|
Crowley posted:I'm more surprised that actual places of work need a web filter in the first place. When I started here web filtering was setup with a giant black list that was murdering the firewall. We assume people are immature children and lock everything down apparently. It was basically used by my predecessor to block facebook and youtube before cellphones. We now have our Facebook page as our home page, and several products with tutorials with youtube videos that are mandatory for training. Many of the other sites on it were just strange such as competitors websites, game websites, job search sites, and basically anything else someone had at one point been seen browsing instead of working, even if it was during lunch. I was able to show that this list was causing the firewall to crash and causing many of our network outages while also having very few hits, anything without a hit for 3 months in a row can be removed, and nothing is being added unless it's a chronic problem, as monitoring what employees are doing is a managers job. Last time the filter was up for renewal and I started hinting at dropping it (it's being used for almost nothing at all right now, only categories checked are porn and proxies) C-levels freaked out at the very idea of having unfiltered internet and the tone felt like pushing it would be a battle and I'm not going to fight for paying for something using other departments funds that isn't used.
|
# ? Jun 16, 2017 15:07 |
|
|
# ? Jun 9, 2024 12:34 |
|
We take a multi-step approach.. DNS based filtering (via dnsfilter.com), and Sonicwall's content filtering. Filtering on adult and known phishing/malware websites. We have also standardized on Chrome Enterprise and block other browsers. Chrome does checks against Google's known malware/phishing URL list. And we also use GSuite, which is good about blocking a good amount of common phishing attempts. In addition there is constant user training and reminders. Years ago we had a short lived experiment with whitelisting, it was a complete failure. As a retailer we deal with so many vendors that whitelisting their domains was next to impossible. Support staff spent all their time fielding requests to whitelist domains. Both of our primary vendors have HUGE backend websites that have seemingly hundreds of domains involved. Just these alone where a major issue.
|
# ? Jun 16, 2017 15:09 |
|
We use Cisco Web Security which is pretty good. Just forward all port 80 traffic to their cloud. Good thing they're retiring it though for Umbrella. Sigh.
|
# ? Jun 16, 2017 15:10 |
|
We're a K-12 school district so in order to receive eRate funding that pays for ~80% of our ISP bills and untold amounts of hardware, we must enforce CIPA-compliant filtering on all student devices. Thankfully no one at the FCC has ever sat down and defined what is required for CIPA compliance so it's more of a best effort filtering attempt with adjustments for grade/age level appropriate content. Unfortunately we have to manage all this through a fleet of SonicWalls with their bizarre policy-combining, most-permissive, unless-you-pin-a-policy, SSO-crashed-again, content filtering feature. Overall I think we spend more time blocking the latest slither.io ripoffs than actually catching kids on straight up inappropriate sites.
|
# ? Jun 16, 2017 15:37 |
|
Remote support app chat time - what do you all use? We've currently got Bomgar, which is...alright. We like that we can just type in the computer name and (sometimes) push the client to get onto someone's system. However, we have weird issues, etc. with it. Teamviewer I use at home, but I keep reading too much conflicting info re: potential security issues. What do you all use? Ideally something that we can either pre-populate a list, or that can be pushed via IP or computer name so people don't have to navigate to "helpdesk.Imaretard.com", etc.
|
# ? Jun 16, 2017 15:42 |
|
Sickening posted:Our web browsing is based on a white list instead of a blacklist. We do this for one client, it's kind of a pain in the rear end but they rarely have security incidents due to it. All our clients, including the above, have fortigate's and we do filtering via those. We've run into a couple minor issues where important sites get marked as some inappropriate content, but you can build a quick workaround and submit it to fortiguard for review. I had one review responded to, and modified, within 15 minutes of submitting. MF_James fucked around with this message at 16:03 on Jun 16, 2017 |
# ? Jun 16, 2017 16:00 |
Siochain posted:Remote support app chat time - what do you all use? Bomgar is what we use, and it's the best out of everything we tried.
|
|
# ? Jun 16, 2017 16:03 |
|
Bomgar sounds like something an Indian scammer would use.
|
# ? Jun 16, 2017 16:43 |
|
I've just been asked to provide documentation (with screenshots) on how to use Rufus to format a USB thumbdrive as FAT32. By our Deskside Technical group.
|
# ? Jun 16, 2017 17:47 |
|
spankmeister posted:Bomgar sounds like something an Indian scammer would use. It's legit but very expensive from what I hear. I think it requires an appliance too if you want to offer the service.
|
# ? Jun 16, 2017 17:47 |
|
spankmeister posted:Bomgar sounds like something an Indian scammer would use. For a while it was very popular with scammers, not sure about now.
|
# ? Jun 16, 2017 17:48 |
|
Wrath of the Bitch King posted:I've just been asked to provide documentation (with screenshots) on how to use Rufus to format a USB thumbdrive as FAT32. By our Deskside Technical group.
|
# ? Jun 16, 2017 17:50 |
|
What would you suggest?
|
# ? Jun 16, 2017 17:52 |
|
Wrath of the Bitch King posted:What would you suggest?
|
# ? Jun 16, 2017 17:53 |
|
anthonypants posted:Right-clicking the drive in Windows and selecting Format? FAT32 hasn't been a native option for a while. It's just ExFAT and NTFS.
|
# ? Jun 16, 2017 17:54 |
|
Wrath of the Bitch King posted:FAT32 hasn't been a native option for a while. It's just ExFAT and NTFS. Sure about that? I've just tried it on a 1GB flashdrive and it is an option Not available on my 500GB HDD E: Win10
|
# ? Jun 16, 2017 17:58 |
|
anthonypants posted:Right-clicking the drive in Windows and selecting Format? Only works on drives below a certain size.
|
# ? Jun 16, 2017 18:00 |
|
Beaten. But yes, fishmech is correct.
|
# ? Jun 16, 2017 18:00 |
|
Seems to be 32GB
|
# ? Jun 16, 2017 18:03 |
|
I feel like a huge dummy, but yeah. Didn't even consider that; haven't had anything less than a 64 GB drive for a couple of years now. All of our techs in the field use either 128 or 256 GB drives.
|
# ? Jun 16, 2017 18:05 |
|
Siochain posted:Remote support app chat time - what do you all use? We're using Dameware. It is just fine and perfectly functional. But it is a solarwinds product.
|
# ? Jun 16, 2017 18:11 |
|
Wrath of the Bitch King posted:I feel like a huge dummy, but yeah. Didn't even consider that; haven't had anything less than a 64 GB drive for a couple of years now. All of our techs in the field use either 128 or 256 GB drives.
|
# ? Jun 16, 2017 18:17 |
|
anthonypants posted:Is there a good reason they need to be FAT32 and not NTFS? Plenty of embedded systems only support FAT32.
|
# ? Jun 16, 2017 18:37 |
|
anthonypants posted:Is there a good reason they need to be FAT32 and not NTFS? UEFI. This is all for imaging.
|
# ? Jun 16, 2017 19:00 |
|
Wrath of the Bitch King posted:UEFI. This is all for imaging.
|
# ? Jun 16, 2017 19:10 |
|
anthonypants posted:...what? This conversation came up in one of these threads before. Some uefi bios' won't boot USB from ntfs, so the boot volume on an external drive has to be fat32. I've run into this issue on the surface pro 3
|
# ? Jun 16, 2017 19:13 |
|
The Fool posted:This conversation came up in one of these threads before.
|
# ? Jun 16, 2017 19:26 |
|
I'm aware of all of that homie, it's why we used Rufus in the first place. That said, our WIM is currently lower than 4 GB in size (the FAT32 limitation) so we don't need to use the UEFI:NTFS option. We can just set it as FAT32 and move on; the other option works perfectly fine, but somehow our desktop technicians find it "confusing." So for now they don't need to bother, but they will once the WIM grows in size.
|
# ? Jun 16, 2017 19:52 |
|
Wrath of the Bitch King posted:I feel like a huge dummy, but yeah. Didn't even consider that; haven't had anything less than a 64 GB drive for a couple of years now. All of our techs in the field use either 128 or 256 GB drives. I wouldn't feel too dumb: we all know the 4GB file size limit, but I assumed the max drive size was huge (had to look it up to see it was 2TB) - is 32GB an arbitrary limit in Windows?
|
# ? Jun 16, 2017 20:01 |
|
Normal FAT32 has a hard-limit of 32 GB, so it's not exactly arbitrary. You can just go beyond it using tools like Rufus, which technically format as "Large" FAT32.
|
# ? Jun 16, 2017 20:04 |
|
Wrath of the Bitch King posted:I've just been asked to provide documentation (with screenshots) on how to use Rufus to format a USB thumbdrive as FAT32. By our Deskside Technical group. I get grief from people who think documentation should be a step-by-step that someone completely unskilled can follow and have someone's VMware cluster back up and running. I strongly disagree.
|
# ? Jun 16, 2017 20:04 |
|
spog posted:I wouldn't feel too dumb: we all know the 4GB file size limit, but I assumed the max drive size was huge (had to look it up to see it was 2TB) - is 32GB an arbitrary limit in Windows? Yes, Microsoft locked out formatting "large drives" with FAT32 ages ago (possibly as far back as XP?), to get people to stop using it. It does still work up to 2 TB if you force formatting through other means, though you need to use huge cluster sizes then. A lot of people didn't really encounter it until around Windows 7 though, because the only 32 GB+ drives they'd have would tend to be internal hard drives. Wrath of the Bitch King posted:Normal FAT32 has a hard-limit of 32 GB, That is completely untrue. It just starts to get really wasteful due to the cluster sizes around 128 GB or so. You may be thinking of how older BIOS revisions in older computers couldn't handle more than 32 GB on a single drive (and on slightly later systems, could not handle more than 128/137 GB). Many of those systems would also be using FAT32, but the restriction was not from FAT32. fishmech fucked around with this message at 20:11 on Jun 16, 2017 |
# ? Jun 16, 2017 20:05 |
|
Thanks Ants posted:I get grief from people who think documentation should be a step-by-step that someone completely unskilled can follow and have someone's VMware cluster back up and running. I strongly disagree. The direction my company has chosen dictates documentation over thinking. If you have to think, your documentation has failed. fishmech posted:That is completely untrue. It just starts to get really wasteful due to the cluster sizes around 128 GB or so. I probably should have checked before posting, you're correct. Wrath of the Bitch King fucked around with this message at 20:09 on Jun 16, 2017 |
# ? Jun 16, 2017 20:07 |
|
As dumb and simple of a process as that sounds, if it's something they actually need to do there should be a doc for it. I don't know why they wouldn't just make it themselves, though. I'm in favor of having everything that regularly needs to be done documented. It saves time when new people start, and it means that in a situation like mine, the rest of the team isn't spending half their time figuring out how to do poo poo once the only guy there who has been doing that poo poo is fired. I agree that there are limits of what can be practically documented, but most of what desktop support does is not past those limits.
|
# ? Jun 16, 2017 20:36 |
|
Who remembers getting a 1GB drive and being baffled at how you were going to use all that space?
|
# ? Jun 16, 2017 20:43 |
Please, 100MB ZIP drives are the future.
|
|
# ? Jun 16, 2017 20:49 |
22 Eargesplitten posted:As dumb and simple of a process as that sounds, if it's something they actually need to do there should be a doc for it. I don't know why they wouldn't just make it themselves, though. One of the most common questions I ask at work is "Is this documented?" The other is "Did you read the documentation?"
|
|
# ? Jun 16, 2017 20:54 |
|
RFC2324 posted:Who remembers getting a 1GB drive and being baffled at how you were going to use all that space? When I went to college, my parents spent a TON of money getting me a 286 PC with the 287 co-processor, 640KB Base with a 1MB Intel AboveBoard for memory, two 5 1/2 inch floppy drives, Hercules monochrome card, 2400 internal modem and a 40 MB full height HD. I was using the THE FUTURE
|
# ? Jun 16, 2017 20:57 |
|
Polio Vax Scene posted:Please, 100MB ZIP drives are the future. I still have a pile of these somewhere, along with the transparent blue drive and the serial connector.
|
# ? Jun 16, 2017 21:00 |
|
|
# ? Jun 9, 2024 12:34 |
|
Polio Vax Scene posted:Please, 100MB ZIP drives are the future. 1gb SCSI attached Jaz drive supremacy
|
# ? Jun 16, 2017 21:11 |