Vol. 10, #49 - Dec 5, 2005 - Issue #554
Breaking News: Sunbelt To Acquire The Kerio Personal Firewall
- EDITORS CORNER
- Breaking News: Sunbelt To Acquire The Kerio Personal Firewall
- New From Redmond Research: No Cost Email Triage
- Global Warming a Fact? Not So Fast...
- Quotes of the Week
- ADMIN TOOLBOX
- Admin Tools We Think You Shouldn't Be Without
- TECH BRIEFING
- MS Makes RSS A Two-Way Street
- How To Become A Microsoft Certified Architect
- Microsoft Now Offers Its Own Tool To Test Memory
- Security Competency Gets Revamped
- WINDOWS SERVER NEWS
- The Impact of Microsoft Live May be Years Away
- Checklist: Five Backend Tasks You Should Automate
- WINDOWS SERVER THIRD PARTY NEWS
- How Will The New CounterSpy Enterprise V2.0 Look?
- So, How Does Double-Take Compare To Neverfail?
- Latest SNSI Vulnerability Update
- New Utility Keeps Window Registry Tidy
- WServerNews 'FAVE' LINKS
- This Week's Links We Like. Tips, Hints And Fun Stuff.
- WServerNews - PRODUCT OF THE WEEK
- The Sunbelt Kerio Personal Firewall
Stop Spyware Before It Enters Your Network
Now you can stop spyware before it enters your network!
The new Cymphonix Network Composer uses Sunbelt's industry-
leading CounterSpy SDK threat recognition database to ensure
that your business is completely protected from spyware threats.
With Network Composer protecting your network at the Internet
Gateway and CounterSpy Enterprise on the client-side you'll have
the best spyware protection available on the market.
Visit Cymphonix to Order Your Free Evaluation Unit!
Breaking News: Sunbelt To Acquire The Kerio Personal Firewall
Here are some of the highlights:
We are thrilled with this acquisition, it's our personal favorite. We
just really like how it operates. It's straightforward, very effective
and also has cool features like ad blocking and intrusion prevention.
- The acquisition is expected to be finalized by the end of this month.
- The Kerio Personal Firewall will be re-branded on an interim basis
as the "Sunbelt Kerio Personal Firewall".
- All existing customers of the Kerio Personal Firewall will be able
to receive support through Sunbelt once the acquisition is completed.
- Upon the close of the deal, Sunbelt will also announce new reduced
pricing for the full version of the product and a variety of special
offers for both Kerio and Sunbelt customers.
- Additionally, Sunbelt will continue Kerio's tradition of providing
a basic free version for home users.
- During the transition period, Kerio will continue to support the
product and users are encouraged to download the Kerio Personal
Firewall from the Kerio website at www.kerio.com until the acquisition
The deal will be closing at the end of the month and at that point
we'll reduce the price. Sunbelt customers will also get the opportunity
to buy the Kerio Firewall at a discount and we'll also be offering
Sunbelt products to Kerio users at a discount. Such a deal.
From a technical standpoint, this product is pretty amazing. We were
blown away during our technical due diligence with the quality of the
coding and the many security features built into the product. This
product is hot. This should all be wrapped up in a couple of weeks.
If you want to check it out now, scroll down to the Product Of the
Week section. We have a link there. (Tip 'o the hat to Alex.)
New From Redmond Research: No Cost Email Triage
The tool is called SNARF. An email from your manager is more
important than a message from a stranger. SNARF applies this idea
to email triage: handling the flow of messages when time is short
and mail is long. The SNARF UI is designed to provide a quick
overview of unread mail, organized by its importance. The UI
shows a series of different panes with unread mail in them; each
pane shows a list of authors of messages. Clicking on a name shows
all messages involving that person. Works with several email
clients and handy when you are roaming and check email on the fly.
I just indexed all my folders and it was cool to see that in the
2,000 emails I got this week, it indeed identified the important
people I deal with, and which emails I had not answered yet! When
I whacked a whole folder at once, it updated dynamically. This is
actually very useful. I have it sitting on my desktop now!
Global Warming a Fact? Not So Fast...
Over the Thanksgiving Holiday I just ripped through a fascinating
book by Michael Crichton that just came out in paperback. It's
called "State of Fear". Could not put it down! Crichton spent
three years studying global temperature data and CO2 emissions
and a lot of other data related to global temperature change
before he wrote this book. Instead of 'listening' to opinions
in the media, he used his scientific background and 'looked' at
the actual data.
Truly eye-opening and this book definitely has my "Stu's Warmly
Recommended". Do not believe what you read and hear in the mass
media about 'global warming'. Here is someone who actually did his
homework, without an 'agenda'. And he provides all the references.
Plus, a gripping story as well! Here's a link to the paperback.
Great Holiday Gift for yourself or a family member, and share it.
Quotes of the Week
"When the search for truth is confused with political advocacy,
the pursuit of knowledge is reduced to the quest for power"
-- Alston Chase
"Nothing is so firmly believed as that which is least known"
MS Makes RSS A Two-Way Street
Redmond is extending the popular RSS 2.0 Web syndication format
to make it "multidirectional," allowing it to be used to synch
information such as contacts and calendar entries across different
applications, they said. Did I hear some one say: "Embrace and
Extend"? [grin] More at InfoWorld:
How To Become A Microsoft Certified Architect
Here is the site that tells you all about it. The program "validates
top industry experts in IT Architecture. These professionals have
10 or more years of experience in IT with at least 3 years of
experience as a practicing architect and possess strong technical
and leadership skills and form a distinguished community."
If you want to be part of this illustrious group, you must pass
a rigorous review board made up of previously certified architects.
The certification is targeted to people who can use "multiple
technologies to solve business problems and provide business
metrics and measurements to describe the success or failure of
the projects they drive." More at:
Microsoft Now Offers Its Own Tool To Test Memory
The Windows Memory Diagnostic tests the Random Access Memory
(RAM) on your computer for errors. The diagnostic includes a
comprehensive set of memory tests. If you are experiencing
problems while running Windows, you can use the diagnostic to
determine whether the problems are caused by failing hardware,
such as RAM or the memory system of your motherboard. Windows
Memory Diagnostic is designed to be easy and fast. On most
configurations, you can download the diagnostic, read the
documentation, run the test and complete the first test pass
in less than 30 minutes. Here it is:
Security Competency Gets Revamped
Michael Domingo at MCP Mag has a good article about MS and
Security Competency. As a response to partners seeking help from
Microsoft in its never-ending battle to keep customers secure,
Redmond says it has restructured the Security Solutions competency
into two specializations with revised requirements.
"Whether you're working with Microsoft technology or providing
security products, services or solutions - across the enterprise
we want them to have a home in this program," said Thomas Dawkins,
a group product manager involved in developing the security
partner strategy, through a statement. More at:
||WINDOWS SERVER NEWS
The Impact of Microsoft Live May be Years Away
By our guest Columnist Laura DiDio from the Yankee Group
In the wake of Microsoft's November 1st debut of its new Software-
Based Services initiative, many industry watchers are rightfully
puzzling over the possible impact and implications of the initiative.
Microsoft chairman Bill Gates and Ray Ozzie, the company's chief
technology officer touted this as a "revolutionary" event. Yankee
Group believes that Microsoft is taking a very big step in the
right direction to articulate its often confusing "software as a
services strategy. However we view Microsoft's strategy as more
"evolutionary" than revolutionary.
Make no mistake. Microsoft's strategy is a good one. The company
is doing exactly what it needs to do to keep current customers
satisfied, remain competitive with other large players like Yahoo
and Google and also try and expand its traditional installed base
of customers and lure new ones in. Many in the industry believe
that Microsoft is to a large degree, scrambling to catch-up to
Google and Yahoo! In some areas this is absolutely true. The reality
is a bit more complicated than that.
Google holds the high ground and dominates in the Web search engine
and Web advertising space. It is a market arena that Microsoft covets.
Microsoft holds the high ground and dominates in the desktop apps
arena. This is a market that Google covets. Google, Microsoft, along
with Yahoo!, IBM, HP, Sun and others are all encroaching on each
other's traditional markets in a bid to keep their existing customer
base, attract new customers and gain and maintain a competitive edge
against traditional and new nemeses.
It's unlikely that any single vendor will be able to so completely
dominate the software or Internet services arena. The most likely
scenario is that several vendors will predominate. We can also expect
to see vendors strengthening their position via a series of alliances.
This has already begun as witnessed by the still nebulous Google/Sun
The Windows Live, Office Live and Xbox Live offerings are at least a
year and probably more, away from delivery. They are designed to
deliver the functionality of these products online -- at some unspecified
point in the future. That day is probably years away, but in order
to convince customers, business partners, analysts, press and the
financial community that it is keeping up with Google et al., it
is imperative that Microsoft articulate its strategic vision.
Yankee Group does not anticipate Microsoft effecting this migration
within the next two years. For starters, it is technically daunting.
There are also practical financial considerations which preclude a
quick conversion. To put it bluntly, Office and Windows remain
Microsoft's bread and butter products which combined, account for
over 50% of the company's revenue. Microsoft cannot sacrifice the
recurring revenue stream from these core products until it ships
the Office Live and Windows Live Web-based services and they begin
to get traction and deliver revenue.
Historically, mainstream software deployment for new releases and the
associated revenue generally do not occur until a year or more after
the product ships. So what will Windows Live and Office actually do?
Microsoft's intent is to transition its core Windows and Office products
to two new Internet-based software services that in practical terms
will meld all of the elements of a consumer and corporate knowledge
worker's world into a seamless online package and in the case of Office
Live, SMB and midmarket users will be able to conduct all of their
Windows Live allows users to build their own personal Web portals that
incorporate all of the core desktop functionality -- such as Email,
Instant Messaging and collaboration features, powerful local and
Internet based search engines.
If it fulfills its mission statement, it is very likely that Windows
Live and Office Live will make MSN redundant. At the very least the
combination of MSN, Windows Live and Office Live presents corporate
and consumer customers with a confusing array of choices. They are
unlikely to use both MSN and the Live products. In fact, Windows Live
and Office Live look as though they will supplant and obsolete MSN
within the next several years even if Microsoft doesn't say so.
We do know that eventually current MSN Hotmail and Email services will
have to migrate to the Windows Live Email service, which is now in
beta. But once again, the delivery is months if not more than a year
away. So there is no immediate impact on businesses. Still, it's
never too soon for IT administrators, CTO's and CIO's to cast a
watchful eye on the developing software-as-services landscape. At
the very least the presence of several formidable competitors slugging
it out for your capex dollars bodes well for end user organizations.
Laura DiDio is a Research Fellow at the Yankee Group, a Boston
Checklist: Five Backend Tasks You Should Automate
This checklist continues the Search Win Systems special series of
tips on tasks you should automate. SearchWinSystems.com expert
Serdar Yegulalp names five backend tasks you should automate,
and we will run a tip in the coming weeks that expands on each
of these tasks. To see the checklist of the five desktop tasks
Serdar says you should be automating, check below. The life of
any server administrator is harried enough, and admins are eager
to find any way to make common tasks easier (or at least less
of a chore).
Over the next five weeks he'll be writing about five common areas
where you can take advantage of scripting or third-party apps
to reduce the burden of the most quotidian -- and tiresomely
repetitive -- Windows Server administrative jobs:
||WINDOWS SERVER THIRD PARTY NEWS
How Will The New CounterSpy Enterprise V2.0 Look?
Below is a list of features that will be included in the CSE 2.0
release. This release is currently planned for Q1, 2006. This list
doesn't include any bug fixes, rather it is only areas that have
enhancements or new features.
Deployment Wizard Improvements:
Performance and Scalability
- Ability to run pre and post install actions
- Ability to be configured by Support as well
- Support up to 5000 Agents on a single server basic server
- Performance monitors at key locations in the Services
- New Threat Engine (lower memory footprint)
New Active Protection
- Blocks changes from happening
- Reduced CPU time
- Allows admin to specify custom "allowed" active protection items
- Allows admin to specify custom "blocked" active protection items
- Persist some UI config and grid settings
- UI Enhancements to Agents Grid
- Massive speed increases when managing agents and viewing history
- UI changes for new AP settings, simplified configuration
- Display version threat was added/changed in database
Current users under maintenance will get this new version at no cost
when it gets released. You are invited to test the current V1.5
and see how much malware your existing AV solution could not find.
With a key from your rep or reseller you can get a key to scan your
whole domain, and get reports for all workstations:
- New database layout so that custom reports could be written directly
from the database:
- Allow user to export to HTML
- Large increase in speed of reports
- Fix reports for new schema
So, How Does Double-Take Compare To Neverfail?
I was asked this question recently by a few of our Double-Take
customers. Here is a summary of what my take is on the many
If you are looking for a good combination HA and DR, test Double-Take.
There is a more complete white paper on this topic that you can ask
your rep for.
- Neverfail is NOT Microsoft certified on any Windows Server
platform (yet), but Double-Take is certified on EVERY Windows
- Neverfail is NOT real-time replication as I define it. Data
changes are queued and sent to the target server when the queue
reaches a pre-defined size. This introduces the possibility of
data being lost and not protected at any given time. However
Double-Take sends data changes as they are made to minimize
latency, resulting in near zero data loss in the event of failure.
- The Neverfail GUI shows just a single pair with no ability to
view the entire environment for overall management. But DT's
management console provides a single management interface for
all Double-Take servers, providing a Global view of the entire
- Neverfail heartbeat does not adequately support encrypted files,
but Double-Take fully supports encrypted files.
- Neverfail does NOT provide an option to control its usage of
network bandwidth. Double-Take allows for bandwidth utilization
limits to control the amount of bandwidth used by the replication
- Neverfail is a 1 to 1 solution only and you must provide matching
hardware, OS, etc, on the target server. The target server is NOT
available for anything including acting as a target for other servers,
to back up to tape, etc. But Double-Take can be 1 to 1, 1 to many,
many to 1, few to many, etc, and the target server can failover for
multiple sources, is available to be backed up at any time, etc.
- Neverfail is known for their focus in "local high availability" and
not really created for replication and failover over the WAN. Neverfail
was really designed to replace Microsoft Clustering on a LAN. However,
Double-Take was designed from the start to be the best in both HA and
DR. There are more Double-Take licenses protecting Exchange alone ...
than Neverfail has protecting everything. The are over 100,000
Double-Take licenses protecting Window Servers both in both HA and
Latest SNSI Vulnerability Update
To update from within the SNSI console, select Settings, enter your full
registration key and click on Check Now button. Vulnerability updates
for this release include:
H136 Remshd in Trusted Mode grants unauthorized access - HP-UX 11
H137 Envd permits local privilege elevation - HP-UX 11
H138 Xterm permits privilege elevation - HP-UX 11
L999 Fetchmail - configuration file writing - RHE
L1000 Kernel - Multiple vulnerabilities - RHE
L1001 Openssl - null pointer assignment - RHE
L1002 Macromedia Flash - Memory access - RHE
L1003 Php - Data manipulation/Cross site scripting - RHE
W2667 RealPlayer Image Skin File Vulnerability
W2668 Sony BMG CD Rootkit Vulnerabilities
W2669 First4Internet CodeSupport ActiveX Vulnerability
Vendor Superseded Patches
W1142,W1986,W1999,W2067 - Anti-Virus Signatures
S234 Netscape NSS Library Vulnerabilities - Solaris 8 - 9
H70 OpenView Authentication HP-UX 11
H101 OpenView Operations Privilege Vulnerability HP-UX
H129 Veritas data protection issue - HP-UX 11
S234 Netscape NSS Library Vulnerabilities - Solaris 8 - 9
S352 NSS tools unzip files unsafely - Solaris
W2481 Windows AntiSpyware
W2595 Adobe Acrobat 7
W2601 Adobe Acrobat 6
W2664-2665 VERITAS Netbackup
SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE)
list of computer incidents. It also contains the latest SANS/FBI top
20 vulnerability list. SNSI also uses the latest CERT, CIAC Microsoft
and FedCIRC (Department of Homeland Security) advisories. To get the
latest SNSI version, visit
New Utility Keeps Window Registry Tidy
European utility developer 1-abc.net is shipping version 1.0 of
another new tool for end users, this one designed to help clean
up out of date Windows Registry entries. Registry Washer examines
the Windows Registry and removes entries that are leftovers from
programs that failed to completely uninstall or are no longer
valid. These old and invalid entries can impact performance when
Windows needs to extract information from a cluttered Registry.
||WServerNews - PRODUCT OF THE WEEK
The Sunbelt Kerio Personal Firewall
You read in the Editors Corner that Sunbelt is in the process of
taking over the Kerio Personal Firewall. It's a really good one,
and was given Excellent reviews at both PC Mag and PC World. If
you want to take a look at it, here is the existing site where
you can get a 30-day eval and try it on an XP box. It's got some
very neat technology! Check it out all its features at: