Search Amazon.com:
Register a SA Forums Account here!
JOINING THE SA FORUMS WILL REMOVE THIS BIG AD, THE ANNOYING UNDERLINED ADS, AND STUPID INTERSTITIAL ADS!!!

You can: log in, read the tech support FAQ, or request your lost password. This dumb message (and those ads) will appear on every screen until you register! Get rid of this crap by registering your own SA Forums Account and joining roughly 150,000 Goons, for the one-time price of $9.95! We charge money because it costs us $3,400 per month for bandwidth bills alone, and since we don't believe in shoving popup ads to our registered users, we try to make the money back through forum registrations.
«1342 »
  • Post
  • Reply
Biowarfare
Nov 8, 2010

ASK ME ABOUT BEING NEXON AMERICA'S ONLY SYSADMIN


Serfer posted:

We use this. It hasn't really improved in three years, but it doesn't need to. Spark client is kinda hokey, but people like it. I use Pidgin to connect to it too, since it's a standard XMPP server. You could use Digsby or something else too.

https://secure.wikimedia.org/wikipe..._other_concerns probably wouldn't fly in a work environment

Adbot
ADBOT LOVES YOU

Dragyn
Jan 23, 2007

Please Sam, don't use the word 'acumen' again.


Serfer posted:

We use this. It hasn't really improved in three years, but it doesn't need to. Spark client is kinda hokey, but people like it. I use Pidgin to connect to it too, since it's a standard XMPP server. You could use Digsby or something else too.

A quick not on Pidgin. I discovered recently that it stores passwords in plain text in an XML document under your user profile, so security beware.

Serfer
Mar 10, 2003

...I like the way they think

Dragyn posted:

A quick not on Pidgin. I discovered recently that it stores passwords in plain text in an XML document under your user profile, so security beware.
Yeah, it's always done that. They had a note somewhere on their site that you shouldn't be using your passwords for other things or something. It's stupid, but it doesn't really matter to me.

Edit: here it is, http://developer.pidgin.im/wiki/PlainTextPasswords

Biowarfare posted:

https://secure.wikimedia.org/wikipe..._other_concerns probably wouldn't fly in a work environment
True, I've avoided it ever since they added some spyware to it a long time ago. I don't force it on anyone though, that's for sure.

Opinion Haver
Apr 9, 2007



Dragyn posted:

A quick not on Pidgin. I discovered recently that it stores passwords in plain text in an XML document under your user profile, so security beware.

How else can you store passwords? If it's encrypted, the encryption method has to be publicly available because it's open-source, including the keys.

OriginalPseudonym
Nov 9, 2009

...and for the longest time I never understood why these people were gone the next day.


yaoi prophet posted:

How else can you store passwords? If it's encrypted, the encryption method has to be publicly available because it's open-source, including the keys.

To be fair, whatever it stores it as has to be easily-retrievable if it's logging into services for you, but I would feel a little better if it at least had the option of encrypting them with a private pgp key that you had to enter the password for each time you started it up.

Oddhair
Mar 21, 2004



Ridge_Runner_5 posted:

Our company moved to Lync 2 weeks ago from Office Communicator 2005.

The day it went live, the whole system went down and hasn't been back up. Everybody still using OC05 for now.

It's an estimated 17 days of IT time to deploy Lync with voice, video, etc. It's a rather difficult undertaking, and when I tried with OCS 2007 I didn't do so well. Now we have an appliance (which we sell,) all roles virtualized on a single-socket SuperMicro with 24GB, and it does everything pretty well, we even got certificates so we can federate with vendors and clients. We can now have some users work remotely more often, though most of use don't get to. It's definitely a lot more locked down, some links go through and some don't. For me the best part is other OCS users and I can now share desktops without WebEx or some other paid service, it's built in.

Salt Fish
Sep 11, 2003

fear itself


OriginalPseudonym posted:

To be fair, whatever it stores it as has to be easily-retrievable if it's logging into services for you, but I would feel a little better if it at least had the option of encrypting them with a private pgp key that you had to enter the password for each time you started it up.

Isn't that technically less secure and more work compared to setting the program to not remember your login credentials?

rolleyes
Nov 16, 2006

Sometimes you have to roll the hard... two?

Oddhair posted:

It's an estimated 17 days of IT time to deploy Lync with voice, video, etc. It's a rather difficult undertaking, and when I tried with OCS 2007 I didn't do so well. Now we have an appliance (which we sell,) all roles virtualized on a single-socket SuperMicro with 24GB, and it does everything pretty well, we even got certificates so we can federate with vendors and clients. We can now have some users work remotely more often, though most of use don't get to. It's definitely a lot more locked down, some links go through and some don't. For me the best part is other OCS users and I can now share desktops without WebEx or some other paid service, it's built in.

I'm not sure on the specifics as I have nothing to do with the data centre, but ours somehow integrates with our Cisco VOIP phones. Want to phone someone? Click the button in Lync and your phone dials them. Someone phones you? Up pops a notification so you can take the call on your workstation if you have a USB headset. You can use the entire phone system without actually being physically at your phone, which is great when working from home (no more using your personal mobile, yay free inter-office inter-continental conference calling). It also allows you to conference call just by dragging people into a conversation then hitting a button.

There have been a good few months of teething troubles during the roll out and various bits took quite a while to get working (the phone integration still doesn't quite work correctly sometimes) but now it's pretty good. It's the future, bitches!

Biowarfare
Nov 8, 2010

ASK ME ABOUT BEING NEXON AMERICA'S ONLY SYSADMIN


OriginalPseudonym posted:

To be fair, whatever it stores it as has to be easily-retrievable if it's logging into services for you, but I would feel a little better if it at least had the option of encrypting them with a private pgp key that you had to enter the password for each time you started it up.

At least it actually uses HTTPS when possible like on AIM as opposed to the official clients..

fluppet
Feb 10, 2009


I've spent all day running round the building re-adding the networked printers to out student machines. There doesn't seem to be any pattern to it apart it being guaranteed to happen as soon as I put the kettle on

CommanderApaul
Aug 30, 2003

It's amazing their hands can support such awesome.


The ACH phishing scam people must have upped their game, I've taken 13 calls on them already today, and everyone else at the helpdesk is getting blown up with them too. We've been getting them sporadically for the last 2-3 weeks, but never more than a couple calls a day for the whole helpdesk.

Either that, or our users are finally figuring out that it's a scam after getting them more than once.

Edit: Also, we started our Office 2010 rollout today. If I take one more call from someone who says that their documents and/or contacts are gone because their recently opened lists are empty and Outlook isn't autocompleting the send field with frequently used contacts, I'm gonna scream.

Edit2: At we only rolled 2010 out to IS&T computers. We have a lot of non-tech medical people in our division, but comeon. Hopefully they don't rollout to the medical staff until I'm on paternity leave.

CommanderApaul fucked around with this message at Oct 26, 2011 around 15:23

nexus6
Sep 2, 2011


User: nexus, I tweeted a link to our latest blog post but it doesn't appear in the counter! It's been 5 minutes!
nexus: I'm looking at it now, the counter is 2 and it links to your tweet. Have you tried refreshing or clearing your cache?
User: Oh, that did it, thanks!

doomisland
Oct 5, 2004



We used OpenFire at work but then it started crashing every 24 hours. We ended up building and deploying ejabberd on a FreeBSD VM in a weeks time and that has been working a lot better. The power of Erlang

Moey
Oct 22, 2010



CommanderApaul posted:

The ACH phishing scam people must have upped their game, I've taken 13 calls on them already today, and everyone else at the helpdesk is getting blown up with them too. We've been getting them sporadically for the last 2-3 weeks, but never more than a couple calls a day for the whole helpdesk.

I normally see those caught all the time in our spam filter. A few got through ours this morning though. I don't see why I wouldn't click a link for a "self extracting pdf" that leads to a mysterious url shortened website....

I should probably send an email to my idiot users to tell them to not follow said link.

rolleyes
Nov 16, 2006

Sometimes you have to roll the hard... two?

Moey posted:

I normally see those caught all the time in our spam filter. A few got through ours this morning though. I don't see why I wouldn't click a link for a "self extracting pdf" that leads to a mysterious url shortened website....

I should probably send an email to my idiot users to tell them to not follow said link.

I've had about 6 today after a couple of weeks with none. Gotta wonder how they manage it.

TenjouUtena
Mar 31, 2011



CommanderApaul posted:


Edit: Also, we started our Office 2010 rollout today. If I take one more call from someone who says that their documents and/or contacts are gone because their recently opened lists are empty and Outlook isn't autocompleting the send field with frequently used contacts, I'm gonna scream.


If you have Exchange 2010 to match your Outlook 2010 it should upload the nk2 file and keep it on the server.

You know, 2 version too late. Exchange!

OriginalPseudonym
Nov 9, 2009

...and for the longest time I never understood why these people were gone the next day.


Salt Fish posted:

Isn't that technically less secure and more work compared to setting the program to not remember your login credentials?

Probably, technically, but it's always a question of "amount of time you want to invest in security" vs. "amount of time you want to save by saying 'gently caress security'".

I could probably be more secure by encrypting my entire hard drive and having 3 layers of on-boot passwords, but that doesn't mean I want to do that. And I feel safe enough in my browsing habits that I'd be fine with having a PGP-encrypted file with my IM client passwords in it, but I don't feel like having to type in... *counts* 6 account passwords every time I open my laptop, or my network drops, or MSN decides that "Hey gently caress you" and just flat disconnects.

CommanderApaul
Aug 30, 2003

It's amazing their hands can support such awesome.


TenjouUtena posted:

If you have Exchange 2010 to match your Outlook 2010 it should upload the nk2 file and keep it on the server.

You know, 2 version too late. Exchange!

Exchange 2007 SP3.

I drive past a liquor store the size of a small WalMart on my way home.

notwithoutmyanus
Mar 17, 2009


many people posted:

messaging system talk

our company uses OCS/Lync with MPLS to get around the need for VPN, which ties in to our VOIP setup (which will also be over MPLS) too. Works so well, our users aren't even aware of the implications of MPLS.

I wish I had known more about just how complicated that poo poo was when they set it up. 99% of that I can't talk about, but I think it's pretty awesome that we did it. That and I've been learning more server admin stuff and have only realized now I should probably go the cisco certs route. Even now, I can't completely wrap my head around just how much must have been involved to get that working.

notwithoutmyanus fucked around with this message at Oct 26, 2011 around 16:32

ptier
Jul 2, 2007

Back off man, I'm a scientist.


devmd01 posted:

They didn't have the 16yo, settled for the Glenlivet 15. Delicious!

Is that the 15 yr old French Oak Reserve? Tasty as hell. That and Highland Park 12 are my gotos.

Trastion
Jul 24, 2003
The one and only.

Not really a ticket but something that caught me off guard that I thought may be useful knowledge to some of you.

A couple days ago we let a remote employee go. I disabled his account and changed the password like normal. We removed his access to any and all sites and apps that he had access to.

The next day i get an email from HR asking me to make sure that I have turned off his email access. Apparently he was still sending emails out for a couple hours after he was terminated, luckily none of them were malicious.

I turns out that since we upgraded from Exchange 2003 to 2010 earlier this year that Microsoft seems to think that allowing disabled accounts to still send emails is fine. I did some searching and found that this is pretty common and has been happening since Exchange 2007. Here is a link to a Technet forum post describing it.

I am pretty sure my problem arose because either the user was already logged into OWA or his phone,using owa as a connection, was keeping his token alive.

Microsoft's "fix" for this is to reset IIS whenever you disable an account. There are also a couple post explaining how to set a lower default timeout for the UserToken but this will never timeout when a phone checks the connection every 1 minute or so.

Someone else in that thread posted a workaround of "Go to Exchange management console and remove "NT Authority\SELF" from "Management Full Access Permission...", that will disable OWA access right away." This seems to work. It is what I will be doing from now on when disabling someones account that has access to OWA or email on their phone.

Dyscrasia
Jun 23, 2003
Give Me Hamms Premium Draft or Give Me DEATH!!!!

Trastion posted:

Not really a ticket but something that caught me off guard that I thought may be useful knowledge to some of you.

A couple days ago we let a remote employee go. I disabled his account and changed the password like normal. We removed his access to any and all sites and apps that he had access to.

The next day i get an email from HR asking me to make sure that I have turned off his email access. Apparently he was still sending emails out for a couple hours after he was terminated, luckily none of them were malicious.

I turns out that since we upgraded from Exchange 2003 to 2010 earlier this year that Microsoft seems to think that allowing disabled accounts to still send emails is fine. I did some searching and found that this is pretty common and has been happening since Exchange 2007. Here is a link to a Technet forum post describing it.

I am pretty sure my problem arose because either the user was already logged into OWA or his phone,using owa as a connection, was keeping his token alive.

Microsoft's "fix" for this is to reset IIS whenever you disable an account. There are also a couple post explaining how to set a lower default timeout for the UserToken but this will never timeout when a phone checks the connection every 1 minute or so.

Someone else in that thread posted a workaround of "Go to Exchange management console and remove "NT Authority\SELF" from "Management Full Access Permission...", that will disable OWA access right away." This seems to work. It is what I will be doing from now on when disabling someones account that has access to OWA or email on their phone.

This same thing happened to me, except that it was our VP that was fired and was able to grab some excel files from his IPhone. When you disable an account and change the password, Exchange should no longer be able to sync!!

Crowley
Mar 13, 2003


Dyscrasia posted:

This same thing happened to me, except that it was our VP that was fired and was able to grab some excel files from his IPhone. When you disable an account and change the password, Exchange should no longer be able to sync!!

When I disable someone like that I always set Exchange to wipe the phone. There's no reason people should run around with three months worth of potential harmful email and no reason not to use it maliciously.

Biowarfare
Nov 8, 2010

ASK ME ABOUT BEING NEXON AMERICA'S ONLY SYSADMIN


Crowley posted:

When I disable someone like that I always set Exchange to wipe the phone. There's no reason people should run around with three months worth of potential harmful email and no reason not to use it maliciously.

You don't live in a country where people will sue you for wiping their dick pictures (and prostitute appointments) off a business provided phone?

Crowley
Mar 13, 2003


Biowarfare posted:

You don't live in a country where people will sue you for wiping their dick pictures (and prostitute appointments) off a business provided phone?

I'll wipe private phones too. That's a fact people have to accept if they want to connect to our Exchange server.

It's not something I do every time a temp worker leaves. Only when I get the "Get him out NOW!" order.

Dyscrasia
Jun 23, 2003
Give Me Hamms Premium Draft or Give Me DEATH!!!!

Crowley posted:

When I disable someone like that I always set Exchange to wipe the phone. There's no reason people should run around with three months worth of potential harmful email and no reason not to use it maliciously.

I would never have let him keep the phone. The President did that as a favor. Wanted him to have his phone numbers and all that, stuff that would have been wiped. He did not want him to continue having email access though.

Of course the president raises cows for fun, and never consults IT when making these kinds of decisions.

TenjouUtena
Mar 31, 2011



Dyscrasia posted:

.... and never consults IT when making these kinds of decisions.

Does any C-level exec ever consult IT in a meaningful way when making any of these decisions?

Cool Matty
Jan 8, 2006
Usuyami no Sekai

TenjouUtena posted:

Does any C-level exec ever consult IT in a meaningful way when making any of these decisions?

Quite often... after they've already made the decision.

taremva
Mar 5, 2009


Is there anyone here who actually like their managers except me? I'm a contractor but I have a fairly good relationship with all my managers, both the ones at my customer and the internal one from the company that pays me.

rolleyes
Nov 16, 2006

Sometimes you have to roll the hard... two?

taremva posted:

Is there anyone here who actually like their managers except me? I'm a contractor but I have a fairly good relationship with all my managers, both the ones at my customer and the internal one from the company that pays me.

I love my immediate manager. From there, my opinion of my managers is more or less inversely proportional to their height on the organisation chart.

teethgrinder
Oct 9, 2002

Nurse?

Precisely the same for me. My immediate manager is great. But god help us both when either of the two people above her want anything. Or their kids do.

Crowley
Mar 13, 2003


Cool Matty posted:

Quite often... after they've already made the decision.

Of course, they don't have the keys to unlock the desktop, monitor, docking station, TV and HP Radio Port(!) the board promised the director at my old job he could keep when he retired.


taremva posted:

Is there anyone here who actually like their managers except me? I'm a contractor but I have a fairly good relationship with all my managers, both the ones at my customer and the internal one from the company that pays me.

I like my manager, especially after I told him I wasn't going to ask permission for what I do any more since his schedule is 105% full until some time in 2012. Instead I'll be informing him of what I decide and just ask him for advice or manager-level decisions now and then.. and when I'm going to buy something that isn't a "consumable" (like USB keys, cables, Portable HDDs and such).

Crowley fucked around with this message at Oct 26, 2011 around 22:45

Ridge_Runner_5
May 26, 2011

by Y Kant Ozma Post


I work in Denver, my immediate manager is in Dallas, and the one above her is in Virginia.

I like them because I never see them.

kensei
Dec 27, 2007

I do martial arts and eat pizza, I'm basically a ninja turtle.


A remote site is down, and I cannot contact the service provider at all. Their phones all go to fast busy, and email is unanswered.

Nice.

Telex
Feb 11, 2003



kensei posted:

A remote site is down, and I cannot contact the service provider at all. Their phones all go to fast busy, and email is unanswered.

Nice.

Perhaps it isn't the remote site that's down. DUN DUN DUNNNNNNNNNNNNNN.

Crowley
Mar 13, 2003


Telex posted:

Perhaps it isn't the remote site that's down. DUN DUN DUNNNNNNNNNNNNNN.

It's the rest of the woooorld!

Splashy Gravy
Dec 21, 2004

I HAVE FURY!

I talked to an old lady last week who sounded like Miss Swan. She asked me if the reason her Mac Mail stopped working was because Steve Jobs died.

taremva
Mar 5, 2009


Tickets are coming in; My coworker called in sick so I'm manning the phones alone.

I should still be in training.
I'm a highschool graduate without any certs.
I'm the only guy on the phones in a global company, including production support. About 60000 users total, about 5000 currently building stuff.
If the production stops, it costs 4 months of my salary per minute.
Everything is under control and I browse SA.

Billy the Mountain
Feb 3, 2005

I used to be TheRealLuquado


taremva posted:

Tickets are coming in; My coworker called in sick so I'm manning the phones alone.

I should still be in training.
I'm a highschool graduate without any certs.
I'm the only guy on the phones in a global company, including production support. About 60000 users total, about 5000 currently building stuff.
If the production stops, it costs 4 months of my salary per minute.
Everything is under control and I browse SA.

Give it time, give it time...

Adbot
ADBOT LOVES YOU

Moey
Oct 22, 2010



taremva posted:

Tickets are coming in; My coworker called in sick so I'm manning the phones alone.

I should still be in training.
I'm a highschool graduate without any certs.
I'm the only guy on the phones in a global company, including production support. About 60000 users total, about 5000 currently building stuff.
If the production stops, it costs 4 months of my salary per minute.
Everything is under control and I browse SA.

Not bashing you, but how is a company that in operation?

  • 1
  • 2
  • 3
  • 4
  • 5
  • Post
  • Reply
«1342 »