Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
1200 posts

Uber Geek

Trusted

  #284365 21-Dec-2009 13:20
Send private message

richms: I lot of custom software is plainly retarded. I know of a place that was still using an unpactched really old IE because they needed the username:password@site logins to work for some braindead half-assed client that used that to authenticate to an external server, and that was only last year that they were still using it.

Alarmingly high number of IE6 clients from corporate IPs hit a friends website too.


People forget that patching DOESN'T mean installing new versions of software, you can roll out IE7 or IE8 but also keep IE6 deployed and roll out the security patches for that client. There is no requirement to upgrade versions, Microsoft are very good with their product support lifecycle.

http://support.microsoft.com/default.aspx/gp/lifeselect

If they are running IE6 on Windows XP Professional they can continue with this version and get security patches until 08/04/2014.






Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

635 posts

Ultimate Geek


  #284379 21-Dec-2009 14:27
Send private message

I am sorry but having worked in a few R&D and pharma labs in my time any life critical system should be running completely seperate from any network and if it is on a network all external access routes (internet, usb, floppy, cd/dvd roms etc) should be disabled and forced off by policy.

There should be no need to patch a life critical system.

So the situation still stands, they should have been forcing critical patches minimum. Also, like any traditional lab, lab systems are run seperately from desktop systems. If lan systems must be put onto the general network they need to comply with the desktop patching rules.




Home Server: AMD Threadripper 1950X, 64GB, 56TB HDD, Define R6 Case, 10GbE, ESXi 6.7, UNRAID, NextPVR, Emby Server, Plex Server.
Lounge Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby.
Kids Media Center: NVIDIA Shield TV 16GB: Kodi18 with Titan MOD, Emby.
Main PC: Ryzen 7 2700, 16GB RAM, RX 570, 2 x 24"


 
 
 
 


181 posts

Master Geek


  #284397 21-Dec-2009 16:20
Send private message

exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.



Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 




There is unfortunatly still a hell of alot of conficker around :(


http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png




1200 posts

Uber Geek

Trusted

  #284435 21-Dec-2009 19:09
Send private message

Simonm:
exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.


Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 

There is unfortunatly still a hell of alot of conficker around :(

http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png



If a task is life critical then have backups, be it a second PC unplugged next to the machine the operator can plug in (with no network card in it) to the machine to do xrays in a offline mode with a CD Burner. Other hospitals around the world cope it just requires planning.

And just because there is a lot of a 18 month old virus around isn't any excuse for not patching. In fact if you are moving to a MORE digital environment it's even more important to patch.

PATCH PATCH PATCH.




Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

Mad Scientist
21438 posts

Uber Geek

Trusted
Lifetime subscriber

  #285021 24-Dec-2009 17:03
Send private message

you guys have been quoted on the press!
http://www.stuff.co.nz/waikato-times/news/3192755/Waikato-DHB-to-close-virus-gaps




Involuntary autocorrect in operation on mobile device. Apologies in advance.


2414 posts

Uber Geek

Trusted
Subscriber

  #285195 26-Dec-2009 00:14
Send private message

I think this just goes to show that healthcare in NZ does not get enough funding. I guess if they had managed to get the approval to employ that security admin sooner then they may have avoided this attack.

I know a company that was ravaged for over a week by this virus only a few months ago as it kept jumping from infected systems back to systems which had already been cleaned and so on until all 20 odd machines were taken out and cleaned together before going back in with new patches and Anti-virus software.

I'm sure everyone here who's pointed fingers at the DHB's inept admins have made equally large mistakes during their careers, some probably worse than just negligence.

8035 posts

Uber Geek

Trusted

  #285277 26-Dec-2009 17:07
Send private message

Accidental/human errors are part of life for sure.. but I don't know if you can class having a policy of don't install any updates or patches as an accident!


 
 
 
 


2414 posts

Uber Geek

Trusted
Subscriber

  #285962 29-Dec-2009 23:00
Send private message

freitasm: I wonder if anyone read this virus scanning recommendation KB...


I guess MS call that a 'feature' of their OS. I wonder how many people actively follow these MS heads-up guides.

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter and LinkedIn »



Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

Withings launches three new devices to help monitor heart health from home
Posted 13-Feb-2020 20:05


Auckland start-up Yourcar matches new car buyers with dealerships
Posted 13-Feb-2020 18:05


School gardens go high tech to teach kids the importance of technology
Posted 13-Feb-2020 11:10


Malwarebytes finds Mac threats outpace Windows for the first time
Posted 13-Feb-2020 08:01


Amazon launches Echo Show 8 in Australia and New Zealand
Posted 8-Feb-2020 20:36


Vodafone New Zealand starts two year partnership with LetsPlay.Live
Posted 28-Jan-2020 11:24


Ring launches indoor-only security camera
Posted 23-Jan-2020 17:26


New report findings will help schools implement the digital technologies curriculum content
Posted 23-Jan-2020 17:25


N4L to upgrade & support wireless internet inside schools
Posted 23-Jan-2020 17:22


Netflix releases 21 Studio Ghibli works
Posted 22-Jan-2020 11:42


Vodafone integrates eSIM into device and wearable roadmap
Posted 17-Jan-2020 09:45


Do you need this camera app? Group investigates privacy implications
Posted 16-Jan-2020 03:30


JBL launches headphones range designed for gaming
Posted 13-Jan-2020 09:59


Withings introduces ScanWatch wearable combining ECG and sleep apnea detection
Posted 9-Jan-2020 18:34


NZ Police releases public app
Posted 8-Jan-2020 11:43



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Support Geekzone »

Our community of supporters help make Geekzone possible. Click the button below to join them.

Support Geezone on PressPatron



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.