Saturday, March 27, 2010

Moved from Altiris Deployment Solution to Windows Deployment Services (WDS)

We have been using Altiris for years and since Symantec bought them out, the price structure has been too cost prohibitive for us to continue to re-license it. As we prepare for Windows 7, we were able to setup two Windows Deployment Service servers fairly easy. I was happy that we were able to capture Windows XP images, so that as we transition we don't have to worry about holding onto our old Altiris setup.

I used the Windows Deployment Services Step-by-Step Guide and the Windows Deployment Services Getting Started Guide to setup the systems (which those URLs at the bottom of this post).  The following is a quick overview of our settings.

Our Configuration
  • Two stand-alone Windows 2008 R2 servers running Windows Deployment Services
  • Two subnets
  • Independent DHCP servers per subnet
Setting up the stand-alone Windows Deployment Services servers:
  1. Installed Windows 2008 R2 Standard Server
  2. Installed the Windows Deployment Services Role - Deployment and Transport Services
  3. Configured my settings and added the boot and install images off my Windows 7 and Vista DVDs.
Adding the PXE Boot settings to our independent DHCP servers
  1. Opened the DHCP Administrative utility
  2. Opened the scope options
  3. Added options 66 and 67 ("server1" for option 66 and "\boot\x86\wdsnbp.com" for option 67)
Conclusion
  • Everything went very smoothly and faster than expected to transition.  We all trained on Windows Deployment Services one afternoon and were able to install and capture images quite easily.  I do want to note, since I didn't read this anywhere in the documentation, that it appears that you can only capture one disk image at a time per image group.  We started four machines at once to capture an updated Windows 7 image and only one machine captured with the other three erring out.  The reason why is we were trying to capture an image from each machine to one image group.  Each image group has a database type file that the images are stored to and it appears only one write sequence can occur at a time.  It's not a frequent occurrence that multiple images would be captured, but I thought it was worth noting.

    We are very pleased and within one more day of testing, we stopped using Altiris Deployment Solution all together.
References

Monday, March 8, 2010

Battery Chargers Be Warned


Energizer®'s USB Port Duo Battery Charger, which charges your batteries via your computer's USB port, has backdoor that may allow a remote attacker to view files or launch software. The software is supposed to allow the user to see how the battery charging progresses is going on. It also loads a .dll and sets it to load automatically every time the computer is started by adding to Windows Start-Up and launching arucer.dll.

I just want to know who thought this was a good idea anyway? Wait only 10 hours to charge two AA rechargeable batteries and stress my USB port's power, were do I pickup one of these gems?!!? :P



References:

http://www.kb.cert.org/vuls/id/154421
http://www.us-cert.gov/current/index.html#engergizer_duo_usb_battery_charger
http://www.energizer.com/SiteCollectionDocuments/pdf/rechargeable/chusb_instructions_english.pdf