| Hi John, did you get my note from the other
day?
Have a good weekend.
Paul
Paul Filipe IBM Systems Unit Storage Software Specialist pfilipe@us.ibm.com 617-510-8749
From:
studiosysadmins-discuss-request@studiosysadmins.com To:
studiosysadmins-discuss@studiosysadmins.com,
Date:
02/12/2016 11:00 AM Subject:
StudioSysAdmins-Discuss
Digest, Vol 77, Issue 12 Sent by:
studiosysadmins-discuss-bounces@studiosysadmins.com
Send StudioSysAdmins-Discuss mailing list submissions
to
studiosysadmins-discuss@studiosysadmins.com
To subscribe or unsubscribe via the World Wide Web, visit
http://mailman.studiosysadmins.com/mailman/listinfo/studiosysadmins-discuss
or, via email, send a message with subject or body 'help' to
studiosysadmins-discuss-request@studiosysadmins.com
You can reach the person managing the list at
studiosysadmins-discuss-owner@studiosysadmins.com
When replying, please edit your Subject line so it is more specific than "Re: Contents of StudioSysAdmins-Discuss digest..." Today's Topics:
1. Re: For those of you running Cisco ASA (greg whynott) 2. MPAA approval for Office 365? (Mike Braico) 3. Re: MPAA approval for Office 365? (julian firminger) 4. Re: MPAA approval for Office 365? (Ken Spickler) 5. Re: MPAA approval for Office 365? (Shane McEwan) 6. Re: MPAA approval for Office 365? (Francois Chardavoine) 7. Re: systemd (Greg Ercolano) 8. Newest Solutions from G-Technology (Peter Reitmeier) 9. Re: For those of you running Cisco ASA (Ben Roeder)
----- Message from greg whynott <greg.whynott@gmail.com> on Thu,
11 Feb 2016 12:17:56 -0500 -----To: | studiosysadmins-discuss
<studiosysadmins-discuss@studiosysadmins.com> | Subject: | Re:
[SSA-Discuss] For those of you running Cisco ASA |
That link seems to be dead (getting a 404), but
this one may work:
http://www.csoonline.com/article/3032198/security/cisco-asa-firewall-has-a-wormable-problem.html
Hard coded Fortinet passwords too..
greg
On Thu, Feb 11, 2016 at 5:21 AM, Ben Roeder <ben@sohonet.com>
wrote: Hi All, This weeks firewall issue also know as EXECUTE MY PACKET https://blog.exodusintel.com/2016/01/26/firewall-hacking/ CVE-2016-1287 [Cisco ASA Software IKEv1 and IKEv2 Buffer
Overflow Vulnerability]
Ben
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe
----- Message from Mike Braico <content@studiosysadmins.com> on Thu,
11 Feb 2016 19:32:09 -0000 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | [SSA-Discuss]
MPAA approval for Office 365? |
| Can
anyone comment on the MPAA point of view about Microsoft Office 365 for
document sharing and email? Did this come up in any recent audits? What studios are already using Office 365 for documents
and email that are passing MPAA audits. Thanks Mike Braico InData (310) 463-9701 www.indataconsulting.com | |
|
----- Message from julian firminger <justdigitalfilm@gmail.com> on
Thu, 11 Feb 2016 20:39:30 +0100 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | Re:
[SSA-Discuss] MPAA approval for Office 365? |
Good question. I'm wondering about Slack also for
not dissimilar reasons. Sent from the Google phone thingie. On 11 Feb 2016 8:32 pm, "Mike Braico" <content@studiosysadmins.com>
wrote: | Can
anyone comment on the MPAA point of view about Microsoft Office 365 for
document sharing and email? Did this come up in any recent audits? What studios are already using Office 365 for documents
and email that are passing MPAA audits. Thanks Mike Braico InData (310)
463-9701 www.indataconsulting.com | |
|
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe ----- Message from Ken Spickler <ken.spickler@gmail.com> on Thu,
11 Feb 2016 11:54:54 -0800 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | Re:
[SSA-Discuss] MPAA approval for Office 365? |
We use Office 365 for email and have passed multiple studio
audits. It is not accessible from our production systems so users have
a separate "admin" PC for this access.
On Feb 11, 2016, at 11:39 AM, julian firminger <justdigitalfilm@gmail.com>
wrote:
Good question. I'm wondering about Slack also for
not dissimilar reasons. Sent from the Google phone thingie. On 11 Feb 2016 8:32 pm, "Mike Braico" <content@studiosysadmins.com>
wrote: | Can
anyone comment on the MPAA point of view about Microsoft Office 365 for
document sharing and email? Did this come up in any recent audits? What studios are already using Office 365 for documents
and email that are passing MPAA audits. Thanks Mike Braico InData (310)
463-9701 www.indataconsulting.com | |
|
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe ----- Message from Shane McEwan <shane@mcewan.id.au> on Fri, 12 Feb
2016 07:10:02 +0000 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | Re:
[SSA-Discuss] MPAA approval for Office 365? |
On 11/02/16 19:39, julian firminger wrote: > Good question. I'm wondering about Slack also for not dissimilar
reasons.
If you want a Slack-like system but don't want to use a hosted service
you could try Mattermost:
http://www.mattermost.org/
It's practically identical but Open Source.
Shane.
----- Message from Francois Chardavoine <chardavo@imageworks.com>
on Thu, 11 Feb 2016 23:30:58 -0800 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | Re:
[SSA-Discuss] MPAA approval for Office 365? |
As long as your production systems (those that have access
to production content of any kind) don't have access to it, you can do
whatever you want (just like using google apps). That being said, office
365 did provide (up until recently, and presumably still now?) a "private
cloud" (on-prem) version you could install, typically for large enterprises,
which would be fully compliant with an audit.
The rules are pretty simple for these kinds of offerings
- either you: - can ONLY access them outside your "content"
network (so for instance no one has access to email without going through
a VDI or an alternate machine/device) - can ONLY access them within your content network (so
no one has webmail/etc. access form home, on their phone, or anywhere outside
your content network), typically meaning it's a hosted service on-prem
(or within an extension of your local network).
F.
On Thu, Feb 11, 2016 at 11:54 AM, Ken Spickler <ken.spickler@gmail.com>
wrote: We use Office 365 for email and have passed multiple studio
audits. It is not accessible from our production systems so users have
a separate "admin" PC for this access.
On Feb 11, 2016, at 11:39 AM, julian firminger <justdigitalfilm@gmail.com>
wrote:
Good question. I'm wondering about Slack also for
not dissimilar reasons. Sent from the Google phone thingie. On 11 Feb 2016 8:32 pm, "Mike Braico" <content@studiosysadmins.com>
wrote: | Can
anyone comment on the MPAA point of view about Microsoft Office 365 for
document sharing and email? Did this come up in any recent audits? What studios are already using Office 365 for documents
and email that are passing MPAA audits. Thanks Mike Braico InData (310)
463-9701 www.indataconsulting.com | |
|
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe
----- Message from Greg Ercolano <erco_mlist@seriss.com> on Thu,
11 Feb 2016 23:59:30 -0800 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | Re:
[SSA-Discuss] systemd |
On 08/13/14 09:42, Rory Falloon wrote: > Has anyone started to deploy distros that use systemD yet? Or have
experience with it regardless?
Waking up this old thread on systemd, as it's becoming
more and more ubiquitous, relevant, and hard for sysadmins
to ignore, as it manages just about everything now.
I've been researching systemd quite a bit the last
few days using Centos 7.2 as a test bed.
I found this video interesting, in particular because
the designer of systemd explains the design (Lennart Poettering):
https://www.youtube.com/watch?v=S9YmaNuvw5U
I expect systemd has come a long way since 2014,
and while still evolving, might be more stable now.
I won't weigh in with an opinion, don't wanna
go there just yet, still formulating one.
I will say anyone who admins linux will want to become
more familiar with this beast.. like it or hate it.
The video gets into many new unix kernel features
(e.g. cgroups) and cpu/mem management features that
I think many sysadmins will find useful for managing
load and system resources.
----- Message from Peter Reitmeier <content@studiosysadmins.com>
on Fri, 12 Feb 2016 13:20:55 -0000 -----To: | studiosysadmins-discuss@studiosysadmins.com | Subject: | [SSA-Discuss]
Newest Solutions from G-Technology |
| Good
day to all, G-Technology will be coming to Toronto next week, and would
love to visit with production and post-production facilities to discuss
storeage workflow. Their recent release of the Studio XL Shuttle, and the
complimentary Studio XL Shuttle with EV Series adapters are designed and
built for rugged use on editing carts and mobile solutions requiring high
performance and speed. Please contact me at your earliest convenience to book
a time to learn about these terrific products, and the rest of the G-technology
family of storage solutions. Thanks, Peter Reitmeier 647-226-2355 peter@up-market.ca | |
|
----- Message from Ben Roeder <ben@sohonet.com> on Fri, 12 Feb 2016
13:43:01 +0000 -----To: | "studiosysadmins-discuss@studiosysadmins.com"
<studiosysadmins-discuss@studiosysadmins.com> | Subject: | Re:
[SSA-Discuss] For those of you running Cisco ASA |
This is a lot more serious than a hardcoded password Remote code exec https://blog.exodusintel.com/2016/02/10/firewall-hacking/
The algorithm for re-assembling IKE payloads fragmented
with the Cisco fragmentation protocol contains a bounds-checking flaw that
allows a heap buffer to be overflowed with attacker-controlled data. A
sequence of payloads with carefully chosen parameters causes a buffer of
insufficient size to be allocated in the heap which is then overflowed
when fragment payloads are copied into the buffer. Attackers can use this
vulnerability to execute arbitrary code on affected devices. This flaw
affects IKE versions 1 and 2,
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160210-asa-ike
Ben
On Thu, Feb 11, 2016 at 5:17 PM, greg whynott <greg.whynott@gmail.com>
wrote: That link seems to be dead (getting a 404), but
this one may work:
http://www.csoonline.com/article/3032198/security/cisco-asa-firewall-has-a-wormable-problem.html
Hard coded Fortinet passwords too..
greg
On Thu, Feb 11, 2016 at 5:21 AM, Ben Roeder <ben@sohonet.com>
wrote: Hi All, This weeks firewall issue also know as EXECUTE MY PACKET https://blog.exodusintel.com/2016/01/26/firewall-hacking/ CVE-2016-1287 [Cisco ASA Software IKEv1 and IKEv2 Buffer
Overflow Vulnerability]
Ben
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe
To unsubscribe from the list send a blank e-mail to mailto:studiosysadmins-discuss-request@studiosysadmins.com?subject=unsubscribe
| |