Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
1200 posts

Uber Geek

Trusted

  #284365 21-Dec-2009 13:20
Send private message

richms: I lot of custom software is plainly retarded. I know of a place that was still using an unpactched really old IE because they needed the username:password@site logins to work for some braindead half-assed client that used that to authenticate to an external server, and that was only last year that they were still using it.

Alarmingly high number of IE6 clients from corporate IPs hit a friends website too.


People forget that patching DOESN'T mean installing new versions of software, you can roll out IE7 or IE8 but also keep IE6 deployed and roll out the security patches for that client. There is no requirement to upgrade versions, Microsoft are very good with their product support lifecycle.

http://support.microsoft.com/default.aspx/gp/lifeselect

If they are running IE6 on Windows XP Professional they can continue with this version and get security patches until 08/04/2014.






Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

635 posts

Ultimate Geek


  #284379 21-Dec-2009 14:27
Send private message

I am sorry but having worked in a few R&D and pharma labs in my time any life critical system should be running completely seperate from any network and if it is on a network all external access routes (internet, usb, floppy, cd/dvd roms etc) should be disabled and forced off by policy.

There should be no need to patch a life critical system.

So the situation still stands, they should have been forcing critical patches minimum. Also, like any traditional lab, lab systems are run seperately from desktop systems. If lan systems must be put onto the general network they need to comply with the desktop patching rules.




Home Server: AMD Threadripper 1950X, 64GB, 56TB HDD, Define R6 Case, 10GbE, ESXi 6.7, UNRAID, NextPVR, Emby Server, Plex Server.
Lounge Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby.
Kids Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby.
Main PC: Ryzen 7 2700, 16GB RAM, RX 570, 2 x 24"


 
 
 
 


181 posts

Master Geek


  #284397 21-Dec-2009 16:20
Send private message

exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.



Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 




There is unfortunatly still a hell of alot of conficker around :(


http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png




1200 posts

Uber Geek

Trusted

  #284435 21-Dec-2009 19:09
Send private message

Simonm:
exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.


Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 

There is unfortunatly still a hell of alot of conficker around :(

http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png



If a task is life critical then have backups, be it a second PC unplugged next to the machine the operator can plug in (with no network card in it) to the machine to do xrays in a offline mode with a CD Burner. Other hospitals around the world cope it just requires planning.

And just because there is a lot of a 18 month old virus around isn't any excuse for not patching. In fact if you are moving to a MORE digital environment it's even more important to patch.

PATCH PATCH PATCH.




Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

Mad Scientist
21859 posts

Uber Geek

Trusted
Lifetime subscriber

  #285021 24-Dec-2009 17:03
Send private message

you guys have been quoted on the press!
http://www.stuff.co.nz/waikato-times/news/3192755/Waikato-DHB-to-close-virus-gaps




Involuntary autocorrect in operation on mobile device. Apologies in advance.


2415 posts

Uber Geek

Trusted
Subscriber

  #285195 26-Dec-2009 00:14
Send private message

I think this just goes to show that healthcare in NZ does not get enough funding. I guess if they had managed to get the approval to employ that security admin sooner then they may have avoided this attack.

I know a company that was ravaged for over a week by this virus only a few months ago as it kept jumping from infected systems back to systems which had already been cleaned and so on until all 20 odd machines were taken out and cleaned together before going back in with new patches and Anti-virus software.

I'm sure everyone here who's pointed fingers at the DHB's inept admins have made equally large mistakes during their careers, some probably worse than just negligence.

8035 posts

Uber Geek

Trusted

  #285277 26-Dec-2009 17:07
Send private message

Accidental/human errors are part of life for sure.. but I don't know if you can class having a policy of don't install any updates or patches as an accident!


 
 
 
 


BDFL - Memuneh
66439 posts

Uber Geek

Administrator
Trusted
Geekzone
Lifetime subscriber

2415 posts

Uber Geek

Trusted
Subscriber

  #285962 29-Dec-2009 23:00
Send private message

freitasm: I wonder if anyone read this virus scanning recommendation KB...


I guess MS call that a 'feature' of their OS. I wonder how many people actively follow these MS heads-up guides.

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Intel introduces 10th Gen Intel Core H-series for mobile devices
Posted 2-Apr-2020 21:09


COVID-19: new charitable initiative to fund remote monitoring for at-risk patients
Posted 2-Apr-2020 11:07


Huawei introduces the P40 Series of Android-based smartphones
Posted 31-Mar-2020 17:03


Samsung Galaxy Z Flip now available for pre-order in New Zealand
Posted 31-Mar-2020 16:39


New online learning platform for kids stuck at home during COVID-19 lockdown
Posted 26-Mar-2020 21:35


New 5G Nokia smartphone unveiled as portfolio expands
Posted 26-Mar-2020 17:11


D-Link ANZ launches wireless AC1200 4G LTE router
Posted 26-Mar-2020 16:32


Ring introduces two new video doorbells and new pre-roll technology
Posted 17-Mar-2020 16:59


OPPO uncovers flagship Find X2 Pro smartphone
Posted 17-Mar-2020 16:54


D-Link COVR-2202 mesh Wi-Fi system now protected by McAfee
Posted 17-Mar-2020 16:00


Spark Sport opens its platform up to all New Zealanders at no charge
Posted 17-Mar-2020 10:04


Spark launches 5G Starter Fund
Posted 8-Mar-2020 19:19


TRENDnet launches high-performance WiFi Mesh Router System
Posted 5-Mar-2020 08:48


Sony boosts full-frame lens line-up with introduction of FE 20mm F1.8 G large-aperture ultra-wide-angle prime Lens
Posted 5-Mar-2020 08:44


Vector and Spark teamed up on smart metering initiative
Posted 5-Mar-2020 08:42



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.