Sunbelt W2Knews Electronic Newsletter
The secret of those "who always seem to know" - Over 500,000 Readers!
Mon, Jul 12, 2004 (Vol. 9, #27 - Issue #483)
Disaster Recovery Research
This issue of W2Knews contains:
- EDITORS CORNER
- Disaster Recovery Research
- Attend Webinar & Get Free "Spam Sucks" T-Shirt
- Latest RSS-Link
- New SunPoll - Your Fave Print Mag?
- TECH BRIEFING
- Sunbelt Forums: WinXP SP2 and Spyware
- Hands-on Windows Internals/Sysinternals Class
- Crash Course: Spyware
- NT/2000 RELATED NEWS
- 'Test drive' Exchange 2003
- The Windows Server 2003 Reference Guide Shootout
- NT/2000 THIRD PARTY NEWS
- Are Agents Required For Patch Management?
- New Ways To Justify AntiSpam Tools
- SNSI Adds 10 More Vulnerability Checks
- W2Knews 'FAVE' LINKS
- This Week's Links We Like. Tips, Hints And Fun Stuff
- PRODUCT OF THE WEEK
- Tom and Deb Shinder's Configuring ISA Server 2004
SPONSOR: Panda's GateDefender Stands Guard!
Are your traditional antivirus solutions really protecting your
network? Panda Antivirus GateDefender is a dedicated hardware
device installed at the Internet gateway to block viruses before
they contaminate your network. It scans 7 different communication
protocols, achieving optimum protection against external attacks.
Panda Antivirus GateDefender 7100 (25-500 seats) & Panda
Antivirus GateDefender 7200 (500 seats+) provide the highest
scalability with native load balancing that transparently adapts
to traffic volume.
Visit Panda's GateDefender Stands Guard! for more information.
Disaster Recovery Research
A fairly large survey is going on, co-sponsored by EMC, ZDNet/CNET,
365 Main, and The Data Center Journal on Disaster Recovery. They
sent a public invitation, starting with something that you as system
admins (many using Double-Take) already know: "Adequate disaster
recovery and business continuity planning is now accepted as a basic
requirement for every organization and business. Be a part of a
critical nationwide survey on business continuity and disaster
recovery. We invite you to participate in this news-making survey on
Business Continuity, and get a chance to win a new iPod. Your
responses will be kept strictly confidential." I did the thing
myself (took less than 5 minutes) and it's interesting, but they
can't spell 'seismic'. [grin]
Attend Webinar & Get Free "Spam Sucks" T-Shirt
Presented by Microsoft Office Live Meeting and Sunbelt Software
Register now, attend and receive your "Spam Sucks" t-shirt.
- How spam is effecting business productivity
- Available spam filtering solutions for the enterprise
- The pros and cons of spam filtering technology
- How to best secure your technology environment against spam
July 22, 2004
9:00AM - 10:00AM PST
12:00PM - 1:00PM EST
(All times US & Canada)
And to show that RSS now really has made 'mainstream', Yahoo news
has gone RSS too. ('bout halfway down the page are the now famous
little orange links.) See them here:
New SunPoll - Your Fave Print Mag?
As a system manager, which Print Magazine do you feel is the most
important and helpful to get your job done? (Next SunPoll we'll
look at online resources, email me some suggestions?)
Vote here, rightmost column:
- Network World
- MCP Magazine (Soon Redmond Magazine)
- Certification Magazine
- SC Magazine
- Windows & .Net Mag (Soon Windows IT Pro)
Quotes this week:
"The days pass by so quickly now, the nights are seldom long" -- Anonymous
A senior engineer who was asked why he never gets worried when
the servers aren't behaving themselves. His quote was "As long
as no one is shooting at me I'm not worried." -- Jim Slocum.
(He was a gunner in WWII.)
(email me with feedback: [email protected])
SPONSOR: Why are 4,000+ Sites Running iHateSpam for Exchange?
Exchange Admins choose it for its robust spam filtering for V5.5,
2K and 2K3. With a 95% spam detection rate right out of the box,
it will save you - the admin - time and money, and your users will
love you. A powerful, best-selling enterprise-wide spam filter at
a great price. ANNOUNCING: Anti-Virus, Content Auditing & Filtering
coming soon! Try it free for 30 days.
Visit Why are 4,000+ Sites Running iHateSpam for Exchange? for more information.
Sunbelt Forums: WinXP SP2 and Spyware
There are two new topics to discuss. The expected Service Pack 2
for WinXP (which looks like almost a whole new OS just by itself)
and Spyware, which has become the latest scourge to add itself
to the spam headache. You can discuss these issues at two new
forums we created for you at the community section on the Sunbelt
website. The rules are ON TOPIC, NO NOISE and FRIENDLY. Get on here:
Hands-on Windows Internals/Sysinternals Class
By David Solomon & Mark Russinovich
San Francisco, September 27-October 1, 2004
Bring your own laptop and spend 5 days with David Solomon & Mark
Russinovich, authors of Inside Windows 2000 3rd edition, digging
into the internals of Windows NT/2000/XP/2003 with the aim of helping
you understand what's going on "under the hood". Topics covered
include processes, thread scheduling, memory management, I/O, the
registry, security, the boot process, and crash dump analysis.
Learn how to apply the advanced troubleshooting tools from
http://www.sysinternals.com to solve a variety of system problems.
Advance discount pricing ends August 16. To register, visit:
Crash Course: Spyware
Spyware is often considered malicious, but it can also determine
whether an employee is stealing company info. These tips and advice
can help you weigh the pros and cons of spyware, and learn how to
protect yourself. The article sits at the SearchWin2000 Site and
is useful for sure. (Free registration may be required.)
NT/2000 RELATED NEWS
'Test drive' Exchange 2003
If you are contemplating migrating to Exchange 2003 and want to
test-drive the technology before you make a commitment, Microsoft
has just the offer for you. Microsoft will let you try Exchange
2003 free for up to 30 days so you can get an idea how the product
works. One benefit is that you get to try Outlook Web Access and
Outlook Mobile Access, which is probably a good way for you to get
an idea of the features available that your users would be able
to tap into. Further, because you can add up to five users for
the trial period, you can have a subset of your IT shop operating
on the 2003 server. (Free registration may be required.)
The Windows Server 2003 Reference Guide Shootout
As an administrator, having the right technical reference at your
disposal is crucial. And at first glance, most Windows Server 2003
references appear identical. But books can be deceiving. Read Bernie
Klinder?s review of over 7,000 pages of five technical reference
books ? street value of over $300! Are they all created equal?
Does size matter? Should you make your selection by publisher or
author? Find out here. (Free registration may be required.)
THIRD PARTY NEWS
Are Agents Required For Patch Management?
The dilemma for many system admins in deploying an automated patch
management solution may appear trivial to their management, but
trying to decide whether or not to use an agent gives many network
admins headaches. Some organizations like to reduce the amount of
agents that already reside on machines, most often if such stations
are in isolated or locked down networks. Less agents can mean more
positive control over settings and configurations.
But in many cases, agents provide an invaluable service in helping
to ensure the highest security state of a whole domain. The sheer
number of patches that software manufacturers continually release
presents a critical problem to admins tasked with keeping track of
relevant hotfixes while guaranteeing that their deployment will
not disrupt working installations. In this common scenario, manual
patch management methods become largely ineffective and way costly.
Third-party solutions need to understand this quagmire, and respond
with solutions that provide even greater degrees of customization and
flexibility. For example, UpdateEXPERT provides an OPTIONAL client
agent architecture to empower admins with the flexibility to patch
their networks in the most effective way possible. IT staffs can
manage any combination of machines with a simultaneous mix of agents
With resources already stretched thin, managing hotfixes for disparate
networks requires patch management solution providers to offer
systems that can be tailored to different environments within an
organization. In reality, offering an optional agent architecture is
no longer a "nice to have," but rather a mandatory feature that help
system admins secure the myriad of network configurations. Check out
New Ways To Justify AntiSpam Tools
The SearchSmallBizIT site (link below) came up with an article
about all the ways you can justify antispam tools for your
management. Numbers of the actual, real amount of spam vary
wildly per company. Some say it's 36%, others claim over 60%.
What most system admins agreed upon though, was voiced by Tom
Pisello, CEO of Alinean: " More than 80% of costs related to lost
productivity is attributed to managing and deleting unwanted
e-mails." That means to a large degree YOUR time!
The article provides good ammo, and breaks down the cost of
spam in lost productivity, IT costs, Legal and security risks,
and user education. It makes sense to invest in tools that
are able to both defeat spam and viruses in an integrated way
so that the least amount of resources are spent keeping email
secure. The next incarnation of iHateSpam for Exchange (now
being built) will have this integration from the ground up,
and also provide you with content auditing, filtering, plus
disclaimers and email archiving. Current customers will be
able to get these new features at a nominal fee!
SNSI Adds 10 More Vulnerability Checks
Sunbelt Network Security Inspector (SNSI) Version 220.127.116.11
has been released July 7, 2004. To update from within the
SNSI console, select Settings, enter your full registration
key and click on Check Now button.
New vulnerability updates for this release include:
W2184 - DirectPlay IDirectPlay4 API Vulnerability (MS04-016)
W2185 - Crystal Reports Web Viewer Vulnerability (MS04-017)
W2186 - Opera Icon Vulnerability W2187 RealPlayer RealMedia Plug-in Vulnerability
W2188 - RealPlayer URL Parsing Vulnerability
W2189 - I-Lookup Detected
W2190 - PHP Input Validation Vulnerability
W2191 - SetTimer API Vulnerability - NT 4.0
W2192 - Account Lockout Count Increment Issue - NT 4.0
W2193 - Download.Ject Detected W2194 ISA Server 2000 Latest Service Pack Not Installed
W1983 - Spyware/Adware
W1142 - Anti-Virus
W1986 - Anti-Virus
W1999 - Anti-Virus
W2067 - Anti-Virus
SNSI uses the latest Mitre Common Vulnerabilities and Exposures
(CVE) list of computer incidents. It also contains the latest
SANS/FBI top 20 vulnerability list. SNSI also uses the latest
CERT, CIAC Microsoft and FedCIRC (Department of Homeland Security)
NEW in version 1.5 (currently in public beta)
- Multiplatform: SNSI can now scan Linux, HP UX, Cisco routers, and HP printers. Check the link below for all new platforms supported, it's an impressive list!
- IP Scanning: Scan by single IP address, IP range, or subnet
- Port Scanning: Find open ports FAST.
- Service Scanning: See all the services running on your Windows machines.
- New Scanning Wizard: Now it's even easier to configure and monitor scans.
This Week's Links We Like. Tips, Hints And Fun Stuff
PRODUCT OF THE WEEK
Tom and Deb Shinder's Configuring ISA Server 2004
Tom and Deb Shinder's best selling books on ISA Server 2000 were
the "ISA Server Bibles" for thousands of ISA Server 2000 network
administrators. Tom and Deb Shinder are preparing for you their
next ISA Server book, Configuring ISA Server 2004. This book
leverages the over two years of pre-release experience Tom and Deb
have had with ISA Server 2004, from pre-alpha to RTM and all the
versions and builds in between. They've logging literally 1000's
of flight hours with ISA Server 2004 and they'll be sharing the
Good, the Great, the Bad and the Ugly of ISA Server 2004 with their
no holds barred coverage of Microsoft's new one of a kind app-layer
While the ISA Server 2000 books were good, Configuring ISA Server
2004 is going to be even better. Tom and Deb bring their unique
"insider's perspective" to provide you with information that isn't
and won't be available anywhere else! Pre-order your copy of
Configuring ISA Server 2004 by clicking the link.