MY PROFILE | PRIVACY 
Vol. 14, #28 - Jun 29, 2009 - Issue #733
Win7 News Roundup - Catch: Upgrades Limited to 25 Units

  1. Editors Corner
    • Win7 News Roundup - Catch: Upgrades Limited to 25 Units
    • Defense Sec Gates Approves Creation Of U.S. Cyber Command
    • Why Shavlik Decided To Go With VIPRE
    • Mobile & Wireless: Teardown Shows Apple iPhone 3G S Secrets
    • Quotes Of The Week
  2. Webinars and Seminars
    • BriForum 2009: Independent Event 100% About End User Virtualization
    • DesktopEngineer.com Launches Windows Internals Training
  3. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  4. Tech Briefing
    • Busting The Nine Myths Of Cloud Computing
    • Security Software Market Revenues Jump Worldwide
    • Making Sense Of Cloud-Based SLAs
    • Four Good Reasons To Deploy Virtual Desktops Now
    • Securing Sensitive Data On Windows-Based Laptops
  5. Windows Server News
    • How To Use PowerShell Or VBScript Scripting With Hyper-V
  6. Third Party News
    • Run Any Of These Third Party Apps? Patch Time!
  7. WServerNews Fave Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  8. WServerNews - Product of the Week
    • Your Endpoint Security Renewal Is Coming Up. Perfect Timing.
Your Endpoint Security Renewal Is Coming Up. Perfect Timing

You are asked to do more with less budget. Probably lost staff in the IT dept that was not replaced. Walking around with two pagers and two cell phones. The last thing you need is spend more time wrestling with that hard-to-manage and outdated console of the old antivirus bloatware you were locked into. NO MORE! Download VIPRE Enterprise and see how easy it is to manage. You can get a 30 min walkthru with one of our SE's if you want to save even more time. Automated uninstall of your old bloatware. And a no-brainer competitive upgrade price of 10 bucks per seat. Finally a chance to get your weekends back!
http://www.wservernews.com/090629-VIPRE-Enterprise


Editors Corner

Win7 News Roundup - Catch: Upgrades Limited to 25 Units

So, the prices are now announced. Retail the Home Premium version will list for $200, Pro $300 and Ultimate $320. Of course Windows rarely sells at list price. The upgrade prices are supposed to be $120 for Home Premium, $200 for Pro and $220 for Ultimate. Redmond has cut the price of the Home Premium, expected to be its most popular retail product, 10% below what Vista Home Premium was priced when it was released.

If you are a consumer and you pre-order Win7 from for instance Amazon you can supposedly get a better deal: more than 50% off for Home or Pro but the offer will only run until July 11 in the US and Canada. A similar offer will start on July 15 in the UK, France and Germany.

But if you are an Enterprise, and you want to restock with new PCs and take advantage of Redmond's Win7 Upgrade, you might be very disappointed.

Under this program, debuting Friday June 26, anyone who buys a PC from a participating manufacturer or retailer that is fitted with a Vista OS will receive upgrades to Windows 7 at little or no cost. But here is a catch: there is a limit of 25 PCs per individual under the program. A single company counts as an individual. Here is the InfoWorld article that has the scoop:
http://www.wservernews.com/090629-Win7-Upgrade

Here is the spot to discuss this with other WServerNews subscribers:
http://www.wservernews.com/090629-WServerNews-Forum


Defense Sec Gates Approves Creation Of U.S. Cyber Command

Defense Sec Robert Gates approved the creation of a unified U.S. Cyber Command to oversee the protection of .mil networks against cyber threats. In a memo sent to the Joint Chiefs of Staff, Gates said he wants to recommend to Obama that the new command be led by the director of the National Security Agency (NSA) Lt. Gen. Keith Alexander. Gates directed the commander of the U.S. Strategic Command to develop implementation plans for Cybercom, as the new unified command will be called.

This might be a big step in getting more visibility, awareness and... budget for your own security initiatives. You can discuss this at the new WSN blog here:
http://www.wservernews.com/090629-Cyber-Command


Why Shavlik Decided To Go With VIPRE

The Shavlik Captain's Blog started out with: "I went to lunch today with one of our top resellers and he asked me, "I like what you are doing in the AV space but why did you selected Sunbelt?" and I thought it would be a good idea to widely share my answer. To start, we made our partnering decision over two years ago and we are happy with the results. More at:
http://www.wservernews.com/090629-Why-VIPRE


Mobile & Wireless: Teardown Shows Apple iPhone 3G S Secrets

Were you the type of kid who liked to take a thing apart just to see how it worked? The team at RapidRepair surely was. As soon as the iPhone 3G S went on sale at the Orange Boutique in Paris at midnight, RapidRepair CEO Aaron Vronko got his hands on the new smartphone and he ran it over to the Brico Mac store where he promptly began to pull apart the perfectly assembled device piece by piece. This slideshow at eWEEK details the disassembly, in all its gory detail, and offers a look at the 3G S from the inside out:
http://www.wservernews.com/090629-3GS-Secrets


Quotes Of The Week

"The new Microsoft search engine was called BING = Because It's Not Google!" -- Denis Barsalo, WServerNews subscriber

"Those who suppress freedom always do so in the name of law and order." -- John V. Lindsay




Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/090629-Subscribe

PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends:
http://www.wservernews.com/090629-WXPNews

PPS: And of course we also have our weekly VistaNews. You can subscribe here, and tell your friends too:
http://www.wservernews.com/090629-VistaNews

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]

Automated Uninstall of Symantec AV

No more 2-day SEP V11 Migration Classes! Sunbelt built VIPRE Enterprise; a completely new technology combining corporate antivirus plus an enterprise antispyware solution for total endpoint security designed by admins for admins. And that means EASY DEPLOYMENT. Save your IT budget and don't renew products from Symantec, McAfee and Trend Micro, Learn how VIPRE Enterprise takes much less resources than the competition! It's clearly time to ditch expensive, bloated, old-style AV products. Competitive Upgrade price: $10 per seat:
http://www.wservernews.com/090629-VIPRE


Webinars and Seminars

BriForum 2009: Independent Event 100% About End User Virtualization

Hosted by industry analyst and blogger, Brian Madden, this exclusive three day event brings together top notch virtualization experts from across the globe and is only happening once this year - July 21 - 23 at the Hilton Chicago Hotel. Now more than ever, you can't afford to fall behind the learning curve or be uninformed on any cost or time saving technology like desktop and application virtualization. Learn how to leverage these projects now and get hands on experience with the tools and resources that should be on your radar for the second half of the year and beyond. To learn more about this event and to find out if you qualify for one of the many registrant fee discounts, visit the event website or contact Jackie Anderson, 781-657-1380.
http://www.wservernews.com/090629-BriForum


DesktopEngineer.com Launches Windows Internals Training

DesktopEngineer.com's new branded training that helps organizations get ready for their applications to run under Windows 7, Application Virtualization, Streaming or Application Compatibility Toolkit. More about this on-line training here:
http://www.wservernews.com/090629-DesktopEngineer


Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

Tighten security with myPassword - Save help desk time and productivity with self-service password reset - empower users - Streamline AD password mgmt!
http://www.wservernews.com/090629-myPassword

Win one of five $100 gift cards! Download or TestDrive any ScriptLogic product for a chance to win!
http://www.wservernews.com/090629-ScriptLogic-Software

Stop confidential data from leaving by email, USB, etc. Free Trial:
http://www.wservernews.com/090629-DataLock

Wireshark is the world's foremost network protocol analyzer, and the new Wireshark 1.2 is now available for download:
http://www.wservernews.com/090629-Wireshark

This is your jumping off point to a number of interesting offerings being provided for you by the folks associated with the Microsoft MVP) program:
http://www.wservernews.com/090629-MVPs

Remote Server Administration Tools for Windows 7 Release Candidate (RC):
http://www.wservernews.com/090629-Administration-Tools


Tech Briefing

Busting The Nine Myths Of Cloud Computing

Vendor hype and IT self-delusion can quickly lead to disappointment. If you're considering a cloud strategy, don't get fooled by these false premises:
http://www.wservernews.com/090629-Cloud-Computing


Security Software Market Revenues Jump Worldwide

Gartner estimates the security software market increased 18.6 percent in 2008 to $13.5 billion worldwide, with Symantec, McAfee and Trend Micro leading the way. According to Gartner, some of the growth was due to increased demand for appliance-based products. More at eWEEK:
http://www.wservernews.com/090629-Security-Software-Market


Making Sense Of Cloud-Based SLAs

Many IT managers are in the process of moving applications and services into the cloud. Some are forced to consider cloud-based computing due to economic reasons, while others are looking to create new IT services. Regardless of the reasons, IT managers will have to deal with a service-level agreement (SLA) sooner or later. Get answers to common cloud-based SLA questions in this tip:
http://www.wservernews.com/090629-Cloud-Based-SLAs


Four Good Reasons To Deploy Virtual Desktops Now

Virtualization has its limits, but its benefits are a driving factor and the technology is rapidly catching up with the user scenarios playing out today. Developing a virtual desktop environment isn't an easy feat, but there are many reasons why it's worth the effort. Learn why you shouldn't wait and what are the top benefits of deploying virtual desktops now:
http://www.wservernews.com/090629-Virtual-Desktop


Securing Sensitive Data On Windows-Based Laptops

When it comes to data risks in Windows, one near constant is that your mobile Windows systems are not as secure as they could be. Keeping sensitive data protected on a Windows-based laptop is arguably one of the greatest IT problems in business today. Find out what problems you may be overlooking and best practices for securing sensitive data on Windows-based laptops:
http://www.wservernews.com/090629-Securing-Sensitive-Data


Windows Server News

How To Use PowerShell Or VBScript Scripting With Hyper-V

To effectively manage any virtualization platform, you need a strong arsenal of scripting tools. This can allow various levels of automation and shorten configuration time. Microsoft's hypervisor includes scripting options that can use VBScript and the robust PowerShell for Hyper-V script environment. In this tip, get an outline of how Hyper-V scripting works and examples of how to get started:
http://www.wservernews.com/090629-PowerShell-or-VBScript


Third Party News

Run Any Of These Third Party Apps? Patch Time!

SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer incidents. It also contains the latest SANS/FBI top 20 vulnerability list. SNSI also uses the latest CERT, CIAC Microsoft and FedCIRC (Department of Homeland Security) advisories.
New Checks
L1512	Mozilla Firefox multiple vulnerabilities - FC	
L1514	Epiphany Mozilla based package vulnerabilities - FC	
L1515	Mozilla Yelp package vulnerabilities - FC	
L1679	BLAM multiple Mozilla based flaws - FC	
L1975	Epiphany-extensions related Mozilla vulnerabilities - FC	
L2138	Mozilla Devhelp package vulnerabilities - FC	
L2140	Totem Mozilla based vulnerabilities - FC	
L2148	Mozilla Galeon package vulnerabilities - FC	
L2151	Chmsee Mozilla based vulnerabilities - FC	
L2152	Xulrunner multiple Mozilla based vulnerabilities - FC	
L2155	Evolution-RSS Mozilla based vulnerabilities - FC	
L2156	gecko-sharp2 multiple Mozilla based vulnerabilities - FC	
L2297	Gnome-python2-extras multiple security vulnerabilities - FC	
L2298	Gnome-web-photo multiple security vulnerabilities - FC	
L2299	Google Gadgets multiple security vulnerabilities - FC	
L2300	Kazehakase browser multiple security vulnerabilities - FC	
L2301	Mozvoikko extension multiple security vulnerabilities - FC	
L2302	Miro multiple security vulnerabilities - FC	
L2303	Mugshot multiple security vulnerabilities - FC	
L2310	Pcmanx-gtk2 multiple security vulnerabilities - FC	
L2311	Ruby-gnome2 multiple security vulnerabilities - FC	
L2510	PERL Compress::Raw::Zlib inflatevulnerability - FC	
L2511	ICU invalid byte sequence in Unicode conversion - FC	
L2512	MinGW 1-bit image interlace weakness in PNG files - FC	
L2513	GUPnP empty content matching vulnerability - FC	
L2514	PHP-ZendFramework local file inclusion flaw - FC	
S110	Ghostscript Multiple Vulnerabilities - Solaris	
H74	Emanate SNMPv3 HMAC length verification Vulnerability - HP-UX 11	
L4	"RedHat 5 Kernel ""One Less"" Risk Acceptance check - RHE"	
L1342	Irssi off-by-one error in event_wallops function - MDV	
L1343	Kernel/Mandriva 2009.0 multiple vulnerabilities June 2009 - MDV	
L1344	Java-1.6.0-openjdk multiple vulnerabilities June 2009 - MDV	
L1622	Kernel multiple security vulnerabilities - RHE5	
L2045	Mozilla Firefox multiple security vulnerabilities - MDV	
L2046	Devhelp Mozilla related security vulnerabilities - MDV	
L2047	Epiphany Mozilla related security vulnerabilities - MDV	
L2050	Gnome-Python Mozilla related security vulnerabilities - MDV	
L2053	BlogRovR Mozilla related security vulnerabilities - MDV	
L2054	Foxmarks Mozilla related security vulnerabilities - MDV	
L2055	ScribeFire Blog Editor Mozilla related vulnerabilities - MDV	
L2058	Mozilla related xulrunner security vulnerabilities - MDV	
L2059	Mozilla related Yelp security vulnerabilities - MDV	
L2060	Beagle Search Mozilla related security vulnerabilities - MDV	
L2061	Mozilla thunderbird-beagle related security vulnerabilities - MDV	
L2143	GTKmozembedmm Mozilla based vulnerabilities - FC	
L2439	NTP NTPv4 public key authentication flaw - FC	
L2508	Google-Gadgets Mozilla related security vulnerabilities - MDV	
L2509	Drupal-views exposed filters in UI interface error - FC	
L2515	Kernel multiple security vulnerabilities - Sci Linux	
L2516	Kernel multiple security vulnerabilities - Oracle Linux	
L2517	Kernel multiple security vulnerabilities - CentOS	
L2518	Cyrus-sasl encode64 saslutil.c string input weakness - RHE	
L2519	Cyrus-sasl encode64 saslutil.c string input weakness - Sci Linux	
L2520	Cyrus-sasl encode64 saslutil.c string input weakness - Oracle Linux
L2521	Cyrus-sasl encode64 saslutil.c string input weakness - CentOS	
S34	Print Spooler Multiple Vulnerabilities - Solaris 10	
S68	Event Ports API/IP Multicast Vulnerabilities - Solaris	
S69	TCP/IP stack frame validation vulnerability - Solaris	
W1589	Adobe Shockwave Player Vulnerability	
W1975	Google Chrome Vulnerabilities - XP/Vista/W2k3/W2K8	
W3082	Citrix Secure Gateway request handling Vulnerability	

Updated Checks S190 Cluster 3.1/3.2 hangs in VLAN environments - Solaris 8 - 9 W1142 Anti-virus Signature Outdated - McAfee W1986 Anti-virus Signature Outdated - Symantec W1999 Anti-virus Signature Outdated - Trend Micro W2067 Anti-virus Signature Outdated - F-Secure W2070 Anti-virus Signature Outdated - CA eTrust M76 ClamXav / ClamAV signatures not the latest - Mac OS X M80 Virex signature file out of date - Mac OS X S33 ClamAV signatures not updated - Solaris S130 Kerberos Mech Libraries/SPNEGO/multiple vulnerabilities - Solaris 8 - 10 S284 Cluster 3.2 rgmd process memory leak - Solaris 10 S305 Cluster 3.2 nodes incorrectly handle nested mounts - Solaris 9 - 10 S480 Symantec/Veritas NetBackup Vnetd Vulnerability - Solaris 8 - 10 W2012 Anti-virus signature outdated - Avast! 4 W2013 Anti-virus signature outdated - AVG 8 - W2K/XP/W2K3 W2842 Thunderbird Engine Crash Vulnerabilities W2843 SeaMonkey POST Vulnerability
Sunbelt Network Security Inspector version 2.0.2670.0 Definition Set 183 was released June 26, 2009. Sunbelt Software recommends you download the new SNSI Vulnerability Update Definitions 183, scan, and patch your machines today. To get the latest SNSI version, visit:
http://www.wservernews.com/090629-SNSI


WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff.



WServerNews - Product of the Week

Your Endpoint Security Renewal Is Coming Up. Perfect Timing.

You are asked to do more with less budget. Probably lost staff in the IT dept that was not replaced. Walking around with two pagers and two cell phones. The last thing you need is spend more time wrestling with that hard-to-manage and outdated console of the old antivirus bloatware you were locked into. NO MORE! Download VIPRE Enterprise and see how easy it is to manage. You can get a 30 min walkthru with one of our SE's if you want to save even more time. Automated uninstall of your old bloatware. And a no-brainer competitive upgrade price of 10 bucks per seat. Finally a chance to get your weekends back!
http://www.wservernews.com/090629-VIPREEnterprise