- Sign-up Now!
 - Current Issue
 - Edit Your Profile/Unsubscribe

Subscribe | Media Kit | About Us | All Issues | Subscriber Feedback | Contact Us | Privacy Statement
Sunbelt W2Knews™ Electronic Newsletter
The secret of those "who always seem to know" - Over 500,000 Readers!
Mon, Jul 12, 2004 (Vol. 9, #27 - Issue #483)
Disaster Recovery Research
  This issue of W2Knews™ contains:
    • Disaster Recovery Research
    • Attend Webinar & Get Free "Spam Sucks" T-Shirt
    • Latest RSS-Link
    • New SunPoll - Your Fave Print Mag?
    • Sunbelt Forums: WinXP SP2 and Spyware
    • Hands-on Windows Internals/Sysinternals Class
    • Crash Course: Spyware
    • 'Test drive' Exchange 2003
    • The Windows Server 2003 Reference Guide Shootout
    • Are Agents Required For Patch Management?
    • New Ways To Justify AntiSpam Tools
    • SNSI Adds 10 More Vulnerability Checks
  5. W2Knews 'FAVE' LINKS
    • This Week's Links We Like. Tips, Hints And Fun Stuff
    • Tom and Deb Shinder's Configuring ISA Server 2004
  SPONSOR: Panda's GateDefender Stands Guard!
Are your traditional antivirus solutions really protecting your
Panda Antivirus GateDefender is a dedicated hardware
device installed at the Internet gateway to block viruses before
they contaminate your network. It scans 7 different communication
protocols, achieving optimum protection against external attacks.
Panda Antivirus GateDefender 7100 (25-500 seats) & Panda
Antivirus GateDefender 7200
(500 seats+) provide the highest
scalability with native load balancing that transparently adapts
to traffic volume.
Visit Panda's GateDefender Stands Guard! for more information.

Disaster Recovery Research

A fairly large survey is going on, co-sponsored by EMC, ZDNet/CNET, 365 Main, and The Data Center Journal on Disaster Recovery. They sent a public invitation, starting with something that you as system admins (many using Double-Take) already know: "Adequate disaster recovery and business continuity planning is now accepted as a basic requirement for every organization and business. Be a part of a critical nationwide survey on business continuity and disaster recovery. We invite you to participate in this news-making survey on Business Continuity, and get a chance to win a new iPod. Your responses will be kept strictly confidential." I did the thing myself (took less than 5 minutes) and it's interesting, but they can't spell 'seismic'. [grin]

Attend Webinar & Get Free "Spam Sucks" T-Shirt

Presented by Microsoft Office Live Meeting and Sunbelt Software

  • How spam is effecting business productivity
  • Available spam filtering solutions for the enterprise
  • The pros and cons of spam filtering technology
  • How to best secure your technology environment against spam
Register now, attend and receive your "Spam Sucks" t-shirt.

July 22, 2004
9:00AM - 10:00AM PST
12:00PM - 1:00PM EST
(All times US & Canada)

Latest RSS-Link

And to show that RSS now really has made 'mainstream', Yahoo news has gone RSS too. ('bout halfway down the page are the now famous little orange links.) See them here:

New SunPoll - Your Fave Print Mag?

As a system manager, which Print Magazine do you feel is the most important and helpful to get your job done? (Next SunPoll we'll look at online resources, email me some suggestions?)

  • Network World
  • MCP Magazine (Soon Redmond Magazine)
  • Certification Magazine
  • SC Magazine
  • Windows & .Net Mag (Soon Windows IT Pro)
Vote here, rightmost column:

Quotes this week:

  • "The days pass by so quickly now, the nights are seldom long" -- Anonymous
  • A senior engineer who was asked why he never gets worried when the servers aren't behaving themselves. His quote was "As long as no one is shooting at me I'm not worried." -- Jim Slocum. (He was a gunner in WWII.)
  • Warm regards,
    Stu Sjouwerman (email me with feedback: [email protected])

      SPONSOR: Why are 4,000+ Sites Running iHateSpam for Exchange?
    Exchange Admins choose it for its robust spam filtering for V5.5,
    2K and 2K3.
    With a 95% spam detection rate right out of the box,
    it will save you - the admin - time and money, and your users will
    love you. A powerful, best-selling enterprise-wide spam filter at
    a great price. ANNOUNCING: Anti-Virus, Content Auditing & Filtering
    coming soon! Try it free for 30 days.
    Visit Why are 4,000+ Sites Running iHateSpam for Exchange? for more information.

    Sunbelt Forums: WinXP SP2 and Spyware

    There are two new topics to discuss. The expected Service Pack 2 for WinXP (which looks like almost a whole new OS just by itself) and Spyware, which has become the latest scourge to add itself to the spam headache. You can discuss these issues at two new forums we created for you at the community section on the Sunbelt website. The rules are ON TOPIC, NO NOISE and FRIENDLY. Get on here:

    Hands-on Windows Internals/Sysinternals Class

    By David Solomon & Mark Russinovich
    San Francisco, September 27-October 1, 2004

    Bring your own laptop and spend 5 days with David Solomon & Mark Russinovich, authors of Inside Windows 2000 3rd edition, digging into the internals of Windows NT/2000/XP/2003 with the aim of helping you understand what's going on "under the hood". Topics covered include processes, thread scheduling, memory management, I/O, the registry, security, the boot process, and crash dump analysis. Learn how to apply the advanced troubleshooting tools from http://www.sysinternals.com to solve a variety of system problems. Advance discount pricing ends August 16. To register, visit:

    Crash Course: Spyware

    Spyware is often considered malicious, but it can also determine whether an employee is stealing company info. These tips and advice can help you weigh the pros and cons of spyware, and learn how to protect yourself. The article sits at the SearchWin2000 Site and is useful for sure. (Free registration may be required.)

      NT/2000 RELATED NEWS

    'Test drive' Exchange 2003

    If you are contemplating migrating to Exchange 2003 and want to test-drive the technology before you make a commitment, Microsoft has just the offer for you. Microsoft will let you try Exchange 2003 free for up to 30 days so you can get an idea how the product works. One benefit is that you get to try Outlook Web Access and Outlook Mobile Access, which is probably a good way for you to get an idea of the features available that your users would be able to tap into. Further, because you can add up to five users for the trial period, you can have a subset of your IT shop operating on the 2003 server. (Free registration may be required.)

    The Windows Server 2003 Reference Guide Shootout

    As an administrator, having the right technical reference at your disposal is crucial. And at first glance, most Windows Server 2003 references appear identical. But books can be deceiving. Read Bernie Klinder?s review of over 7,000 pages of five technical reference books ? street value of over $300! Are they all created equal? Does size matter? Should you make your selection by publisher or author? Find out here. (Free registration may be required.)


    Are Agents Required For Patch Management?

    The dilemma for many system admins in deploying an automated patch management solution may appear trivial to their management, but trying to decide whether or not to use an agent gives many network admins headaches. Some organizations like to reduce the amount of agents that already reside on machines, most often if such stations are in isolated or locked down networks. Less agents can mean more positive control over settings and configurations.

    But in many cases, agents provide an invaluable service in helping to ensure the highest security state of a whole domain. The sheer number of patches that software manufacturers continually release presents a critical problem to admins tasked with keeping track of relevant hotfixes while guaranteeing that their deployment will not disrupt working installations. In this common scenario, manual patch management methods become largely ineffective and way costly.

    Third-party solutions need to understand this quagmire, and respond with solutions that provide even greater degrees of customization and flexibility. For example, UpdateEXPERT provides an OPTIONAL client agent architecture to empower admins with the flexibility to patch their networks in the most effective way possible. IT staffs can manage any combination of machines with a simultaneous mix of agents and non-agents.

    With resources already stretched thin, managing hotfixes for disparate networks requires patch management solution providers to offer systems that can be tailored to different environments within an organization. In reality, offering an optional agent architecture is no longer a "nice to have," but rather a mandatory feature that help system admins secure the myriad of network configurations. Check out UpdateEXPERT here:

    New Ways To Justify AntiSpam Tools

    The SearchSmallBizIT site (link below) came up with an article about all the ways you can justify antispam tools for your management. Numbers of the actual, real amount of spam vary wildly per company. Some say it's 36%, others claim over 60%. What most system admins agreed upon though, was voiced by Tom Pisello, CEO of Alinean: " More than 80% of costs related to lost productivity is attributed to managing and deleting unwanted e-mails." That means to a large degree YOUR time!

    The article provides good ammo, and breaks down the cost of spam in lost productivity, IT costs, Legal and security risks, and user education. It makes sense to invest in tools that are able to both defeat spam and viruses in an integrated way so that the least amount of resources are spent keeping email secure. The next incarnation of iHateSpam for Exchange (now being built) will have this integration from the ground up, and also provide you with content auditing, filtering, plus disclaimers and email archiving. Current customers will be able to get these new features at a nominal fee!

    SNSI Adds 10 More Vulnerability Checks

    Sunbelt Network Security Inspector (SNSI) Version has been released July 7, 2004. To update from within the SNSI console, select Settings, enter your full registration key and click on Check Now button.

    New vulnerability updates for this release include:

    W2184 - DirectPlay IDirectPlay4 API Vulnerability (MS04-016)
    W2185 - Crystal Reports Web Viewer Vulnerability (MS04-017)
    W2186 - Opera Icon Vulnerability W2187 RealPlayer RealMedia Plug-in Vulnerability
    W2188 - RealPlayer URL Parsing Vulnerability
    W2189 - I-Lookup Detected
    W2190 - PHP Input Validation Vulnerability
    W2191 - SetTimer API Vulnerability - NT 4.0
    W2192 - Account Lockout Count Increment Issue - NT 4.0
    W2193 - Download.Ject Detected W2194 ISA Server 2000 Latest Service Pack Not Installed
    W1983 - Spyware/Adware
    W1142 - Anti-Virus
    W1986 - Anti-Virus
    W1999 - Anti-Virus
    W2067 - Anti-Virus

    SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer incidents. It also contains the latest SANS/FBI top 20 vulnerability list. SNSI also uses the latest CERT, CIAC Microsoft and FedCIRC (Department of Homeland Security) advisories.

    NEW in version 1.5 (currently in public beta)

    • Multiplatform: SNSI can now scan Linux, HP UX, Cisco routers, and HP printers. Check the link below for all new platforms supported, it's an impressive list!
    • IP Scanning: Scan by single IP address, IP range, or subnet
    • Port Scanning: Find open ports FAST.
    • Service Scanning: See all the services running on your Windows machines.
    • New Scanning Wizard: Now it's even easier to configure and monitor scans.

    This Week's Links We Like. Tips, Hints And Fun Stuff


    Tom and Deb Shinder's Configuring ISA Server 2004

    Tom and Deb Shinder's best selling books on ISA Server 2000 were the "ISA Server Bibles" for thousands of ISA Server 2000 network administrators. Tom and Deb Shinder are preparing for you their next ISA Server book, Configuring ISA Server 2004. This book leverages the over two years of pre-release experience Tom and Deb have had with ISA Server 2004, from pre-alpha to RTM and all the versions and builds in between. They've logging literally 1000's of flight hours with ISA Server 2004 and they'll be sharing the Good, the Great, the Bad and the Ugly of ISA Server 2004 with their no holds barred coverage of Microsoft's new one of a kind app-layer inspection firewall.

    While the ISA Server 2000 books were good, Configuring ISA Server 2004 is going to be even better. Tom and Deb bring their unique "insider's perspective" to provide you with information that isn't and won't be available anywhere else! Pre-order your copy of Configuring ISA Server 2004 by clicking the link.