I was recently in a similar situation and I was the one who had to figure it all out due to lack of documentation.
The main things that I did were to map the network and create updated diagrams. I did this by using a bunch of utilities both commercial and open source.
Map all the switches using a program like netdisco. Depending on your equipment, it can find the uplinks and map the network for you. Otherwise, fill in the neighbor information on your own. http://netdisco.org/
Setup monitoring with Nagios and set the parent/child relationships using nagios. Make sure the map is accurate. Monitor all critical network services such as routers, dns, wins, email, proxy, fw, etc. http://www.nagios.org/
If you're not going to graph service data with Nagios, do it with Cacti. That will provide historical/trending data that is important for future network related decisions. http://www.cacti.net/
Make sure you have good backup configs of all devices. A tool like Kiwi CatTools will automatically backup the configs for your devices and even alert you to when configs have been changed. It's great for change management purposes. http://www.kiwisyslog.com/kiwi-cattools-overview/
I'm tired of not being able to bring my cell phone into the strip club... I don't wear a watch and rely on the phone for time as well as coordination. The last bachelor party we went to ran WAY over because nobody knew the time and where to meet the limo.
Why not just teather your cell phone's connection via bluetooth like you can do with many of the GPS devices out there? Then you're not tied to which ever provider the car company has struck a deal with. Let alone coverage...
Also, I'd rather see WIFI built into something like this so when I get home, I can push out updated music/maps/etc. to the car's computer. Anything else I need could be downloaded to the car when away from WIFI via the phone link.
I certainly don't want to pay for two mobile plans and my home internet connection. Then again... if I have enough $ to get this car, I have enough to flush another cell phone bill.
Very true. I suppose all the worm really has to do is add entries to your host file. I've seen some pretty complex malware do redirects that do not modify DNS settings or use hosts files. They hijack the something in the winsock settings. Not sure exactly how it is done. Spywareguard 2009 was one that did something like this and was a HUGE pain to remove.
I've used this service a couple of times to help protect sites where corporate won't spend an extra buck on a true content filtering solution. I just redirect things that are obviously not business related like hacking, phishing, spyware, porn, nude, gambling, etc.
I realize that it's not full proof but it does help. It's just one extra layer that I can implement on top of other basic group policy settings, antivirus software and windows defender, and spam/virus filtering. I suppose that I could always implement something like ipcop with various add ons, but I don't have the time to manage something like that on an ongoing basis.
Me too. sfc/scannow and chkdsk/f have fixed quite a few problems. If those fail, the XP recovery utility from the CD has worked a couple of times. Though, I'd rather just reimage the box and be done with it.
I'd like the tool to be able to fix the problem with Microsoft Vista backup. If you have a nonstandard boot loader (such as grub) and multiple partitions, the backup utility in won't detect any devices to back up to... have to rely on third party tools.
I'd hope that most companies are protected. Disabling autoplay is one of the most basic things done in group policy to help protect workstations. Well, also removing the user's ability to install random devices such as flash sticks.
If you are on a school network, you most likely have a proxy of some sort. The proxies I've worked with can proxy streaming media. (Websense and Bluecoat) I would have a chat with your networking department to see what you're proxy is capable of. Otherwise, turn on the radio or tv. You don't have to use the internet for delivery.
Exactly. This has been standard practice by me. All it took was one person to bring in their own wireless router with RIP enabled and broadcasting. That router exchanged routes with my routers and it caused quite a bit of confusion. Since then, it's been all OSPF with authentication and ACLs on my corporate network.
OR, Person B decides to harm Person A. Person B knows how to get access to the data on Person A's machine either through physical or remote access. Person B uploads using tor or some other type of hard to trace proxy chain. Now the email address to itunes account will match up.
Slashdot Mirror
I was recently in a similar situation and I was the one who had to figure it all out due to lack of documentation. The main things that I did were to map the network and create updated diagrams. I did this by using a bunch of utilities both commercial and open source.
Create a list of UIDs and PWDs and maintain them in a program like PasswordSafe. http://passwordsafe.sourceforge.net/
Map all the switches using a program like netdisco. Depending on your equipment, it can find the uplinks and map the network for you. Otherwise, fill in the neighbor information on your own. http://netdisco.org/
Setup monitoring with Nagios and set the parent/child relationships using nagios. Make sure the map is accurate. Monitor all critical network services such as routers, dns, wins, email, proxy, fw, etc. http://www.nagios.org/
If you're not going to graph service data with Nagios, do it with Cacti. That will provide historical/trending data that is important for future network related decisions. http://www.cacti.net/
Create high level network overviews using Visio. Solarwinds LANsurveyor Express is very useful for automating network maps. http://www.solarwinds.com/products/LANsurveyorExpress/
Make sure you have good backup configs of all devices. A tool like Kiwi CatTools will automatically backup the configs for your devices and even alert you to when configs have been changed. It's great for change management purposes. http://www.kiwisyslog.com/kiwi-cattools-overview/
I'm tired of not being able to bring my cell phone into the strip club... I don't wear a watch and rely on the phone for time as well as coordination. The last bachelor party we went to ran WAY over because nobody knew the time and where to meet the limo.
Why not just teather your cell phone's connection via bluetooth like you can do with many of the GPS devices out there? Then you're not tied to which ever provider the car company has struck a deal with. Let alone coverage...
Also, I'd rather see WIFI built into something like this so when I get home, I can push out updated music/maps/etc. to the car's computer. Anything else I need could be downloaded to the car when away from WIFI via the phone link.
I certainly don't want to pay for two mobile plans and my home internet connection. Then again... if I have enough $ to get this car, I have enough to flush another cell phone bill.
They've also had a Mail Goggles feature for a while. It makes you do some simple math problem to determine if you're sober enough to send the email. This might be useful for those who drunk mail now instead of drunk dial. http://gmailblog.blogspot.com/2008/10/new-in-labs-stop-sending-mail-you-later.html
I know this story is about home encryption, but in a domain environment with PKI implemented, recovery of EFS keys is possible by those au.
Very true. I suppose all the worm really has to do is add entries to your host file. I've seen some pretty complex malware do redirects that do not modify DNS settings or use hosts files. They hijack the something in the winsock settings. Not sure exactly how it is done. Spywareguard 2009 was one that did something like this and was a HUGE pain to remove.
I've used this service a couple of times to help protect sites where corporate won't spend an extra buck on a true content filtering solution. I just redirect things that are obviously not business related like hacking, phishing, spyware, porn, nude, gambling, etc.
I realize that it's not full proof but it does help. It's just one extra layer that I can implement on top of other basic group policy settings, antivirus software and windows defender, and spam/virus filtering. I suppose that I could always implement something like ipcop with various add ons, but I don't have the time to manage something like that on an ongoing basis.
Me too. sfc /scannow and chkdsk /f have fixed quite a few problems. If those fail, the XP recovery utility from the CD has worked a couple of times. Though, I'd rather just reimage the box and be done with it.
I'd like the tool to be able to fix the problem with Microsoft Vista backup. If you have a nonstandard boot loader (such as grub) and multiple partitions, the backup utility in won't detect any devices to back up to... have to rely on third party tools.
I was too lazy to interpret this. Say what now?
I'd hope that most companies are protected. Disabling autoplay is one of the most basic things done in group policy to help protect workstations. Well, also removing the user's ability to install random devices such as flash sticks.
If you are on a school network, you most likely have a proxy of some sort. The proxies I've worked with can proxy streaming media. (Websense and Bluecoat) I would have a chat with your networking department to see what you're proxy is capable of. Otherwise, turn on the radio or tv. You don't have to use the internet for delivery.
Exactly. This has been standard practice by me. All it took was one person to bring in their own wireless router with RIP enabled and broadcasting. That router exchanged routes with my routers and it caused quite a bit of confusion. Since then, it's been all OSPF with authentication and ACLs on my corporate network.
OR, Person B decides to harm Person A. Person B knows how to get access to the data on Person A's machine either through physical or remote access. Person B uploads using tor or some other type of hard to trace proxy chain. Now the email address to itunes account will match up.