chilifrei64

The only way to get this done is with a repair installation. Slipstreamed installations do not have uninstalls.

I needed a solution for one of my clients.. that link was the solution and it has worked great.. Custom adm files are the greatest.:-D

all you need to do to install screen savers is to drop the .scr file in teh C:\windows\system32 directory(or C:\winnt\system32 directory) then change the screen saver in teh screensaver control panel.

That is interesting.. blame it on the michiganders:-p Most educational facilities in michigan (indiana/ohio.. the surrounding states) use MichNET as their ISP. As they do go down alot, they filter alot of stuff as to protect the schools/libraries. Mainly for my own benifit/knowledge.. which ISP is it? As far as stopping it.. get yourself a 30 dollar Netgear router and put it infront of your internet connection. This greatly reduces your chances of getting hit from attacks.. On commercial ip address ranges.. you can get hit with more than 100 virus/port scans/exploit attempts per day. This is why they put up perimiter firewalls, because they perform what is called NAT which will block those attacks that are destined for PC machines. You will never stop all of them.. and even if you get the schoool to stop attacking you..you will still get attacks from other IP addresses. The best bet to make sure that you dont get exploited or attacked if you are going to be directly connected is to uninstall windows file and print sharing and client for microsoft networks under the network adapter, this leaves only TCP/IP enabled on the interface and removes many of the services that get exploited on windows. Do that with an up to date firewall and you should be ok.. but you will NEVER stop all the attacks.. which is why they have firewalls.

that would be the easiest way.. or you can specify group policies to deploy that settings to multiple computers or GP has a setting to disable the firewall. Normally in my group policies, I will disable windows firewall and disable the service because it does tend to remove some lingering dependencies.

the first matter of business would be to find out where the attack is coming from. Is this happening on a lan or a pc directly connected to the internet. In order to stop the attack.. you need to find the source and stop it. Simply adding a router/gateway infront of your network will effectively stop the attacks on your pc and make you less vulnerable.. if this is happening on a lan.. start scanning all pc's for viruses and clean them all.

you can set up a domain and apply the policy as Gokui posted The other thing you could do is test out different proxy server software that is out there and see how detailed in the configuration you can get.. you could have your main server pc be the proxy server.. therefore having internet access and could simply turn off the proxy service effectively disableing internet access. If set up this way.. most any proxy software will work.. setting up a standalone proxy server will require more configuration. Depending on what your constraints are I would do both strictly for security and deployment purposes but if it isnt cost effective then the solution is worthless. Once pc's are joined to a domain.. your control over the client pc are limitless.

you could use netlimiter.. not that you want to limit or control the network activity.. but after it is installed it doesnt limit anything but it will tell you what process is using what bandwidth http://www.netlimiter.com/

here is the article I used for one of my clients http://www.petri.co.il/block_web_browsing_with_ipsec.htm you can apply it using group policies.. just follow the link near the bottom and it will show you how to apply it with GP

CHeck the event logs on the client PC, this will normally lead you in the right direction. Secondly.. double check who and where you are applying this too. Also... try deploying software to the computer and not the user.. you wouldnt practically install MS Office to the user. Make sure your package has an MST file to it. If the msi requires input, the install will fail. you need to create a transform file to answer the programs questions during install

Most devices have the capibilities of authenticating to a radius server. I would assume the watchguard would be one of them. Or you could setup vpn passthrough on the watchguard and setup a Microsoft VPN Server. Beyond what many people beleive, Microsoft VPN is pretty secure(as long as your servers roll is a VPN server) and you can configure it to be even more secure depending on the configuration path you take. either way .. if you want to easily authenticate users to the domain.. just use Microsoft RRAS

it can be done with DFS but all your workstations would need to be windows servers.. I didnt know they had an open stardard for distributed file systems OpenASF sounds like your best bet if you are really going to be going forward with it.

sygate personal firewall is the firewall i use when i use one.. just thought i would put in my 2 cents Most of what you are specifying are desktop firewalls meant to protect the desktop yet you want filesharing. I do agree that this would be a simple thing to add as a trusted zone.. however.. what happens when you get to public internet access somewhere.. that means that you would then not be protected.. if your gonna have a desktop firewall system it is meant to protect your desktop from the network surrounding it. The checkpoints and PIX of the world are what you are looking for. If you want something that is going to be lan friendly, but dont want pix or checkpoint, ISA or whatever then get a linux box and put that infront of your network so your lan communicates.. then enable your desktop firewall when you access public internet hotspots. This is really the only way around it.

If that is what the uninstall string is in the registry key that exrcizn mentioned then yes ... just add that to the batch file you will then need to take that string and add it to a batch file. Quick note.. Most cases, this works well for both WinXP and 2k.. however, 1 instance of mine using this method, the uninstall strings werer different for xp and 2000.. and also.. sometimes you have to put start infront of it in the batch file.. it all depends on how the uninstall is called.

This is a reoccuring topic on this site and I ran across this article on digg.com which gives you 15 steps to install XP on your thumb drive. I just thought I would share it with everyone. http://www.informationweek.com/windows/sho...77102101&pgno=1

any time you are uploading alot of information your connection will slow down. In order for your computer to download information it must request it first which means it needs to upload information to the server to request information from it. If your upload speeds are maxed out or near full, this will increase the time for your computer to make the request therefore making it seem as if your download speeds are slower.. also remember that acknowledgement packets are sent back to the server stating that you have received them. once again.. if your uploads are being maxed.. this will decrease your download speeds.

your old data will be in emails are in the pst file and all other settings/addons/plugins are in all the other files %userprofile%\local settings\application data\Microsoft\Outlook

A couple quick things you could try is maybe the exchange db is dirty or corrupe.. try running the eseutil or isinteg utilities in the exchange server bin directory. Obviously make a backup before you run these utilities.. Also try making a full index of the database... Putting outlook 2003 in cached mode might force a download... also if your outlook has a corrupt ost file.. that can cause a problem also.. those are just a few off the top of my head

woa.....looks like i was about 1 second faster.

he is talking about the update rollup http://www.microsoft.com/windows2000/serve...ins/rollup.mspx

Or you can use this http://www.intersectalliance.com/snareserver/ kinda an all in one opensource suite... works well .. the only thing I dont like about it is it is pretty stripped down unless you purchase the enterprise edition.. but i am pretty sure it has reporting/alerting in the free version.. eitherway .. still a very good solution to a centralized error log configuration.

it is possible.. what you need are some managed switches (ciscos, dells, hp's) configured to query a radius server and authenticate it on the network.. Then you will need to apply group policies to the machines so they know to send authentication and what type of authentication to send. this is a obviously a breif description. there is MUCH MUCH MUCH more to it than that as far as configuring everything.. Start looking up on network authentication, setting up radius servers, configuring this type of stuff on the switches that you have.. if it is even possible. and deploying group policies. So yes it is possible but 1 you need the equipment and 2 you need the know how.. let me know if you need any more help..

visual route is as close as your gonna bet but even then it is not entirely accurate... it will normally only get you as close as the CO and not your street address.. but yeah.. without social engineering or some extreem hacking.. your not getting much farther unless you can get some sort of authority ot get the ISP to release the information like the RIAA does

Unless you have a real router, then you only have one port for the lan and that port is normally plugged into a switch/firewall device.. I guess I was thinking corporate network instead of home network. We need more information dude to be able to help you better... if you couldnt tell from the last few posts.. more information is required to better help you.

I have added all sorts of applications to to be deployed via GP by using WinstallLE. I would obviously do testing on each applications. I to used the one off the windows 2000 disk, certian applications need to install they way they were intended to. The only ones I had a problem with were MSDE and Pervasive SQL client and I deployed roughly 25 other applications using this method