Sunbelt W2Knews Electronic Newsletter
The secret of those "who always seem to know" - Over 500,000 Readers!
Mon, Apr 18, 2005 (Vol. 10, #16 - Issue #521)
Deploying W2K3 SP1: What Breaks?
This issue of W2Knews contains:
- EDITORS CORNER
- An Enormous Amount Of News
- Privacy Committee: "Need To Know Vs. Need To Protect"
- Redmond To Unveil Xbox2!
- New SunPoll
- Uh Oh, We Could Lose Our Beloved IRS...
- ADMIN TOOLBOX
- Admin Tools We Think You Shouldn't Be Without
- TECH BRIEFING
- Intel Starts Shipping Dual-Core P4
- Wireless USB at 480Mbps Speeds
- Expert Advice: SQL Server Availability
- Beginner's Guide to Scripting
- Step-by-Step Guide: E-mail Compliance To-do list
- Linux Windows 2005 TCO Comparison
- NT/2000 RELATED NEWS
- Deploying W2K3 SP1: What Breaks?
- Microsoft and Intel Chart a Course for 64-Bit Computing
- New Domain Poisoning Attacks Microsoft Servers
- Microsoft Betas Backup and Recovery Product
- NT/2000 THIRD PARTY NEWS
- "Why I Bought CounterSpy Enterprise"
- PC World's Steve Bass: My Favorite Anti-Spyware Product
- VMware Releases VMware Workstation 5.0
- Be Prepared for Cyberterrorism
- ServerVision Pricing Will Go Up!
- W2Knews 'FAVE' LINKS
- This Week's Links We Like. Tips, Hints And Fun Stuff
- PRODUCT OF THE WEEK
- Small Business At Increased Risk From Spyware
Learn, solve and grow at Tech?Ed 2005 -- June 5-10, Orlando, FL.
Get the most from the applications, languages, and code for the
Microsoft(r) platform you work with every day. Evaluate and
test-drive the latest software. Meet and talk to the architects
and engineers who built it. Network with thousands of your peers.
See the largest collection of Microsoft and Microsoft Partner
Solutions. Register now while space is still left.
Visit Microsoft/Tech-Ed for more information.
An Enormous Amount Of News
Man, this week was busy. Lots of stuff is happening in our space.
I'm going to keep this little intro short and let you have at it!
Privacy Committee: "Need To Know Vs. Need To Protect"
The Department of Homeland Security's (DHS) privacy panel chose
Paul Rosenzweig as its chairman. Paul is an attorney who several
years ago supported an initiative to create a national database
of travel documents, phone records, credit-card transactions, and
email. The proposal was killed by congress in 2003 over privacy
concerns. Last February, the DHS put an officer from Claria
(formerly known as Gator) to their board. We all know that Claria
is one of the most penetrated adware outfits. Now, the new DHS
calls this a "privacy panel". But looking at the people in it,
I'm not so sure that what they plan with our privacy!
Want to become active against spyware? Attend The Antispyware
Workshop, hosted by CNET Download.com. It provides an opportunity
to come together for a day of active and open dialogue about the
current and future state of antispyware. It will be held at CNET's
San Francisco offices on May 3rd, 2005. This full day workshop of
relevant and timely sessions will ask and provide clarity to the
tough questions: How are spyware and adware being defined and what
are acceptable behaviors? Will legislation help regulate the
industry? Is spyware okay as long as it's disclosed to the user?
Where's the money? What is the future of antispyware?
This Workshop is an exclusive must-attend event for the leading
vendors, government officials, and independent experts involved
with the development, deployment, utilization and future of anti-
spyware, and publishers of spyware and adware. Sunbelt Software's
President Alex Eckelberry is a panel member and has a blog about
the spyware market. You should get an RSS feed to this blog!
To sign up for The AntiSpyware Workshop, check here:
Redmond To Unveil Xbox2!
MS plans to release the next Xbox console in a special program
coming May 12 on the MTV cable TV channel. This is a week earlier
than a the E3 trade show in Los Angeles, where companies show off
their latest products. The announcement will be on MTV channels
in the U.S., Asia and Europe, all within a 24-hour window, in a
half-hour program hosted by actor Elijah Wood. Of course this
announcement is hotly anticipated by both the end-users and the
video game industry. I may trade my old one for the new Xbox2.
The new W2K3 SP1 is said to provide more security enhancements.
Which do you think is most significant in the new service pack?
- Security Configuration Wizard, to reduce server attack surface
- Data Execution Prevention, for additional memory checks
- Increased Internet Explorer security
- Post-Setup Security Updates, to prevent infection between first
install and first update
- Windows Firewall not enabled by default
Vote here: http://www.sunbelt-software.com/
Uh Oh, We Could Lose Our Beloved IRS...
Since it is tax week in the USA, here is something relevant.
This is tremendously funny, but it does (tongue-in-cheek)
thoroughly explain just WHY we should all back the Fair Tax
proposal! Read the whole thing and have fun:
Quotes Of The Week:
"We contend that for a nation to try to tax itself into prosperity
is like a man standing in a bucket and trying to lift himself up
by the handle." -- Winston Churchill
"The hardest thing in the world to understand is the income tax."
-- Albert Einstein
(email me with feedback: [email protected])
Admin Tools We Think You Shouldn't Be Without
Intel Starts Shipping Dual-Core P4
April 12th, Intel started shipping their first-ever dual-core P4
chips. That gives you the lion's share of the performance you'd
get with a 2CPU box, at a lot lower cost. The official name of
the beast is "Pentium 4 Extreme Edition 840" and the hardware
makers will start showing machines in a few weeks, with their
main focus on high-end gaming machines. Each of the chip-cores
run at 3.2 GHz. By the end of June Intel will ship the Pentium D,
a dual-core CPU which will be more widely available than the
Wireless USB at 480Mbps Speeds
At the Intel Developer Forum Japan 2005, several companies demo'd
an interesting new technology - Wireless USB. The fun part about
Wireless USB is the transfer rate, with the same maximum 480Mbps
speed as USB 2.0. Add to this the fact that existing USB 2.0
products can be converted to Wireless USB products with adapters.
Now, think this one through... connect the same Wireless USB
device to multiple PCs at the same time! More at:
Expert Advice: SQL Server Availability
Experts Mike Hotek and Adam Machanic answer frequently asked
questions about SQL Server availability. Plus, read about the
latest availability and recovery features from Michael Otey's
book, Microsoft SQL Server 2005 New Features. It's all in one
convenient location. Be sure to bookmark the page because it's
refreshed regularly at SearchSQLServer.com
Beginner's Guide to Scripting
Scripting is simpler than it looks and can save you substantial
time and effort. Christa Anderson, a noted authority on the
subject, explains basic scripting concepts in her first in a
continuing series on scripting. Watch for this interactive column
on SearchWinSystems.com where you will also have the opportunity
to e-mail Christa your scripting questions. Send your questions
to Christa at [email protected]
Step-by-Step Guide: E-mail Compliance To-do list
Ten tasks every Exchange administrator needs to address to meet
today's compliance requirements at SearchExchange.com.
Linux Windows 2005 TCO Comparison
Yankee Group Events Presents an Application Infrastructure &
Software Platforms Online Decision Forum Tuesday, April 19,'05
Hosted by Laura DiDio, Senior Analyst, Application Infrastructure
& Software Platforms
After 4 years of inertia due to the economic downturn, corporate
users-SMBs and enterprises alike-are preparing to upgrade their
networks en masse. Whether your firm plans to upgrade its legacy
Windows NT and Windows 2000 networks to Windows Server 2003 and
Active Directory, switch to Linux or add Linux as a complementary
OS to Windows in your environment, you need to know what's involved.
This Online Decision Forum will present a detailed overview of the
myriad issues that affect total cost of ownership (TCO) and return
on investment (ROI). Yankee Group will present data from its most
recent research on Linux and Windows TCO. They'll also present case
study reports based on our interviews with SMBs and enterprises.
They'll discuss the survey results and compare the costs of Linux
and Windows upgrades in similar scenarios, including testing and
recertifying applications, training new staff, the cost of third-
party management and performance enhancement tools, the cost of
downtime and security. This Online Decision Forum will appeal to
IT administrators, CIOs, CTOs and software developers.
- Overview of Industry Deployment Trends and Timetables
- Survey Results
- Comparison of Linux and Windows Performance and Reliability
- Overview of Linux Market: Vendors and Customers
- Overview of Windows Strengths, Weaknesses, Opportunities and
- Overview of Linux SWOT
- Linux or Windows: Which One Is Right for Your Business?
- Conclusions and Recommendations
Date and Time:
Tuesday, April 19, 2005
12:00 to 1:00 p.m. Eastern
9:00 to 10:00 a.m. Pacific
17:00 to 18:00 a.m. GMT
Registration directly at the Yankee web site:
If you need assistance, send an e-mail at [email protected]
or call at (617) 956-5000, ext. 460.
Space is limited to the first 100 registrants, so please register
early to reserve your seat. The deadlines for registration on
Tuesday, April 19, 2005 are:
10:00 a.m. Eastern
7:00 a.m. Pacific
Registrations are on a first-come, first-served basis. All confirmed
registrants will receive an e-mail one day prior to the call
with the dial-in number and a URL link to the presentation.
NT/2000 RELATED NEWS
Deploying W2K3 SP1: What Breaks?
W2K3 SP1 is essentially the server counterpart of WinXP SP2. The
service pack for server is geared to security-related fixes and
updates. It is expected that about 80 percent of "major server
apps" will work out of the box. That means 20 percent need tweaks
like turning off the MS Firewall.
Microsoft's KB has a good entry with the results of the Redmond
"Windows Application Experience" test teams with SP1. They grabbed
127 server apps and tried it on W2K3 with SP1. Here are the results:
A bunch of relatively important things turned out not to work.
Here is a partial list of applications known to have problems,
culled from a lot of different sources and discussions on the
Sunbelt NTSYSADMIN forum.
- MOM users found a bug that kills the MOM admin console
- Computer Associates' Brightstor ARCserve Backup 11.0
- HP's Compaq Insight Manager and HP Insight Manager 4.0 products
- Rockliffe Inc.'s MailSite e-mail server software breaks too
- Microsoft Application Center 2000 Service Pack 2
- SP1 breaks Cisco IUnity VOIP, uninstall SP1 to fix this
- Microsoft Baseline Security Analyzer 1.2.1
- Dell's OpenManage Software, and PowerEdge Domain Controllers
- Microsoft (ISA) Server 2000 Service Pack 1
- Some clients could not get dhcp address until the firewall was off
- Microsoft Exchange Server 2003
- MS SQL Server Reporting Services
- Citrix Metaframe Remote client cannot connect to server
- MS SMS 2003
- NetIQ's AppManager 5.01 and 6.0 and GPAdmin 2.0 products
- Trend Micro's ServerProtect
Microsoft is also getting flak for not talking enough to its Small
Business Server customers. A lot of these have set up SUS or WUS.
Now, when our friends in Redmond released SP1 for W2K3, as an SBS
admin you see the Server SP1 show up on your SUS/WSUS update list.
You decide to secure your server deploy SP1.
OUCH! Things break right, left and center. Here are some examples:
fax services are failing, DHCP likely died, the "Change IP Address"
tool has expired like a dead parrot. What should have been done is
TEST, TEST, TEST! But SBS customers are a special breed. They
often do not have the resources to do this. One server and that's
it. Redmond should really have made it abundantly clear that this
SP1 is NOT for SBS. So be very careful with that SP1 in your SBS
environment, There will be a special SP1 for SBS later. More:
Here is a link to the Dell support site with an entry on SP1:
Let me repeat: Before you deploy W2K3 SP1... TEST, TEST, TEST!
Microsoft and Intel Chart a Course for 64-Bit Computing
I'm not sure if you know that Microsoft has a whole website
dedicated to journalists. It's called PressPass, and available
for anyone that wants to hear the official company line. I found
an interview that is interesting, so here is a teaser and the
whole thing is available via the link below!
Q&A: Microsoft's Bob Muglia and Intel's Abhi Talwalkar discuss
64-bit computing trends in the enterprise.
Microsoft and Intel are teaming up to educate customers and
partners on new and existing opportunities surrounding both
companies' broad portfolio of 64-bit technologies. This
portfolio of products is expected to help drive broad adoption
of 64-bit computing.
According to Microsoft and Intel estimates, 2005 will be the year
when, for the first time, the vast majority of new server hardware
and high-end workstation shipments will be 64-bit capable. Three
factors are contributing to this shift. First, Intel's entire
line-up of server platforms will have 64-bit capabilities.
Second, the Windows platform will support two different 64-bit
architectures: Explicitly Parallel Instruction Computing (EPIC),
supported by Intel's Itanium processor family, and 64-bit
extensions to the x86 instruction set, supported by Intel's 64-bit
Xeon and Pentium processors. Third, organizations are increasingly
viewing these platforms as a cost-effective alternative to the
higher-priced, proprietary 64-bit architecture of RISC-based
To learn more about the trends in 64-bit computing, PressPass
spoke with Bob Muglia, Microsoft senior vice president of the
Windows Server Division, and Abhi Talwalkar, senior vice president
and co-general manager of Intel's Digital Enterprise Group.
New Domain Poisoning Attacks Microsoft Servers
DNS cache poisoning attacks first reported in March continue, and
Windows-based DNS servers appear to be particularly vulnerable.
The systems management pipeline site has the story:
Microsoft Betas Backup and Recovery Product
Microsoft on Wednesday released a public beta of Microsoft System
Center Data Protection Manager, a new disk-based backup and
recovery server for Windows that was previously called Data
Protection Server. In next week's issue I will compare this
to Double-Take and explain the differences. Read more about this
on the ENT site:
THIRD PARTY NEWS
"Why I Bought CounterSpy Enterprise"
Here is a network admin at a bank that bought CSE for his domain.
"Why wouldn't I? It beat the pants off every other product I
personally tested when it counted most. I even had our President
ask if I could help his wife over the phone with her computer
when it was infected with spyware less than a month ago. Spybot
S&D couldn't get rid of it. Lavasoft detected a number of them,
but would lock up the system before it could handle anything.
Other things she tried hadn't worked. Antivirus software was
of no use. Only Counterspy (consumer edition) was able to remove
the threat and restore normal operation to her PC. I have noticed
in the last 2 months that it has become VERY effective at what
"This, in addition to your technical support's responsiveness to
my Novell issue, sold me on the product. As long as Counterspy
continues to do its job this well, I'm a customer for life.
This technology is as vital to a PC/network defense system as
firewalls and antivirus software. So thank YOU for being there
to service us." -- Petar Zivovic, Cambridge Bank
PC World's Steve Bass: My Favorite Anti-Spyware Product
"The one I'm using--and the PC World Best Buy--is CounterSpy
from Sunbelt Software. It's $20 and there's a 15-day trial
at Sunbelt's site. I strongly encourage you to try it. Counterspy
consistently found more spyware on my production and test PCs
than other products, including my former favorites, Lavasoft's
Ad-Aware SE Personal and Safer Networking's Spybot Search &
VMware Releases VMware Workstation 5.0
This version includes several features not found in Redmond's
Virtual PC 2004. Here are some of the most important points:
- Cloning. You now can store a single copy of a VM on a share and
provide multiple users with cloned copies of that VM.
- Team features. Create a network of VM's on a single box.
- Bandwidth throttling. As you need to test apps under different
- Multiple snapshots: Just an example, you can install XP in a
VM and snapshot it, then run SP1 and snapshot, then run SP2 and
again take a snapshot and now move around between these three
Be Prepared for Cyberterrorism
Computerworld has a good article. They wrote that companies
must prepare for terrorism in all aspects of their businesses,
and the threat of cyberterrorism should be taken particularly
seriously. Especially since now the lag time for exploits is
just a few HOURS after patches are released by Microsoft.
Black hats just reverse engineer the monthly patches in no
time at all.
Networked systems are vulnerable because of their accessibility
by way of the Internet, the ready availability of malicious
tools, the increased exposure of globalized infrastructures and
the interdependence of systems, which multiplies the consequences
of an attack. Companies should prepare incident management and
business continuity plans to guard against the loss and disruption
of data, breach of confidentiality, system integrity and the
disruption or denial of availability. Link to the article:
The two tools that we recommend are:
1) Double-Take. Still by far the best sold solution for both
high availability and data/disaster recovery
2) Sunbelt Network Security Inspector. This is truly a military
strength vulnerability scanner with a large team of anti-hackers
behind it that religiously update the vulnerability database.
You should really run this product, whether or not you have
other scanners running. It was priced per admin (unlimited IP's)
to allow you to do this and keep your systems secure. 4-star
rated by the leading Enterprise Windows Magazine. And you'd
be surprised which three-letter U.S. Government Agencies use
this very same database to secure their networks! 30-day eval:
ServerVision Pricing Will Go Up!
Advanced warning! Per May 1, the prices for the new version of
ServerVision V1.1 will go up. But if you buy now and get the
normal 25% support contract, you will be grandfathered in so
hurry up. ServerVision prevents downtime and intrusions. It
shows you the status and health of all your servers on a single
screen, and allows you to keep your servers secure at the same
time. Its best feature is that it is easy to set up, easy to
run, and easy to afford.
Get your 30-day eval here:
This Week's Links We Like. Tips, Hints And Fun Stuff
PRODUCT OF THE WEEK
Small Business At Increased Risk From Spyware
The ConnectIT site had an article about it. It's true, small biz
simply does not have the resources that large biz has. Not having
the tools to find spyware can really be a problem, as the more
insidious forms of spyware are very hard to find. That's why
CounterSpy Enterprise is available as an affordable 25-pack for
just $449 and that includes a full year worth of maintenance,
tech support and spyware threat database updates. Did you know
that CounterSpy enterprise is the ONLY third party product that
apart from our own research team, gets spyware definitions from
Microsoft? A tremendous advantage. The result? CounterSpy has the
best spyware database in the industry! Get it here.