Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


View this topic in a long page with up to 500 replies per page Create new topic
1 | 2 
1200 posts

Uber Geek
+1 received by user: 3

Trusted

  Reply # 284365 21-Dec-2009 13:20
Send private message

richms: I lot of custom software is plainly retarded. I know of a place that was still using an unpactched really old IE because they needed the username:password@site logins to work for some braindead half-assed client that used that to authenticate to an external server, and that was only last year that they were still using it.

Alarmingly high number of IE6 clients from corporate IPs hit a friends website too.


People forget that patching DOESN'T mean installing new versions of software, you can roll out IE7 or IE8 but also keep IE6 deployed and roll out the security patches for that client. There is no requirement to upgrade versions, Microsoft are very good with their product support lifecycle.

http://support.microsoft.com/default.aspx/gp/lifeselect

If they are running IE6 on Windows XP Professional they can continue with this version and get security patches until 08/04/2014.






Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

603 posts

Ultimate Geek
+1 received by user: 31


  Reply # 284379 21-Dec-2009 14:27
Send private message

I am sorry but having worked in a few R&D and pharma labs in my time any life critical system should be running completely seperate from any network and if it is on a network all external access routes (internet, usb, floppy, cd/dvd roms etc) should be disabled and forced off by policy.

There should be no need to patch a life critical system.

So the situation still stands, they should have been forcing critical patches minimum. Also, like any traditional lab, lab systems are run seperately from desktop systems. If lan systems must be put onto the general network they need to comply with the desktop patching rules.




Home Server: Mobo GA-990FXA-UD3, AMD FX-8370, 32GB RAM, 40TB HDD, 2 x HP Smart Array P410, 3 x Norco SS-500, 10GbE, ESXi 6u2, NextPVR, Emby Server, Plex Server, 2 x HDHomerun.
Lounge Media Center: NVIDIA Shield TV 16GB: Kodi17.3/SPMC16.7 with Titan, Emby, NextPVR, 250GB SSD.
Kids Media Center: NVIDIA Shield TV 16GB: Kodi17.3/SPMC16.7 with Titan, Emby, NextPVR, 120GB SSD
Test Center: NVIDIA Shield TV Pro 500GB. Plex Media Server, Kodi17.3/SPMC16.7 with Titan, Emby, HDHomerun.
Main PC: Intel i5, 16GB RAM, NVidia GTX950, 128GB Samsung 840 Pro, 3 x 1TB HDD, 2 x 24" Panasonic LCD TV, Blu-ray drive, Windows 10, Kodi17.3, Emby, Titan.


 
 
 
 


181 posts

Master Geek


  Reply # 284397 21-Dec-2009 16:20
Send private message

exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.



Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 




There is unfortunatly still a hell of alot of conficker around :(


http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png




1200 posts

Uber Geek
+1 received by user: 3

Trusted

  Reply # 284435 21-Dec-2009 19:09
Send private message

Simonm:
exportgoldman: Oh, and for all life critical tasks, there should be paper based backup systems. Fire and Police have them, ambo's and hospitals should as well. The police and Fire had to resort to them 6 months ago when comms went down.


Gets a little hard when things like digital Xrays/scans are becoming more prevalent. 

There is unfortunatly still a hell of alot of conficker around :(

http://www.shadowserver.org/wiki/uploads/Stats/conficker-population-180day.png



If a task is life critical then have backups, be it a second PC unplugged next to the machine the operator can plug in (with no network card in it) to the machine to do xrays in a offline mode with a CD Burner. Other hospitals around the world cope it just requires planning.

And just because there is a lot of a 18 month old virus around isn't any excuse for not patching. In fact if you are moving to a MORE digital environment it's even more important to patch.

PATCH PATCH PATCH.




Tyler - Parnell Geek - iPhone 3G - Lenovo X301 - Kaseya - Great Western Steak House, these are some of my favourite things.

16940 posts

Uber Geek
+1 received by user: 2006

Trusted

  Reply # 285021 24-Dec-2009 17:03
Send private message

you guys have been quoted on the press!
http://www.stuff.co.nz/waikato-times/news/3192755/Waikato-DHB-to-close-virus-gaps

2242 posts

Uber Geek
+1 received by user: 353

Trusted
Subscriber

  Reply # 285195 26-Dec-2009 00:14
Send private message

I think this just goes to show that healthcare in NZ does not get enough funding. I guess if they had managed to get the approval to employ that security admin sooner then they may have avoided this attack.

I know a company that was ravaged for over a week by this virus only a few months ago as it kept jumping from infected systems back to systems which had already been cleaned and so on until all 20 odd machines were taken out and cleaned together before going back in with new patches and Anti-virus software.

I'm sure everyone here who's pointed fingers at the DHB's inept admins have made equally large mistakes during their careers, some probably worse than just negligence.

8019 posts

Uber Geek
+1 received by user: 384

Trusted
Subscriber

  Reply # 285277 26-Dec-2009 17:07
Send private message

Accidental/human errors are part of life for sure.. but I don't know if you can class having a policy of don't install any updates or patches as an accident!


BDFL - Memuneh
58724 posts

Uber Geek
+1 received by user: 10118

Administrator
Trusted
Geekzone
Subscriber

2242 posts

Uber Geek
+1 received by user: 353

Trusted
Subscriber

  Reply # 285962 29-Dec-2009 23:00
Send private message

freitasm: I wonder if anyone read this virus scanning recommendation KB...


I guess MS call that a 'feature' of their OS. I wonder how many people actively follow these MS heads-up guides.

1 | 2 
View this topic in a long page with up to 500 replies per page Create new topic



Twitter »

Follow us to receive Twitter updates when new discussions are posted in our forums:



Follow us to receive Twitter updates when news items and blogs are posted in our frontpage:



Follow us to receive Twitter updates when tech item prices are listed in our price comparison site:





News »

FUJIFILM introduces X-E3 mirrorless camera with wireless connectivity
Posted 18-Sep-2017 13:53


Vodafone announces new plans with bigger data bundles
Posted 15-Sep-2017 10:51


Skinny launches phone with support for te reo Maori
Posted 14-Sep-2017 08:39


If Vodafone dropping mail worries you, you’re doing online wrong
Posted 11-Sep-2017 13:54


Vodafone New Zealand deploy live 400 gigabit system
Posted 11-Sep-2017 11:07


OPPO camera phones now available at PB Tech
Posted 11-Sep-2017 09:56


Norton Wi-Fi Privacy — Easy, flawed VPN
Posted 11-Sep-2017 09:48


Lenovo reveals new ThinkPad A Series
Posted 8-Sep-2017 14:37


Huawei passes Apple for the first time to capture the second spot globally
Posted 8-Sep-2017 10:45


Vodafone initiative enhances te reo Maori pronunciation on Google Maps
Posted 8-Sep-2017 10:40


Voyager Internet expand local internet phone services company with Conversant acquisition
Posted 6-Sep-2017 18:27


NOW Expands in to Tauranga
Posted 5-Sep-2017 18:16


Windows 10 Fall Creators Update coming Oct. 17
Posted 4-Sep-2017 14:10


Garmin introduce Garmin vivoactive 3
Posted 1-Sep-2017 18:38


Kiwibank wastes $90 million on software – Reseller News
Posted 1-Sep-2017 13:45



Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.



Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

Alternatively, you can receive a daily email with Geekzone updates.