MY PROFILE | PRIVACY 
Vol. 14, #51 - Dec 7, 2009 - Issue #756
VIPRE Receives VB100 Award

This issue of WServerNews is sponsored by
  1. Editor's Corner
    • VIPRE Receives VB100 Award
    • VIPRE 4 Now In Beta
    • 2010 IT & Technology Trends Forecast Survey
    • Quotes Of The Week
  2. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  3. Webinars & Seminars
    • Securing The Cloud - December 10th, 2pm ET / 11am PT
    • Webcast: Stormy Web Ahead - A Forecast of Web Security Threats in 2010
    • Kiss Your Antivirus Bloatware Goodbye: A Look at VIPRE Enterprise 12/8
    • Affordable, Enterprise Email Archiving - 12/15
  4. Tech Briefing
    • With IE9, Redmond Fights Back In Browser Wars
    • What's New in Microsoft Office 2010?
    • Why You Should Embrace Memory Overcommits For Your VMs
    • Microsoft Readying SP3 For Exchange 2007
    • Podcast: Cloud Computing Management Overview
  5. Windows Server News
    • Upgrading From Exchange Server 2007 to 2010: Differences:
    • Sharepoint 2010: What's New For IT Pros
    • Successful Sharepoint Training Strategies
    • Avoid The Big Mistakes When Backing Up Virtual Servers
  6. Third Party News
    • Virus Bulletin Calls For Collaboration Amongst Anti-Spam Vendors
    • The Latest Multi-Platform List Of New Vulnerabilities
  7. WServerNews Fave Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  8. WServerNews - Product of the Week
    • Can You Install a Web Security Appliance in 15 mins?
Can You Install a Web Security Appliance in 15 mins?

You can with iPrism. Without having to reconfigure your network, you can be up and running in 15 mins. The iPrism appliance supports seamless Active Directory & Citrix integration, plus it supports Mac authentication. If the install is this easy, imagine how easy maintenance is. It's easier with iPrism. Sign up now for an online demo & get a t-shirt!
http://www.wservernews.com/091207-iPrism-Web-Security-Gateway


Editor's Corner

VIPRE Receives VB100 Award

We're happy to announce that in the latest comparatives testing by the world's premier AV lab Virus Bulletin, VIPRE received the VB100 award in its first time entering, tested on Windows 7! It does not happen very often that a product that enters the VB100 gets awarded on its first try. VIPRE now having this certification shows again the quality of our next-generation architecture. Heads-up, the $10/seat Competitive Upgrade Campaign ends this month, so get your quote now and make sure the PO is in before the end of the year. Still got some months to go before your current product expires? We will buy you out:
http://www.wservernews.com/091207-VIPRE-Enterprise


VIPRE 4 Now In Beta

And we're even more excited that both the enterprise and consumer versions of VIPRE 4 are now in beta. VIPRE 4 includes an integrated firewall, HIPS, IDS, NIPS and all kinds of other goodness. VIPRE Enterprise features a completely new console, with new functionality to deal with large enterprise environments. (PS: VIPRE will still be available without all these extras as well.) If you'd like to get the beta (or get more information), simply go to here and register by clicking the 'Join Beta Forums' link: http://beta.sunbeltsoftware.com

2010 IT & Technology Trends Forecast Survey

As 2009 winds down, many businesses are making technology and budget plans for next year. What's on your organization's agenda for 2010? ITIC and Sunbelt Software would like your opinion. We've created a new survey. The questions are straightforward and it should take you less than 5 minutes to complete. All responses are kept confidential. And once again, anyone who completes the survey is eligible to win one of two (2) free iPods. To be eligible to win the iPods you must leave your Email address along with your comment in the comment box of the final essay question. Here's the link to the survey:
http://www.wservernews.com/091207-Survey


Quotes Of The Week

"We live in a society exquisitely dependent on science and technology, in which hardly anyone knows anything about science and technology." -- Carl Sagan

"There is so much bad in the best of us, and so much good in the worst of us, that it ill behooves any of us to talk about the rest of us." -- Old poem.




Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/091207-Subscribe

PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends:
http://www.wservernews.com/091207-WXPNews

PPS: And now we have our new Win7News! You can subscribe here, and tell your friends:
http://www.wservernews.com/091207-Win7News

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]


Heads-Up: VIPRE Enterprise 10$/Seat Competitive Upgrade Ends 12/31!

The independent Tolly Group said in their September 2009 Anti-virus Performance Test Report: "Consumes up to 38% and 45% less memory, and offers up to 2.6x and 3.6x scanning speed compared to Symantec and McAfee." It's clearly time to kiss your antivirus bloatware goodbye. Sunbelt built VIPRE Enterprise; a completely new technology combining corporate antivirus plus an enterprise antispyware solution for total endpoint security designed by admins for admins. And that means EASY DEPLOYMENT. Click on the 'Request Info' tab and ask for a quote now:
http://www.wservernews.com/091207-VIPREEnterprise
<

Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

End-users forgetting their passwords drive you up the wall? Let them reset their own passwords! All the features you need. Lowest Cost. Extra 25% off for WSN readers. Free eval!
http://www.wservernews.com/091207-Self-Service-Password-Reset

I just downloaded WizMouse. Great tool for a multi-tasker and it is free. It makes your scroll wheel work in -every- window, immediately. Very handy:
http://www.wservernews.com/091207-Scroll-Wheel

Can You Install a Web Security Appliance in 15 mins? You can with the iPrism appliance. Sign up now for a demo & get a t-shirt!
http://www.wservernews.com/091207-iPrism

Help Desk Authority is a comprehensive and effortless help desk tracking solution. Now, you can effectively manage help desk issues with efficiency and ease. Try it for free!
http://www.wservernews.com/091207-Help-Desk-Authority


Webinars & Seminars

Securing The Cloud - December 10th, 2pm ET / 11am PT

Cloud computing is an essential and fast-growing sector in IT infrastructure. It promises to provide vast computing power, reliable off-site data storage, wide availability, all at lower maintenance and investment costs.

But with all the potential comes risk. Recent cloud computing mishaps (such as Danger and Google Apps) have underscored the need for consistent and thorough security policies implemented in the design stage.

In this webinar you will:
  • Hear security experts explain recent key learnings on designing secure cloud computing applications
  • Learn how to apply these concepts to your current cloud applications
  • Learn tips to engineer security solutions that'll help cloud computing realize its full potential
Live attendees will receive a complimentary whitepaper entitled "Securing the Cloud: designing security for a new age"
http://www.wservernews.com/091207-Securing-the-Cloud


Webcast: Stormy Web Ahead - A Forecast of Web Security Threats in 2010

When the forecast is calling for scattered zombies and a high probability of phishing attacks, it's wise to dress properly & take an umbrella. Have you got the right "umbrella" to protect against the latest web security threats? Learning which threats may be blowing your way gives you an early opportunity to chart your security path and ensure you've got appropriate protection in place.

Join Commtouch and its Security Alliance partners RSA and Sunbelt for an informative session on the latest trends in web threats. Hear a summary of the most dangerous malware, phishing and web attacks that took place in 2009 and which types of attacks the experts predict you'll need to protect against in 2010. Don't get caught out in the storm unprotected!

Register now for this 40-minute webcast and get the information you need to help you push forward your web security improvement plans.
http://www.wservernews.com/091207-Web-Security-Threats


Kiss Your Antivirus Bloatware Goodbye: A Look at VIPRE Enterprise 12/8

Want total malware protection without the bloat? Join us for a look at VIPRE Enterprise and learn how Sunbelt started with a blank slate to design a new, next-generation antivirus and antispyware technology to deal with today's complex malware in the most comprehensive, highly efficient manner. Tuesday, December 8, 2009, 2:00pm - 3:00pm EST
http://www.wservernews.com/091207-Goodbye-Bloatware


Affordable, Enterprise Email Archiving - 12/15

Exchange performance is suffering. Your users complain about email storage and don't want any quotas. Your CEO requires legal compliance. Want a high-end, feature-rich, admin-friendly product that solves all these issues at a very affordable price? Then don't miss this Sunbelt Exchange Archiver webinar. Tuesday, December 15, 2009, 2:00pm - 3:00pm EST
http://www.wservernews.com/091207-Enterprise-Email-Archiving


Tech Briefing

With IE9, Redmond Fights Back In Browser Wars

Microsoft has been pouring resources back into the IE effort, and at its recent Professional Developers Conference in Los Angeles, some fruits of that labor were on display. In particular, Windows unit president Steven Sinofsky showed off IE 9's new hardware-accelerated text and graphics.

The acceleration feature takes advantage of hitherto untapped computing power in a way that's more useful than other browser-boosting technology such as Google's Native Client to tap into a PC's processor and Mozilla's WebGL for accelerated 3D graphics, said Dean Hachamovitch, general manager of Internet Explorer. More:
http://www.wservernews.com/091207-Browser-Wars


What's New in Microsoft Office 2010?

Office 2010 went beta channels week, and the crew at Lifehacker spent some time playing with it. According to their early judgment, it's incremental. Office 2010 doesn't make the leap that Office 2007 made from 2003, but there are enough little tweaks and improvements to keep things interesting. Here is a list with the most obvious ones:
http://www.wservernews.com/091207-Office-2010


Why You Should Embrace Memory Overcommits For Your VMs

Think of it as resource sharing. Most systems aren't maxing out their available memory anyway. It's a big reason that companies adopt virtualization in the first place: to reduce the resource waste across all those single-instance physical servers. Get the whole story at InfoWorld:
http://www.wservernews.com/091207-Memory-Overcommits


Microsoft Readying SP3 For Exchange 2007

After reversing course on Exchange 2007 support, Microsoft now says a third service pack for the messaging server that adds compatibility with Windows Server 2008 R2 will ship in the second half of next year. In addition, Microsoft said it now supports write functions to Active Directory from Exchange 2003 SP2. The changes, according to Microsoft, were based on customer feedback. Microsoft stopped short of filling every Exchange request from users, saying it will not provide in-place upgrades for servers running underneath Exchange 2007. But company officials left the topic up for debate for future versions of Exchange. Story at Computerworld:
http://www.wservernews.com/091207-SP3-for-Exchange-2007


Podcast: Cloud Computing Management Overview

While not distinctly different from traditional data center management, cloud computing management presents a new environment and new situations for vendors and users to master in order to keep a watchful eye on their applications and data. Learn about the meaning of cloud management, its growing purpose in the cloud computing world and the expectations laid on cloud management providers in this expert podcast.
http://www.wservernews.com/091207-Cloud-Computing-Management


Windows Server News

Upgrading From Exchange Server 2007 to 2010: Differences:

Here is a page that makes it nice and clear what all the differences are and why it makes sense to upgrade. For instance, Fault Tolerance has been beefed up: "Several high-availability options have been consolidated into just one option for Exchange Server 2010 (Mailbox Resiliency), which is now offered in both the Standard and Enterprise editions. The capabilities of Local Continuous Replication, Standby Continuous Replication, and Cluster Continuous Replication are now unified into the Exchange 2010 Mailbox Resiliency capability. These capabilities enable a simplified approach to high availability and disaster recovery."
http://www.wservernews.com/091207-Comparison-Chart


Sharepoint 2010: What's New For IT Pros

SharePoint 2010 promises site administrators improved productivity, greater control, and more flexible deployments. Get the whole story at InfoWorld:
http://www.wservernews.com/091207-SharePoint-2010


Successful Sharepoint Training Strategies

Even though it's been around for a while, SharePoint is still brand new for many users, and they don't really know what to do with it. Without proper training, large numbers of end users unfamiliar with SharePoint may reject it completely. At the least, lack of proper training slows productivity while end users are struggling to learn how to use it. Learn how to make your SharePoint training a success in this expert tip. (Email registration required)
http://www.wservernews.com/091207-SharePoint-Training


Avoid The Big Mistakes When Backing Up Virtual Servers

Some of the drawbacks of migrating your servers to virtual machines come from your old infrastructure. The backup systems in particular can come under disruptive fire because most have been designed to support a certain number of physical servers. Now that your server count can grow exponentially, you need to address your backup solution before virtualization causes backups to get out of control. Learn what proactive steps you can take to avoid that from happening: (Email registration required)
http://www.wservernews.com/091207-Backing-Up-Virtual-Servers


Third Party News

Virus Bulletin Calls For Collaboration Amongst Anti-Spam Vendors

Virus Bulletin (VB) finds that, when it comes to spam filtering, a combined effort outperforms individual products. Virus Bulletin has discovered that running several spam filters in combination could be key to getting the best performance out of them. Following the last VBSpam comparative review of anti-spam products, the VB test team established that if the efforts of several filters were to be combined, the performance would be significantly better than that of any of the products on their own.

In the test, almost 200,000 emails were sent to 14 different anti-spam solutions which were required to classify them as either ham or spam. The test revealed that no legitimate mail was blocked by more than four products. After the test, VB's anti-spam team decided to look into this further and considered a hypothetical filter that marked an email as spam if at least five of the 14 products did so. Unlike any of the individual products, the hypothetical filter generated no false positives at all, and combined this 0% false positive rate with an impressive overall spam catch rate of 99.89% (higher than any of the individual products VB has tested). The interesting thing is that VIPRE Email Security for Exchange combines several top engines:
http://www.wservernews.com/091207-VIPRE-Email-Security


The Latest Multi-Platform List Of New Vulnerabilities

SNSI uses the latest Mitre Common Vulnerabilities and Exposures (CVE) list of computer incidents. It also contains the latest SANS/FBI top 20 vulnerability list. SNSI also uses the latest CERT, CIAC Microsoft and FedCIRC (Department of Homeland Security) advisories.

New Checks:
L164 Pidgin invalid pointers in OSCAR protocol - RHE  
L183 Pidgin invalid pointers in OSCAR protocol - CentOS  
L184 Pidgin invalid pointers in OSCAR & IRC protocols - CentOS  
L194 Pidgin invalid pointers in OSCAR & IRC protocols - SciLinux  
L196 Seamonkey multiple vulnerabilities - SciLinux  
H22 OpenSSL Session Renegotiation Vulnerability  
L161 Apache SSL/TLS renegotiation handshake flaw- RHE  
L162 Java openjdk multiple security errors Nov 2009 - RHE  
L163 CUPS HTML form content/file descriptor & other flaws - RHE  
L165 Kernel swiotlb jumbo frames & other flaws - RHE  
L166 Red Hat Linux Enterprise v3 End of Life notice - RHE  
L167 Java-1.6.0-sun multiple security flaws Nov 2009 - RHE  
L171 Java-1.5.0-sun multiple security flaws Nov 2009 - RHE  
L173 4Suite malformed UTF-8 sequence handling error - RHE  
L174 Apache SSL/TLS renegotiation handshake flaw- RHE  
L175 IBM Java 6 Service Release 6 security update - RHE  
L176 KDELibs floating point conversion weakness - RHE  
L177 Xerces-j2 DTD SYSTEM identifier error - RHE  
L179 DStat Python module search path flaw - RHE  
L181 ISC BIND DNSSEC response validation caching error - RHE  
L182 CUPS pdftops filter weakness as the "lp" user - CentOS  
L185 FreeRadius attribute validation vulnerability - CentOS  
L186 KDEGraphics multiple flaws Oct 2009 - CentOS  
L187 Kernel multiple security vulnerabilities - CentOS  
L188 OpenSSH directory ownership in ChrootDirectory flaw - CentOS  
L191 Poppler multiple flaws Oct 2009 - CentOS  
L193 Xen pyGrub loader "password" option virtualization error - CentOS  
L195 Wget NULL character handling in X.509 certificates - Sci Linux  
L198 Kernel swiotlb jumbo frames & other flaws - SciLinux  
M87 Opera Browser Vulnerabilities - Mac OS X  
N144 HP LaserJet Vulnerability  
S47 Samba passwd/oplock notification vulnerabilities - Solaris 2.4 - 8  
S111 SSL/TLS session renegotiation vulnerability  
S273 BIND DNSSEC recursive query cache poisoning - Solaris 9 - 10  
S338 Java Messaging Server MMP connections hang - Solaris 9 - 10  
S437 LDAP Client cache manager vulnerability - Solaris 8 - 9  
W1980 IE Google Chrome Frame Vulnerability  
W2156 IBM Tivoli Storage Manager Client Vulnerabilities  
W2862 Cisco VPN Client cvpnd Vulnerability  
W3075 Opera Multiple Vulnerabilities / latest not installed.  
W3565 Internet Explorer layout handling vulnerability  

Updated Checks H114 OpenView NNM Vulnerabilities HP-UX 11 H150 Passwd ungraceful error recovery - HP-UX 11 W1142 Anti-virus signature outdated - McAfee W1986 Anti-virus signature outdated - Symantec W1999 Anti-virus signature outdated - Trend Micro W2067 Anti-virus signature outdated - F-Secure W2070 Anti-virus signature outdated - CA eTrust H84 OpenView Network Node Manager Vulnerability - HP-UX 11 H131 OpenView NNM 7.01/7.51/7.53 vulnerabilities - HP-UX 11 H181 OpenView Operations Java GUI vulnerabilities - HP-UX 11 M76 ClamXav / ClamAV signatures not the latest - Mac OS X M80 Virex signature file out of date - Mac OS X S33 ClamAV signatures not updated - Solaris W2012 Anti-virus signature outdated - Avast! 4 W2013 Anti-virus signature outdated - AVG 8 - W2K/XP/W2K3 W2056 Anti-virus signature outdated - Norman
Sunbelt Network Security Inspector version 2.0.2670.0 Definition Set 206 was released December 3, 2009. Sunbelt Software recommends you download the new SNSI Vulnerability Update Definitions 206, scan, and patch your machines today. To get the latest SNSI version, visit:
http://www.wservernews.com/091207-Sunbelt-Network-Security-Inspector


WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff.


WServerNews - Product of the Week

Can You Install a Web Security Appliance in 15 mins?

You can with iPrism. Without having to reconfigure your network, you can be up and running in 15 mins. The iPrism appliance supports seamless Active Directory & Citrix integration, plus it supports Mac authentication. If the install is this easy, imagine how easy maintenance is. It's easier with iPrism. Sign up now for an online demo & get a t-shirt!
http://www.wservernews.com/091207-iPrism-Web-Security