Manage your WServerNews profileWServerNews privacy policy
WServerNews (formerly W2Knews)
Vol. 11, #7 - Feb 13, 2006 - Issue #563
Should You Rush To Get "R2"?

  1. EDITORS CORNER
    • Security Suite or Best-of-Breed?
    • AD List: A Forum Rising In Popularity
    • TechMentor Conference, March 20-24, Orlando, FL
    • Quotes of the Week
  2. ADMIN TOOLBOX
    • Admin Tools We Think You Shouldn't Be Without
  3. TECH BRIEFING
    • Microsoft Expands Redmond Campus
    • More About The TechMentor Conference
    • VMware Freebie May Bring Virtual Servers To The Masses
    • Keylogger Basics
    • FAQ: Exchange Server and POP3
    • Funny Cisco KB Article And Its Real
  4. WINDOWS SERVER NEWS
    • Today's Bug Patches / Seven New Ones Next Tuesday
    • Should You Rush To Get "R2"?
    • ISA Server 2006 Beta Announced
  5. WINDOWS SERVER THIRD PARTY NEWS
    • What's New? Double-Take Product Update
    • Running iHateSpam for Exchange? Good News!
    • Mi5 Networks releases Enterprise Spygate?
    • SysInternals Releases Process Explorer v10.04
  6. WServerNews 'FAVE' LINKS
    • This Week's Links We Like. Tips, Hints And Fun Stuff
  7. WServerNews - PRODUCT OF THE WEEK
    • Sniff Fast. Sniff Easy. Sniff Cheap
Sniff Fast. Sniff Easy. Sniff Cheap
What separates LanHound from the pack is that it is a super
affordable tool that helps you troubleshoot NT/2000/2003 LAN, WAN
or Internet segments. LanHound has practically all the features
of products twice as expensive, and it supports switched networks.
Use LanHound to hunt down broadcast storms, analyze protocols,
monitor and secure your network. September 2005, LanHound won the
WinIT Pro Magazine Reader's Choice Awards for protocol analyzers.
In short, it got its "Oscar" in the packet sniffer category!

http://www.wservernews.com/060210-LandHoundSP

EDITORS CORNER

Security Suite or Best-of-Breed?

Well, you were very clear and vocal on that one!! Almost 300 system admins answered, spread over a wide range of small to very large sites, and a whopping 68% of you stated that you preferred best-of-breed desktop security components. That left 29% that wanted the suites, and three percent said other. We'll talk about your exact reasons why in the next issue.

AD List: A Forum Rising In Popularity

Sunbelt hosts about 10 free forums. The two most popular are the NTSYSADMIN and the EXCHANGE lists, but there is a third one that is becoming more popular by the month. It's the AD-list, and no wonder since more and more sites are adopting AD finally. Here is the list charter:

Sunbelt Software hosts this list to invite the free and open discussion of Microsoft Active Directory Administration Issues. This list is intended to be a forum to discuss how to keep AD up & running in a production environment, and as help to pass the Certification Exams that have AD-related topics. Subscribe here:
http://www.wservernews.com/060210-Ad_List


TechMentor Conference, March 20-24, Orlando, FL

TechMentor provides network and certification training for IT managers and network administrators. Choose from 100 sessions, categorized into tracks: Scripting, Security, Linux/Windows Integration, Troubleshooting, MCSE and CCNA. This in-depth training is led by top instructors including Mark Minasi and Todd Lammle. Register by February 24 and save $200. For more information visit the link below or check the 'Tech Briefing" section:
http://www.wservernews.com/060210-TechMentor


Quotes of the Week

"Take nothing on its looks; take everything on evidence. There's no better rule." -- Charles Dickens
"Passwords are like your toothbrush, never share them with anybody and change it once a month" -- Unknown
"In the absence of clearly-defined goals, we become strangely loyal to performing daily trivia until ultimately we become enslaved by it." -- Robert Heinlein

Warm regards,
Stu Sjouwerman

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]


ADMIN TOOLBOX

Admin Tools We Think You Shouldn't Be Without

The Visio Connector for Microsoft Baseline Security Analyzer allows you to visualize vulnerability data information generated by MBSA
http://www.wservernews.com/060210-Visio_Connector

Must Have Freeware. AD Web Search App + GAL Self Service. Free download here:
http://www.wservernews.com/060210-AdWeb

Extend Active Directory to Unix/Linux/Mac to enable single sign-on, set global password policies. Free Centrify white paper.
http://www.wservernews.com/060210-Extend_Active_Directory

Freeware helps admins monitor Windows log files in real time. Until now, there was no tail utility for Windows, but now a freeware version is available.
http://www.wservernews.com/060210-SearchWinSystems


TECH BRIEFING

Microsoft Expands Redmond Campus

Yup, they announced a $1 billion expansion plan of their HQ for up to 12,000 extra employees. Under the expansion, they would boost the Redmond campus by a third, both to house current employees and some of the additional 5,000 employees they plan to hire. About 30,000 of the company?s current 63,000 staff are stationed in the Puget Sound area of Washington. Under the plan, the company will build an additional seven buildings on top of the seven it has recently purchased.

More About The TechMentor Conference

Redmond magazine's TechMentor provides focused training - by expert instructors - on integrating, managing, securing and troubleshooting Microsoft Windows server systems. Join IT managers and network administrators in Orlando for 100 sessions and 7 tracks on:
  • Linux/Windows Integration
  • Scripting and Automation
  • Security
  • System and Network Troubleshooting
  • CCNA - Cisco Certified Network Associate
  • MCSA - Microsoft Certified Systems Administrator
  • MCSE - Microsoft Certified Systems Engineer
Experienced instructors like Mark Minasi and Todd Lammle lead content-rich sessions that cover the gamut of Windows system administration. Their presentations contain PRECISE descriptions, STEP-BY-STEP procedures, diagnostic TIPS, and a wealth of information that can be applied immediately. Register by February 24 and save $200. For more information visit:
http://www.wservernews.com/060210-Info101


VMware Freebie May Bring Virtual Servers To The Masses

Competition among virtualization software vendors brings some real benefits to users. Example: VMware will give away an entry-level version of its virtualization server software. At SearchWinIT.com:
http://www.wservernews.com/060210-VMware


Keylogger Basics

Keyloggers are one of those malicious computer infections that are an explicit danger to your security. By logging sensitive information like passwords and credit card numbers keystroke loggers are more of a threat to security than annoying adware. Contributor Tony Bradley discusses the origins of keyloggers, how they work and how to avoid 'em.
http://www.wservernews.com/060210-Keylogger


FAQ: Exchange Server and POP3

POP3 can be a convenience for end users, and sometimes it's a necessity for small businesses that rely on a hosted e-mail service. But Exchange administrators are the ones who have to deal with the inevitable hassles it introduces to an Exchange Server environment. In this collection of frequently asked questions, our SearchExchange.com experts tackle several common Exchange and POP3 troubleshooting issues. Questions include downloading and forwarding POP mail , migrating hosted POP3 mail accounts and authenticating POP3 users. Over at SearchExchange.com
http://www.wservernews.com/060210-SearchExchange


Funny Cisco KB Article And Its Real

Here is an excerpt from the article: "Unlike hard errors, soft errors are spontaneous, non-reoccurring or transient, and non-reproducible. The error is called "soft" because:
  • The device functions normally after data is restored.
  • The transient error is present in data stored in memory devices on line cards.
  • The error is caused by system noise or by ionizing radiation.
"SEU failures are often caused by the following:
  • Alpha particles emitted by radioactive packaging and wafer processing materials on synchronous random-access memory (SRAM) and dynamic random-access memory (DRAM) products.
  • Thermal neutron from cosmic radiation of energy less than 15ev.
  • Terrestrial high energy cosmic particles, neutrons, protons, pions and muons."
Basically they can say a UFO flew by and that's why your router screwed up. [grin] Here is the link:
http://www.wservernews.com/060210-Cisco


WINDOWS SERVER NEWS

Today's Bug Patches / Seven New Ones Next Tuesday

Redmond warned about two bugs that could potentially give control or access over a person's computer, and a third hole was found by a security research company. One bug is in IE 5.01 SP4 on W2K SP4 and IE 5.5 SP2 on WinME. An attacker could gain control if a user opened a malicious e-mail attachment or if a user were persuaded into visiting a Web site that had a specially-crafted WMF image. No patch has been issued yet, it's under investigation. Perhaps an out-of-cycle patch could be released. Or you might get it on Patch Tuesday, where they will release seven new patches. Here is the link to Microsoft Security Bulletin Advance Notification:
http://www.wservernews.com/060210-Bug_Patches


Should You Rush To Get "R2"?

Last week, W2K3 Revision 2 was made "generally available". But when should -you- get it? Large customers with Software Assurance contracts will get it first. And then the rest will roll out.

Redmond -has- given the R2 Gold Disks to OEMs like HP and Dell, so new hardware will be equipped with R2 by default. But should you rush to upgrade your own servers? Not before you tested, did some more testing, and only then move away from your testbed to a limited production environment. I know some one that was not very enthused about R2 and called it a "paint job" but there are some goodies that I'd like myself, one of which being AD Federation Services and better branch office support.

ISA Server 2006 Beta Announced

Ted Kummert, Corp Vice Pres of the Security, Access and Solutions Division at Microsoft said: "ISA Server 2006 is key to Microsoft?s security product strategy at the network edge...ISA Server 2006 integrates the strength of an application layer firewall with VPN, proxy and Web-caching functionalities. It provides enhanced security by integrating with the Microsoft Windows application infrastructure. He's interviewed at the MS PressPass site and talks about their announcements at the RSA show next week:
http://www.wservernews.com/060210-ISA


WINDOWS SERVER THIRD PARTY NEWS

What's New? Double-Take Product Update

Recently, NSI has delivered several service packs that add new features and enhance the world-class Double-Take data protection solutions.

Flexible Bandwidth Scheduling

Flexible Bandwidth Scheduling (FBS) offers enhanced network usage controls for advanced integration capabilities. With FBS, you can schedule bandwidth usage levels that vary at different times of the day or week. You can reduce Double-Take network utilization limits during working hours and increase them during off-hours for optimal performance - therefore reducing any affect on production resources.

Server Groups

To better organize and manage your replication environment, you can now create structured server groups within the Double Take management console. Server groups allow you to quickly organize, access, and monitor particular servers for efficiency and improved process flow. Server groups use a familiar tree structure similar to Windows Explorer and offer at-a-glance monitoring for small to enterprise sized environments. Additional failover monitoring mechanisms provide you with added flexibility to tailor Double-Take failover to meet your specific needs for particular applications. This new feature further enhances security while minimizing the risk of false failovers and helps you maintain higher levels of application availability.

Application Manager Suite

Got Apps? We recently launched the first module within the Double-Take Application Manager Suite - the Exchange Failover Toolkit (EFT). EFT is an exciting new technology that provides automated Double-Take setup and configuration to protect critical Exchange environments. EFT provides a four-step process for configuring Double-Take on Exchange servers. It automates discovery of your Exchange servers and critical Exchange files and automatically configures replication and failover monitoring. Plus our exclusive pre-flight check helps ensure a successful deployment the first time by validating, and in many cases correcting, over 30 possible points of failure within the entire application environment. Test Double-Take for 30 days:
http://www.wservernews.com/060210-Double-Take


Running iHateSpam for Exchange? Good News!

Its next version went into Public Beta last week. We have renamed it because it does a lot more than spam. Version 2.0 has been called Sunbelt Messaging Ninja after the code name it started out with. Ninja is already installed in an early adopter production environment at a University with 13,000 mailboxes and successfully protects this site against viruses.

The first release of Ninja is anti-spam, anti-virus, and attachment filtering. Because of the extensible architecture we'll be adding disclaimers, content auditing, content filtering, message forking, advanced message reporting, and archival functions over the course of this year. You'll end up with a single application to do pretty much everything you need on the Exchange server. The web site is:
http://www.wservernews.com/060210-Ninja


Mi5 Networks releases Enterprise Spygate?

Mi5 Networks announced the general availability of its Enterprise Spygate? appliances, the world?s first purpose-built anti-spyware appliances for medium to large enterprises. Utilizing a real-time inspection engine, Mi5 Enterprise Spygate? appliances scan network traffic on-the-fly and incorporate a multi-layer defense that provides the most accurate and comprehensive protection against spyware at the gateway. Mi5 Enterprise Spygate? appliances block spyware websites, drive-bys and file downloads, and outgoing communications associated with spyware websites without false positives or network impact. Mi5?s anti-spyware appliances are backed by Community Spywatch? correlation technology, which leverages collective learning from customer deployments for the quickest protection against new spyware threats. Check them out at:
http://www.wservernews.com/060210-Mi5


SysInternals Releases Process Explorer v10.04

This major Process Explorer update has an extensive list of new features and enhancements aimed at usability and malware hunting. Just some of the examples include Runas and Run As Limited User commands, process restart, column sets, enhanced process tooltips for service-hosting and Rundll32 processes, working set breakdown columns, and DLL image verification and packed-image detection.
http://www.wservernews.com/060210-SysInternals


WServerNews 'FAVE' LINKS

This Week's Links We Like. Tips, Hints And Fun Stuff


WServerNews - PRODUCT OF THE WEEK

Sniff Fast. Sniff Easy. Sniff Cheap

What separates LanHound from the pack is that it is a super affordable tool that helps you troubleshoot NT/2000/2003 LAN, WAN or Internet segments. LanHound has practically all the features of products twice as expensive, and it supports switched networks. Use LanHound to hunt down broadcast storms, analyze protocols, monitor and secure your network. September 2005, LanHound won the WinIT Pro Magazine Reader's Choice Awards for protocol analyzers. In short, it got its "Oscar" in the packet sniffer category!
http://www.wservernews.com/060210-LanHoundPOW