MCSEIEIO

Post #5,168 by Steve Lowe 8/14/01 5:04:12 PM Reply	MCSEIEIO It's not the software, it's the training. From [link\|http://www.infoworld.com/articles/hn/xml/01/08/14/010814hnmcse.xml?0814tupm\|http://www.infoworl...xml?0814tupm] MICROSOFT MCSE TRAINING COMES UNDER FIRE Posted August 14, 2001 02:42 Pacific Time IT PROFESSIONALS AND trainers are blaming insufficient security training offered under the nationwide Microsoft Certified Systems Engineer program for contributing to the spread of Code Red and other damaging viruses. In an e-mail newsletter sent out last week to its 96,000 members, the Bethesda, Md.-based SANS Institute, a research and education organization for systems administrators, urged MCSEs to take a free class offered by the institute on how to reconfigure and patch Windows-based systems against the vulnerabilities exploited last month by the Code Red worm. The core courses required to attain MCSE certification don't provide the level of security training engineers need to protect their systems, according to SANS Institute officials and other industry experts. ----- Steve
Post #5,171 by wharris2 8/14/01 5:15:58 PM Reply	Oh brother "It is a situation where MCSEs had no idea that there is a fundamental vulnerability in IIS and ISAPI mapping and so had no way to protect their systems other than after-the-fact patching," said Paller. You know, security aside, why don't these MCSE's keep an eye out for patches to the software, on general principles? Yes, it's a pain to monitor and install all the patches. But that's Windows. French Zombies are zapping me with lasers!
Post #5,209 by boxley 8/14/01 10:06:07 PM Reply	not just winders Sun admins must not be complacent either we are/have developed a script that you use to tighten down a new install plus go out and check for all patches released after the install date. EG how many sun guys out there know there isx a problem with a certain clock chip which rolls the time/date arbitrarely backwards and forwards by as much as four months for minutes at a time? Sysadminning requires a daily perusal of all os related sites and tracks to keep up not just the vendors etc. thanx, bill Our bureaucracy and our laws have turned the world into a clean, safe work camp. We are raising a nation of slaves. Chuck Palahniuk
Post #5,299 by wharris2 8/15/01 2:33:03 PM Reply	Not just Windows but Windows makes it harder I wonder how many reboots it would take to install all the latest security patches?
Post #5,375 by static 8/16/01 12:49:39 AM Reply	That one I know. Well, to a first approximation. Basically, each service pack or hot fix is supposed to be followed by a reboot. That means if you have 26 hot fixes to apply, you're supposed to reboot the machine 26 times! And it gets worse: you're supposed to apply multiple hot fixes all in the correct order!! Read [link\|http://support.microsoft.com/support/kb/articles/Q296/8/61.ASP\|Q296861 - Use QChain.exe to Install Multiple Hotfixes with Only One Reboot] if you don't believe me. For comparison, HP-UX patches don't have either problem (barring a very small number which patch the kernel and this require a reboot) and not surprisingly, RedHat's patches also don't have either problem. Wade. "All around me are nothing but fakes Come with me on the biggest fake of all!"

Welcome to IWETHEY!