- Sign-up Now!
 - Current Issue
 - Edit Your Profile/Unsubscribe

Subscribe | Media Kit | About Us | All Issues | Subscriber Feedback | Contact Us | Privacy Statement
Sunbelt W2Knews™ Electronic Newsletter
The secret of those "who always seem to know" - Over 500,000 Readers!
Mon, Jun 25, 2001 (Vol. 6, #46 - Issue #281)
Useful Stuff
  This issue of W2Knews™ contains:
    • Useful Stuff
    • The .ida ISAPI Filter Offers Keyless Entry to IIS
    • It's Not Open Source. It's Shared Code
    • WXP Trashes Lots Of Hardware
    • Who Is #1 in SAN's?
    • How Much Should You Be Getting Paid?
  5. W2Knews 'FAVE' LINKS
    • This Week's Links We Like. Tips, Hints And Fun Stuff
    • All of the Windows 2000 Library
  SPONSOR: Windows 2000 Magazine
Windows 2000 Magazine - Try It Free!
Every issue of Windows 2000 Magazine is packed with superb coverage
of security, Active Directory, disaster recovery and more and helps
you navigate the rough waters of your job with ease. Get a free
sample issue now and without risk, and find out why your peers think
we're simply the best independent resource for Windows NT/2000 Pros.

Visit Windows 2000 Magazine for more information.

Useful Stuff

Hi All,

It's another interesting week with Tech.Ed and all. Lots of people have been sitting on news, and now they announce it. So, let's have a look at the stuff that's actually interesting and useful. There is so much noise in the market.

Warm regards,

Stu Sjouwerman (email me with feedback: [email protected])

  SPONSOR: IntenseSchool
The Virtues of IT Certification Boot Camps
Boot camps can be intensive, challenging experiences that immerse
you in a course of learning. While there are many ways of preparing
for difficult exams, the boot camp experience allows you to focus
all of your attention on your studies. Because of this intense
focus, the lessons learned at a boot camp can stick with you.
Visit IntenseSchool for more information.

The .ida ISAPI Filter Offers Keyless Entry to IIS

A major security vulnerability discovered recently in Microsoft's IIS Web Server provides keyless entry to more than six million Microsoft IIS Web servers around the world. Attackers who leverage the vulnerability can remotely gain full system access to any server running a default installation of IIS on Windows NT 4.0, 2000, or XP.

System-level access gives attackers the ability to install and run malicious code; manipulate Web server databases; add, change or delete files and Web pages; and do just about anything else they desire. A few years ago, if a company's Web site was broken into, little damage resulted. Times have changed, though, and a company's Web site today amounts to its digital identity and, in many cases, digital storefront.

Every day more companies rush to create or update their Web presences. In response, software companies rush to create products to sell to these companies wishing to venture onto the World Wide Web. Technology is allowing the consumer to, with a click of a button, interact with your company digitally in a way the world has never seen. Such power comes at a price, however.

Now that your company can be accessed legitimately over the Web from anywhere in the world, what have you - or, better yet, your software vendors - done to insure the security of your digital presence? If you're assuming your Web server is safe because it's made by a reputable vendor, you will be surprised as we get under the hood and look at this vulnerability. The rest of this article is at www.8wire.com

If you need a tool that will prevent current and future IIS holes:


It's Not Open Source. It's Shared Code

Client Server News commented on MS' recent announcement for .NET developers. There is now a new website that allows you to 'share' your .NET code. MS stresses the slight difference between open and shared code. If you write Visual Studio .NET code you can go to www.vscodeswap.com and post your code, and of course download stuff you think you can use for yourself.

The rules are a bit different from open source. If you download some code and change it, there's no obligation to give the improvements back. The way to pull this trick off is called CodeSwap, and you need a piece of free client software that of course only runs on Windows.

WXP Trashes Lots Of Hardware

Last Wednesday MS released the actual requirements for hardware running WXP, together with their new "XP Ready" logo program for machines that live up to the new power levels.

As I said in earlier issues, you need a lot more horses than the old 9x boxes, but since it's the NT kernel it's not so surprising the new requirements are almost the same as W2K. Redmond claims you need an absolute minimum of 233MHz CPU, but better go with 300MHz. Personally I would recommend a 500 at the very least for acceptable performance, but get as much power as you can get!

Regarding RAM, they say 128MB really is minimum. Well, plug that thing as full as you can. I say 256 if you can, but 512 is even better. DRAM is Dirt Cheap at the moment. Hard Drive needs 1.5Gig. and you need SVGA or higher. Actually, no real surprises, but a lot of your old 9X hardware can be relegated to the recycle center. Give them to a school or something.

Practically all large hardware boys will have XP Ready boxes when the stuff will be released on October 25. If you buy a PC now, make sure to ask about a possible free upgrade to XP!! (They tend to do that, so their sales do not crash just before a major release like this).


Who Is #1 in SAN's?

There are a few Industry Analysts that track numbers. Dataquest is one of them, and they are tracking SAN sales. Many companies are moving toward these storage architectures with their NT and W2K servers. Dataquest announced that Compaq sold 24,000 SAN's last year, which is a whopping 48.5% of this relatively young market.

And, if we believe Dataquest's numbers, the rest of the market is held by Sun with 14%, EMC with 11%, HP:7%, Dell:3%, IBM:2% and some one I heard of only now called HDS has one percent.

Looks like Compaq is doing well with SAN's. They marketshare went from 17.4% in 1999 to 24.9% in 2000 looking at total sales. Keep in mind that Compaq bought Digital Equipment a while ago, and DEC's StorageWorks runs fine with Solaris as well, so they are selling into the SUN market.

How Much Should You Be Getting Paid?

Perhaps you know Seachwin2000.com. These guys do a lot of good work. They regularly have live events, and a new one was just held. The transcript is out, and this one is worth it, so you can check what kind of value you have in the market.

The audio transcript for their recent online event, "Spotlight on Compensation and Careers: Hot Technical Skills" is available. You can review all the great questions from your peers, and the valuable advice to advance your career (and boost your salary!) from David Foote, managing partner of Foote Partners, LLC and former META Group and Gartner analyst.

Just be sure to log in to searchWin2000, and that you have speakers and Windows Media Player on your PC to hear all the helpful content on the hottest tech skills to add to your arsenal. If you are not registered with them, you have to do that first, but it's free and worth it. Here goes:


This Week's Links We Like. Tips, Hints And Fun Stuff

  • Where are all the Post SP2 Windows 2000 Hotfixes together? Here of course!
  • Free color printers. But Xerox asks a LOT of questions! (USA only)
  • The free reports from the NSA are getting some FLAK. IIS especially.

    All of the Windows 2000 Library

    You should check out the full library that is available, and see which ones you do not have yet. All of them with significant discounts for W2Knews subscribers.