A lot of people seem to have a misconception of exactly what PCI is, what it covers, and what it does.
PCI affects all areas of the transaction stream.
When looking at ATM's for instance the units must be tested and Certified (InfoGuard, TNO and T Systems). If you attempt to open the device it dumps the program and tampers the unit so it can't be reprogrammed. this prevents a situation such as the one at stop and shop where a malicious party opened the POS device and apparently hooked up a device to sniff the card reader (article is a little vague on exactly what was done to the POS devices) There should be no place in between the PIN PAD and the CPU of the device where data can be read in the clear without causing a temper condition to the unit.
Some of these requirements are relatively new and some older terminals that are currently in place may not meet these requirements. Any existing units that are relocated or changed must meet the new requirements at that time. One exception to this is Data encryption. All terminals must now transmit data using 3DES encryption, any terminals that are not utilizing 3DES encryption and are running the older Single DES were to be taken off-line at the end of last year.
Also all software run on the device must be certified through testing and any software changes must be re-certified as well. Software is sent to the device in an encrypted format, routinely verified on the device for changes, and units must identify themselves with a unique set of keys in order to access updated software. On top of that each Switch (STAR, CORE DATA, ECS, LYNK, etc..) that the terminal may dial into has to certify the equipment and software to work with their systems before you can use that terminal to process transaction through that switch.
Now go to the company/merchant/etc.. that is processing transactions whether they be web based, Point of sale, or ATM. any company that has Card data on file is subject to PCI requirements as well. This can be everything from segmenting card holder data on the network, encryption the database containing card holder data, additional logging requirements that show who accessed what data, when and from where. Physical security, the PCI requirements are quite extensive. https://www.pcisecuritystandards.org/tech/download _the_pci_dss.htm
If a card number is lost it costs VISA,or Mastercard about $60.00 to re-issue a new card. now if several thousand cards get lost those numbers can get large rather quickly. If you are PCI compliant as a merchant or processor, and have adhered to all 240+ requirements of the PCI certification that apply to you, and you loose card holder data, you will probably dodge the huge fines (think tens of thousands or millions of dollars here depending on the size of he breach) levied by VISA in case of a breach which is on top of the fees to re-issue the cards. if you are NOT compliant all those fines and fees will be passed on to you.
PCI is not an instrument put in place to address the use of a stolen card. it's to prevent the loss of large numbers of card holder data at one time.
I think it's great the industry is imposing the regulations on itself, some of which are extremely stringent. And it beats the heck out of how the government could butcher doing the same process by trying to regulate it.
For the Enterprise market I cannot deploy ANY machine on the network that is not supported by our Centralized Anti-Virus system.. with no way to monitor the Anti-Virus on the Client workstation, ensure the updates are being pushed out, plus make sure the user is locked out so they can't change any settings or disable the AV entirely. These are all features in the Corporate AV solutions..
Support by your AV vendor is critical before Vista can be deployed. it's not just about the new OS.. I certainly don't want to replace my entire AV infrastructure (central Server(s) and clients) because of a few new PC's running Vista.
Ahh but it IS illegal to fire a weapon from the edge of the roadway. So whether the deer was real or not is a mute point if they want to charge you.
Excerpt from Ohio's hunting laws.. I'm sure most other states are similar.
All hunting from motor vehicles, except boats and machinery being used in farm operations is prohibited. Hunters who are physically handicapped to the extent that they cannot walk, may hunt from a stationary vehicle in a field except on a public hunting area. Hunting all game and furbearers except mink, muskrat, and beaver is lawful from a boat or powercraft. All hunting from aircraft is prohibited.
It is unlawful to shoot from, on, across, or along a public road or highway.
This is a large list of the different blacklists available with a short blurb about how they operate, if they are free or fee based, and a link to each site.
http://shopping.declude.com/Articles.asp?ID=97
182 working spam databases listed.
254 total spam databases listed.
About 681 represented, including country databases.
List of All Known DNS-based Spam Databases. The most common way of detecting spam is by using spam databases (blacklists, sometimes incorrectly referred to as RBLs, since RBL is trademarked by MAPS) that list the addresses of mail servers known (or believed) to send spam.
I fixed a Server motherboard no more than 6 months ago using **gasp** a soldering iron !!
Yes it sufferd from the deadly failed Electrolytic Capacitor plague. A replacment motherboard was no-where to be found in a timely manner so I replaced the Capacitors and got the server running again. Mind you it wasn't intended as a permanent fix, but the repair DID include the use of a soldering iron which you claim is impossible.. And it ran long enough to get replacement hardware in. as a matter of fact I think that old server is still running some place around here, no longer in any sort of critical role mind you.
Don't be so quick to assume the impossible. or maybe you just have really bad solder skills;)
Since I work for an ATM manufacturer (and own and operate several machines of my own.. ) I'll comment on this one.
Yes the Distributor, Operators and Merchants responsible for those machines are the ones to blame. my understanding is that the service manuals posted on the Internet were posted by Distributors and NOT the manufacturers.. Anyone that doesn't change the Vault combination or maintenance passwords is a fool imho. We all know that "A fool and his money are soon parted" how very true in this instance..
Our ATM's have several levels of passwords.
- CASH LOADER a password for the person that loads cash into the machine. this level will not allow you do do anything other than change the amount of cash in the vault.. you could zero it or set it to 100,000.00 but it's not going to help you at all.. you can print a journal or event log report.. nope that won't help you either..
- MASTER allows the owner to load cash, pull reports, print journals, test the equipment etc.. a bit more can be done in here, but still no major programming functions. you must first enter the management mode before you can access the programming level.
- PROGRAMMING PASSWORD 1 / PROGRAMMING PASSWORD 2 - yes our machines require you to enter TWO passwords in order to access the programming are where you could change bill size and other important information. Not only are two passwords required to access this section, but the first time you enter programming mode you are immediately prompted to change these passwords from default.
It is possible that a distributor could leave everything at default and when prompted to change the passwords they could program them to the default settings, but that is hardly the fault of the manufacturer.
Googling for a manual and default password hardly qualifies as "hacking" in my book, as some articles have stated. ALL ATM's have default passwords, Diebold, Fujitsu, etc.. etc.. equally easy to find.
There will be additional follow ups on this on some of the industry sites such as http://www.atmmarketplace.com/ This site is dedicated to all news-worthy items related to the ATM industry.
Since I am NOT an official spokesman for our company I'll refrain from posting the company name or URL.
I was faced with a similar tast about a year and a half ago. I called several local security vendors and eventually choose one that provided a DMP Panel.
Now a new facility you want Access control, but A fire alarm system is also required, and hey what's a building without a security system ? this device was a combination of all three in one.
The panel is located in the server room, has battery backup and is attached to a generator circuit.
Alarm access can be through a keypad or tied to your proximity token. Door access was setup with prox card readers
Central station hookup is via the Internet with a phone line backup, other options are available as well. Let me tell you with that Internet hookup for monitoring it's amazing how fast the central station gets the data..
I also purchased the management software so I can manage the users myself, set change access times, enroll new prox cards, de-activate users that left, can pull system and access logs at any time.
It didn't make sense to me to install 3 seperate systems and have to manage them when I could o it all in one place..
Actually paying the parking rates in most garages downtown is thievery.. have you ever sat down and added up the number of parking spaces * the cost of a monthly parking pass ?
I'm just glad I work in the suburbs now and don't have to submit to the parking overlords, giving away yet another chunk of my hard earned paycheck.
Of course this is another example of why I won't enter into any Contractual software agreements of this type.. I'd rather buy it outright and own it.. Forget the EA that you have to renew or you are not in licensed compliance.. Imagine if some giant software company diud this to youre business ? How long could your company survive without access to it's OWN data ? yikes..
There's some nice videos online of a couple guys starting a vehigle that uses RFID security system.. I think they were made over a YEAR ago..
SO apparently this Research that has been documented and filmed is meaningless to the insurance company ehh ? It looks like this research was done by some Johns Hopkins University students in cooperation with RSA in January of 2005.. I'd say the vehicle owner should present some more evidence to the inurance company and get his claims check..
Theres a "file and settings transfer Wizard " in Windows XP that will back up your settings for use on a different machine..
Or in the case of the network I am working on.. converting the users from local logins and pass thru auth.. ** sigh** to domain logins. but of course theres no easy way I have found to move the users local profile to their domain profile so I am using this 'tool'.
Downside of the tool is it does not maintain icon positions on the desktop.. (users are such a bunch of whiners.. just move em back !!) It also fails to transfer the password for their email account that is setup in Outlook or Outlook Express..
Other than that it seems to work pretty good.
Sure wish you could just just check a box and say convert local profile to domain profile for this user.. at least for step one of htis process.
Just because he has a password on the system doesn't mean he has unfettered access to ALL the data on the system. there are such things as user and group rights that get applied to objects. I can give you a login then restrict you to the point that once you are logged in you can't do anything else..
You know how those executive types are, you give em a login with a modicum of power so they can feel like they have access and are important, but you don't allow them enough access to actually hurt themselves or the system in the process.
Aww comeon.. MS has never had to change the text document format. it's always been the same.. 100% compatible across every version of MS works and MS office..
[/sarcasm]
Another cool piece of this is that it will also work in older versions of Office. This is because the tools leverage the Open XML support, and we're providing free updates to previous versions of Office that allow them to read and write Open XML. It's another great benefit of leveraging the Open XML formats for the tool.
Looks like Athens should be working on increasing their bat population. a single little brown bat such as we have here in the US can catch about 1200 small insects (such as mosquito's) in a single hour. I have built several bat houses to place around my yard to try and increase their population in my local vicinity. and decrease the biting insect population . It will make the back yard a much more enjoyable place and I won't have to spend money on chemicals, propane or electricity to make it happen.
I am convinced that although the electric bug zappers take out a lot of insects, and can be enjoyable to watch, they also seem to attract all the bugs from your neighbors yards into yours..
Most bats are valuable allies, well worth protecting. Worldwide, they are primary predators of vast numbers of insect pests that cost farmers and foresters billions of dollars annually and spread human disease. In the United States, little brown bats often eat mosquitos and can catch up to 1,200 tiny insects in an hour. An average-sized colony of big brown bats can eat enough cucumber beetles to protect farmers from tens of millions of the beetle's rootworm larva each summer. Large colonies of Mexican free-tailed bats eat hundreds of tons of moth pests weekly. Bats play key roles in keeping a wide variety of insect populations in balance. Yet, they rank as North America's most rapidly declining and endangered land mammals. The largest known cause of decline is exaggerated human fear and persecution.
I'm sure if you ask the bad guy he'll give you a minute to punch in your code so you can protect yourself..
Gizmos aren't the answer, proper education and securing your firearms are. an no I wouldn't rush out to pay a premium for that functionality. When not in use I properly secure my Firearms in a safe, use a trigger lock, locked case or whatever measure is appropriate for the situation.
I'm an avid fan of shooting sports: Skeet, Trap, CMP (Civilian Marksmanship Program), Action Pistol, Black Powder, etc.. etc.. Many of us reload our own ammunition to help keep costs down, since we go through so much ammunition in the course of an event. This silly 'invention' would make the ammo cost so much it would be difficult to afford. It would also prevent re-loaders from being able to load their own ammunition.
Oh gee I brought the wrong ammo for this firearm looks like I am stuck, and won't be able to participate today..
A technological crutch is no replacement for education, and owner responsibility
Because GOOD Windows admins PATCH their Windows boxes every month, and therefore would not have an continuous uptime of more than about 30 days at a stretch.. meanwhile most Linux patches can be done with minimal disruption and usually without a reboot.
Nope I'm not buying this report.. and I run both Win and Linux servers.
So the bill would block access to these sites from schools and libraries to protect the kids from predators.. I never realized all the predators hung out in schools and libraries..
I don't think the blocking is going to have the effect the lawmakers think it will.
Do they honestly think ALL those kids post their sites from school and the library ? trouble is half the kids have their own PC at home and it's in their bedroom instead of a common area of the house where it should be..
So very true, even in a decent forum with helpful people it's hardly worth your time to have to pry the details out of the person you are trying to assist.
User: Linux can't see my hard drive to install Tell me how to fix.
Linuxhelp : We need smoe more information to assist you, cold you provide some details ? Distro, Type of HD, What it's connected to..
user: distro X y and Z none of them work, this linux stuff is crap, if The next thing I try doesn't work I'm going back to windows..
Linuxhelp: You still haven't provided information on the HD you are trying to install to. or how it's connected.
user: ist's a RAID 1 Drive
Linuxhelp: and is it connected to the motherboard or a card that's plugged into your system
user: promiseTX
and this continues on, and on, and on..
The point of the paid support is a valid one, at what point do you tell the guy to go back to windows becuase you are tired of literally prying the deatils of his problem out of him so you can try to assist him.. way too much work, move on to the next guy that's willing to help himself and provide detailed info. this one can RTFM.
Thank goodness OSS doesn't emulate Exchange.. My Linux mail server has up-times exceeding a year (would be longer but our company moved) while I know several individuals that are running Exchange and well.. they WISH they had the stability and uptime my system has.. They told me as much as they were busy restoring the system, or when they got back on-line after the Exchange server went down for the 10th time in two months.. Glad they are a MS Enterprise customer with support.. heh Two other admins I know, manage nothing but MS Exchange Full-Time and they both work at the same company.
I'm certainly NOT jealous of Exchange.. Plenty happy to use a different product to handle groupware functionality and email.
Yes I run mostly Windows Servers, but not for a function as critical as email.. I simply don't have that much time to spend coddling a mail server.
Slashdot Mirror
A lot of people seem to have a misconception of exactly what PCI is, what it covers, and what it does.
d _the_pci_dss.htm
PCI affects all areas of the transaction stream.
When looking at ATM's for instance the units must be tested and Certified (InfoGuard, TNO and T Systems). If you attempt to open the device it dumps the program and tampers the unit so it can't be reprogrammed. this prevents a situation such as the one at stop and shop where a malicious party opened the POS device and apparently hooked up a device to sniff the card reader (article is a little vague on exactly what was done to the POS devices) There should be no place in between the PIN PAD and the CPU of the device where data can be read in the clear without causing a temper condition to the unit.
Some of these requirements are relatively new and some older terminals that are currently in place may not meet these requirements. Any existing units that are relocated or changed must meet the new requirements at that time. One exception to this is Data encryption. All terminals must now transmit data using 3DES encryption, any terminals that are not utilizing 3DES encryption and are running the older Single DES were to be taken off-line at the end of last year.
Also all software run on the device must be certified through testing and any software changes must be re-certified as well. Software is sent to the device in an encrypted format, routinely verified on the device for changes, and units must identify themselves with a unique set of keys in order to access updated software. On top of that each Switch (STAR, CORE DATA, ECS, LYNK, etc..) that the terminal may dial into has to certify the equipment and software to work with their systems before you can use that terminal to process transaction through that switch.
Now go to the company/merchant/etc.. that is processing transactions whether they be web based, Point of sale, or ATM. any company that has Card data on file is subject to PCI requirements as well. This can be everything from segmenting card holder data on the network, encryption the database containing card holder data, additional logging requirements that show who accessed what data, when and from where. Physical security, the PCI requirements are quite extensive. https://www.pcisecuritystandards.org/tech/downloa
If a card number is lost it costs VISA,or Mastercard about $60.00 to re-issue a new card. now if several thousand cards get lost those numbers can get large rather quickly. If you are PCI compliant as a merchant or processor, and have adhered to all 240+ requirements of the PCI certification that apply to you, and you loose card holder data, you will probably dodge the huge fines (think tens of thousands or millions of dollars here depending on the size of he breach) levied by VISA in case of a breach which is on top of the fees to re-issue the cards. if you are NOT compliant all those fines and fees will be passed on to you.
PCI is not an instrument put in place to address the use of a stolen card. it's to prevent the loss of large numbers of card holder data at one time.
I think it's great the industry is imposing the regulations on itself, some of which are extremely stringent. And it beats the heck out of how the government could butcher doing the same process by trying to regulate it.
For the Enterprise market I cannot deploy ANY machine on the network that is not supported by our Centralized Anti-Virus system.. with no way to monitor the Anti-Virus on the Client workstation, ensure the updates are being pushed out, plus make sure the user is locked out so they can't change any settings or disable the AV entirely. These are all features in the Corporate AV solutions..
Support by your AV vendor is critical before Vista can be deployed. it's not just about the new OS..
I certainly don't want to replace my entire AV infrastructure (central Server(s) and clients) because of a few new PC's running Vista.
It is unlawful to shoot from, on, across, or along a public road or highway.
Here is a tool to retrieve IP ranges by country..
. php
http://www.proxyserverprivacy.com/ipaddress_range
I fixed a Server motherboard no more than 6 months ago using **gasp** a soldering iron !!
;)
Yes it sufferd from the deadly failed Electrolytic Capacitor plague. A replacment motherboard was no-where to be found in a timely manner so I replaced the Capacitors and got the server running again. Mind you it wasn't intended as a permanent fix, but the repair DID include the use of a soldering iron which you claim is impossible.. And it ran long enough to get replacement hardware in. as a matter of fact I think that old server is still running some place around here, no longer in any sort of critical role mind you.
Don't be so quick to assume the impossible.
or maybe you just have really bad solder skills
Since I work for an ATM manufacturer (and own and operate several machines of my own.. ) I'll comment on this one.
Yes the Distributor, Operators and Merchants responsible for those machines are the ones to blame. my understanding is that the service manuals posted on the Internet were posted by Distributors and NOT the manufacturers.. Anyone that doesn't change the Vault combination or maintenance passwords is a fool imho. We all know that "A fool and his money are soon parted" how very true in this instance..
Our ATM's have several levels of passwords.
- CASH LOADER a password for the person that loads cash into the machine. this level will not allow you do do anything other than change the amount of cash in the vault.. you could zero it or set it to 100,000.00 but it's not going to help you at all.. you can print a journal or event log report.. nope that won't help you either..
- MASTER allows the owner to load cash, pull reports, print journals, test the equipment etc.. a bit more can be done in here, but still no major programming functions. you must first enter the management mode before you can access the programming level.
- PROGRAMMING PASSWORD 1 / PROGRAMMING PASSWORD 2 - yes our machines require you to enter TWO passwords in order to access the programming are where you could change bill size and other important information. Not only are two passwords required to access this section, but the first time you enter programming mode you are immediately prompted to change these passwords from default.
It is possible that a distributor could leave everything at default and when prompted to change the passwords they could program them to the default settings, but that is hardly the fault of the manufacturer.
Googling for a manual and default password hardly qualifies as "hacking" in my book, as some articles have stated. ALL ATM's have default passwords, Diebold, Fujitsu, etc.. etc.. equally easy to find.
There will be additional follow ups on this on some of the industry sites such as http://www.atmmarketplace.com/ This site is dedicated to all news-worthy items related to the ATM industry.
Since I am NOT an official spokesman for our company I'll refrain from posting the company name or URL.
I was faced with a similar tast about a year and a half ago. I called several local security vendors and eventually choose one that provided a DMP Panel.
0 010:10053&IID=XR2500F-R
http://buy.dmp.com/dmp/Shop?DSP=30100&PCR=1:100:1
Now a new facility you want Access control, but A fire alarm system is also required, and hey what's a building without a security system ? this device was a combination of all three in one.
The panel is located in the server room, has battery backup and is attached to a generator circuit.
Alarm access can be through a keypad or tied to your proximity token.
Door access was setup with prox card readers
Central station hookup is via the Internet with a phone line backup, other options are available as well. Let me tell you with that Internet hookup for monitoring it's amazing how fast the central station gets the data..
I also purchased the management software so I can manage the users myself, set change access times, enroll new prox cards, de-activate users that left, can pull system and access logs at any time.
It didn't make sense to me to install 3 seperate systems and have to manage them when I could o it all in one place..
ymmv
Best of luck
Actually paying the parking rates in most garages downtown is thievery.. have you ever sat down and added up the number of parking spaces * the cost of a monthly parking pass ?
I'm just glad I work in the suburbs now and don't have to submit to the parking overlords, giving away yet another chunk of my hard earned paycheck.
Of course this is another example of why I won't enter into any Contractual software agreements of this type.. I'd rather buy it outright and own it.. Forget the EA that you have to renew or you are not in licensed compliance.. Imagine if some giant software company diud this to youre business ? How long could your company survive without access to it's OWN data ? yikes..
There's some nice videos online of a couple guys starting a vehigle that uses RFID security system.. I think they were made over a YEAR ago..
SO apparently this Research that has been documented and filmed is meaningless to the insurance company ehh ? It looks like this research was done by some Johns Hopkins University students in cooperation with RSA in January of 2005.. I'd say the vehicle owner should present some more evidence to the inurance company and get his claims check..
http://rfidanalysis.org/
This site is worth taking a look at..
Theres a "file and settings transfer Wizard " in Windows XP that will back up your settings for use on a different machine..
Or in the case of the network I am working on.. converting the users from local logins and pass thru auth.. ** sigh**
to domain logins. but of course theres no easy way I have found to move the users local profile to their domain profile so I am using this 'tool'.
Downside of the tool is it does not maintain icon positions on the desktop.. (users are such a bunch of whiners.. just move em back !!)
It also fails to transfer the password for their email account that is setup in Outlook or Outlook Express..
Other than that it seems to work pretty good.
Sure wish you could just just check a box and say convert local profile to domain profile for this user.. at least for step one of htis process.
Just because he has a password on the system doesn't mean he has unfettered access to ALL the data on the system. there are such things as user and group rights that get applied to objects. I can give you a login then restrict you to the point that once you are logged in you can't do anything else..
You know how those executive types are, you give em a login with a modicum of power so they can feel like they have access and are important, but you don't allow them enough access to actually hurt themselves or the system in the process.
Aww comeon.. MS has never had to change the text document format. it's always been the same.. 100% compatible across every version of MS works and MS office.. [/sarcasm]
I am convinced that although the electric bug zappers take out a lot of insects, and can be enjoyable to watch, they also seem to attract all the bugs from your neighbors yards into yours..
For more info on Bat conservation and plans to build your own bat house check out Bat Conservation International
From the BatCon FAQ
The Warships Phone home using WGA.
WGA reports the OS isn't valid.
The ship sits dead in the harbour in a time of crisis...
On the Brighter side if the UK ever decides to attack the US we can simply have MicroSoft disable their Navy..
"Where do you want to go today ?"
I highly doubt the Directors or Officers of Take Two said "Gee lets insert some Sex Scenes in the game !!"
Then again with how hard the programmers are usually pushed for deadlines, when would they have time on their own to insert a "side quest" ?
I'm sure if you ask the bad guy he'll give you a minute to punch in your code so you can protect yourself..
Gizmos aren't the answer, proper education and securing your firearms are. an no I wouldn't rush out to pay a premium for that functionality. When not in use I properly secure my Firearms in a safe, use a trigger lock, locked case or whatever measure is appropriate for the situation.
I'm an avid fan of shooting sports: Skeet, Trap, CMP (Civilian Marksmanship Program), Action Pistol, Black Powder, etc.. etc.. Many of us reload our own ammunition to help keep costs down, since we go through so much ammunition in the course of an event. This silly 'invention' would make the ammo cost so much it would be difficult to afford. It would also prevent re-loaders from being able to load their own ammunition.
Oh gee I brought the wrong ammo for this firearm looks like I am stuck, and won't be able to participate today..
A technological crutch is no replacement for education, and owner responsibility
Because GOOD Windows admins PATCH their Windows boxes every month, and therefore would not have an continuous uptime of more than about 30 days at a stretch.. meanwhile most Linux patches can be done with minimal disruption and usually without a reboot.
Nope I'm not buying this report.. and I run both Win and Linux servers.
So true, that will most likely be the outcome.
The question is will both companies be bright enough to settle out of court before spending tons of money on legal fees and lawyers..
So the bill would block access to these sites from schools and libraries to protect the kids from predators..
I never realized all the predators hung out in schools and libraries..
I don't think the blocking is going to have the effect the lawmakers think it will.
Do they honestly think ALL those kids post their sites from school and the library ? trouble is half the kids have their own PC at home and it's in their bedroom instead of a common area of the house where it should be..
So very true, even in a decent forum with helpful people it's hardly worth your time to have to pry the details out of the person you are trying to assist.
User: Linux can't see my hard drive to install Tell me how to fix.
Linuxhelp : We need smoe more information to assist you, cold you provide some details ? Distro, Type of HD, What it's connected to..
user: distro X y and Z none of them work, this linux stuff is crap, if The next thing I try doesn't work I'm going back to windows..
Linuxhelp: You still haven't provided information on the HD you are trying to install to. or how it's connected.
user: ist's a RAID 1 Drive
Linuxhelp: and is it connected to the motherboard or a card that's plugged into your system
user: promiseTX
and this continues on, and on, and on..
The point of the paid support is a valid one, at what point do you tell the guy to go back to windows becuase you are tired of literally prying the deatils of his problem out of him so you can try to assist him.. way too much work, move on to the next guy that's willing to help himself and provide detailed info. this one can RTFM.
I already pay for cable now I'm expected to pay again ? As far as I'm concerned I'm already paying far to much for the content provided..
Thank goodness OSS doesn't emulate Exchange.. My Linux mail server has up-times exceeding a year (would be longer but our company moved) while I know several individuals that are running Exchange and well.. they WISH they had the stability and uptime my system has.. They told me as much as they were busy restoring the system, or when they got back on-line after the Exchange server went down for the 10th time in two months.. Glad they are a MS Enterprise customer with support.. heh Two other admins I know, manage nothing but MS Exchange Full-Time and they both work at the same company.
I'm certainly NOT jealous of Exchange.. Plenty happy to use a different product to handle groupware functionality and email.
Yes I run mostly Windows Servers, but not for a function as critical as email.. I simply don't have that much time to spend coddling a mail server.