Even with a SAN you need to limit volumes sizes to whatever size you can restore within the acceptable restoration window. There are also those times where you just want to run a chkdsk and if the volume is too big, it takes too long. That being said, I can't believe they didn't have any backup. Even if they skipped the pre-upgrade backup, they should have had one from last night/week/month. Any of those options would be better than nothing. I have to assume they were doing backup to disk on the same SAN they were upgrading, which is pretty dumb. I still can't understand why they didn't have a backup at another site somewhere else in the world. We do that sort of thing all the time where I work.
Because it is a business requirement. These systems are on isolated networks with firewalls and such, but due to utility deregulation and going to an energy market based system there is a need to get data out of the control systems into marketing systems. Any company that doesn't do that will be at an economic disadvantage to their competitors.
I just reread my post. Sorry I cam accross as too harsh. I've been at this for about 15 years myself and I just get sick of people assuming something only takes a short period of time to setup, because you can knock out a proof of concept quickly. I've also run into plenty of situations over the years where the documentation wasn't done, because either the admin didn't do it or management didn't understand the importance and wanted something with a higher priority done. I've also seen proof of concept systems turn into production systems when a manager says it's good enough and not a critical system and not to worry. That's when you really need to worry.
What the hell are you smoking? I find answers like this to be way over simplified. Just setup a Debian box in an hour. Really? That is a bit naive. I have to ask you. Do you actually get your production servers setup in an hour? I don't know about you, but it takes me at least an hour or two to rack mount a new server, get it cabled, verify the redundant power is done correctly and get everything labeled properly. Then you have to get the OS loaded, app loaded etc. After all that, you need to be sure backups are setup and working properly, do some tests. After all this is HIPPA related and he needs to make sure it's working correctly, not to mention something like this will become a mission critical app in short period of time, because other people will come to rely on it . I could easily see after the release of something like this, other departments putting the use of the IM system into policy and procedures, because it's all logged. For example some manager says he will approve purchase requisitions over the IM system as it's all logged. I assume you've tested the log recovery from a backup and are confident you will be able to restore yesterday's log 7 years from now. And then document the whole thing. You do document things I hope. Even if you are the only admin, you need to document in case you are unavailable during an emergency. If you don't you aren't doing the job properly. I find a proper server takes more like 16-24 man hours.
I can see it now. People will start an achievment service that will help you accomplish you goal. They just get enough accounts and start moderating you +5 Funny to get tge comedian etc.
I tend to use the car analogy when presented with that situation. If I get pushback from management on being legal, I suggest they start using stolen vehicles for company use as that is cheaper as well. It's really no different as far as I'm concerned.
I agree with most of what you say except the part about a single train delivering a months worth of coal. It's much closer to 1 trainload/day for a good sized coal plant.
If you use offline files with DFS you solve this problem. We have all of our users access data through dfs links. This way we can change a server out to a new name or move a particular share and nothing on the client side changes.
If we really want the general public to stop and pay attention to this sort of thing all we need to do is get an organized group of people to do this all the time. I figure if we went through and photographed/photocopied all the trash coming out of reporters and public officials (especially police officers) homes and posted it on the web it might generate a little press and outrage. I bet there might be some interesting findings. Imagine a posting about Reporter X (a female) being on her period the third week of every month, because we find used kotex pads in the trash. Or how about how some public official or reporter must be sex maniac, because there are 10 used condoms in the trash each week! The idea would be to conduct the inspection for a while and then post all the results at one time with an analysis of each target such as what kind of food and things they like as well as credit card balances etc. Imagine if you had a six month trash history on most big name reporters and politicians. I bet the outrage would be huge.
For everyone bitching about how this is difficult, apparently you aren't very good windows admins, because this is very easy to do in an active directory environment. I have 350 users with 200+ unique apps and all but some older developer tools run without admin. I can usually setup a group policy to fix an app that requires admin in about 15 minutes. For users that have laptops in the field that may need to install something themselves, teach them to use runas. This is similar to SU and allows the users the privilege for the one process they are starting. All the spyware and virus problems go away when you do this. I haven't seen a case of spyware where I work in years and probably wont see anything soon as users can't accidentally install software.
You can easily customize such actions in IE. Go to Tools|Internet Options|Advanced Under the Browsing section uncheck the "Show friendly HTTP error messages." Under search from address bar click the "Do Not search from the address bar" button.
Then you can have your return codes back the way you want.
No. Applications don't get access to write to the registry. The permissions are user based just like NTFS, so if you are an administrator and you run an application it can write pretty much anywhere it wants. If you are a user the application can generally write to HKEY_CURRENT_USER only which is where it should be storing user specific settings.
This is why some poorly designed apps need admin priviliges to run. The developer is writing changes to HKEY_LOCAL_MACHINE when they shouldn't be doing that.
OK I can't resist. I used to work in the auto industry and our CEO once said what the customer wants is:
German Engineering Japanese Quality American Service Mexican Price
I hate to say it, but he was right and that's what companies are trying to do when they outsource jobs. Consumers are so sensitive to slight differences in price, so if one company in their sector makes a change to save a very small amount of cash while putting American workers out of work, every other company that markets the same goods or services has to do something to cut costs by the same amount. We have to realize that the American consumer is driving this phenomenon. I don't know how to fix it, but we are creating our own problem.
The root cause of people getting a ton of telemarketers calling them is the same reason they get a ton of junk mail in their mailbox. Here are a couple of easy steps to fix most junk mail and telemarketing.
Step 1. surf on over to The Direct Marketing Association and sign up for the mail preference service and the telephone preference service. I realize they don't have an online signup yet, so you'll have to print out the forms and send them dead trees, but this does help a bunch.
Step 2. You may not realize or remember, but one a year every creditor you do business with sends a notice out detailing how they share (sell) information to selected (anyone willing to pay) parties. This same notice also details how to stop them from sharing this information. Most companies will let you do this over the phone if you just call the customer service line, but some may require you to mail the form in. Make sure you tell them you don't want you information shared with anyone. Often they will try to get you to let them share your information with other companies in their organization. Do not let them do this. Be sure you go through this procedure for every account you have not just credit cards. You can't forget mortgages auto loans etc. I found this made the most differance, since most marketers want to market to people that can afford to purchase their product even if they have to use credit to do so.
I once successfuly switched hard drive platters.
on
Clear Hard Drive Mods
·
· Score: 1
Yes the subject is correct. I once had a seagate drive that had some data that needed to be restored and didn't have a backup. The drive was an older model somewhere around 500MB. I removed the 2 platters and placed them in an identical drive I had on the shelf. When I fired it up I was able to get all the data I needed. I don't know how long it would have worked since I got my data and threw it in the trash, but it did work. I remember having to make sure I kept the two platters lined up together. I don't know if it would still work today with the higher data densities, but I thought it was cool at the time.
It's only $140 list according to 3com's website It's also a switch not a hub which makes a difference as well. It's not rediculous at all. Suppose you already have a wire going to a desktop and you need another one. It might cost upwards of $1000 to add a second wire if it's in a difficult place to wire. I've been in that position before. I'm not saying I'd build my cable plant with these, but there are situations where they would be helpful.
If you're the least bit concerned that BugTraq will not be posting MS security releases why not go and send an email to microsoft_security-subscribe-request@announce.micr osoft.com
Anyone administering NT systems should probably be subscribed to this list anyway.
Can anyone tell me why the posting script put a space between the r and o in microsoft when I previewed it even though I didn't type a space?
Actually there are free DOS utilities available that give you read access to an NTFS drive. You can purchase the read/write version for $149. It's available over at www.sysinternals.com
Probably not. I'm guessing that NetPD just gave a list of the usernames to be blocked. I doubt they did anything more than that.
I say we SPAM their ass. We all load up Napster with a bunch of text files named Enter Sandman.mp3 or something like that. I doubt it would be possible for NetPD to actually download and listen to each song to verify it is indeed Metallica.
Slashdot Mirror
Even with a SAN you need to limit volumes sizes to whatever size you can restore within the acceptable restoration window. There are also those times where you just want to run a chkdsk and if the volume is too big, it takes too long.
That being said, I can't believe they didn't have any backup. Even if they skipped the pre-upgrade backup, they should have had one from last night/week/month. Any of those options would be better than nothing. I have to assume they were doing backup to disk on the same SAN they were upgrading, which is pretty dumb. I still can't understand why they didn't have a backup at another site somewhere else in the world. We do that sort of thing all the time where I work.
Because it is a business requirement. These systems are on isolated networks with firewalls and such, but due to utility deregulation and going to an energy market based system there is a need to get data out of the control systems into marketing systems. Any company that doesn't do that will be at an economic disadvantage to their competitors.
I just reread my post. Sorry I cam accross as too harsh. I've been at this for about 15 years myself and I just get sick of people assuming something only takes a short period of time to setup, because you can knock out a proof of concept quickly. I've also run into plenty of situations over the years where the documentation wasn't done, because either the admin didn't do it or management didn't understand the importance and wanted something with a higher priority done. I've also seen proof of concept systems turn into production systems when a manager says it's good enough and not a critical system and not to worry. That's when you really need to worry.
What the hell are you smoking? I find answers like this to be way over simplified. Just setup a Debian box in an hour. Really? That is a bit naive. I have to ask you. Do you actually get your production servers setup in an hour? I don't know about you, but it takes me at least an hour or two to rack mount a new server, get it cabled, verify the redundant power is done correctly and get everything labeled properly. Then you have to get the OS loaded, app loaded etc. After all that, you need to be sure backups are setup and working properly, do some tests. After all this is HIPPA related and he needs to make sure it's working correctly, not to mention something like this will become a mission critical app in short period of time, because other people will come to rely on it . I could easily see after the release of something like this, other departments putting the use of the IM system into policy and procedures, because it's all logged. For example some manager says he will approve purchase requisitions over the IM system as it's all logged. I assume you've tested the log recovery from a backup and are confident you will be able to restore yesterday's log 7 years from now. And then document the whole thing. You do document things I hope. Even if you are the only admin, you need to document in case you are unavailable during an emergency. If you don't you aren't doing the job properly. I find a proper server takes more like 16-24 man hours.
I can see it now. People will start an achievment service that will help you accomplish you goal. They just get enough accounts and start moderating you +5 Funny to get tge comedian etc.
I tend to use the car analogy when presented with that situation. If I get pushback from management on being legal, I suggest they start using stolen vehicles for company use as that is cheaper as well. It's really no different as far as I'm concerned.
I agree with most of what you say except the part about a single train delivering a months worth of coal. It's much closer to 1 trainload/day for a good sized coal plant.
If you use offline files with DFS you solve this problem. We have all of our users access data through dfs links. This way we can change a server out to a new name or move a particular share and nothing on the client side changes.
I didn't use it for any websites. It was a network password that has been changed for quite some time now.
I used that song name as my password a while ago.
If we really want the general public to stop and pay attention to this sort of thing all we need to do is get an organized group of people to do this all the time. I figure if we went through and photographed/photocopied all the trash coming out of reporters and public officials (especially police officers) homes and posted it on the web it might generate a little press and outrage. I bet there might be some interesting findings. Imagine a posting about Reporter X (a female) being on her period the third week of every month, because we find used kotex pads in the trash. Or how about how some public official or reporter must be sex maniac, because there are 10 used condoms in the trash each week! The idea would be to conduct the inspection for a while and then post all the results at one time with an analysis of each target such as what kind of food and things they like as well as credit card balances etc. Imagine if you had a six month trash history on most big name reporters and politicians. I bet the outrage would be huge.
For everyone bitching about how this is difficult, apparently you aren't very good windows admins, because this is very easy to do in an active directory environment. I have 350 users with 200+ unique apps and all but some older developer tools run without admin. I can usually setup a group policy to fix an app that requires admin in about 15 minutes. For users that have laptops in the field that may need to install something themselves, teach them to use runas. This is similar to SU and allows the users the privilege for the one process they are starting. All the spyware and virus problems go away when you do this. I haven't seen a case of spyware where I work in years and probably wont see anything soon as users can't accidentally install software.
You can easily customize such actions in IE. Go to Tools|Internet Options|Advanced Under the Browsing section uncheck the "Show friendly HTTP error messages." Under search from address bar click the "Do Not search from the address bar" button.
Then you can have your return codes back the way you want.
No. Applications don't get access to write to the registry. The permissions are user based just like NTFS, so if you are an administrator and you run an application it can write pretty much anywhere it wants. If you are a user the application can generally write to HKEY_CURRENT_USER only which is where it should be storing user specific settings.
This is why some poorly designed apps need admin priviliges to run. The developer is writing changes to HKEY_LOCAL_MACHINE when they shouldn't be doing that.
OK I can't resist. I used to work in the auto industry and our CEO once said what the customer wants is:
German Engineering
Japanese Quality
American Service
Mexican Price
I hate to say it, but he was right and that's what companies are trying to do when they outsource jobs. Consumers are so sensitive to slight differences in price, so if one company in their sector makes a change to save a very small amount of cash while putting American workers out of work, every other company that markets the same goods or services has to do something to cut costs by the same amount. We have to realize that the American consumer is driving this phenomenon. I don't know how to fix it, but we are creating our own problem.
The root cause of people getting a ton of telemarketers calling them is the same reason they get a ton of junk mail in their mailbox. Here are a couple of easy steps to fix most junk mail and telemarketing.
Step 1. surf on over to The Direct Marketing Association and sign up for the mail preference service and the telephone preference service. I realize they don't have an online signup yet, so you'll have to print out the forms and send them dead trees, but this does help a bunch.
Step 2. You may not realize or remember, but one a year every creditor you do business with sends a notice out detailing how they share (sell) information to selected (anyone willing to pay) parties. This same notice also details how to stop them from sharing this information. Most companies will let you do this over the phone if you just call the customer service line, but some may require you to mail the form in. Make sure you tell them you don't want you information shared with anyone. Often they will try to get you to let them share your information with other companies in their organization. Do not let them do this. Be sure you go through this procedure for every account you have not just credit cards. You can't forget mortgages auto loans etc. I found this made the most differance, since most marketers want to market to people that can afford to purchase their product even if they have to use credit to do so.
Tweezer
How long until this Ipaq is slashdoted?
30 sec.
1 min.
5 min.
10 min.
1 hr.
CowboyNeal
Yes the subject is correct. I once had a seagate drive that had some data that needed to be restored and didn't have a backup. The drive was an older model somewhere around 500MB. I removed the 2 platters and placed them in an identical drive I had on the shelf. When I fired it up I was able to get all the data I needed. I don't know how long it would have worked since I got my data and threw it in the trash, but it did work. I remember having to make sure I kept the two platters lined up together. I don't know if it would still work today with the higher data densities, but I thought it was cool at the time.
It's only $140 list according to 3com's website It's also a switch not a hub which makes a difference as well. It's not rediculous at all. Suppose you already have a wire going to a desktop and you need another one. It might cost upwards of $1000 to add a second wire if it's in a difficult place to wire. I've been in that position before. I'm not saying I'd build my cable plant with these, but there are situations where they would be helpful.
The article doesn't mention if the entire 802.11b network is run over a VPN. If it's not I'm sure it wont be too long before we all find out.
First Saturday in April is the hash bash in Ann Arbor MI, so that wont work.
If you're the least bit concerned that BugTraq will not be posting MS security releases why not go and send an email to microsoft_security-subscribe-request@announce.micr osoft.com
Anyone administering NT systems should probably be subscribed to this list anyway.
Can anyone tell me why the posting script put a space between the r and o in microsoft when I previewed it even though I didn't type a space?
Actually there are free DOS utilities available that give you read access to an NTFS drive. You can purchase the read/write version for $149. It's available over at www.sysinternals.com
Have them write a file sharing application similar to napster. It seems that might get their interest.
Probably not. I'm guessing that NetPD just gave a list of the usernames to be blocked. I doubt they did anything more than that.
I say we SPAM their ass. We all load up Napster with a bunch of text files named Enter Sandman.mp3 or something like that. I doubt it would be possible for NetPD to actually download and listen to each song to verify it is indeed Metallica.