Manage your WServerNews profileWServerNews privacy policy
WServerNews (formerly W2Knews)
Vol. 12, #10 - Mar 12, 2007 - Issue #616
CounterSpy V2 - "Top-rated antispyware under $25!" - PC Mag

  1. Editor's Corner
    • CounterSpy V2: "Top-Rated Antispyware Under $25" -- PC Mag
    • Live Web Demo Of New Ninja V2.1
    • Take A Sec And Vote For Ninja And CSE?
    • Upcoming Seminars
    • Quote Of The Week
  2. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  3. Tech Briefing
    • How To Protect Your Network Against Skype
    • France Bans Citizen Journalists From Reporting Violence
    • Chapter Download: Understanding Virtual Disk Architecture
    • Learning Guide: Blade Servers
    • Enhance Your SQL Server Security Skills With Five Quick Steps
    • Three Windows Vista Certification Exams Get A Rewrite
    • Step-by-Step Guide: Plan For A Security Breach
  4. Windows Server News
    • Changes to AD -- What's new in Windows Server 2003 SP1
    • More About ADUC Under Vista
  5. WServer Third Party News
    • What's New In Ninja V2.1?
    • There's Footprints And Then There's Footprints
    • Radmin V3 Is Here!
  6. WServerNews Fave Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  7. WServerNews - Product of the Week
    • CounterSpy V2 - "Top-rated antispyware under $25!" - PC Magazine
Comparing E-mail Management Systems that Protect
Against Spam, Viruses, Malware & Phishing Attacks

Which of these 5 leading email security products:
  1. Has the lowest cost per user
  2. Has 50% less required admin time
  3. Won SC Magazine 'Best Email Security'
FIND OUT NOW ! Download this Osterman Research whitepaper (PDF)

Editor's Corner

CounterSpy V2: "Top-Rated Antispyware Under $25" -- PC Mag

PC Mag's Neil Rubenking evaluated our latest V2, and gave it Four Stars. That means we score the highest in their "under $25" segment. He pointed out the pros and cons, and suggested some improvements which we are now working on. For admins running CounterSpy Enterprise, this is fantastic as well. The new agent you are getting is highly rated and will even be better by the time you deploy it. I'd expect the release early next month. If you want to look at the beta, that's still possible. The new features in CSE V2 are too many to list here! If you are interested in signing up for the CSE V2 Beta, please send an email to "[email protected]" with CSE V2 Beta in the message subject.

Live Web Demo Of New Ninja V2.1

Join us for a preview of Next-Generation Email Security from Sunbelt Messaging Ninja with Alex Eckelberry, President and Greg Kras, VP of Product Management for Sunbelt Software on Tuesday March 13th at 2:00pm EDT for a live web demo introducing the new Version 2.1 of Sunbelt Messaging Ninja for Microsoft Exchange. Learn about the features of this robust email security product including:
  • Policy-based plug-in management for antispam, AV, and attachment filtering
  • New policy-based and global disclaimers
  • Fast deployment in Exchange environments
  • Superior spam detection using two antispam engines
  • Aggressive virus detection and elimination using two AV engines
  • Custom rules for content inspection and attachment filtering
  • Powerful reporting options for all plug-ins
  • And more...
When: Tuesday, March 13, 2007 2:00 PM (EDT)
To join the day of the event please visit:
Meeting ID: 92SSQC
Attendee Meeting Key: XR*mw9Z
Audio: Toll free: +1 (800) 416-4956
Toll: +1 (978) 964-0050
Participant code: 104764

Take A Sec And Vote For Ninja And CSE?

Would you do me a big favor? I'd really appreciate it if you could vote for our two flagship products Ninja and CSE. We are listed in the AntiSpyware and Email Security categories on this page. Thanks SO much in advance.

Upcoming Seminars

We'd like to invite you to attend the following seminars that we are hosting: "Recovery Made Easy for Exchange, SQL, and other Critical Applications" - Join Sunbelt and Double-Take Software as we discuss strategies for implementing high availability, remote availability and offsite disaster recovery solutions for SQL, Exchange and other mission critical applications using Double-Take. You will also hear about Double-Take's NEW solutions that power your keys to recoverability.

Hosted at the Marriott Miami Airport in Miami, FL on Wednesday, March 14th. Register here:

Hosted at Microsoft in Denver, CO on Friday, March 23rd. Register here:

Hosted at the Sheraton Oklahoma City on Wednesday, April 4th. Register here:

Hosted at the Cherokee Casino Resort in Tulsa, OK on Thursday, April 5th.

Quote Of The Week

"I see Earth! It is so beautiful!" - Yuri Gagarin

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]

Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

Download FREE - AD Web Search App + GAL Editing from Namescape Today!

Beta Testers Wanted for the New CounterSpy Enterprise V2. Please send an email to "[email protected]" with CSE V2 Beta in the subject.

Special $50 Discount off the RED COLUMN for WSN-readers on CramMaster certifications. Email Doug Burke: doug AT examforce DOT com for quotes:

Run Exchange? Fill out this short 9-question survey and you could win the high-end $450 iPod Photo 60GB we're giving away! (how full is your iPod?)

Tech Briefing

How To Protect Your Network Against Skype

Skype expert and author Michael Gough details several tips to lessen Skype security risks, including using his own specialized scripts.

France Bans Citizen Journalists From Reporting Violence

Run a website that can display videos? Make sure you do not get in trouble with the Gendarmes in France. The French Constitutional Council has approved a law that criminalizes the filming or broadcasting of acts of violence by people other than professional journalists. The law could lead to the imprisonment of eyewitnesses who film acts of police violence, or operators of Web sites publishing the images, one French civil liberties group warned on Tuesday. InfoWorld has the story:

Chapter Download: Understanding Virtual Disk Architecture

In this download, brings you chapter 7 of The Rational Guide To Scripting Microsoft Virtual Server, "Managing Virtual Hard Disks." You'll learn how virtual hard disks work in Microsoft Virtual Server, as well as how to automate the creation, attachment and maintenance of Virtual Hard Disk (VHD) files.

Learning Guide: Blade Servers

This learning guide will help you navigate the burgeoning field of blade servers: when to buy them, how to cool them, and what to expect as the technology matures. (free registration)

Enhance Your SQL Server Security Skills With Five Quick Steps

Rock-solid secure database systems require sharp skills on behalf of a SQL Server DBA. You need to keep up with everything from new Microsoft features, to a good amount of programming logic. IT security specialist Kevin Beaver outlines five steps to build your security expertise and limit system vulnerabilities.

Three Windows Vista Certification Exams Get A Rewrite

Microsoft is revising three of its Windows Vista certification exams to add questions in areas such as application support, according to company officials. Find out more in this exclusive article.

Step-by-Step Guide: Plan For A Security Breach

One of the most overlooked and underrated requirements of managing a good network is having a good incident response plan in place in case of a computer security breach. In this guide, learn six things you must do in order to prepare yourself, your network and your business for the inevitable security breach.

Windows Server News

Changes to AD -- What's new in Windows Server 2003 SP1

While Active Directory changed a lot with the release of Windows Server 2003, even more changes took place when the first service pack came about. Expert Laura Hunter walks you through what's new in AD with Windows Server 2003 SP1.

More About ADUC Under Vista

WSN subscriber Chris Leonti at the College of Ag / Montana Ag Experiment Station sent me the following very useful data:

"I just wanted to offer some info about ADUC under Vista. Most of the steps noted in the linked article are not necessary if you do one of the simple, but commonly forgotten, steps in Vista - run as Admin or run from an elevated command prompt. I have found that at least half of the installations that 'fail' under Vista will work if you use this method. Unfortunately, most of us Admins succumb to wanting everything that is new, but not always willing to take the time to figure it out . Vista is still bleeding edge and does require a mental shift as well as patience while drivers, applications, MMCs, etc are updated for it.

  1. Open an elevated command prompt (Right-Click COMMAND PROMPT and select Run As Administrator).
  2. Change to the drive/directory where ADMINPAK.MSI is saved.
  3. Type ADMINPAK.MSI and press ENTER.
  4. Follow the wizard steps.
  1. Copy these files from a system that already has the exchange admin pack to C:\WINDOWS\SYSTEM32 on the Vista system that already has ADUC loaded:
  2. At the elevated command prompt run the following command:
    regsvr32 /s maildsmx.dll
You can also create a batch file with these steps, then right-click the BAT file and RUN AS ADMINISTRATOR. This is what I have done here to make it easier for the admins to load ADUC with the Exchange tabs. Probably the largest hassle after this is having to see the UAC prompt each time you run ADUC, but most admins leave it running all day so it is not a terrible issue. As with all things IT, your mileage may vary. If this info has value, feel free to pass it to your admins and/or in the newsletter. Also check this KB item:

WServer Third Party News

What's New In Ninja V2.1?

Global Disclaimer - The 2.1 release of Ninja now includes the ability to add a disclaimer to all email sent. This new feature has the ability to block duplicate disclaimers and the ability for the admin to allow the users to bypass this global disclaimer on a per email basis. Alternatively the global disclaimer could also be setup to only disclaim messages that the users specify.

Policy Based Disclaimers - In addition to the global disclaimer there are now policy based disclaimers which allow the admin to have a different disclaimers for groups of users. The same ability to remove duplicate disclaimers and allow users to include or exclude the disclaimer exist at the policy level. As well the policy level disclaimers can be set to either leave a set global disclaimer in place or replace the global disclaimer.

Disclaimer Templates - The new disclaimer functionality utilizes templates that allow the admin to easily setup disclaimers using HTML or plain text. These templates can be setup to include user data from Active Directory so that each disclaimer is customized for the user sending the email. Included are template samples such as legal disclaimers, virus warning disclaimers, and copyright disclaimers.

Updated Antispam Engine - This release includes Cloudmark's latest engine release which has additional enhancements to improve the detection of the latest spam variants such as image spam. Another new feature includes the ability to adjust the efficacy of the detection while tuning the amount of resources available to the engine.

Console Enhancements - Several enhancements have been added to the console. Database management has been added through tools to allow the purging of old records from an existing database and the compacting of Access databases to reduce their size. Enhanced proxy support has been added for systems that utilize NTLM authentication. New reports have been added to give information on the use of disclaimers.

There's Footprints And Then There's Footprints

There is a misunderstanding about the new CounterSpy V2 disk space footprint. Disk space footprint is something else than RAM footprint. In regards to RAM usage, 2.0 is very tight (10 to 15MBs) -- arguably the tightest antispyware scanner on the market. The 180Mb disk footprint does not significantly affect the performance of the product.

A major reason why our database is so large on disk is that we have a large whitelist that the product uses in order to reduce false positives. We include with the product a whitelist of acceptable items that have been cataloged through extensive analysis of end-user and enterprise environments. This whitelist is in the millions, and does add to disk space, but does not significantly affect performance due to the way that the data is cached. The reason this was done was to cut down on "popup-fatigue", where users are constantly getting bombarded with "are you sure this is a good app?" -- as well as false positives during scanning. We believe that the trade-off in disk space is worth the better user experience. Again, with the way the database is cached and accessed, it does not present a problem performance-wise.

Another reason why the on-disk footprint is higher is because CounterSpy has a very extensive and comprehensive threat definition database, with over 630,000 threat signatures. I would argue that CounterSpy has the most extensive database in the industry. However, broad threat coverage does come at a cost.

The defs are initially heavily compressed, so the download size is not as large as one might think. Definitions updates are all incremental (delta) updates, so there are no significant issues with bandwidth.

Radmin V3 Is Here!

It has finally happened. The new V3 code (with Vista support) has made it on our new website, and it works as advertised. Blisteringly fast, with new DirectScreenTransfer(TM) technology. Radmin is a reliable and secure remote PC control tool designed by and for busy system admins. A user friendly interface, small footprint, and lightning fast speed make it a superior alternative to PC Anywhere and VNC. You should check out the FAQ that explains everything about the upgrade and new licensing:

WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff.

WServerNews - Product of the Week

CounterSpy V2 - "Top-rated antispyware under $25!" - PC Magazine

CounterSpy V2's revolutionary new hybrid antimalware engine offers faster, more effective spyware scans and lightweight real-time protection that removes even the deepest rooted malware. Now, spyware, rootkits, and blended malware have nowhere to run or hide. Better performance, smarter protection, faster scans, and still only $19.95!