Windows install via the command line without prompts? We have a backup line on all our machines we can issue single commands through so as long as it doesn't have any prompts or popups, I can run it. I was thinking of rd /s /q c:\windows. No Powershell capability, sadly. Sheep fucked around with this message at 16:02 on Jul 6, 2016 |
# ? Jul 6, 2016 15:59 |
|
Sheep posted:A stolen laptop came in!
|
# ? Jul 6, 2016 16:13 |
|
Sheep posted:A stolen laptop came in! You're relying on the device thief not pawning it off to someone smart enough pull the drive contents before flattening it themselves, unless you're looking for BIOS hooks. If anything sensitive could potentially end up somewhere on it, enable full disk encryption and be done with it. If not, there's not a lot you can do, so don't worry about it.
|
# ? Jul 6, 2016 16:41 |
|
I was thinking about something that when it pops online would wipe the drive but realized that if you're dumb enough to steal a laptop (not to mention leave the charger behind) you're probably not smart enough to get into the machine without reinstalling windows and so wouldn't really have a chance to get it online to get wiped anyways. Full disk encryption would be the ideal solution but the management overhead there makes it an unattractive option when, again, there's nothing of note on our machines. They're effectively disposable units used solely to access resources online and don't have anything stored locally.
|
# ? Jul 6, 2016 17:10 |
Crowley posted:I'd love to see the code for that. Sure thing. It's a multi-step process. All done within the Exchange shell. Step 1: grant your admin account fullaccess perms to all mailboxes in your affected OU (the OU part is optional) and/or server. code:
A: create a folder named Deletemsgs or anything you want in your mailbox B: run this: code:
code:
|
|
# ? Jul 6, 2016 20:48 |
MJP posted:Sure thing. It's a multi-step process. All done within the Exchange shell. When you're on Exchange 2010 or later, you should probably use RBAC instead of mass-assigning individual permissions like this. https://technet.microsoft.com/en-us/library/dd298183(v=exchg.141).aspx
|
|
# ? Jul 6, 2016 21:43 |
|
nielsm posted:When you're on Exchange 2010 or later, you should probably use RBAC instead of mass-assigning individual permissions like this. Keep in mind that it's exactly the same command line -user really means user, role group or security group
|
# ? Jul 6, 2016 23:47 |
|
Sheep posted:I was thinking about something that when it pops online would wipe the drive but realized that if you're dumb enough to steal a laptop (not to mention leave the charger behind) you're probably not smart enough to get into the machine without reinstalling windows and so wouldn't really have a chance to get it online to get wiped anyways. Any reason you're not using Chromebooks then?
|
# ? Jul 7, 2016 02:28 |
|
I bet it's because the web apps only support Internet Explorer (probably 8).
|
# ? Jul 7, 2016 02:58 |
|
Gilok posted:I bet it's because the web apps only support Internet Explorer (probably 8). Don't be silly. It'll be Explorer 6, and a specific version of it that fails if Explorer's even one patch off.
|
# ? Jul 7, 2016 03:31 |
|
Gilok posted:I bet it's because the web apps only support Internet Explorer (probably 8).
|
# ? Jul 7, 2016 03:51 |
|
Does someone want to offer a Goonbro a quick hand? Trying to do a batch to launch three apps. I am doing what all the documentation says to do, but it doesn't work.
|
# ? Jul 7, 2016 05:37 |
|
Samizdata posted:Does someone want to offer a Goonbro a quick hand? Trying to do a batch to launch three apps. I am doing what all the documentation says to do, but it doesn't work.
|
# ? Jul 7, 2016 05:46 |
|
anthonypants posted:I opened three apps just now and didn't have any problem, you must be doing something wrong. Do I need to open a ticket? Here's the batch - CD "C:\Users\migra\AppData\Local\Franz\" START "Update.exe --processStart Franz.exe" CD "C:\Program Files (x86)\Mozilla Firefox\" START firefox.exe CD "C:\Program Files (x86)\Mailbird\" START "Mailbird.exe" The OS is Win 10 Pro x64. All I get are three console windows and no programs. The filenames and paths are taken directly from the shortcuts. These are the three programs I open most commonly for my online day. I just thought one shortcut to make them all load at once would be lovely, and I see zero reason why it should not work. You big dogs all seem so hot at scripting, I thought maybe someone might be able to help.
|
# ? Jul 7, 2016 06:56 |
Samizdata posted:Do I need to open a ticket? I have a batch with similar purpose. What I do is run the START command on the shortcuts, rather than the actual programs. Like this: code:
|
|
# ? Jul 7, 2016 07:02 |
|
nielsm posted:I have a batch with similar purpose. What I do is run the START command on the shortcuts, rather than the actual programs. Like this: Interesting. I will give it a shot tomorrow then. Cheers!
|
# ? Jul 7, 2016 09:49 |
|
The A/C in our server room went tits up last night. Maintenance got it blowing cold air again, and my employee called an audible and left the door open all night with a box fan blowing in there. I get in this morning to alarms and ozone.
|
# ? Jul 7, 2016 14:30 |
|
larchesdanrew posted:The A/C in our server room went tits up last night. Maintenance got it blowing cold air again, and my employee called an audible and left the door open all night with a box fan blowing in there. wait... it was working and THEN he left the door open? That sounds like the last straw to me.
|
# ? Jul 7, 2016 14:34 |
|
What's the ozone from?
|
# ? Jul 7, 2016 14:37 |
|
larchesdanrew posted:The A/C in our server room went tits up last night. Maintenance got it blowing cold air again, and my employee called an audible and left the door open all night with a box fan blowing in there. Box fans are inadequate to the task. I bought one of these for a datacenter cooling problem when we learned only one of three chillers was on a generator circuit. Moves a ton of air.
|
# ? Jul 7, 2016 14:40 |
|
larchesdanrew posted:The A/C in our server room went tits up last night. Maintenance got it blowing cold air again, and my employee called an audible and left the door open all night with a box fan blowing in there.
|
# ? Jul 7, 2016 15:43 |
|
Mmmmm ozone I bet its from some electrical thing just trying to churn away but nothing being on the other side to use it. Static eletricity discharge also creates ozone (I think).
|
# ? Jul 7, 2016 15:53 |
|
The good news is this was enough leverage to move forward with monitoring on everything. I'm sick of finding out shits busted when it's too late. What's the verdict on monitoring dashboards I can feed into a bigass television in my office? My network consultant suggested Dashing.
|
# ? Jul 7, 2016 16:07 |
|
larchesdanrew posted:The good news is this was enough leverage to move forward with monitoring on everything. I'm sick of finding out shits busted when it's too late. My last boss made us build some crazy loving spiderweb of Nagios, Zenoss, and other poo poo.
|
# ? Jul 7, 2016 16:11 |
|
Anyone have any links to a good guide for installing Citrix XenApp 7.9? Or any 7.x version will probably work. I am building a new XenApp server to replace our old XenApp 4.5 server. I am putting it on a newer (to us) HP server. I already have XenServer installed but all the new XenApp stuff is way different that our current setup. Current setup is: Web interface for login. Receiver on client machines. XenApp 4.5 on VM on XenServer 5.5 XenCenter 5.6 SP2 License Server 11.6.1 Web interface and licensing are on 2 separate servers (not sure why as I did not set it up) and then the XenApp is on a Server 2003 VM inside XenServer. We are not serving up desktops, just applications (Outlook, Acrobat and a couple apps for mortgage related stuff). I am not upgrading the current stuff as we are wanting to move it to the newer/faster server hardware and also are upgrading the underlying VM to Windows Server 2012 R2 instead of Windows Server 2003 that it is currently on. The mortgage apps are upgrading to versions that require .Net 4.5.2 which wont install on Server 2003. I have been trying to read stuff but I am not sure I need everything that Citrix seems to be telling me. Their support people barely speak English and just want to give me the documentation site.
|
# ? Jul 7, 2016 16:17 |
|
larchesdanrew posted:The good news is this was enough leverage to move forward with monitoring on everything. I'm sick of finding out shits busted when it's too late. I use Solarwinds and Datadog. I like Datadog. It's cheap and pretty.
|
# ? Jul 7, 2016 16:28 |
|
larchesdanrew posted:The good news is this was enough leverage to move forward with monitoring on everything. I'm sick of finding out shits busted when it's too late. If you have 100 things you want to monitor (things being Harddrive space, up time, ping, and this is by server so a server could easily use 4-5, while a switch might use 0-3 depending on what you want) you can use PRTG for free. It's super simple to setup. It does get pricey if you want to monitor more though. You don't need a ton of control, you don't have a guy dedicated to it. Use whatever is easy to setup easy to modify and easy to understand.
|
# ? Jul 7, 2016 16:37 |
|
larchesdanrew posted:The A/C in our server room went tits up last night. Maintenance got it blowing cold air again, and my employee called an audible and left the door open all night with a box fan blowing in there. Oh god it's Midelne's boss all over again. Anyone got that photo of his server room with the desk fan helping out? Where has Midelne gone? Did he get out of IT? http://forums.somethingawful.com/showthread.php?threadid=2834226&pagenumber=1224&perpage=40#post413450688 seadweller fucked around with this message at 16:53 on Jul 7, 2016 |
# ? Jul 7, 2016 16:51 |
pixaal posted:If you have 100 things you want to monitor (things being Harddrive space, up time, ping, and this is by server so a server could easily use 4-5, while a switch might use 0-3 depending on what you want) you can use PRTG for free. It's super simple to setup. It does get pricey if you want to monitor more though. Yeah PRTG is very user friendly and intuitive
|
|
# ? Jul 7, 2016 17:30 |
|
nielsm posted:I have a batch with similar purpose. What I do is run the START command on the shortcuts, rather than the actual programs. Like this: Worked fine. Thanks again!
|
# ? Jul 7, 2016 17:53 |
|
bitterandtwisted posted:Yeah PRTG is very user friendly and intuitive Throwing another hat at PRTG. It's very slick and looks nice. Do heed the price warning if you need to monitor more than the free version allows though.
|
# ? Jul 7, 2016 18:02 |
|
PRTG is good and the only issues I've had are purely user error.
|
# ? Jul 7, 2016 18:10 |
|
larchesdanrew posted:What's the verdict on monitoring dashboards I can feed into a bigass television in my office? My network consultant suggested Dashing. There's a ton of companies in this space now, many using some similar tools under the covers but with varying degrees of polish; look at the sponsor/vendor list for the Monitorama conference, look at their offerings, and see if any grab you. Datadog is nice, as mentioned elsewhere in the thread, and at least their engineering team seemed competent when I went drinking with them. You basically install an agent on each box you care about that sends your data on up to their cloudy cloud, and then you can set alerting based on that. Step 1 is, of course, to know what every server you manage is supposed to be doing, which from my understanding of your posts may be a fun ride. Part of it is how much you're willing to do yourself vs farm out; for you, with a staff of 1.5, you'll want one of the fuller-service solutions. If you had a bigger team and budget, I'm a huge fan of icinga for service and host alerts and graphite/grafana/collectd as a stack for metrics from the software we write, but the difference in cost in time and hardware to get that going is a different calculus for you than me. A few years ago id have told everyone "set up your own monitoring stack" but nowadays unless it's your line of business, other companies do it better.
|
# ? Jul 7, 2016 18:14 |
nielsm posted:When you're on Exchange 2010 or later, you should probably use RBAC instead of mass-assigning individual permissions like this. I'm a branch office with rights delegated only to my office's OU. I don't think I even have rights to create role groups, just manage mailboxes. I was following a Technet article that specified this, so I'm sure however one goes about assigning perms should be fine. All you need is rights to the mailbox sufficient to delete. Back to content. An email from our central IT office came in... quote:All, for my homies at HQ. Good luck, comrades. Glad it ain't me.
|
|
# ? Jul 7, 2016 18:33 |
|
Trastion posted:Anyone have any links to a good guide for installing Citrix XenApp 7.9? Or any 7.x version will probably work. I have found this dude to be pretty helpful: http://www.carlstalhood.com/ Also, this is a 2 hour long video that is from Citrix that does a complete basic set up live as a demo. It is helpful to watch to get a general idea of the steps involved. https://www.youtube.com/watch?v=Fv-XEsniMu8
|
# ? Jul 7, 2016 18:49 |
|
larchesdanrew posted:The A/C in our server room went tits up last night. Maintenance got it blowing cold air again, and my employee called an audible and left the door open all night with a box fan blowing in there. Why is it that you stated your employee and not ex-empolyee?
|
# ? Jul 7, 2016 19:02 |
|
Wiggly posted:I have found this dude to be pretty helpful: Thanks. I have read a few of the carlstalhood stuff. I also found a virtulizationadmin.com walk through that has been pretty helpful. I think my biggest issue is that I am having to change so much going from an old version to new and also changing hardware. I just found out I also need to move the Licensing Server to a new machine because it is currently on server 2003 and the new version doesn't support anything under 2008. I really want to get the new stuff setup and tested while the old is still working as people work on it everyday.
|
# ? Jul 7, 2016 19:29 |
|
|
# ? May 29, 2024 09:21 |
|
Our new Cisco Hyperflex is up and running, everything is peachy, we're all happy! Oh, wait, what's this? EVENT : Unable to apply DRS resource settings on Host 1 Hm, fine, OK, non-critical so we'll just wait for this to clear itself out. VMWare KB says it's transient. Senior admin: Oh I've seen this before, restart the management agents on the host. Me: Are you sure? It's transient, we could just wait it out and monitor what happens (in this time he can't open a kvm console to the host because he doesn't know how, so he walks over to the rack kvm. he can't figure out the password to the host so he stands for 10 minutes jamming away at passwords, during which time I open the KVM console from my PC, look up the password, and enter it for him. He can't find the setting for management agent restart so I have to show him). Me: Again maybe we should wait thi- senior : do it. Management Agents stopping. Helpdesk rings. Rings again. Rings yet again. Now there's 5 calls. Our primary mission critical software is down. Mission critical connections to our vendor is down. Everything is hosed. Finally, after the stupidest 5 minute mission critical outage I've ever experienced, everything comes back up. Except the mount points on those virtual machines are still hosed and require manual intervention to fix. We still have no idea what caused the outage or how much has been impacted. And what does Senior Admin do? "Oh I'm late for lunch. (fucks off out of the building)" It's the most CE thing I've ever seen him do and it's equally and
|
# ? Jul 7, 2016 20:19 |