Feeds

Locking antlers with a network Nazi

Die! Symantec Endpoint Protection, Die!

  • alert
  • submit to reddit

Security for virtualized datacentres

Some contracting jobs are fun. I love the sexy ones that task me with rolling my own data center or spending a week’s worth of off hours poking holes in someone else’s network.

Some contracting jobs are terrible; 14 consecutive hours of testing cables and ghosting workstations will leave me a gibbering mental wasteland. One recent job has left me feeling somewhat ambiguous.

It was simple enough; go to the site, rename and readdress up to five PCs to meet the newest conventions. Remove Office Pro and install Office Standard to ensure proper license compliance. Depending on the speed and number of the PCs, that’s maybe a couple hours’ worth of work. It could stretch to four hours in the absolute worst case.

The project started out with a misadventure. The location in question is on the other end of the city from my home; better than an hour away. I ran into a multi-vehicle accident and showed up onsite three minutes late. This was apparently too late; the individuals with the keys to let me into the building had left.

Round two saw me arrive early, only to discover that the required install media for Office was not present. Here, things got interesting. The office in question was a small two-PC affair that was part of a much larger network.

It is safe to say that this network was run by some of the darkest of network Nazis I have yet to encounter. I had in my grubby little mitts the domain administrator’s credentials – necessary for the work I had been asked to do – and yet could still accomplish nothing.

Internet access was locked down; Symantec Endpoint Security was set to <Nelson Muntz> Ha ha! </Nelson Muntz>. It was managed centrally and best of all there was nobody available with the rights to disable the thing.

USB ports and Optical drive access were locked down – even for the domain admin – and Symantec was configured in such a fashion that even if I physically added another node to the network with a share on it, it wouldn’t allow me to get the necessary files off.

Providing a secure and efficient Helpdesk

More from The Register

next story
IBM storage revenues sink: 'We are disappointed,' says CEO
Time to put the storage biz up for sale?
'Hmm, why CAN'T I run a water pipe through that rack of media servers?'
Leaving Las Vegas for Armenia kludging and Dubai dune bashing
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
Windows 10: Forget Cloudobile, put Security and Privacy First
But - dammit - It would be insane to say 'don't collect, because NSA'
CAGE MATCH: Microsoft, Dell open co-located bit barns in Oz
Whole new species of XaaS spawning in the antipodes
VMware's tool to harden virtual networks: a spreadsheet
NSX security guide lands in intriguing format
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.