|
|
#
?
Apr 24, 2017 15:52
|
|
|
|
| # ? Jun 4, 2024 02:17 |
|
|
No, I can't delete all these emails with 20 meg attachments. I think I saved them all to the file server but can't be sure. I also need to know who sent each one and what they wrote in the message. Yes, the same file was sent back and forth 15 times but one might be a revision so I'm not deleting any of them!
|
|
#
?
Apr 24, 2017 15:54
|
|
|
Also they're six years old and the client the work was done for isn't in business any more. But still, they might come in handy.
|
|
#
?
Apr 24, 2017 16:11
|
|
|
This is the retention policy at my current place of work  And the official way to archive things is to make a pst and stick it on your network share. I am fortunately not responsible for email/file shares in any way shape or form but the people who are are extremely bad at their jobs.
|
|
#
?
Apr 24, 2017 16:22
|
|
|
This was all running on ipswitch iMail on a Win2k server like 3 years ago at an old job....people hit the server using pop3/smtp. Ugh. (moved the motherfuckers to exchange. It was fun FTP'ing those PST's to AppRiver) The lovely 'programmers' who wrote the software their business runs on didn't know how to do file transfers any other way except email attachments. So if you wanted to attach documents to an order in the system you had to email them to 'department@abccorp.com', and of course you'd copy your manager and others in your department, so every email was cc'd to everyone else about 50 loving times, became attached to the document on the webserver, and saved in a folder called 'attachments'. Bonus points we backed up desktop computers instead of requiring people to use a file server so each PC only got a backup about once a week and it almost never completed and when it did you can't really backup outlook while it's open soo....
|
|
#
?
Apr 24, 2017 16:37
|
|
|
Nuclearmonkee posted:
Heh, we're murdering psts this week. We sent out an email saying we were doing this, and it's started in earnest today. We've had 4 or 5 tickets and 5 or 6 phone calls already about people not being able to move emails in to their PSTs. I'm starting to take malicious glee in telling people they don't get PSTs anymore.
|
|
#
?
Apr 24, 2017 17:52
|
|
|
Avenging_Mikon posted:Heh, we're murdering psts this week. We sent out an email saying we were doing this, and it's started in earnest today. We've had 4 or 5 tickets and 5 or 6 phone calls already about people not being able to move emails in to their PSTs. I'm starting to take malicious glee in telling people they don't get PSTs anymore. Get ready for the drawers full of printed emails
|
|
#
?
Apr 24, 2017 17:54
|
|
|
An e-mail came in at 6:30 amquote:When you get in could you please help me with the VPN. I am unable to log in. Keep saying my id and password doesn’t match. I have not change any password except I changed my outlook which expired. Thank you Between LDAP and SSO, our users use the same username and password for nearly everything.
|
|
#
?
Apr 24, 2017 18:11
|
|
|
one company i worked for had a strict 30 days retention policy with the email going into archive with (SCHEDULED FOR DELETION) in all caps on day 15. it was actually kind of cool because they coupled it with intense "email is not for storage" training that resulted in departments actually documenting things. i don't think my inbox ever broke 200mb there.
|
|
#
?
Apr 24, 2017 18:18
|
|
|
So has anyone stopped pushing password rotation policies, since they largely weaken passwords overall?
|
|
#
?
Apr 24, 2017 18:28
|
|
|
CommieGIR posted:So has anyone stopped pushing password rotation policies, since they largely weaken passwords overall?
|
|
#
?
Apr 24, 2017 18:29
|
|
|
CommieGIR posted:So has anyone stopped pushing password rotation policies, since they largely weaken passwords overall? I've brought it up to people who could do something and I've been met with blank stares or "I don't think that's true."
|
|
#
?
Apr 24, 2017 19:13
|
|
|
RFC2324 posted:I had a boss send herself a really hostile email from my email account. It took me about 30 seconds to figure it out, but I was freaked for those 30 seconds. We like to send emails to a user's department with "Hey guys I'm bringing in ice cream tomorrow, let me know what kind you like" so they start getting emails back that just say "chocolate" or "rocky road" until the inevitable disappointment when they have to tell their coworkers that it wasn't true. One guy was a great sport about it and did actually bring ice cream for his team. I liked that dude.
|
|
#
?
Apr 24, 2017 19:26
|
|
|
Nuclearmonkee posted:This is the retention policy at my current place of work *leans in* Wrong. /trump PSTs are evil. PSTs on a network share are double evil.
|
|
#
?
Apr 24, 2017 19:58
|
|
|
CommieGIR posted:So has anyone stopped pushing password rotation policies, since they largely weaken passwords overall? As long as the auditors (PWC or KPMG etc) decide that rotation is the proper way to ensure SOX security then no amount of common sense will change things. It took me 6 months to convince PWC that having (and publishing) a password requirement of exactly 8 characters was a bad thing.
|
|
#
?
Apr 24, 2017 20:11
|
|
|
porktree posted:As long as the auditors (PWC or KPMG etc) decide that rotation is the proper way to ensure SOX security then no amount of common sense will change things. It took me 6 months to convince PWC that having (and publishing) a password requirement of exactly 8 characters was a bad thing. I've also tried to fight for lower complexity and longer length requirements(with robust dictionary checking) with a 50 bad attempts = account disabled and a forced password change instead of a 3 attempt lockout. And no forced expiration. I eventually got everyone to agree it was more secure and harder to brute force, but accomplished nothing practical because the very thought of it makes executives poo poo their diapers because it's DIFFERENT.
|
|
#
?
Apr 24, 2017 21:14
|
|
|
The Fool posted:I've heard the story a few times from different people. I don't believe anyone has actually done it. I got to use it last week. We delete after 90 days and I demo'd file storage via trash can. The thing is we don't delete live mail so it's not like he was dodging a rule or anything.
|
|
#
?
Apr 24, 2017 21:38
|
|
|
Product update day  user posted:Attachments are gone - you can see folders, but there is nothing in them. This needs to be corrected ASAP. tech posted:Hi user, user posted:We're used to using the old view. This update is not going to work for us. Well let me just call up the CEO and tell him Podunk & Sons of BFE wants him to cancel the new version because you can't be assed to read your email and check a box. Please hold.
|
|
#
?
Apr 25, 2017 00:43
|
|
|
|
|
#
?
Apr 25, 2017 01:09
|
|
|
Your CBS logs are likely hosed up and not truncating properly. Check C:\Windows\Logs\CBS and you'll probably see enormous CBSPersist_Date.cab files that you can clear. Has to do with TrustedInstaller not being able to handle trunking the logs when they exceed a certain size. Been a bug for years.
|
|
#
?
Apr 25, 2017 01:28
|
|
|
RIP
|
|
#
?
Apr 25, 2017 02:12
|
|
|
CommieGIR posted:So has anyone stopped pushing password rotation policies, since they largely weaken passwords overall? Tell that to the PCI compliance rule-writers. Also, anyone get a 4:50pm webroot surprise?
|
|
#
?
Apr 25, 2017 05:08
|
|
|
CommieGIR posted:So has anyone stopped pushing password rotation policies, since they largely weaken passwords overall? No, weak passwords are better than the same password reused on ten different third party services. We moved to using 2fa for most things but until 100% is under 2fa the password policy wont change substantially.
|
|
#
?
Apr 25, 2017 05:53
|
|
|
Ursine Catastrophe posted:Tell that to the PCI compliance rule-writers. Quarantined our program's main executable 
|
|
#
?
Apr 25, 2017 13:14
|
|
|
Two tickets came in at 4am. The VMs are all going down at once, again. After resetting them and not getting anywhere I call the Vmware specialist on our team. I'd like to be one of these too, buuuuuut that role was assigned to him so they'll never teach me or give me access even though we all have the same title. Fine, wake his rear end up. Oh yeah it's just the antivirus issue again  1. This happens literally every week 2. If the antivirus gives us this much trouble, isn't less of a burden and risk to simply do away with it? I really don't understand the logic of having AV on VMs, especially if its going to take out dozens of VMs at a time. Isn't the slight risk of an infected machine once in a while, that's already mitigated other security measures, better than the almost guarantee of a partial outage? Who needs a virus at this point? Just sit and wait to break and more damage is done than any virus you could ever infect these things with. Decision was made at corporate level who saw what ransomware is and decided to lock all these down without thinking.
|
|
#
?
Apr 25, 2017 13:39
|
|
|
A couple of months ago McAfee rolled out an update to their cloud EPO offering that caused anything running Server 2008 to restart and then endlessly try to apply group policies. Having forty servers restart at night and not being able to figure out how to get them back up was a treat. And the only way to undo it was boot to safe mode and use a removal tool provided by McAfee to get them to work. Between your story, the webroot thing and my experience it's safe to say AV is garbage made by garbage men.
|
|
|
#
?
Apr 25, 2017 14:17
|
|
|
AV is horrible garbage that causes lots of issues like you posted but also opens you up to a significant security risk because these things all run as system and are rife with vulnerabilities such as parsing bugs leading to remote code execution and terrible SSL MITM that doesn't verify certificates at all ( look up some of Tavis Ormandy's work for some laffs ). Now, if AV would actually protect you against damaging malware like fresh 0day ransomware samples then maybe it'd be worth it. But fact is that signature based detection is a load of poo poo that doesn't protect against these kinds of threats. So in short AV is a load of poo poo that you don't want.
|
|
#
?
Apr 25, 2017 14:25
|
|
|
windows defender is enough for anyone
|
|
#
?
Apr 25, 2017 14:42
|
|
|
So... nice weather we're having! Spring sure is a lovely season, the flowers start blooming, everything greens up, and nobody picks the scab off the antivirus argument... 
|
|
#
?
Apr 25, 2017 15:39
|
|
|
Wrath of the Bitch King posted:Your CBS logs are likely hosed up and not truncating properly. Check C:\Windows\Logs\CBS and you'll probably see enormous CBSPersist_Date.cab files that you can clear. Yep.
|
|
#
?
Apr 25, 2017 15:48
|
|
|
Aunt Beth posted:So... nice weather we're having! Spring sure is a lovely season, the flowers start blooming, everything greens up, and nobody picks the scab off the antivirus argument... It's got bastard cold here this week, had to cut my normal lunchtime walk short 
|
|
#
?
Apr 25, 2017 15:52
|
|
|
Thanks Ants posted:It's got bastard cold here this week, had to cut my normal lunchtime walk short It's alternating between raining and snowing here. I'm very annoyed.
|
|
#
?
Apr 25, 2017 15:57
|
|
|
A ticket came in: A local High School's return fiber went completely dark. Ticket Closed: School's server closet is completely empty and our fiber jumper was left dangling, not plugged into anything. It's the ISP's fault anyway
|
|
#
?
Apr 25, 2017 16:02
|
|
|
Aunt Beth posted:So... nice weather we're having! Spring sure is a lovely season, the flowers start blooming, everything greens up, and nobody picks the scab off the antivirus argument... It loving snowed today 
|
|
#
?
Apr 25, 2017 16:03
|
|
|
Renegret posted:A ticket came in: I'd call that working as intended. No equipment, no signal. Close and bill for wasting time.
|
|
#
?
Apr 25, 2017 16:07
|
|
|
Renegret posted:A ticket came in: Please tell me you have a picture of this. Did someone just empty out all the racks, see the one thing hooked up to the wall and just shrugged?
|
|
#
?
Apr 25, 2017 16:06
|
|
|
skooma512 posted:Two tickets came in at 4am. The VMs are all going down at once, again. Due diligence means that no one will blame them for problems, even though you're the one that has to deal with it.
|
|
#
?
Apr 25, 2017 16:11
|
|
|
Kurieg posted:Please tell me you have a picture of this. I have no idea why, nor do I care. It's probably better that I don't know. I'm not sharing the pictures for reasons but it's pretty hilarious.
|
|
#
?
Apr 25, 2017 16:13
|
|
|
Ursine Catastrophe posted:Tell that to the PCI compliance rule-writers. What, you mean managers? There's plenty of DEFCON talks on why PCI Compliance is less about securing anything, and more about covering Payment Processor's asses. Renegret posted:A ticket came in: Janitors 
CommieGIR fucked around with this message at 17:12 on Apr 25, 2017 |
|
#
?
Apr 25, 2017 16:44
|
|
|
|
| # ? Jun 4, 2024 02:17 |
|
|
CommieGIR posted:What, you mean managers? No, PCI - payment card industry. Credit and debit cards. You follow their rules or you don't get to take payments.
|
|
#
?
Apr 25, 2017 16:46
|
|