Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
1200 posts

Uber Geek
+1 received by user: 3

Trusted

  Reply # 284365 21-Dec-2009 13:20
Send private message

richms: I lot of custom software is plainly retarded. I know of a place that was still using an unpactched really old IE because they needed the username:password@site logins to work for some braindead half-assed client that used that to authenticate to an external server, and that was only last year that they were still using it.

Alarmingly high number of IE6 clients from corporate IPs hit a friends website too.


People forget that patching DOESN'T mean installing new versions of software, you can roll out IE7 or IE8 but also keep IE6 deployed and roll out the security patches for that client. There is no requirement to upgrade versions, Microsoft are very good with their product support lifecycle.

http://support.microsoft.com/default.aspx/gp/lifeselect

If they are running IE6 on Windows XP Professional they can continue with this version and get security patches until 08/04/2014.






Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

608 posts

Ultimate Geek
+1 received by user: 31


  Reply # 284379 21-Dec-2009 14:27
Send private message

I am sorry but having worked in a few R&D and pharma labs in my time any life critical system should be running completely seperate from any network and if it is on a network all external access routes (internet, usb, floppy, cd/dvd roms etc) should be disabled and forced off by policy.

There should be no need to patch a life critical system.

So the situation still stands, they should have been forcing critical patches minimum. Also, like any traditional lab, lab systems are run seperately from desktop systems. If lan systems must be put onto the general network they need to comply with the desktop patching rules.




Home Server: Mobo GA-990FXA-UD3, AMD FX-8370, 32GB RAM, 40TB HDD, 2 x HP Smart Array P410, 3 x Norco SS-500, 10GbE, ESXi 6u2, NextPVR, Emby Server, Plex Server, 2 x HDHomerun.
Lounge Media Center: NVIDIA Shield TV 16GB: Kodi17.4/SPMC17a11 with Titan, Emby, NextPVR, 250GB SSD.
Kids Media Center: NVIDIA Shield TV 16GB: Kodi17.4/SPMC16.7 with Titan, Emby, NextPVR, 120GB SSD
Test Center: NVIDIA Shield TV Pro 500GB. Plex Media Server, Kodi17.4/SPMC17a11 with Titan, Emby, HDHomerun.
Main PC: Ryzen 7, 24GB RAM, Nvidia GT730 + RX 470, 512GB ADATA SSD, 3 x 1TB HDD, 2 x 24" Panasonic LCD TV, Blu-ray drive, Windows 10, Kodi17.4, Emby, Titan.


 
 
 
 


181 posts

Master Geek


  Reply # 284397 21-Dec-2009 16:20
Send private message

exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.



Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 




There is unfortunatly still a hell of alot of conficker around :(


http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png




1200 posts

Uber Geek
+1 received by user: 3

Trusted

  Reply # 284435 21-Dec-2009 19:09
Send private message

Simonm:
exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.


Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 

There is unfortunatly still a hell of alot of conficker around :(

http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png



If a task is life critical then have backups, be it a second PC unplugged next to the machine the operator can plug in (with no network card in it) to the machine to do xrays in a offline mode with a CD Burner. Other hospitals around the world cope it just requires planning.

And just because there is a lot of a 18 month old virus around isn't any excuse for not patching. In fact if you are moving to a MORE digital environment it's even more important to patch.

PATCH PATCH PATCH.




Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

Mad Scientist
17752 posts

Uber Geek
+1 received by user: 2180

Trusted
Lifetime subscriber

  Reply # 285021 24-Dec-2009 17:03
Send private message

you guys have been quoted on the press!
http://www.stuff.co.nz/waikato-times/news/3192755/Waikato-DHB-to-close-virus-gaps

2242 posts

Uber Geek
+1 received by user: 353

Trusted
Subscriber

  Reply # 285195 26-Dec-2009 00:14
Send private message

I think this just goes to show that healthcare in NZ does not get enough funding. I guess if they had managed to get the approval to employ that security admin sooner then they may have avoided this attack.

I know a company that was ravaged for over a week by this virus only a few months ago as it kept jumping from infected systems back to systems which had already been cleaned and so on until all 20 odd machines were taken out and cleaned together before going back in with new patches and Anti-virus software.

I'm sure everyone here who's pointed fingers at the DHB's inept admins have made equally large mistakes during their careers, some probably worse than just negligence.

8020 posts

Uber Geek
+1 received by user: 386

Trusted
Subscriber

  Reply # 285277 26-Dec-2009 17:07
Send private message

Accidental/human errors are part of life for sure.. but I don't know if you can class having a policy of don't install any updates or patches as an accident!


BDFL - Memuneh
59430 posts

Uber Geek
+1 received by user: 10647

Administrator
Trusted
Geekzone
Lifetime subscriber

2242 posts

Uber Geek
+1 received by user: 353

Trusted
Subscriber

  Reply # 285962 29-Dec-2009 23:00
Send private message

freitasm: I wonder if anyone read this virus scanning recommendation KB...


I guess MS call that a 'feature' of their OS. I wonder how many people actively follow these MS heads-up guides.

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

New Zealand's IT industry in 2018 and beyond
Posted 22-Jan-2018 12:50


Introducing your new workplace headache: Gen Z
Posted 22-Jan-2018 12:45


Jucy set to introduce electric campervan fleet
Posted 22-Jan-2018 12:41


Hawaiki cable system will be ready for service in June 2018
Posted 22-Jan-2018 12:32


New Zealand hits peak broadband data
Posted 18-Jan-2018 12:21


Amazon Echo devices coming to New Zealand early February 2018
Posted 18-Jan-2018 10:53


$3.74 million for new electric vehicles in New Zealand
Posted 17-Jan-2018 11:27


Nova 2i: Value, not excitement from Huawei
Posted 17-Jan-2018 09:02


Less news in Facebook News Feed revamp
Posted 15-Jan-2018 13:15


Australian Government contract awarded to Datacom Connect
Posted 11-Jan-2018 08:37


Why New Zealand needs a chief technology officer
Posted 6-Jan-2018 13:59


Amazon release Silk Browser and Firefox for Fire TV
Posted 21-Dec-2017 13:42


New Chief Technology Officer role created
Posted 19-Dec-2017 22:18


All I want for Christmas is a new EV
Posted 19-Dec-2017 19:54


How clever is this: AI will create 2.3 million jobs by 2020
Posted 19-Dec-2017 19:52



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.