- Sign-up Now!
 - Current Issue
 - Edit Your Profile/Unsubscribe

Subscribe | Media Kit | About Us | All Issues | Subscriber Feedback | Contact Us | Privacy Statement
Sunbelt W2Knews™ Electronic Newsletter
The secret of those "who always seem to know" - Over 500,000 Readers!
Mon, Apr 18, 2005 (Vol. 10, #16 - Issue #521)
Deploying W2K3 SP1: What Breaks?
  This issue of W2Knews™ contains:
    • An Enormous Amount Of News
    • Privacy Committee: "Need To Know Vs. Need To Protect"
    • Redmond To Unveil Xbox2!
    • New SunPoll
    • Uh Oh, We Could Lose Our Beloved IRS...
    • Admin Tools We Think You Shouldn't Be Without
    • Intel Starts Shipping Dual-Core P4
    • Wireless USB at 480Mbps Speeds
    • Expert Advice: SQL Server Availability
    • Beginner's Guide to Scripting
    • Step-by-Step Guide: E-mail Compliance To-do list
    • Linux Windows 2005 TCO Comparison
    • Deploying W2K3 SP1: What Breaks?
    • Microsoft and Intel Chart a Course for 64-Bit Computing
    • New Domain Poisoning Attacks Microsoft Servers
    • Microsoft Betas Backup and Recovery Product
    • "Why I Bought CounterSpy Enterprise"
    • PC World's Steve Bass: My Favorite Anti-Spyware Product
    • VMware Releases VMware Workstation 5.0
    • Be Prepared for Cyberterrorism
    • ServerVision Pricing Will Go Up!
  6. W2Knews 'FAVE' LINKS
    • This Week's Links We Like. Tips, Hints And Fun Stuff
    • Small Business At Increased Risk From Spyware
  SPONSOR: Microsoft/Tech-Ed
Learn, solve and grow at Tech?Ed 2005 -- June 5-10, Orlando, FL.
Get the most from the applications, languages, and code for the
Microsoft(r) platform you work with every day. Evaluate and
test-drive the latest software. Meet and talk to the architects
and engineers who built it. Network with thousands of your peers.
See the largest collection of Microsoft and Microsoft Partner
Solutions. Register now while space is still left.
Visit Microsoft/Tech-Ed for more information.

An Enormous Amount Of News

Man, this week was busy. Lots of stuff is happening in our space. I'm going to keep this little intro short and let you have at it!

Privacy Committee: "Need To Know Vs. Need To Protect"

The Department of Homeland Security's (DHS) privacy panel chose Paul Rosenzweig as its chairman. Paul is an attorney who several years ago supported an initiative to create a national database of travel documents, phone records, credit-card transactions, and email. The proposal was killed by congress in 2003 over privacy concerns. Last February, the DHS put an officer from Claria (formerly known as Gator) to their board. We all know that Claria is one of the most penetrated adware outfits. Now, the new DHS calls this a "privacy panel". But looking at the people in it, I'm not so sure that what they plan with our privacy! [grin]

Want to become active against spyware? Attend The Antispyware Workshop, hosted by CNET Download.com. It provides an opportunity to come together for a day of active and open dialogue about the current and future state of antispyware. It will be held at CNET's San Francisco offices on May 3rd, 2005. This full day workshop of relevant and timely sessions will ask and provide clarity to the tough questions: How are spyware and adware being defined and what are acceptable behaviors? Will legislation help regulate the industry? Is spyware okay as long as it's disclosed to the user? Where's the money? What is the future of antispyware?

This Workshop is an exclusive must-attend event for the leading vendors, government officials, and independent experts involved with the development, deployment, utilization and future of anti- spyware, and publishers of spyware and adware. Sunbelt Software's President Alex Eckelberry is a panel member and has a blog about the spyware market. You should get an RSS feed to this blog!

To sign up for The AntiSpyware Workshop, check here:

Redmond To Unveil Xbox2!

MS plans to release the next Xbox console in a special program coming May 12 on the MTV cable TV channel. This is a week earlier than a the E3 trade show in Los Angeles, where companies show off their latest products. The announcement will be on MTV channels in the U.S., Asia and Europe, all within a 24-hour window, in a half-hour program hosted by actor Elijah Wood. Of course this announcement is hotly anticipated by both the end-users and the video game industry. I may trade my old one for the new Xbox2.

New SunPoll

The new W2K3 SP1 is said to provide more security enhancements. Which do you think is most significant in the new service pack?

  • Security Configuration Wizard, to reduce server attack surface
  • Data Execution Prevention, for additional memory checks
  • Increased Internet Explorer security
  • Post-Setup Security Updates, to prevent infection between first install and first update
  • Windows Firewall not enabled by default

Vote here: http://www.sunbelt-software.com/

Uh Oh, We Could Lose Our Beloved IRS...

Since it is tax week in the USA, here is something relevant. This is tremendously funny, but it does (tongue-in-cheek) thoroughly explain just WHY we should all back the Fair Tax proposal! Read the whole thing and have fun:

Quotes Of The Week:
"We contend that for a nation to try to tax itself into prosperity is like a man standing in a bucket and trying to lift himself up by the handle." -- Winston Churchill
"The hardest thing in the world to understand is the income tax." -- Albert Einstein

Warm regards,
Stu Sjouwerman (email me with feedback: [email protected])


Admin Tools We Think You Shouldn't Be Without


Intel Starts Shipping Dual-Core P4

April 12th, Intel started shipping their first-ever dual-core P4 chips. That gives you the lion's share of the performance you'd get with a 2CPU box, at a lot lower cost. The official name of the beast is "Pentium 4 Extreme Edition 840" and the hardware makers will start showing machines in a few weeks, with their main focus on high-end gaming machines. Each of the chip-cores run at 3.2 GHz. By the end of June Intel will ship the Pentium D, a dual-core CPU which will be more widely available than the "Extreme 840".

Wireless USB at 480Mbps Speeds

At the Intel Developer Forum Japan 2005, several companies demo'd an interesting new technology - Wireless USB. The fun part about Wireless USB is the transfer rate, with the same maximum 480Mbps speed as USB 2.0. Add to this the fact that existing USB 2.0 products can be converted to Wireless USB products with adapters. Now, think this one through... connect the same Wireless USB device to multiple PCs at the same time! More at:

Expert Advice: SQL Server Availability

Experts Mike Hotek and Adam Machanic answer frequently asked questions about SQL Server availability. Plus, read about the latest availability and recovery features from Michael Otey's book, Microsoft SQL Server 2005 New Features. It's all in one convenient location. Be sure to bookmark the page because it's refreshed regularly at SearchSQLServer.com

Beginner's Guide to Scripting

Scripting is simpler than it looks and can save you substantial time and effort. Christa Anderson, a noted authority on the subject, explains basic scripting concepts in her first in a continuing series on scripting. Watch for this interactive column on SearchWinSystems.com where you will also have the opportunity to e-mail Christa your scripting questions. Send your questions to Christa at [email protected]

Step-by-Step Guide: E-mail Compliance To-do list

Ten tasks every Exchange administrator needs to address to meet today's compliance requirements at SearchExchange.com.

Linux Windows 2005 TCO Comparison

Yankee Group Events Presents an Application Infrastructure & Software Platforms Online Decision Forum Tuesday, April 19,'05 Hosted by Laura DiDio, Senior Analyst, Application Infrastructure & Software Platforms

After 4 years of inertia due to the economic downturn, corporate users-SMBs and enterprises alike-are preparing to upgrade their networks en masse. Whether your firm plans to upgrade its legacy Windows NT and Windows 2000 networks to Windows Server 2003 and Active Directory, switch to Linux or add Linux as a complementary OS to Windows in your environment, you need to know what's involved.

This Online Decision Forum will present a detailed overview of the myriad issues that affect total cost of ownership (TCO) and return on investment (ROI). Yankee Group will present data from its most recent research on Linux and Windows TCO. They'll also present case study reports based on our interviews with SMBs and enterprises.

They'll discuss the survey results and compare the costs of Linux and Windows upgrades in similar scenarios, including testing and recertifying applications, training new staff, the cost of third- party management and performance enhancement tools, the cost of downtime and security. This Online Decision Forum will appeal to IT administrators, CIOs, CTOs and software developers.


  • Overview of Industry Deployment Trends and Timetables
  • Survey Results
  • Comparison of Linux and Windows Performance and Reliability
  • Overview of Linux Market: Vendors and Customers
  • Overview of Windows Strengths, Weaknesses, Opportunities and Threats (SWOT)
  • Overview of Linux SWOT
  • Linux or Windows: Which One Is Right for Your Business?
  • Conclusions and Recommendations

Date and Time:
Tuesday, April 19, 2005
12:00 to 1:00 p.m. Eastern
9:00 to 10:00 a.m. Pacific
17:00 to 18:00 a.m. GMT

Registration directly at the Yankee web site:
If you need assistance, send an e-mail at [email protected] or call at (617) 956-5000, ext. 460.

Space is limited to the first 100 registrants, so please register early to reserve your seat. The deadlines for registration on Tuesday, April 19, 2005 are:

North America:
10:00 a.m. Eastern
7:00 a.m. Pacific

12:00 GMT

Registrations are on a first-come, first-served basis. All confirmed registrants will receive an e-mail one day prior to the call with the dial-in number and a URL link to the presentation.


Deploying W2K3 SP1: What Breaks?

W2K3 SP1 is essentially the server counterpart of WinXP SP2. The service pack for server is geared to security-related fixes and updates. It is expected that about 80 percent of "major server apps" will work out of the box. That means 20 percent need tweaks like turning off the MS Firewall.

Microsoft's KB has a good entry with the results of the Redmond "Windows Application Experience" test teams with SP1. They grabbed 127 server apps and tried it on W2K3 with SP1. Here are the results:

A bunch of relatively important things turned out not to work. Here is a partial list of applications known to have problems, culled from a lot of different sources and discussions on the Sunbelt NTSYSADMIN forum.

  • MOM users found a bug that kills the MOM admin console
  • Computer Associates' Brightstor ARCserve Backup 11.0
  • HP's Compaq Insight Manager and HP Insight Manager 4.0 products
  • Rockliffe Inc.'s MailSite e-mail server software breaks too
  • Microsoft Application Center 2000 Service Pack 2
  • SP1 breaks Cisco IUnity VOIP, uninstall SP1 to fix this
  • Microsoft Baseline Security Analyzer 1.2.1
  • Dell's OpenManage Software, and PowerEdge Domain Controllers
  • Microsoft (ISA) Server 2000 Service Pack 1
  • Some clients could not get dhcp address until the firewall was off
  • Microsoft Exchange Server 2003
  • MS SQL Server Reporting Services
  • Citrix Metaframe Remote client cannot connect to server
  • MS SMS 2003
  • NetIQ's AppManager 5.01 and 6.0 and GPAdmin 2.0 products
  • Trend Micro's ServerProtect

Microsoft is also getting flak for not talking enough to its Small Business Server customers. A lot of these have set up SUS or WUS. Now, when our friends in Redmond released SP1 for W2K3, as an SBS admin you see the Server SP1 show up on your SUS/WSUS update list. You decide to secure your server deploy SP1.

OUCH! Things break right, left and center. Here are some examples: fax services are failing, DHCP likely died, the "Change IP Address" tool has expired like a dead parrot. What should have been done is TEST, TEST, TEST! But SBS customers are a special breed. They often do not have the resources to do this. One server and that's it. Redmond should really have made it abundantly clear that this SP1 is NOT for SBS. So be very careful with that SP1 in your SBS environment, There will be a special SP1 for SBS later. More:

Here is a link to the Dell support site with an entry on SP1:

Let me repeat: Before you deploy W2K3 SP1... TEST, TEST, TEST!

Microsoft and Intel Chart a Course for 64-Bit Computing

I'm not sure if you know that Microsoft has a whole website dedicated to journalists. It's called PressPass, and available for anyone that wants to hear the official company line. I found an interview that is interesting, so here is a teaser and the whole thing is available via the link below!

Q&A: Microsoft's Bob Muglia and Intel's Abhi Talwalkar discuss 64-bit computing trends in the enterprise.

Microsoft and Intel are teaming up to educate customers and partners on new and existing opportunities surrounding both companies' broad portfolio of 64-bit technologies. This portfolio of products is expected to help drive broad adoption of 64-bit computing.

According to Microsoft and Intel estimates, 2005 will be the year when, for the first time, the vast majority of new server hardware and high-end workstation shipments will be 64-bit capable. Three factors are contributing to this shift. First, Intel's entire line-up of server platforms will have 64-bit capabilities.

Second, the Windows platform will support two different 64-bit architectures: Explicitly Parallel Instruction Computing (EPIC), supported by Intel's Itanium processor family, and 64-bit extensions to the x86 instruction set, supported by Intel's 64-bit Xeon and Pentium processors. Third, organizations are increasingly viewing these platforms as a cost-effective alternative to the higher-priced, proprietary 64-bit architecture of RISC-based UNIX servers.

To learn more about the trends in 64-bit computing, PressPass spoke with Bob Muglia, Microsoft senior vice president of the Windows Server Division, and Abhi Talwalkar, senior vice president and co-general manager of Intel's Digital Enterprise Group.

New Domain Poisoning Attacks Microsoft Servers

DNS cache poisoning attacks first reported in March continue, and Windows-based DNS servers appear to be particularly vulnerable. The systems management pipeline site has the story:

Microsoft Betas Backup and Recovery Product

Microsoft on Wednesday released a public beta of Microsoft System Center Data Protection Manager, a new disk-based backup and recovery server for Windows that was previously called Data Protection Server. In next week's issue I will compare this to Double-Take and explain the differences. Read more about this on the ENT site:


"Why I Bought CounterSpy Enterprise"

Here is a network admin at a bank that bought CSE for his domain.

"Why wouldn't I? It beat the pants off every other product I personally tested when it counted most. I even had our President ask if I could help his wife over the phone with her computer when it was infected with spyware less than a month ago. Spybot S&D couldn't get rid of it. Lavasoft detected a number of them, but would lock up the system before it could handle anything. Other things she tried hadn't worked. Antivirus software was of no use. Only Counterspy (consumer edition) was able to remove the threat and restore normal operation to her PC. I have noticed in the last 2 months that it has become VERY effective at what it does.

"This, in addition to your technical support's responsiveness to my Novell issue, sold me on the product. As long as Counterspy continues to do its job this well, I'm a customer for life. This technology is as vital to a PC/network defense system as firewalls and antivirus software. So thank YOU for being there to service us." -- Petar Zivovic, Cambridge Bank

PC World's Steve Bass: My Favorite Anti-Spyware Product

"The one I'm using--and the PC World Best Buy--is CounterSpy from Sunbelt Software. It's $20 and there's a 15-day trial at Sunbelt's site. I strongly encourage you to try it. Counterspy consistently found more spyware on my production and test PCs than other products, including my former favorites, Lavasoft's Ad-Aware SE Personal and Safer Networking's Spybot Search & Destroy."

VMware Releases VMware Workstation 5.0

This version includes several features not found in Redmond's Virtual PC 2004. Here are some of the most important points:

  • Cloning. You now can store a single copy of a VM on a share and provide multiple users with cloned copies of that VM.
  • Team features. Create a network of VM's on a single box.
  • Bandwidth throttling. As you need to test apps under different stress conditions.
  • Multiple snapshots: Just an example, you can install XP in a VM and snapshot it, then run SP1 and snapshot, then run SP2 and again take a snapshot and now move around between these three VM's...sweet.

Be Prepared for Cyberterrorism

Computerworld has a good article. They wrote that companies must prepare for terrorism in all aspects of their businesses, and the threat of cyberterrorism should be taken particularly seriously. Especially since now the lag time for exploits is just a few HOURS after patches are released by Microsoft. Black hats just reverse engineer the monthly patches in no time at all.

Networked systems are vulnerable because of their accessibility by way of the Internet, the ready availability of malicious tools, the increased exposure of globalized infrastructures and the interdependence of systems, which multiplies the consequences of an attack. Companies should prepare incident management and business continuity plans to guard against the loss and disruption of data, breach of confidentiality, system integrity and the disruption or denial of availability. Link to the article:

The two tools that we recommend are:
1) Double-Take. Still by far the best sold solution for both high availability and data/disaster recovery

2) Sunbelt Network Security Inspector. This is truly a military strength vulnerability scanner with a large team of anti-hackers behind it that religiously update the vulnerability database. You should really run this product, whether or not you have other scanners running. It was priced per admin (unlimited IP's) to allow you to do this and keep your systems secure. 4-star rated by the leading Enterprise Windows Magazine. And you'd be surprised which three-letter U.S. Government Agencies use this very same database to secure their networks! 30-day eval:

ServerVision Pricing Will Go Up!

Advanced warning! Per May 1, the prices for the new version of ServerVision V1.1 will go up. But if you buy now and get the normal 25% support contract, you will be grandfathered in so hurry up. ServerVision prevents downtime and intrusions. It shows you the status and health of all your servers on a single screen, and allows you to keep your servers secure at the same time. Its best feature is that it is easy to set up, easy to run, and easy to afford.
Get your 30-day eval here:


This Week's Links We Like. Tips, Hints And Fun Stuff


Small Business At Increased Risk From Spyware

The ConnectIT site had an article about it. It's true, small biz simply does not have the resources that large biz has. Not having the tools to find spyware can really be a problem, as the more insidious forms of spyware are very hard to find. That's why CounterSpy Enterprise is available as an affordable 25-pack for just $449 and that includes a full year worth of maintenance, tech support and spyware threat database updates. Did you know that CounterSpy enterprise is the ONLY third party product that apart from our own research team, gets spyware definitions from Microsoft? A tremendous advantage. The result? CounterSpy has the best spyware database in the industry! Get it here.