11.12.2017 22:16:00 Quelle: https://www.reddit.com/

PDQ Deploy packs v53.0.0 (2017-12-11)

Background

This is v53.0.0 (52.0.0, v51.0.0, v50.0.0, v49.0.0, v48.0.0, etc...) of our PDQ installers and includes all installers from the previous package with old versions removed.

All packages:

  1. ...install silently and don't place desktop or quicklaunch shortcuts

  2. ...disable every auto-update, nag popup and stat-collection feature I can find

  3. ...work with the free or paid version of PDQ Deploy but do not require PDQ - each package can run standalone (e.g. from a thumb drive) or push with SCCM/GPO/etc if desired. PM me if you need assistance setting something like that up


Download

Primary: Download the self-extracting archive from one of the repos:

Mirror HTTPS HTTP Location Host
Official link link US-NY /u/SGC-Hosting
#1 link link FR /u/mxmod

Secondary:

Download the torrent.

Tertiary:

Plug one of these keys into Resilio Sync (formerly called "BT Sync") to pull down that repository:

- BTRSRPF7Y3VWFRBG64VUDGP7WIIVNTR4Q (Installer Packages, ~2.91 GB) - BMHHALGV7WLNSAPIPYDP5DU3NDNSM5XNC (WSUS Offline updates, ~12.00 GB) 

Make sure the settings for your Sync folder look like this (or this if you're on v1.3.x). Specifically you need to enable DHT.

Quaternary: (source code)

The Github page contains all scripts and wrapper files used in the pack. Check it out if you want to see the code without downloading the full binary pack, or just steal them for your own use. Note that downloading from Github directly won't work - you need either this provided pack or go manually fetch all the binaries yourself in order to just plug them in and start working.


Instructions

  1. Import all .XML files from the \job files directory into PDQ deploy (it should look roughly like this after you've imported them).

  2. Copy all files from the \repository directory to wherever your repository is.

  3. All jobs reference PDQ's $(Repository) variable, so as long as you've set that in preferences you're golden.


Package list

Installers:

(Updates in bold. All installers are 64-bit unless otherwise marked)

  • 7-Zip v16.04

  • 7-Zip v16.04 (x86)

  • Adobe Acrobat Reader DC v15.023.20053

  • Adobe AIR v27.0.0.124

  • Adobe Flash Player v27.0.0.187 (Chrome)

  • Adobe Flash Player v27.0.0.187 (Firefox)

  • Adobe Flash Player v27.0.0.187 (IE / ActiveX)

  • Adobe Reader XI v11.0.23

  • Adobe Shockwave v12.3.1.201

  • Apple iTunes v12.5.1.21

  • CDBurnerXP v4.5.8.6795

  • CutePDF v3.0 (PDF printer) (x86)

  • FileZilla Client v3.29.0

  • Gimp v2.8.22 (x86)

  • Google Chrome Enterprise v63.0.3239.84

  • Google Chrome Enterprise v63.0.3239.84 (x86)

  • Google Earth v7.1.5.1557

  • Java Development Kit 6 Update 45

  • Java Development Kit 6 Update 45 (x86)

  • Java Development Kit 7 Update 80

  • Java Development Kit 7 Update 80 (x86)

  • Java Development Kit 8 Update 144

  • Java Development Kit 8 Update 144 (x86)

  • Java Development Kit 9.0.1

  • Java Runtime 6 update 115

  • Java Runtime 6 update 115 (x86)

  • Java Runtime 7 update 80

  • Java Runtime 7 update 80 (x86)

  • Java Runtime 8 update 144

  • Java Runtime 8 update 144 (x86)

  • Java Runtime 9.0.1

  • KTS KypM Telnet/SSH Server v1.19c (x86)

  • Microsoft .NET Framework v3.5.1 SP1 (x86)

  • Microsoft Silverlight v5.1.50901.0

  • Microsoft Silverlight v5.1.50901.0 (x86)

  • Mozilla Firefox v57.0.2

  • Mozilla Firefox v57.0.2 (x86)

  • Mozilla Firefox ESR v52.5.2

  • Mozilla Firefox ESR v52.5.2 (x86)

  • Mozilla Thunderbird v52.5.0 (x86) (customized; read notes)

  • Notepad++ v7.5.3 (x86)

  • Pale Moon v27.6.2 (x86)

  • Spark v2.8.3 (x86)

  • TightVNC v2.8.8

  • TightVNC v2.8.8 (x86)

  • UltraVNC v1.2.1.2 (x86)

  • VLC media player v2.2.8 (x86)

  • WinSCP v5.11.2 (x86)

Utilities:

  • Clean Up ALL Printers (purge all printers from target)

  • Clean Up Orphaned Printers (remove non-existent printers from the spooler)

  • Empty All Recycle Bins (force all recycle bins to empty on target)

  • Enable Remote Desktop

  • Install PKI Certificates

  • Reboot (force target reboot in 15 seconds)

  • Remove Adobe Flash Player (removes all versions)

  • Remove Java Runtime (removes JRE versions 3-9)

  • Temp File Cleanup

  • USB Device Cleanup. Uninstalls non-present USB hubs, USB storage devices and their storage volumes, Disks, CDROMs, Floppies, WPD devices and deletes their registry items. Devices will re-initialize at next connection


Package Notes

  1. Read the notes in PDQ for each package, they explain what it does. Basically, most packages use a .bat file to accomplish multi-step installs with the free version of PDQ. You can edit the batch files to see what they do; most just delete "All Users" desktop shortcuts and things like that. changelog-v##-updated-<date>.txt has version and release history in addition to random notes where I complain about things like Reader DC and how much of a pain it is to build packages for. But actually though and for real it is a hideous pain to build for. Please someone for the love of G-d...accost Adobe and tell them to fix their a+ garbage customization routine.

  2. Thunderbird:

    • Thunderbird is configured to use a global config file stored on a network share. This allows for settings changes en masse. By default it's set to check for config updates every 120 minutes.
    • You can change the config location, update frequency, OR disable this behavior entirely by editing thunderbird-custom-settings.js.
    • A copy of the config file is in the Thunderbird directory and is called thunderbird-global-settings.js
    • If you don't want any customizations, just edit Thunderbird's .bat file and comment out or delete all the lines mentioning the custom config files.
  3. Microsoft Offline Updates - built using the excellent WSUS Offline tool. Please donate to them if you can, their team does excellent work.


Integrity

In the folder \integrity verification the file checksums.txt is signed with my PGP key (0x07d1490f82a211a2, pubkey included). You can use this to verify package integrity.

If you find a bug or glitch, PM me or post it here. Advice and comments are welcome and appreciated.


Donations (bitcoin):

1Bfxpo1WqTGwRXZKrwYZV2zvJ4ggyj9GE1

Donations (Monero):

46ZUK4VDLLz3zapDw62UaS71ZfFBjH9uwhc8FeyocPhUHHsuxj5zfvpZpZcZFHWpxoXD99MVt6PnR9QfftXDV8s6CFAnPSo

"Do not withhold good from those to whom it is due, when it is in your power to act."

submitted by /u/vocatus
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 10:32:00 Quelle: http://blog.wiwo.de/

Die Entwicklung der Logos von Apple, Google, Microsoft, IBM & Co. – in Relation zum Umsatz

Die Evolution von 13 Unternehmens-Logos, darunter acht Ikonen der IT-Industrie wie Twitter und AirBnB – im Vergleich zum jeweiligen Konzern-Umsatz. Das Thema Unternehmens-Logos und die damit verbundenen Design-Trends nehme ich seit vielen Jahren regelmäßig hier im Blog auf, etwa Mitte des Jahres … Weiterlesen

der Autor auf            ext. Link anzeigen

15.12.2017 16:31:00 Quelle: http://go.theregister.com/

BlackBerry wont kill BB10 until 2020, pulls regular Priv updates

Thank you for your support

BlackBerry has announced "continuing support" for the legacy BB10 OS phones it once made – but won't be updating its first Android phone, the Priv, regularly any more.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 16:31:00 Quelle: http://go.theregister.com/

Erase 2017 from your brain. Face ID never happened. The Notch is an illusion

Under-glass fingerprint sensors are HERE

Apple is said to have made a virtue out of a necessity with its iPhone X – creating the notorious "Notch" to house a sophisticated facial-recognition system, Face ID.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 16:31:00 Quelle: http://go.theregister.com/

BlackBerry wont kill BB10 until 2020, pulls regular Priv updates

Thank you for your support

BlackBerry has announced "continuing support" for the legacy BB10 OS phones it once made – but won't be updating its first Android phone, the Priv, regularly any more.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 16:31:00 Quelle: http://go.theregister.com/

Brit film board proposed as overlord of online pr0nz age checks

Campaigners say body 'will be pushed to block' large number

The British Board of Film Classification will be responsible for regulating age checks for UK users of online porn websites, if the government gets its way.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 22:30:00 Quelle: https://www.reddit.com/

Dovecot/mysql disable user on bad auth

I am using dovecot with my users in a mysql database, and all is working great. However, I would like dovecot to send an update to the mysql db to disable a user (set column 'enabled' to 0 for instance) after a certain number of authentication failures. I am hoping there is a dovecot parameter for this, similar to "userdb", but I am having trouble finding it. Does anyone happen to know how to do this? Thanks!

submitted by /u/Dayde82
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

16.12.2017 04:28:00 Quelle: https://www.reddit.com/

Disallow connecting to other wireless networks while within range of my corporate network

I would like to lock down my users from being able to connect to any other networks other than my own corporate network while within range of mine. Is this possible? If so.. how can it be done?

I do not want to just GPO a network policy because I want my users to still be able to connect to hotel, home, etc. while they are away.

EDIT - I just remembered how we did this at my last company. Cisco ISE and the NAM module. If anyone has any other suggestions though, they would still be useful because I remember ISE being a massive PITA.

submitted by /u/djetaine
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

12.12.2017 22:16:00 Quelle: https://www.reddit.com/

New SysAdmin; the career seems overwhelming.

After getting an master's degree (microbiology, nothing related to IT) and having done helpdesk for two years, I was recently promoted to junior SysAdmin at work.

I thought I was ready. I really, really aced helpdesk. I felt like the star of my team and often was treated as such. Higher ups were impressed and promoted me to a junior SysAdmin position a month ago.

I've never felt so completely lost in my life. This isn't my first job; I'm 32. I've been everything from a lab assistant to a paid archaeologist (due to an anthropology minor). In every field I dabbled in, I relished in what there was to learn. I really thought I'd feel the same as a SysAdmin. Whenever I feel like I'm scratching the surface, the mind boggles in the skills required of me to even become a competent junior.

I recently had my first monthly talk with my new boss. Here's a snippet of what he wants me to become proficient in the coming six months: - Citrix - RES - SCCM - Chef - Powershell scripting - Basic Linux - Basic Bash - Networking - Azure - Exchange - SQL Server - Preferably Python

These were only a few of the things mentioned during our conversation and roughly placed in order of importance. So many of my colleagues are absolutely brilliant and some of the smartest people I've ever met. Much of this comes completely natural to them and I feel like a complete idiot. Mind you, I've worked closely with postdocs in various fields and I'm not at all used to feeling like the dumbest guy in the room. It's an alien and uncomfortable feeling. While they're all Git-scripting wizards, I'm sitting here wondering how a fax server works.

I'm left wondering how I'm even going to focus on two or three of these subjects the coming months. Coupled with the fact that the field changes to radically every three years or so, I just have to ask: how do you all deal with this? Sysadmins seem incredibly underpaid for the amount of stress and know-how their (or perhaps now I should say 'our') job requires.

I'm not sure what the purpose of my post is other than, hopefully, finding some reassurance. Alternatively, I'd be OK if I'd now be confronted with the possibility that maybe IT is not for me.

submitted by /u/Meroveus1337
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

13.12.2017 22:17:00 Quelle: https://www.reddit.com/

Sysadmins of Reddit, where do you watch for broken updates?

I'm reviewing updates on WSUS for this month's roll out, and in my properly healthy state of paranoia I am always concerned that one bad update will slip through the cracks.

I've updated a test system, checked r/sysadmin r/windows and r/windowsserver but I was wondering if there are any other places that are good sources for patch updates.

Next week I'll be updating Linux servers, so I'll run the test box and check here, r/linux r/linux_admin r/redhat r/debian and r/centos .

Even with my Reddit sources, I worry about a bad update slipping through the cracks. I'm sure I'm not the only one, so let's talk about it.

Where do you look before installing updates?

submitted by /u/thisadviceisworthles
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

16.12.2017 04:28:00 Quelle: https://www.reddit.com/

Looking for a high frame rate screen sharing solution for an Art School.

Hey guys, hope this is the right place for this...

I work for an Art School that is looking to replace its outdated, trouble prone, screen sharing system(robotel smartclass). It is a hardware system that is no longer made, and the company doesn't offer an updated solution. For all of its problems, it does one thing very well. It can broadcast an instructor machine to all the students with full frame rate and resolution. Every software solution I've tested, lan school, xest, has an issue with dropping frames and general lag. We need something that can show video and 3d animations with no frame drop and in full 1080 resolution(minimum). Our machines are Dell 7910's with 32 gb ram xeon 2620 and quadro k4000 cards. Any help on this would be much appreciated. Software or Hardware solutions are welcome.

submitted by /u/ScroatKing
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

29.11.2017 10:09:00 Quelle: https://www.reddit.com/

What firewall to get?

After a hack on a file server in our company, we decided we need a firewall or UTM. I found on eBay a Fortinet 20D for 50 quid and don't know if that is any good. We want something cheap , preferably off eBay UK. We only have 6 employees so we don't need anything that good but we want something without licencing monthly or yearly just a one off purchase. I have never dealt with one of these sorts of firewalls before so any help would be appreciated. Thanks

PS. Any bad spelling is due to me being on mobile

submitted by /u/RPI_ZM
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

23.11.2017 22:08:00 Quelle: http://go.theregister.com/

Data is the new oil: F-Secure man on cartels, disinformation and IoT

An unlikely trio? Not according to Mikko Hypponen

Questions about cyber influence continue to cloud last year's US presidential elections and recently similar allegations have been levelled against the Brexit vote.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 22:30:00 Quelle: http://go.theregister.com/

Facebook confesses: Facebook is bad for you

Grazing FB is ruining your life, admits social network after probing its army of addicts

Facebook has just publicaly slapped itself upside the head, admitting that its very existence is often detrimental to the wellbeing of its users.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

16.12.2017 04:28:00 Quelle: http://go.theregister.com/

Google ramping up AI in China, Nvidias Titan V, Intels hip-hop misstep

And more in your machine-learning news summary

Roundup  Here's your quick guide to news in the AI world beyond what we've covered this week.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 16:31:00 Quelle: https://www.reddit.com/

How to access localhost on Ubuntu Linux Sub-system for Windows?

How to access localhost on Ubuntu for Windows?

I'm on Windows 10 Pro 64-bit, version 1709, OS Build 16299.125

I've installed the Ubuntu 16.04.3 LTS Linux Sub-system locally for Web Development purposes.

I've placed an info.php file into \var\www\html but when I attempt to access it at 127.0.0.1/info.php via my Browser in Windows, I receive the error:

"This page isn’t working 127.0.0.1 is currently unable to handle this request. HTTP ERROR 500"

info.php has the following code in it:

<?php // Show all information, defaults to INFO_ALL phpinfo(); ?> 

If I access 127.0.0.1 via my browser in Windows, I receive the Apache2 Ubuntu Default Page.

And that's it. Just trying to get this working. I've installed LAMP, Composer, Platform.sh CLI and that's it on this server thus far.

Edit Found an error log in \var\www\html called "C#003A#005Cxampp-new#005Cphp#005Clogs#005Cphp_error_log". Opened it and it says:

[15-Dec-2017 10:18:41 America/New_York] PHP Warning: Unknown: failed to open stream: Permission denied in Unknown on line 0

[15-Dec-2017 10:18:41 America/New_York] PHP Fatal error: Unknown: Failed opening required '/var/www/html/info.php' (include_path='.:/usr/share/php') in Unknown on line 0

Not sure what that means. Any ideas?

Thank you.

submitted by /u/kayderptimeplz
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 10:32:00 Quelle: http://blog.wiwo.de/

Die Entwicklung der Logos von Apple, Google, Microsoft, IBM & Co. – in Relation zum Umsatz

Die Evolution von 13 Unternehmens-Logos, darunter acht Ikonen der IT-Industrie wie Twitter und AirBnB – im Vergleich zum jeweiligen Konzern-Umsatz. Das Thema Unternehmens-Logos und die damit verbundenen Design-Trends nehme ich seit vielen Jahren regelmäßig hier im Blog auf, etwa Mitte des Jahres … Weiterlesen

der Autor auf            ext. Link anzeigen

16.12.2017 04:28:00 Quelle: https://www.reddit.com/

PXE boot multiple OSs in a row.

Hello all, I am trying to figure out a way to PXE boot an image to change the BIOS and then change PXE images to install a Linux based OS. I have been trying to think of a way to do this without having to change the DNS Next Server setting or selecting a different OS from the PXE menu. In other words, I am trying to automate the setting up of bios and installation of an OS. I have both of these parts figured out separately.

Thank you and happy holidays.

submitted by /u/Maclover25
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 22:30:00 Quelle: http://go.theregister.com/

Oi, force Microsoft to cough up emails on Irish servers to the Feds, US states urge Supremes

AGs pressure America's top court to make Redmond hand over overseas messages

Microsoft should not be able to “shield evidence” held on Irish servers from US prosecutors, a group of 35 US state attorneys general has argued.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

05.12.2017 16:14:00 Quelle: https://www.reddit.com/

Cant wrap my head around image pushing using SCCM

Hey guys,

The sysadmin who worked here left, and while I had a few months to learn from him, we didn't dive into SCCM.

I'm helpdesk, and the new sysadmin is more of a NetApp and VMware guy. So he says he can't help me with the SCCM and same goes for my manager.

So now I would like to get the hang of it myself, and while I read literally dozens of articles and watched a few videos about deploying images via SCCM to our environment, I can't understand how to make use of it in my work place.

We already have good images, I just want to add another one of my own to add this subject to my knowledge. It might seem like the wrong thing to focus on as a help desk kid, but it's something that might be essential for my next workplace, or who knows where.

Anyway, so I need help figuring my step by step plan.

We have an SCCM server, which has the WDS role on it. But I think it's not in use.

To install an image on a machine, I PXE boot it and pick the image from the choices I have there (win 7, 10, etc).

In SCCM, when I go into Software Libraries > Operating System > Task Sequence > I have the ones we already have.

What do I need to do to start fresh? I have my own Windows ISO, and I would like to customize it by installing some software of my choosing, adding to a domain, giving it a domain name prior to installing it, etc.

What should I do?

Thanks

submitted by /u/bei60
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 10:32:00 Quelle: https://www.reddit.com/

MapQuest website infected as of 12/13/17

Kaspersky has blocked two exploits so far and I have instructed all users to use Google Maps instead. The logs indicate that Mapquest is redirecting users to a ".stream" domain and reports the exploit as "HEUR:Trojan.Script.Generic".

submitted by /u/JaxPlanet
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

14.12.2017 10:16:00 Quelle: https://www.reddit.com/

Sourcing high end projector replacement bulbs and filters (NEC NP-PX800X)

A little out of my wheelhouse: Sourcing an NEC NP-PX800X replacement filter and bulbs for a client. Unit had Philips bulbs in from factory and I’d like to replace with a genuine Philips lamp. I am also insisting on doing the filters too so the new bulb gets the best conditions it can.

Bulb part number: NP22LP Filter part number: NP02FT

Before I dive in head first into an investigative dissertation on high quality projector bulb replacements I figured I’d poll the mob. I noticed you can get the bare bulb too, which I am more than comfortable swapping into the OEM housing. Is this superior to a Philips bulb in a 3rd party housing?

Notes: I am open to other maintenance items I should handle while I’m doing the bulb and filters

I also fully know they won’t be cheap and I believe each PX800X projector has two bulbs.

submitted by /u/RoverRebellion
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

09.12.2017 16:11:00 Quelle: https://www.reddit.com/

PSA: Update Seagate SeaTools to avoid bricking PCs with Samsung NVMe SSDs installed in them

Hello,

Running Seagate SeaTools for Windows diagnostic software on computers which also contain Samsung NVMe SSDs results in the SSD being bricked.

There is a message thread in Lenovo's support forum discussing the issue:

https://forums.lenovo.com/t5/ThinkPad-P-and-W-Series-Mobile/Seagate-software-killed-my-Samsung-SSD/td-p/3805869/page/2

It doesn't appear to be a Lenovo issue, per se, but rather one between Seagate and Samsung.

The fix is incorporated into Seagate SeaTools for Windows v1.4.0.6, which can be downloaded from Seagate's support web site at https://www.seagate.com/support/downloads/seatools/.

Regards,

Aryeh Goretsky

submitted by /u/goretsky
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

12.12.2017 04:13:00 Quelle: https://www.reddit.com/

Filtering by subreddit for Forcepoint?

We just switched from Sophos to Forcepoint for web access control and was wondering if anyone had any experience getting it to filter only certain subreddits based on their content (e.g. filtering nsfw subs, but allowing general access to reddit). This behavior just happened on its own with Sophos, so we're struggling a bit here...

submitted by /u/esteban42
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

22.11.2017 04:02:00 Quelle: https://www.reddit.com/

Intel SA-00086 and PDQ!

BIG WALL OF TEXT AHEAD.......worth it though

Hey fellamins/ladymins,

You've probably heard of Intel SA-00086. I did too, and wanted to check for it.

I've got PDQ Deploy and Inventory here, so I put it to task. I see lots of people use it here too. So I thought, why not share the love. Attached here is some XML that you can Import into PDQ Deploy (note, I sanitzed paths to the actual executable so you'll have to fix that.). I'm using a PDQ Enterprise License, so know this might not work for everyone here, but I'm hoping it helps a fair few.

Deploy Pacakge:

<?xml version="1.0" encoding="utf-8"?> <AdminArsenal.Export Code="PDQDeploy" Name="PDQ Deploy" Version="15.2.0.0" MinimumVersion="15.0"> <Package> <CurrentLibraryPackageVersionId value="null" /> <PackageDefinition name="Definition"> <Conditions type="list"> <PackageStepCondition> <Architecture>Both</Architecture> <Version>All</Version> <TypeName>OperatingSystem</TypeName> </PackageStepCondition> <PackageStepCondition> <IsUserLoggedOn>AlwaysRun</IsUserLoggedOn> <TypeName>LoggedOnUser</TypeName> </PackageStepCondition> <PackageStepCondition> <ConditionMode>None</ConditionMode> <InventoryCollectionId value="null" /> <InventoryCollectionName></InventoryCollectionName> <TypeName>Collection</TypeName> </PackageStepCondition> </Conditions> <CopyMode>Default</CopyMode> <DelayedApprovalTimeSpan>7.00:00:00</DelayedApprovalTimeSpan> <DownloadApprovalMode>Manual</DownloadApprovalMode> <InventoryScanProfileId value="11" /> <IsDownloadApprovalModeInherited value="true" /> <ScanAfterDeployment value="true" /> <Steps type="list"> <CommandStep> <Command>del /q C:\Windows\Temp\SA*</Command> <Files></Files> <SuccessCodes>0</SuccessCodes> <RunAs value="null" /> <Conditions type="list"> <PackageStepCondition> <Architecture>Both</Architecture> <Version>All</Version> <TypeName>OperatingSystem</TypeName> </PackageStepCondition> <PackageStepCondition> <IsUserLoggedOn>AlwaysRun</IsUserLoggedOn> <TypeName>LoggedOnUser</TypeName> </PackageStepCondition> <PackageStepCondition> <ConditionMode>None</ConditionMode> <InventoryCollectionId value="null" /> <InventoryCollectionName></InventoryCollectionName> <TypeName>Collection</TypeName> </PackageStepCondition> </Conditions> <ErrorMode>StopDeploymentFail</ErrorMode> <Title>Clear previous logs</Title> <TypeName>Command</TypeName> <IsEnabled value="true" /> <IsPostStep value="false" /> <IsPreStep value="false" /> </CommandStep> <InstallStep> <CustomCommandLine></CustomCommandLine> <FileName>\\change\me\DiscoveryTool\Intel-SA-00086-console.exe</FileName> <Files></Files> <IncludeDirectory value="true" /> <LeaveInstallFile value="true" /> <MsiOperation>Install</MsiOperation> <MsiQuiet value="true" /> <MsiRestart>Never</MsiRestart> <Parameters>-n -c -f -p C:\Windows\Temp</Parameters> <SuccessCodes>0,100,1641,3010,2359302</SuccessCodes> <RunAs value="null" /> <Conditions type="list"> <PackageStepCondition> <Architecture>Both</Architecture> <Version>All</Version> <TypeName>OperatingSystem</TypeName> </PackageStepCondition> <PackageStepCondition> <IsUserLoggedOn>AlwaysRun</IsUserLoggedOn> <TypeName>LoggedOnUser</TypeName> </PackageStepCondition> <PackageStepCondition> <ConditionMode>None</ConditionMode> <InventoryCollectionId value="null" /> <InventoryCollectionName></InventoryCollectionName> <TypeName>Collection</TypeName> </PackageStepCondition> </Conditions> <ErrorMode>StopDeploymentFail</ErrorMode> <Title>Execute the SA Check</Title> <TypeName>Install</TypeName> <IsEnabled value="true" /> <IsPostStep value="false" /> <IsPreStep value="false" /> </InstallStep> <PowerShellStep> <CustomCommandLine></CustomCommandLine> <Files></Files> <Script>$xmlName = Get-ChildItem -Path C:\Windows\Temp -Recurse -Filter SA*.xml | Select-Object -ExpandProperty Name $xml = New-Object -TypeName xml $xml.Load("C:\windows\Temp\$xmlName") $risk = $xml.System.System_Status.System_Risk Write-output "$risk Flag set in HKLM:\Software\Intel." If($risk -match 'This system is vulnerable.'){ New-Item -Path HKLM:\Software\Intel -Name SA-00086 New-ItemProperty -Path HKLM:\Software\Intel\SA-00086 -Name Vulnerable -Value 1 } Else { New-Item -Path HKLM:\Software\Intel -Name SA-00086 New-ItemProperty -Path HKLM:\Software\Intel\SA-00086 -Name Vulnerable -Value 0 }</Script> <SuccessCodes>0</SuccessCodes> <RunAs value="null" /> <Conditions type="list"> <PackageStepCondition> <Architecture>Both</Architecture> <Version>All</Version> <TypeName>OperatingSystem</TypeName> </PackageStepCondition> <PackageStepCondition> <IsUserLoggedOn>AlwaysRun</IsUserLoggedOn> <TypeName>LoggedOnUser</TypeName> </PackageStepCondition> <PackageStepCondition> <ConditionMode>None</ConditionMode> <InventoryCollectionId value="null" /> <InventoryCollectionName></InventoryCollectionName> <TypeName>Collection</TypeName> </PackageStepCondition> </Conditions> <ErrorMode>StopDeploymentFail</ErrorMode> <Title>Log Vulnerability</Title> <TypeName>PowerShell</TypeName> <IsEnabled value="true" /> <IsPostStep value="false" /> <IsPreStep value="false" /> </PowerShellStep> </Steps> <Timeout value="60" /> <UseCustomTimeout value="false" /> <RunAs value="null" /> </PackageDefinition> <Description></Description> <NewLibraryPackageVersionId value="null" /> <Version></Version> <IsAutoDownload value="false" /> <FolderId value="1" /> <LibraryPackageVersionId value="null" /> <Name>Intel SA-0086 Check</Name> <Path>Packages\Intel SA-0086 Check</Path> <PackageDisplaySettings name="DisplaySettings"> <DisplayType>Normal</DisplayType> <IconKey>Icon-Package</IconKey> <SortOrder value="8" /> </PackageDisplaySettings> </Package> </AdminArsenal.Export> 

Now, onto the Inventory Side of things.

First you'll need a Registry Scanner:

<?xml version="1.0" encoding="utf-8"?> <AdminArsenal.Export Code="PDQInventory" Name="PDQ Inventory" Version="14.1.0.0" MinimumVersion="14.0"> <ScanProfile> <Scanners type="list"> <Scanner> <ExcludePattern></ExcludePattern> <Hive>HKEY_LOCAL_MACHINE</Hive> <IncludePattern>SOFTWARE\Intel\SA-00086\*</IncludePattern> <RowLimit value="2500" /> <TypeName>Registry</TypeName> <SourceScannerId value="36" /> </Scanner> </Scanners> <Collections type="list" /> <ScheduleTriggerSet name="ScheduleTriggers"> <Triggers type="list" /> </ScheduleTriggerSet> <Description></Description> <ScanProfileId value="11" /> <Name>Intel SA-00086</Name> </ScanProfile> </AdminArsenal.Export> 

And then Some collections:

<?xml version="1.0" encoding="utf-8"?> <AdminArsenal.Export Code="PDQInventory" Name="PDQ Inventory" Version="14.1.0.0" MinimumVersion="4.0"> <Collection> <ReportDefinition name="Definition"> <RootFilter name="Filter"> <Comparison>All</Comparison> <Filters type="list"> <ValueFilter> <Table>Registry</Table> <Column>PathName</Column> <Comparison>Equals</Comparison> <Value>SOFTWARE\Intel\SA-00086</Value> </ValueFilter> <ValueFilter> <Table>Registry</Table> <Column>Hive</Column> <Comparison>Equals</Comparison> <Value>HKEY_LOCAL_MACHINE</Value> </ValueFilter> </Filters> </RootFilter> <ReportDefinitionTypeName>BasicReportDefinition</ReportDefinitionTypeName> <Columns type="list"> <Column> <Column>ComputerId</Column> <Summary></Summary> <Table>Computer</Table> <Title></Title> </Column> </Columns> </ReportDefinition> <IsDrilldown value="false" /> <Created>2017-11-21T14:39:57.0000000-05:00</Created> <Description></Description> <Error></Error> <Id value="926" /> <ImportedPath>Intel SA-00086</ImportedPath> <Modified>2017-11-21T14:40:34.0000000-05:00</Modified> <Name>Intel SA-00086</Name> <ParentId value="null" /> <Path>Intel SA-00086</Path> <TypeName>DynamicCollection</TypeName> <Type>DynamicCollection</Type> <Children type="list"> <Collection> <ReportDefinition name="Definition"> <RootFilter name="Filter"> <Comparison>All</Comparison> <Filters type="list"> <ValueFilter> <Table>Registry</Table> <Column>Name</Column> <Comparison>Equals</Comparison> <Value>Vulnerable</Value> </ValueFilter> <ValueFilter> <Table>Registry</Table> <Column>Value</Column> <Comparison>Equals</Comparison> <Value>1</Value> </ValueFilter> </Filters> </RootFilter> <ReportDefinitionTypeName>BasicReportDefinition</ReportDefinitionTypeName> <Columns type="list"> <Column> <Column>ComputerId</Column> <Summary></Summary> <Table>Computer</Table> <Title></Title> </Column> </Columns> </ReportDefinition> <IsDrilldown value="true" /> <Created>2017-11-21T14:04:01.0000000-05:00</Created> <Description></Description> <Error></Error> <Id value="924" /> <ImportedPath>Intel SA-00086\Intel SA-00086 (Affected)</ImportedPath> <Modified>2017-11-21T14:41:48.0000000-05:00</Modified> <Name>Intel SA-00086 (Affected)</Name> <ParentId value="926" /> <Path>Intel SA-00086\Intel SA-00086 (Affected)</Path> <TypeName>DynamicCollection</TypeName> <Type>DynamicCollection</Type> <Children type="list" /> </Collection> <Collection> <ReportDefinition name="Definition"> <RootFilter name="Filter"> <Comparison>Any</Comparison> <Filters type="list"> <ValueFilter> <Table>Registry</Table> <Column>Value</Column> <Comparison>Equals</Comparison> <Value>0</Value> </ValueFilter> </Filters> </RootFilter> <ReportDefinitionTypeName>BasicReportDefinition</ReportDefinitionTypeName> <Columns type="list"> <Column> <Column>ComputerId</Column> <Summary></Summary> <Table>Computer</Table> <Title></Title> </Column> </Columns> </ReportDefinition> <IsDrilldown value="true" /> <Created>2017-11-21T14:04:01.0000000-05:00</Created> <Description></Description> <Error></Error> <Id value="925" /> <ImportedPath>Intel SA-00086\Intel SA-00086 (Unaffected)</ImportedPath> <Modified>2017-11-21T14:41:36.0000000-05:00</Modified> <Name>Intel SA-00086 (Unaffected)</Name> <ParentId value="926" /> <Path>Intel SA-00086\Intel SA-00086 (Unaffected)</Path> <TypeName>DynamicCollection</TypeName> <Type>DynamicCollection</Type> <Children type="list" /> </Collection> </Children> </Collection> </AdminArsenal.Export> 
submitted by /u/steviecoaster
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

08.12.2017 22:14:00 Quelle: https://www.reddit.com/

Looking for advice on an Imaging Setup

Good Morning /r/sysadmin, I apologize in advance for any ignorance or stupid questions on my part.

I've been tasked with setting up/creating/etc a new Imaging Server, as we've now reached the point in the company where just using a Thumb-drive with some configuration scripts will no longer suffice. I've never done that before, and there's no one here to ask for help.

Installing and setting up Windows Server is no issue. I'd like to use Windows Server 2016 (but may have to use 2012 R2). I'd need to image approx 30+ units at a time. There will be several images based on hardware type and where it's going. Among those Images are Windows 10 and Windows 7.

What trips me up is the following

  1. For Imaging Purposes, do I use MDT, SCCM or Symantec Ghost?
  2. I may have to use Symantec Ghost, but does it work on Windows Server 2016? (Can't seem to get an answer from them despite calls/emails)
  3. Server wise, what hardware is recommended? From what research I've done, I'd like to make use of Hyper-V as I don't want to have several physical servers setup. It seems regardless of my choice SQL server is required. (Won't need to administrate the units once they're imaged) Would also like to keep the images up to date in regards to Windows Updates as some of these units take forever to update normally.
  4. I'll have a KVM IP switch, and a good networking switch, but is there anything I'm overlooking?

I appreciate any time you could spare to help direct/educate me on this.

submitted by /u/RPRob1
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

12.12.2017 16:16:00 Quelle: https://www.reddit.com/

Trend Micro Locking up 2008 R2 Physical Servers

Has anyone experienced or are you experiencing OS lock ups, nothing written to Event Viewer, no BSOD. Just crawling to a dead freeze. I lose SNMP and depending on the server whatever it's running, backups, Exchange roles die. Has anyone experienced this and what have you found it to be?

submitted by /u/goodrowilson
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

20.11.2017 16:06:00 Quelle: http://go.theregister.com/

Chainmail tires re-invent the wheel to get future NASA rovers rolling

'Shape memory alloys' mean tires can roll over sharp objects without permanently deforming

NASA has developed chainmail tires with a memory and thinks they'll do the trick for future rovers.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 22:30:00 Quelle: https://www.reddit.com/

O Cisco tree, o Cisco tree How lovely are thy bridging

submitted by /u/K3nny94
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

13.12.2017 10:17:00 Quelle: https://www.reddit.com/

Ethernet adapter/driver problem on Optiplex 5050

So recently we just got in a new order of 3 Dell Optiplex 5050 systems.

These were ment for our IT class to set up Windows Server 2016 on.

I installed windows server on all 3, and for some reason the computer won't recognize that there is a ethernet driver/adapter

if you enter the adapter settings the folder just shows up as empty and if you enter device manager it says there is something wrong with the drivers.

the computer does recognize Ethernet when in bios/uefi / startup (anytime before you enter the OS)

i can for example plug in an ethernet cable connected to our admin network and start PXE booting with image, but as soon as it is done loading the files and the Microsoft deployment toolkit, it ususally just fails telling me that the files are inaccessible or it could not find them.

Sometimes it gets halfway trough the pxe process before failing

i have tried:

making a bootable usb with windows server 2016 using rufus (for legacy) and booting and installing it using legacy

Remaking the bootable usb with uefi (both options have been tried) and installing it with uefi

deleting network drivers and searching for new hardware/rebooting

finding all drivers associated with the servicetag and installing them including bios and chipset

installing other OSes

messing with the bios NIC settings, turning on ethernet .. etc...

anyone know what may cause this?

images: https://imgur.com/a/ixhUO

submitted by /u/KenTheSystrainee
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

14.12.2017 16:18:00 Quelle: http://go.theregister.com/

Voda customers given green light by Ofcom to ditch contracts

Roaming hike of £5 a day means more to exit required

Thousands of Vodafone customers have been given the green light by Ofcom to ditch their contracts, after the mobile phone provider hiked international roaming fees to £5 per day.…

der Autor auf            ext. Link anzeigen | ext. Link in deutsch (Testphase)

15.12.2017 22:30:00 Quelle: https://www.reddit.com/

Airwatch Set Up - What a nightmare

I am hoping one of you may be able to help me out, as the airwatch team, could be one of the slowest moving corp setups I have ever had the displeasure of speaking with.

I am trying to set up an airwatch on premises server.

I installed the databases and I am trying to set up the console server. On the identity manager step I am getting an error about my SAAS configuration script.

There wasn't any script that I could find to do with this?

Have any of you hit this block, if so, how did you get past it?

Also if any of the airwatch/dell/vmware upper management is reading this, I would love to send you a PM about what a crap end user experience I've had so far considering we shelled out over 43k for a product we can't install on our own due to the convoluted structure of the product.

Thanks all,

After though... before you suggest calling Dell/Vmware/Airwatch, I did they can't help me for at least 2 weeks and I need a server set up by the 21st, which they knew in the prospect calls.

submitted by /u/ArcaneGlyph
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

02.12.2017 16:11:00 Quelle: https://www.reddit.com/

Why does my firewall tell me not valid IP address?

Hello,

I have a static IP address of xxx.xxx.xxx.xxx/28 and when i put it in external port stating static ip address, it says that its not a valid ip address. This is off the network. The watchguard is going to act as the gateway so i cannot get in to go to whatismyip.com. how would i find what the public gateway of this is?

thank you,

submitted by /u/goosse
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

13.12.2017 16:17:00 Quelle: https://www.reddit.com/

Portscan: XMAS-Scan is not answering

Hey,

I am trying to setup a small portscan tool using python and scapy. My problem is that my XMAS scan isn't working but I don't know why. I am sending TCP packets with flags = F,P,U but I don't get any answers from the server. I know that I shouldn't recieve an answer in case the port is open but I do not recieve any responses at all even I know that some of the ports should be closed (tested them before with a SYN scanning which is working fine). So why isn't there a answer from the server when the port is closed?

Here is my recording with wireshark

(The IP used is from Amazon)

submitted by /u/Tayfe
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)

10.12.2017 10:12:00 Quelle: https://www.reddit.com/

Why is hosted email so expensive? Looking for an alternative to cPanel email hosting.

Moving a couple wordpress sites off of siteground to WPEngine and I need an email host to replace the mail functionality we had through cPanel. There's about a dozen or so email addresses on a couple domains I need to host.

Everything I've looked into (rackspace, zoho, gsuite) costs ~$4/user/mo. I know that's nothing for an actual business, but this environment is just one person using a handful of addresses such as admin@domain, payments@domain, support@domain, etc. The costs quickly balloon with how many addresses are involved.

What I don't really get is that I can get a cheap cpanel webhost plan for $4/mo and get a ton of addresses that (seem to) do almost the same things as these hosted emails (IMAP access, webmail, filtering) for a fraction of the cost. Is that really my best option here?

submitted by /u/Conpen
[link] [comments]

    ext. Link anzeigen | ext. Link in deutsch (Testphase)