t did you like?
3. What did you dislike?
Thanks.
-- Joseph Kern
___
Discuss mailing list
Discuss@lopsa.org
http://lopsa.org/cgi-bin/mailman/listinfo/discuss
This list provided by the League of Professional System Administrators
http://lopsa.org/
On Thu, Oct 8, 2009 at 12:48 AM, wrote:
> On Wed, 7 Oct 2009, Joseph Kern wrote:
>
>> Does anyone have experience with using application whitelisting on
>> user workstations? This would be used instead of anti-virus.
>
> the problem with doing this _instead_ of AV is
ings in a
USB drive, I don't want them to execute any code from it, at all.
> Whitelisting apps is great if you are running a kiosk style
> service.
Or trying to secure sensitive data :-)
>Nothing on the machine, specific apps allowed to run.
> Almost like running on a li
imize this very real risk.
Michael Toecker
Burns & McDonnell"
[0]:
http://www.digitalbond.com/index.php/2009/09/21/another-look-at-application-whitelisting-in-control-systems/
On Fri, Oct 9, 2009 at 2:25 AM, wrote:
> On Thu, 8 Oct 2009, Joseph Kern wrote:
>
> On Thu,
If you use RAID on any of your Windows servers, I would suggest
monitoring the "Disk Idle Time" counter. Some RAID configurations can
give misleading stats, the write-cache can make it seem like its
writing much faster than it actually is.
If you are using a NAT'ing router, also look to see if you
I'm new too!
Everyone has something to offer. New people stir the pot, and ask
questions that force some of the older crowd to revisit or explain
ideas. This beinfits both parties, as the newbs get to learn and the
elders get to teach.
You never learn a subject until you can teach it to someone e
>why should your remote employees _not_ have access to your corporate resources.
This would be an extranet. For untrusted vendors, sub-contractors, etc.
Mega-CorpA subcontracts to Mega-CorpB.
Mega-CorpB needs access to certain information inside Mega-CorpA.
Mega-CorpA sets up a segment of their n
Feel free to immortalize anything I write. Just spell check it first. Please.
On Tue, Oct 20, 2009 at 11:31 PM, Dave Close wrote:
> Joseph Kern wrote:
>
>>IMO, using MS products usually means you end up buying your way out of
>>problems, rather than thinking your way ou
BTW, DirectAccess ONLY works in Windows 7 Ultimate[0].
It might not be what you hope it is.
[0]:
http://reviews.cnet.com/8601-31012_7-10379487-1.html?communityId=2146&targetCommunityId=2146&blogId=10355804
On Wed, Oct 21, 2009 at 11:33 AM, Atom Powers wrote:
> I'm no expert on MS Windows, but
Sorry, wrong link. Here's the right one:
http://reviews.cnet.com/8301-31012_7-10379487-10355804.html
On Wed, Oct 21, 2009 at 12:02 PM, Joseph Kern wrote:
> BTW, DirectAccess ONLY works in Windows 7 Ultimate[0].
>
> It might not be what you hope it is.
>
> [0]:
> http:
The laptop has a mini-PCIe and a CardExpress slot, currently running
Windows XP. The current Signal is -71 dBm and the Noise is -73 dBm,
which means basically "one bar" on the little tray icon.
What are my options as far as getting a better signal? I am open to
all suggestions.
reeantennas.com/ that I'll make.
Thanks again for all the support! I'll let you know how it goes.
--Joseph Kern
___
Discuss mailing list
Discuss@lopsa.org
http://lopsa.org/cgi-bin/mailman/listinfo/discuss
This list provided by the League of Pro
I'm also very tempted ...
http://www.amazon.com/Indoor-802-11b-Fixed-Gain-Booster-Amplifier/dp/B000V1SUQE/ref=pd_sim_e_5
Why would I need a 1W Amp? Why not?
On Mon, Nov 30, 2009 at 8:48 PM, Joseph Kern wrote:
> Wow, the response has been overwhelming, thanks for all of the info a
Well said.
More power is seldom the answer, but it brings the best short term fun. :-)
I agree about the CAT5, but in this case I would need to cover the
distances outside (between two buildings), while it could technically
work it won't politically.
-- Joseph Kern
On Tue, Dec 1, 2009 at
will do
> the job, but it is often fun to build antennas. That exact
> wifi-link.com combination solved a problem that one of my friends had.
>
> On Mon, Nov 30, 2009 at 8:48 PM, Joseph Kern wrote:
>> Wow, the response has been overwhelming, thanks for all of the info and
>>
; human or other desirable life form is going to get in front of the antenna.
> Also, it isn't particularly helpful unless you can install an amplifier at
> both ends of the link, since the weakest link loses. I'm a ham radio
> operator - trust me, a better antenna or antenna pl
-A INPUT -j DROP -p tcp -i eth0` as
they are scored continuously on service uptime. I thought of that too
(this will be the nuclear option).
Thanks.
--Joseph Kern
[1]: http://en.wikipedia.org/wiki/Capture_the_flag#Computer_security
___
Discuss mailing li
ferences
7.1 IPtables Resources
1 CTF Cutsheet - Defenders v0.1
Last updated: 2010-02-02 Tue
Written by: Joseph Kern
Lots of Help From: Edward Harvey, David Lang, Atom Powers, Matt Simmons, and Nick Whalen
Want to add something? Email Additions to joseph.a.kern (AT) gmail (DOT) co
the latest version. Thanks again for all of your input.
Keep the advice coming!
-- Joseph Kern
On Tue, Feb 2, 2010 at 2:06 PM, Chuong Dao wrote:
> From a quick look through the responses, it seems like we've been focusing
> mostly on remote attacks. Looks like you're allowing SSH (
OTP in 5 minutes? I think it would take at least 10 to explain how they work ...
In this case. If only servers are "in-play" then the keys are secure
on the laptops "out-of-play".
Yeah I'm splitting hairs, but rules are rules :-)
And the instructor (not me) who's running this mis-heard the
require
And ... the Linux is Red Hat.
On Wed, Feb 3, 2010 at 6:43 AM, Joseph Kern wrote:
> OTP in 5 minutes? I think it would take at least 10 to explain how they work
> ...
> In this case. If only servers are "in-play" then the keys are secure
> on the laptops "out-of-play&q
Thanks everyone! I sent the checklist off to the team. With a little
"something" extra for the attackers :-)
LOSPA-NJ members see you tomorrow.
--Joseph Kern
On Wed, Feb 3, 2010 at 11:04 AM, Joseph Kern wrote:
> And ... the Linux is Red Hat.
>
> On Wed, Feb 3, 2010 at 6
I can't decide if this is more Die Hard or more Mr. Bean ...
On Mon, Feb 22, 2010 at 2:10 PM, Aleksey Tsalolikhin
wrote:
> http://xkcd.com/705/
> ___
> Discuss mailing list
> Discuss@lopsa.org
> http://lopsa.org/cgi-bin/mailman/listinfo/discuss
> This l
I agree about splunk, it's a great product.
On Wed, Mar 3, 2010 at 4:26 AM, Trey Darley wrote:
> My experience with the product has been very good. It's incredibly
> capable. I do wish that O'Reilly would do a Splunk in a Nutshell book,
> though, as the documentation could be better.
>
> Cheers,
I've been tackling documentation at $work lately ... and here's what I
found works for me:
Changelog ( A blog for all team members)
Pattern Library
Runbooks
Services
Service Name (and general description, links to server runbooks)
Procedures
Servers
Server Name
25 matches
Mail list logo
