MY PROFILE | PRIVACY 
Vol. 14, #25 - Jun 8, 2009 - Issue #730
Cloud Security - A Failure From Day One?

This issue of WServerNews is sponsored by
  1. Editors Corner
    • Cloud Security - A Failure From Day One?
    • Microsoft Sets Win 7 launch for Oct. 22
    • Quotes Of The Week
  2. Webinars and Seminars
    • Quantifying the Cost of Log Management - June 16
    • Kiss Your Antivirus Bloatware Goodbye: VIPRE Enterprise - June 9
    • Fight Spam and Other Malware with Ninja Email Security - June 16
    • Move, Protect and Recover your Data with Double-Take Software
  3. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  4. Tech Briefing
    • Free Desktop and Application Virtualization Seminar
    • How The New Virtual Desktop Framework Enhances End-User Productivity
    • IT Pros: Some Apps More Cloud Worthy Than Others
    • Hyper-V Gains New Resiliency Features With Windows Server 2008 R2
    • Why Virtual Systems Management Tools Are Central To Green IT Strategy
    • 64-Bit Sharepoint 2010 Driven By Demand
  5. Windows Server News
    • Microsoft Plans Jumbo Patch Day Tomorrow
    • Cisco Pushes into Volume Server Market
  6. WServerNews Fave Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  7. WServerNews - Product of the Week
    • Download a free, smart search engine for log data today! EventTrackerPULSE
Download a free, smart search engine for log data today! EventTrackerPULSE

Automate the collection and archival of logs from Windows, Linux/Unix, network devices, and applications; search through hundreds of gigabytes of log data with an easy to use interface; proactively diagnose issues before they turn into costly service-disrupting incidents; optimize system interactions; improve availability; accelerate troubleshooting; in the event of a security incident, put the pieces together and figure out what exactly happened:
http://www.wservernews.com/090608-EventTracker


Editors Corner

Cloud Security - A Failure From Day One?

Gunnar Peterson remarked in his blog recently that he has trained thousands of developers in writing software securely. But at the beginning of every class he does a little poll. Turns out he usually has 150+ years of programming experience and just ONE YEAR (!) of experience in that class in writing secure code. Knowing this, we should not be at all surprised that our systems are ripped apart at the seams by even semi-skilled attackers.

In Gunnars's words: "Software security has two basic problems - security people don't know enough about software (how its developed, configured and deployed) and software people don't know enough about security (authentication, authorization, secure exception handling and so on)."

If we keep building code for the cloud the old way, that's a train-wreck in the making. Make sure that that the engineering practices in your outfit are improved through more clear requirements for software, better tools for developers to write secure code, and training for developers so they can surprise us with cool safety features. You can discuss this topic on the new WServerNews Blog here:
http://www.wservernews.com/090608-Topic-Discussion


Microsoft Sets Win 7 launch for Oct. 22

Microsoft will put Windows 7 on store shelves and computer makers will have systems ready to sell with Vista's successor on Oct. 22, the company confirmed today. Microsoft will also offer discounted or free upgrades to Windows 7 to users who buy PCs in the months leading up to the operating system's launch in a program dubbed "Windows Upgrade Option," a company spokeswoman said last Tuesday. Although the name is new, the program had been reported as early as January, when a usually-reliable Web site leaked information about the deal, including its July 1 kick-off. It was all over the press this week but ComputerWorld has the best coverage:
http://www.wservernews.com/090608-Win7-Launch


Quotes Of The Week

"For a list of all the ways technology has failed to improve the quality of life, please press three." -- Alice Kahn

"Any sufficiently advanced technology is indistinguishable from magic." -- Arthur C. Clarke

Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/090608-Subscribe

PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends:
http://www.wservernews.com/090608-WXPNews

PPS: And of course we also have our weekly VistaNews. You can subscribe here, and tell your friends too:
http://www.wservernews.com/090608-VistaNews

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]

Automated Uninstall of Symantec AV

No more 2-day SEP V11 Migration Classes! Sunbelt built VIPRE Enterprise; a completely new technology combining corporate antivirus plus an enterprise antispyware solution for total endpoint security designed by admins for admins. And that means EASY DEPLOYMENT. Save your IT budget and don't renew products from Symantec, McAfee and Trend Micro, Learn how VIPRE Enterprise takes much less resources than the competition! It's clearly time to ditch expensive, bloated, old-style AV products. Competitive Upgrade price: $10 per seat:
http://www.wservernews.com/090608-VIPRE-Enterprise

Webinars and Seminars

Quantifying the Cost of Log Management - June 16

Security logs don't go away just because budgets are tight and while most of you are like me and would rather concentrate on the techie details none of us can ignore business and financial issues in today's economic situation. So it pays to research your options and perform careful cost analysis You can deal with log management basically 3 different ways:
  1. DIY with software or appliance based log management solutions
  2. Outsource to an MSSP
  3. Leverage Cloud-based log management
Each option has its advantages and disadvantages with regard to:
  • Cost factors
  • Deployment
  • Care and feeding
  • Flexibility
  • Required expertise
  • Security requirements
It greatly depends on your overall organization as well as your internal IT department and information security staff. Is your organization spread out among many geographical sites? What size is your information security group? Does it comprise a few generalists or many specialists? These are just a few of the issues Randy will tackle. For those of you with log management already in place, after this webinar you will either have increased confidence in your current solution or be ready to assess potential cost savings from making a change. If you are in the market for a log management solution this 'real training for free'? session will equip you with the tools you need to satisfy security requirements while making a good business decision. Please register here:
http://www.wservernews.com/090608-Log-Management-Webinar


Kiss Your Antivirus Bloatware Goodbye: VIPRE Enterprise - June 9

As part of its ongoing efforts to address the rapidly evolving malware landscape facing enterprises, Sunbelt Software delivers VIPREŽ Enterprise - comprehensive endpoint malware protection that combines antivirus, antispyware, anti-rootkit and other technologies into a seamless, tightly-integrated product.

Join Sunbelt Software for a look at VIPRE Enterprise and learn how Sunbelt started with a blank slate to design a new, next-generation antivirus and antispyware technology to deal with today's malware in the most comprehensive, highly efficient manner. The result is a clean, fast, and powerful anti-malware solution developed 'by admins for admins'. When: Tuesday, June 9, 2009 2:00 PM (EST) Please register here:
http://www.wservernews.com/090608-VIPRE-Demo


Fight Spam and Other Malware with Ninja Email Security - June 16

Securing your Exchange Server is key to protecting your enterprise environment from spam, viruses, and other malware. In this webcast Sunbelt will explain the benefits of using an 'all-in-one' integrated and policy-based email security solution versus separate products on your Exchange Server for antivirus, antispam, attachment filtering, and disclaimers. Learn how Ninja Email Security helps you to fight spam, viruses, trojans, phishing and other email security threats with a series of 'best-of-breed' plug-ins. When: Tuesday, June 16, 2009 2:00 PM (EST) Please register here:
http://www.wservernews.com/090608-Ninja-Demo


Move, Protect and Recover your Data with Double-Take Software

Managing IT Workloads today is an expensive, complicated and inflexible proposition. Join Sunbelt and Double-Take Software for the following seminars to learn how you can regain control of your data center with solutions for: workload availability (real-time replication and failover), workload backup and recovery (continuous system protection), workload flexibility (boot from SAN for managed desktops and servers) and workload portability (X2X migration).

Hosted at Microsoft in Milwaukee, WI on Tuesday, June 16th (continental breakfast provided). Register here:
http://www.wservernews.com/090608-DoubleTake-Seminar1

Hosted at Microsoft in Salt Lake City, UT on Tuesday, June 16th (continental breakfast provided). Register here:
http://www.wservernews.com/090608-DoubleTake-Seminar2


Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

Leverage your log data: collect, archive, search, proactively diagnose issues, with EventTrackerPULSE:
http://www.wservernews.com/090608-Pulse

Help desk problems? Introducing Help Desk Authority from ScriptLogic. A better help desk solution is only a click away:
http://www.wservernews.com/090608-HelpDeskAuthority

Tighten security with myPassword - Save help desk time and productivity with self-service password reset - empower users - Streamline AD password mgmt!
http://www.wservernews.com/090608-myPassword



Tech Briefing

Free Desktop and Application Virtualization Seminar

Join independent industry analyst and blogger, Brian Madden at this free seminar and separate desktop virtualization fact from hype. Learn how to leverage this new technology and improve provisioning, administering, securing and supporting of your corporate desktops. Find out what products and tools you need to make this work now and what should be on your radar to advance your virtualization and application streaming down the line. Again, admission is free, but space is limited - reserve your seat today:
http://www.wservernews.com/090608-Virtualization-Seminar


How The New Virtual Desktop Framework Enhances End-User Productivity

Creating a virtual desktop framework encompassing applications, communication and collaboration tools can boost end-user productivity and project success. This expert tip discusses necessary steps for a successful virtual desktop framework and why supporting worker interaction with applications should be a top IT priority going forward:
http://www.wservernews.com/090608-Virtual-Desktop


IT Pros: Some Apps More Cloud Worthy Than Others

Many applications are well suited for cloud computing deployment, others not so much. In this article, learn which applications IT professionals are ready to move to the cloud and what's getting sidelined. Plus get insight into cloud planning best practices and regulatory limits:
http://www.wservernews.com/090608-Cloud-Worthy-Apps


Hyper-V Gains New Resiliency Features With Windows Server 2008 R2

Windows Server 2008 R2 provides several improvements to Hyper-V that have been in high demand ever since its initial release. These updates to Microsoft's low-cost virtualization platform include cost-effective high availability as well as enhancements to virtual machine disk management. As a result, if you've been sitting on the sidelines waiting for Microsoft's second move in the virtualization space, R2 is your time to jump:
http://www.wservernews.com/090608-Hyper-V


Why Virtual Systems Management Tools Are Central To Green IT Strategy

The key to achieving green-IT objectives is to consolidate your server infrastructure to eliminate as many physical servers as possible. Luckily, virtual systems management (VSM) tools can help achieve this goal. This tip covers how VSM tools can help reduce power consumption, increase server consolidation ratios and dramatically decrease data center floor space needed for physical servers - all in the service of achieving green-computing objectives and improving a green IT strategy:
http://www.wservernews.com/090608-Virtual-Tools


64-Bit Sharepoint 2010 Driven By Demand

Improving the performance and flexibility of a system are two driving factors behind Microsoft's announcement that SharePoint 2010 will leave 32-bitness behind and become 64-bit only. This expert tip discusses the impact this will have on the channel and what your peers think. Learn how this could affect your business today.
http://www.wservernews.com/090608-SharePoint-2010


Windows Server News

Microsoft Plans Jumbo Patch Day Tomorrow

Redmond is going to give us 10 security updates next week to patch serious bugs in Windows, IE, Word and Excel. If they deliver on the plan -- sometimes Redmond pulls an update at the last minute -- tomorrow's Patch Tuesday will be the largest since October 2008. "We're back to a normal load," said Andrew Storms, director of security operations at nCircle Network Security. "Some may think of it as pretty big, but really, for anyone who's dealt with Patch Tuesday for the last five years, it's what we should be expecting." Here is the Advanced Notification Page:
http://www.wservernews.com/090608-Security-Bulletin


Cisco Pushes into Volume Server Market

Client-Server News reported that Cisco this week came up with entry-level rack-mounted versions of its high-end Unified Computing System (UCS) that it means to push into the channel where it will piggyback on resellers that already sell other people's machines. That mean it'll be stepping on even more toes than it already has by entering the server market to begin with.

The Xeon 5500-based C-Series consists of one 1U and two 2U models. The 1U C200 M1 can have 96GB of memory in 12 DIMMs, four 3.5-inch SAS or SATA drives and room for two PCIe cards. The 2U C210 M1 can expand to 16 SFF SAS or SATA drives and five PCIe cards and the top-of-the-line C250 M1 can go to 384GB of memory (48 DIMMs) and eight drives. Cisco says its patented memory extension technology yields upwards of 2.5 times the addressable memory than competitive rack servers and hence more virtual machines and the scalability to run large memory applications.

WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff.



WServerNews - Product of the Week

Download a free, smart search engine for log data today! EventTrackerPULSE

Automate the collection and archival of logs from Windows, Linux/Unix, network devices, and applications; search through hundreds of gigabytes of log data with an easy to use interface; proactively diagnose issues before they turn into costly service-disrupting incidents; optimize system interactions; improve availability; accelerate troubleshooting; in the event of a security incident, put the pieces together and figure out what exactly happened:
http://www.wservernews.com/090608-Event-Tracker