- Sign-up Now!
 - Current Issue
 - Edit Your Profile/Unsubscribe

Subscribe | Media Kit | About Us | All Issues | Subscriber Feedback | Contact Us | Privacy Statement
Sunbelt W2Knews™ Electronic Newsletter
The secret of those "who always seem to know" - Over 500,000 Readers!
Mon, Sep 19, 2005 (Vol. 10, #38 - Issue #543)
Be Your Own HotSpot
  This issue of W2Knews™ contains:
    • Microsoft Certified Architect Program
    • Microsoft Professional Developer Conference
    • Admin Tools We Think You Shouldn't Be Without
    • School Is In Session With Mark Minasi!
    • Hard To Solve APC PowerChute Problem Solved
    • Now, Where Is My WinXP Key Again?
    • IANAL - End User License Agreements
    • Be Your Own HotSpot
    • Six Benefits Enhanced or Added to Software Assurance
    • Microsoft Reissues W2K Update Rollup
    • SMS 2003 OS Deployment Feature Pack
    • Windows Server 2003 Adds Some Storage Management
    • Monad Hits A Milestone
    • Fast Guide: Undocumented SQL Stored Procedures
    • Patching Your Antivirus Software
    • Announcing VMware Workstation 5.5 Beta
    • Quest Announces Storage Suite for Exchange
    • Award Winning Vulnerability SNSI Scanner Updated
  6. W2Knews 'FAVE' LINKS
    • This Week's Links We Like. Tips, Hints And Fun Stuff
    • LanHound Wins "Oscars" for Packet Sniffers!
  SPONSOR: White Paper: CounterSpy Active Protection
Spyware has become the new major headache for IT. Systems become
rapidly infected and regularly come to a grinding halt. You are
often forced to physically go to the end-user and manually run two
or three spyware removal tools to get rid of these threats to
corporate data. CounterSpy Enterprise uses a whopping 32 Active
Protection Monitors to help you combat spyware. These monitors scan
the PC for suspicious activity. They not only help protect corporate
privacy and identity, but they also prevent unauthorized programs from
taking control of your workstations. Download this White Paper (PDF) here:
Visit White Paper: CounterSpy Active Protection for more information.

Microsoft Certified Architect Program

Last issue I talked about the still mysterious "MCTA" program. But actually, a more detailed explanation of the new certification path for Microsoft is available. Redmond states: "The Microsoft Certified Architect Program identifies top industry experts in IT Architecture. These architects can employ multiple technologies to solve business problems and provide business metrics and measurements to describe the success or failure of the projects they drive. The program is currently in beta, and is expected to open to the architect community in early 2006. Also, as per a judgment of the Canadian Court, the title "engineer" seems no more officially permitted in Canada, so there are some changes there too. More at:

Microsoft Professional Developer Conference

An enormous amount of news has been released in Los Angeles this week. Sunbelt has 5 lead developers getting trained there, and Gates & friends released a torrent of new stuff. For instance, it looks like Office 12 will have a more intuitive user interface (same as Vista's), more preview features, and server capabilities. Redmond promised a preview version to developers this fall. But better yet, they gave out a 'Community Technology Preview' (CTP) of Vista, which was build (count'em) 5219 (!). More to follow, Redmond said.

  • They are also planning to spend a cool 100 mil on their new Windows Vista Partner Showcase Program, which is supposed to support MS's partners marketing efforts.
  • They released their new Expressions graphics suite, planned to run on the Windows Presentation Foundation, which is a platform-level presentation and display engine.
  • Redmond also showed Windows Workflow Foundation, obviously a combo workflow engine, programming model and a toolset that allows you to build workflow-enabled apps. It runs on both Windows client and server.
Here is Paul Thurrott's blog that takes the PDC in detail:

Quote Of The Week:
"For a successful technology, reality must take precedence over public relations, for nature cannot be fooled." -- R.P. Feynman

UNDO DEPT: A little historical correction regarding the settlers in Pennsylvania. The Dutch did not settle there, that was in New York. The Germans or Deutsch (pronounced doych) settled in Pennsylvania. Many of you sent me names of existing cities that if repeated here would not make it through the spam filters [grin]
(email me with feedback: [email protected])

Admin Tools We Think You Shouldn't Be Without


School Is In Session With Mark Minasi!

Popular author, keynote speaker, technical trainer and columnist Mark Minasi dissects XP SP2 and Windows Server 2003 SP1 in this series of five, 15-minute "cram session" webcasts.

Mark has pored over more than a thousand pages of Microsoft documentation and consolidated the information into five key sessions, available to busy Windows administrators in a humorous, provocative and informative self-paced learning environment. Find out the good and bad about Microsoft's latest desktop and server operating system service packs from Mark in his inimitable style. Be sure to sign up for our Webcast Alerts list to be notified of future events:

And attend Mark's webcasts today!

Hard To Solve APC PowerChute Problem Solved

A subscriber (name withheld on request) sent me this: " We have not talked in sometime I thought you would be interested in this PowerChute problem. We experienced this failure and came up with a solution. How many others will suffer the same fate?

APC has created a Java time bomb that is as effective as any Trojan yet devised. The Sun Microsystems Java Cryptography Extension expired and causes major server problems without errors in the logs.


  • Slow Reboot.
  • Network connections is blank.
  • Services cannot be stopped or started.
  • Programs cannot be added / removed.
  • The APC Agent is in a hung starting state.
  • The server acts slower than normal on GUI functions.
The APC 6.x software uses Sun Microsystems Java Cryptography Extension (JCE) 1.2.1 Package. The digital certificate that was used to sign the JCE 1.2.1 jar files expired on July 27, 2005. Because of this, the system causes the above detailed symptoms. APC acts as if all concerned will be so happy just to upgrade from their fiasco, to PowerChute 7:

Here is what the web is saying about this situation:

Microsoft adds their two cents.
Hope this solves some unexplained issues you might have!

Now, Where Is My WinXP Key Again?

Is there a way to retrieve the XP install key without having to deal with Microsoft. I have my original XP upgrade disk but not the case and the key was on the case. - D.R.

The easiest way is to use a freeware recovery tool called RockXP, which allows you to retrieve the product key that you used when you originally installed XP, and as an added bonus, will let you recover usernames and passwords that are contained in the Windows Secure Storage. You can download it from the Snapfiles Web site at

From W2Knews weekly sister publication WXPnews. Subscribe here:

IANAL - End User License Agreements

IANAL stands for I Am Not A Lawyer. But you practically need to be one to understand those agreements that you usually sign by clicking "I Agree" while you are running Install. They are usually complex legal documents. JavaCool Software has come up with a nifty tool that actually parses EULAs into key areas, like Advertising, Privacy, Search Terms, and assigns "interest levels" (basically, almost like a threat level). The basic version is free, and is available here:

Be Your Own HotSpot

Popular Science had a really interesting page for geeks like us. [grin] They said: " I love the fact that more and more devices are sporting built-in Wi-Fi-the Sony PSP, smartphones, even Kodak's EasyShare-One digital camera. The lone hitch: Wi-Fi is useless without a hotspot. Sure, thousands of spots are available, but few are free, and coverage is far from ubiquitous. What if you could marry the short-range power of Wi-Fi with the huge coverage areas of high-speed cellular services such as EV-DO to create a portable hotspot? You could use any Wi-Fi-enabled gadget anywhere you've got a cell signal. Play multiplayer games with friends in the park, or blog an event in real-time. Since EV-DO works at freeway speeds, you could even give Internet access to an entire road-trip caravan. Here is how to do it!


Six Benefits Enhanced or Added to Software Assurance

Microsoft is broadening the list of benefits available to its Licensing 6.0 Software Assurance subscribers to include three new pieces of desktop software, deployment assistance, enhanced support and extended training. Most of the new benefits take effect in March.

Customers who sign up for Software Assurance will get Windows "Eiger," Virtual PC Express and Windows Vista Enterprise Edition among other new benefits. Read more at ENTMag:

Microsoft Reissues W2K Update Rollup

The second version of the W2K SP4 update rollup is meant to fix a wide range of bugs. The first version was pretty grim. See the KB article below for the ugly detail. So, last Tuesday they reissued the W2K SP4 Update Rollup to fix most of the rather embarrassing glitches. It arrived just short of three months after MS first shipped the Update Rollup that contained more than 50 security patches and system reliability fixes.

Immediately after the June release, W2K SP4 users started screaming bloody murder that it broke third-party security apps and caused systems to freeze. Here is the KB article:

SMS 2003 OS Deployment Feature Pack

The ServerWatch site has a good write-up! "The Systems Management Server 2003 Operating System Deployment Feature Pack delivers the benefits of Windows PE reduced installation time, improved hardware support, and scripting capabilities without its inherent availabi- lity problems. -- The previous article of this series "Deploying Windows XP, Using the Windows PE", presented an alternative approach to traditional methods of unattended setup of Windows XP, based on Windows PE technology. You can find this article and a host of other good schtuff at the serverwatch site:

Windows Server 2003 Adds Some Storage Management

The new W2K3 Revision 2 includes a lot of new storage resource and SAN management features. You can find it later this month on MS's website. The new features include:

  • FSRM (File Server Resource Manager)for storage reporting and provisioning, which includes a quota system. It will work with disk arrays from different vendors.
  • A low-end Storage Manager GUI for SANs (Fibre Channel -and- iSCSI).
  • Samba has been made redundant with integration of NFS support into Microsoft Services for Unix.
  • Centralized file replication for branch offices through re-written distributed file service and better compression facilities.
Recently, a VDS 1.1 interoperability session was held in Redmond, with more than 20 storage vendors. VDS 1.1 allows you to manage storage logical units (LUNs) at a hardware level and also provision SAN storage using arrays from multiple vendors. A benefit of all this is that apps no longer have to have a specific interface to write to each individual hardware vendors' products. Instead the apps just use Redmond's APIs. And it makes it easier to install the formerly somewhat hard stuff like iSCSI SANs into smaller depart- ments. Note, and this is important: Windows Server R2 will require users to have a new license.

Monad Hits A Milestone

Microsoft has released a second beta for Monad, the company's alternative to the Linux and Unix command line scripting languages. Article over tat SearchWin2000.com:

Fast Guide: Undocumented SQL Stored Procedures

Stored procedures can help you control access, preserve data integrity and improve productivity, yet you may not be tapping into all the routines that ship with SQL Server. Read on for some useful undocumented stored procedures and tricks. Article at SearchSQLServer.com:


Patching Your Antivirus Software

Don't let your antivirus software be the weak link in your security chain. Patching it to keep it up to date is as important as patching your OS. Interesting article at the SearchWindowsSecurity site:

Announcing VMware Workstation 5.5 Beta

VMware announced the availability of VMware(r) Workstation 5.5 Beta, the latest version of VMware's desktop application for software developers/testers and IT professionals.

They have taken an exceptional product and improved it with new features and capabilities that increase individual productivity and flexibility. New capabilities include full support for select 64-bit guest operating systems and experimental support for 2-way Virtual SMP.

Now they want to know what you think of it! As a beta tester, you can provide them with real-world testing and product feedback that will ensure the final release provides the functionality and quality that you expect from VMware Workstation. Download the beta, use it, and give them your feedback!

Quest Announces Storage Suite for Exchange

Quest Software announced general availability of the new Quest Storage Suite for Exchange. The Storage Suite brings together Quest products used by hundreds of organizations into a new offering accessible via the familiar Microsoft Management Console (MMC). The suite enables efficient management and control of messaging data to help customers lower storage costs, meet compliance and electronic discovery needs, and manage e-mail system usage.

The Storage Suite uses the new Quest Management Console for Exchange for integrated Exchange Server administration. Based on MMC, the Quest Management Console allows users to manage both Quest and Microsoft native tools from a single integrated console, improving overall productivity.

The Storage Suite provides traffic analysis and reporting; conso- lidates e-mail storage; archives business communications and discovers and recovers data quickly. It includes:

  • Quest MessageStats - Performs business-critical traffic analysis and reporting.
  • Quest Archive Manager for Exchange - Manages mailbox growth and archives critical communications.
  • Quest Recovery Manager for Exchange - Discovers and recovers message-level items quickly.
Pricing and Availability: North American pricing for the Storage Suite for Exchange begins at $40 U.S. per managed mailbox. To download the software, and for more information about Quest's other products for Exchange management, click:

Award Winning Vulnerability SNSI Scanner Updated

Here's a notification of the latest update of the Sunbelt Network Security Inspector (SNSI) version (released September 16, 2005). Sunbelt Software recommends you download the new SNSI version and scan and patch your machines today!

To get the latest SNSI version, visit:
To update from within the SNSI console, select Settings, enter your full registration key and click on Check Now button. To Purchase NOW, visit:
http://www.w2knews.com/050919TP-Buy_SNSI New vulnerability updates for this release include:

Vuln   Name
H131   OpenView NNM 7.50 Web authentication bypass - HP-UX 11
L941   "Httpd - ""SSLVerifyClient"" directive/byterange filter
L942   Mozilla - Domain name processing - RHE
L943   Exim - Regular expression handling - RHE
L944   Firefox - Domain name processing - RHE
L945   Xfree86 - Pixmap image parsing - RHE
M60    Java JRE insecure file creation - Mac OS X
N53    Cisco - Firewall Authentication Proxy for FTP/Telnet Sessions
S331   Patchadd unable to install T-patches - Solaris 10
S332   Krb5_recvauth Library - Solaris 7 - 10
S333   StorEdge authentication bypass - Solaris
S334   Iplanet Messaging Server  - Solaris 2.6, 8 - 10
S335   Veritas Volume Manager instability in ufs logging -Solaris 9 - 10
W2604  Windows Genuine Advantage Tool Not Installed
W2605  Windows Updating Software Outdated
W2606  Adobe Reader 5 Core Plug-In Vulnerability
W2607  Adobe Acrobat 5 Core Plug-In Vulnerability
W2608  Oracle Collaboration Suite Multiple Vulnerabilities - Windows
W2609  Eventlog Information Disclosure Vulnerability
W2610  Service Enumeration Vulnerability

Updated Checks
W1142,W1986,W1999,W2067 - Anti-Virus

W1837 - Password Guessed or Missing (Blank) - Removed Server 2003 support. Note: Running W1837 on machines with large numbers of users may take a very long time or may not complete. Do not run W1837 on domain controllers.

Extended Capability
Updated to include Progeny RPMs:
L900, L926, L892, L935, L929

Updated to include Redhat enterprise:
Vendor Superseded Patches
H98 ServiceGuard Grant of Privileges - HP-UX 11

SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer incidents. It also contains the latest SANS/FBI top 20 vulnerability list. SNSI also uses the latest CERT, CIAC Microsoft and FedCIRC (Department of Homeland Security) advisories. To get the latest SNSI version, visit:

This Week's Links We Like. Tips, Hints And Fun Stuff


LanHound Wins "Oscars" for Packet Sniffers!

September 2005, LanHound won the Windows IT Pro Magazine Reader's Choice Awards for protocol analyzers. In short, it got its "Oscar" in the packet sniffer category! What separates this puppy from the pack is that it is a super affordable tool that helps you troubleshoot NT/2000/2003 LAN, WAN or Internet segments. LanHound has practically all the features of products twice as expensive, and it supports switched networks! Use LanHound to hunt down broadcast storms, analyze protocols, monitor and secure your network. Windows IT Pro Magazine said (July 2004 issue) "...LanHound is a solid protocol analyzer for the money..." Download an eval copy here: