MY PROFILE | PRIVACY 
Vol. 15, #19 - May 3, 2010 - Issue #777
Billie Backhoe Strikes Again

This issue of WServerNews is sponsored by
  1. Editor's Corner
    • Billie Backhoe Strikes Again
    • New SunPoll - Hard Drives In Photo Copiers
    • Quotes Of The Week
  2. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  3. Webinars & Seminars
    • Introducing VIPRE Enterprise Premium, Version 4.0 - 5/4
    • Securing your Exchange Server with VIPRE Email Security - 5/11
    • Sunbelt Exchange Archiver Product Demonstration - 5/18
    • VIPRE Enterprise Premium Product Demonstration - 5/25
    • BriForum Desktop Virtualization Event
  4. Tech Briefing
    • Windows Home Server (WHS) New V2 Beta
    • Cloud Security's Got A PR Problem
    • The Complications Of Licensing Software In The Cloud
    • Expert Tip: Integrating Windows 7 into VDI to simplify PC upgrades
  5. Windows Server News
    • The Power Of System Center Operations Manager
    • Hyper-V Failover: Building A Multi-Site Cluster
    • Microsoft Shows Maturing IT management Vision
    • Microsoft Gets Its Exchange Cloud In Order
    • Kicking The Tires On SharePoint 2010
  6. Third Party News
    • Important VIPRE Enterprise & Premium Console Update
    • How VIPRE Avoids Killing Windows System Files
  7. WServerNews Fave Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  8. WServerNews - Product of the Week
    • Watch a Demo Get a $20 Amazon.com Gift Card
Watch a Demo Get a $20 Amazon.com Gift Card

iPrism Web Filter, the TCO leader in Web Security, is a comprehensive appliance with easy setup & zero maintenance. iPrism doesn't require ANY changes to your current network, even Citrix! Watch a demo of iPrism & get a $20 Amazon.com Gift Card for your time.
http://www.wservernews.com/100503-iPrism-Demo

Editor's Corner

Billie Backhoe Strikes Again

Oh well, it was not an underground cable, it was overhead, and it was a cherry picker. But still. A crew was adding cables nearby our office and their cherry picker got caught on a box that housed the fiber ring which services our downtown, and ripped it open. The truck seen in the pictures is from the Telecom repair team. They got there fast and were already working on it when we took the pictures. But when it rains it pours. So we lost our Time Warner Gig pipe, and on top 6 PRI Phone circuits, 1 FIOS Internet connection and a bit later we lost our Level3 10 meg pipe. So we were 3 for 3 with Internet services going down for a little while there. It's really time to get that DMZ to a colo...(!)
http://www.wservernews.com/100503-Incident-in-Paradise


New SunPoll - Hard Drives In Photo Copiers

Modern office copiers can be a security risk. Almost every copier made since 2002 contains a hard drive, which stores a copy of every document the machine scans, prints, copies, or faxes. And if you need proof of just how dangerous this stored information can be, check out the following video from CBS News:
http://www.wservernews.com/100503-Copy-Machines

So here is the actual Poll: "Does your organization wipe data from photo-copier hard drives before copiers are decommissioned?"
  • Internal staff wipe the data.
  • Third-party IT or copier technicians wipe the data while the machine is on site.
  • Copier dealer or leasing company wipes the data once they reclaim the copier.
  • Copier automatically wipes the data with a built-in feature.
  • We don't wipe data from copier hard drives.
Vote here, Bottom right:
http://www.wservernews.com/100503-SunbeltSoftware


Quotes Of The Week

"You have to learn the rules of the game. And then you have to play better than anyone else." -- Albert Einstein

"In the beginning there was nothing, which exploded." -- Terry Pratchett




Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/100503-Subscribe

PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends:
http://www.wservernews.com/100503-WXPNews

PPS: And now we have our new Win7News! You can subscribe here, and tell your friends:
http://www.wservernews.com/100503-Win7News

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]

Don't Get Caught with Your Compliance Down

Know that feeling when you realize you forgot to do something really important? That's how you'll feel when your company is involved in legal proceedings, and you overlook something during the e-discovery. The consequences could be devastating. Judges are not amused with lost or destroyed evidence, and your organization could be fined millions of dollars. Worse, you could lose a court case that could otherwise be won. Avoid such a scenario with SEA. Sunbelt Exchange Archiver is affordable archiving for SME's. Ask for your quote here:
http://www.wservernews.com/100503-Sunbelt-Exchange-Archiver


Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

Watch a demo of iPrism & get a $20 Amazon.com Gift Card for your time.
http://www.wservernews.com/100503-iPrism

Extend Active Directory to your UNIX, Linux, Mac, web and database platforms. Free authentication guide.
http://www.wservernews.com/100503-Centrify

Download an exclusive free eBook, Essentials of Effective File Security by Greg Shields, and a free 30-day trial of Security Explorer from ScriptLogic.
http://www.wservernews.com/100503-Security-Explorer

You can manage and allow locked-down end-users to run apps using a Privilege Mgmt system. Scriptlogic has a free one:
http://www.wservernews.com/100503-Privilege-Authority


Webinars & Seminars

Introducing VIPRE Enterprise Premium, Version 4.0 - 5/4

Tuesday, May 4, 2010, 2:00pm - 3:00pm EDT

Be among the first to see Sunbelt's new VIPRE Enterprise Premium Version 4.0 - powerful, high-performance endpoint malware protection. The new premium version combines antivirus, antispyware, and now client firewall and malicious website filtering technologies, into a single agent to protect against the ever-changing wave of malware in the most comprehensive, highly efficient manner. Join us to hear how our approach to malware protection is different. We translated our years of experience in detecting and remediating sophisticated malware into the next-generation endpoint protection technology, VIPRE - without building on older generation AV engines or other sourced technology components. VIPRE is fast, efficient technology in a single, powerful threat engine with low impact on system resources.

Take a deep dive into new features including scalable multi-site tiering and role-based access control. Plus, learn why VIPRE delivers all the necessary security functionality you need and nothing you don't.
http://www.wservernews.com/100503-VIPRE-Premium-Webinar


Securing your Exchange Server with VIPRE Email Security - 5/11

Tuesday, May 11, 2010, 2:00pm -3:00pm EDT

Securing your Exchange Server is key to protecting your enterprise environment from spam, viruses, phishing, and other messaging threats. In this webinar, learn how the new version of VIPRE Email Security for Exchange (formerly Ninja Email Security) can help protect your network and cut your Exchange admin time in half with this powerful, policy-based email security product.
http://www.wservernews.com/100503-Email-Security-Webinar


Sunbelt Exchange Archiver Product Demonstration - 5/18

Tuesday, May 18, 2010, 2:00pm - 2:30pm EDT

Exchange performance is suffering. Your users complain about email storage and don't want any quotas. Your CEO requires legal compliance. Want a high-end, feature-rich, admin-friendly product that solves all these issues at a very affordable price? Then don't miss this Sunbelt Exchange Archiver demonstration.
http://www.wservernews.com/100503-SEA-Demo


VIPRE Enterprise Premium Product Demonstration - 5/25

Tuesday, May 25, 2010, 11:00am - 11:30am EDT

Join us for a look at Sunbelt's new VIPRE Enterprise Premium Version 4.0, powerful, high-performance endpoint malware protection. Be among the first to see the new version, which combines antivirus, antispyware and now firewall into a single agent. Plus take a deep dive into other new features including scalable multi-site tiering and role-based access control.
http://www.wservernews.com/100503-VIPRE-Premium-Demo


BriForum Desktop Virtualization Event

BriForum: The most technical, hands-on, 100% independent, desktop virtualization event. Mark your calendar for BriForum 2010 returning to Chicago, IL from June 15 - 17. Desktop virtualization guru, Brian Madden, and fellow industry experts will arm you with desktop and application virtualization-related tips, tricks, and verified techniques that you can apply immediately within your organization. This event is also completely hands-on allowing you to try out the latest solutions and offerings in this constantly changing space and talk directly to the vendors - saving you the time and hassle of researching these options on your own. Register today:
http://www.wservernews.com/100503-BriForum


Tech Briefing

Windows Home Server (WHS) New V2 Beta

I always wondered what features this Home Server had, and if I should grab an old box and make it a Home Server. Well, this week Redmond released a preview version of its next WHS product, code-named Vail, giving us a look. This preview provides an interesting peek at technologies that will make a lot of sense for small businesses as well as home users. This is a short 7 minute demo that answered a lot of my questions. Here it is:
http://www.wservernews.com/100503-Vail-Beta

Paul Thurrott from WinITPro did a good write-up of all the features, and especially the way WHS handles storage. The only thing lacking would be integrated cloud backup and this WHS Server would be a killer. Of course you can add your own Mozy (or many other vendors) and you're all set:
http://www.wservernews.com/100503-Home-Server-Storage


Cloud Security's Got A PR Problem

A recent Harris Poll shows that cloud computing's lack of security -- or at least its perception -- is making many Americans uneasy about the whole idea. "One of the main issues people have with cloud computing is security. Four in five online Americans (81 percent) agree that they are concerned about securing the service. Only one-quarter (25 percent) say they would trust this service for files with personal information, while three in five (62 percent) would not. Over half (58 percent) disagree with the concept that files stored online are safer than files stored locally on a hard drive and 57 percent of online Americans would not trust that their files are safe online." That's the sobering conclusion from a recent Harris poll conducted between March 1 and 8 among 2,320 adults. More at InfoWorld:
http://www.wservernews.com/100503-Cloud-Security


The Complications Of Licensing Software In The Cloud

Cloud computing licensing: Buyer beware. Software licensing, the bane of thousands of IT managers, just got more complicated. Find out how cloud computing impacts software licensing, along with tips on how to work with the three basic license models in the cloud. Managing the number of licenses needed for a cloud deployment of custom applications can be a daunting task. Ensure effective management of your cloud computing licensing with this expert article. (registration required)
http://www.wservernews.com/100503-Buyer-Beware


Expert Tip: Integrating Windows 7 into VDI to simplify PC upgrades

With Windows XP approaching the end of its serviceable life, many organizations are contemplating a Windows 7 upgrade - but this migration is anything but easy. Read these expert tips to learn how to simplify this shift with VDIs: (registration required)
http://www.wservernews.com/100503-Integrating-Windows7


Windows Server News

The Power Of System Center Operations Manager

This successor to MOM 2005, looked at from the practical side of system admin is very powerful. The power comes with a price though. It rocks, but it will take a dedicated week and someone highly technical to get it completely set up RIGHT. But at the end of that week, you have a NOC-level monitoring solution for everything:
  • Hardware monitoring of all servers and their health
  • Monitoring all Microsoft and Linux host OS health, specific to the server type (file, web, etc.)
  • SNMP monitoring for all network switches, routers, firewalls, etc
  • Application-specific snap-ins that run dummy transactions WITHIN all your Microsoft apps like AD, Exchange, SQL, SharePoint, etc. to report back on best practices, proper configuration suggestions, and ongoing health using simulations such as SQL injections and deletions, mail flow, etc.
  • Monitoring for all virtual host servers and their health (VMware, HyperV)
  • Service monitoring that you custom create for any services you can think of and you can build the entire tree from the service running on a particular server, the hardware dependencies including storage, server, VMWare, etc, Internet connection, https calls, ftp put/gets.
I recommend SCOM with the caveat that you have to really dedicate some time to get it in, and get all those pieces configured, and then tweak the rules for EACH of those areas to reduce the FPs and to add your own custom services. But once done, you have an enterprise level monitoring solution for anything and everything you have in your network. And when you get time, take a look at the plethora of vendor-specific management packs that are available for free and fee-based.
http://www.wservernews.com/100503-System-Center

This is a great SCOM overview...total demo lasts about 12 minutes.
http://www.wservernews.com/100503-SCOM-Demo


Hyper-V Failover: Building A Multi-Site Cluster

Are you thinking about building a multi-site cluster for Hyper-V failover purposes? Guarantee a smooth transition with these expert tips on hardware and storage requirements for highly available Hyper-V environments:(registration required)
http://www.wservernews.com/100503-Hyper-V-Failover


Microsoft Shows Maturing IT management Vision

Microsoft fleshed out its Systems Center roadmap and released some new tools at MMS 2010, including the long awaited Service Manager.

When Microsoft started offering systems management tools a few years back, analysts said the company would have trouble taking on market rivals because of its self-centered approach. But Microsoft has opened the floodgates on System Center management tools and will include some cross-platform support.

At the Microsoft Management Summit 2010 in Las Vegas this week, the company shared its three-year System Center roadmap, including six product releases this year and seven in 2011. And while Microsoft's management tools are mainly Windows-centric, the company has conceded a bit. (registration required)
http://www.wservernews.com/100503-Maturing-IT-Management


Microsoft Gets Its Exchange Cloud In Order

Computerworld reported that Microsoft has been ramping up its cloud-based Exchange Online offering for its largest customers -- even though that may mean cannibalizing its own on-premises Exchange Server installed base.

Microsoft has always offered an online option for Exchange Server through its business partners. But that traditional hosted service offering, now called Exchange Online Dedicated, simply moves a dedicated Exchange Server infrastructure to someone else's data center.

Exchange Online Standard is different. The shared, multi-tenant service, launched 18 months ago, is a true cloud offering that competes more directly with the Gmail and Calendar components of the Google Apps for Business service. (See related story: "Corporate e-mail in the cloud: Google vs. Microsoft.")

Although the online version of Exchange was initially focused more on consumers and small businesses, Microsoft has gotten aggressive in targeting the service toward larger users -- even though that means cannibalizing its on-premises Exchange Server business. More:
http://www.wservernews.com/100503-Exchange-Cloud


Kicking The Tires On SharePoint 2010

While SharePoint 2010 offers big improvements over Microsoft Office SharePoint Server 2007, it is not without its problems. This article explores the top pitfalls, as well as the benefits of this platform: (registration required)
http://www.wservernews.com/100503-SharePoint-2010


Third Party News

Important VIPRE Enterprise & Premium Console Update

Product Notification: CounterSpy Enterprise, VIPRE Enterprise & VIPRE Enterprise Premium
Date: April 29th, 2010
Notification Type: Update

Product: CounterSpy Enterprise, VIPRE Enterprise & VIPRE Enterprise Premium

Version: All
Operating System: All product-supported Operating Systems
Overview: Sunbelt Software is pleased to announce the release of Update 1 for our CounterSpy Enterprise, VIPRE Enterprise, and VIPRE Enterprise Premium 4.0 products! This update applies specifically to the Enterprise Server and Console.

This very important release addresses these key items:
  • Deployment will now use true WMI, function with Windows 7, and obey deployment scopes
  • Deployment will now show improved agent statuses
  • Agents will now receive updates via the Internet properly, regardless of settings
  • The ThreatDB directory will now purge old and temporary files correctly.
  • VSS service crashing issues are corrected.
  • The CounterSpy Enterprise installer no longer references "VIPRE Site Service Complete" during installation, as to eliminate confusion and incomplete upgrades.
  • The update fixes periodic crashing of the VSS when the database became unavailable.
  • Added ability to Export/Import policies
  • Plus over 40 other changes! See for complete details.
    http://www.wservernews.com/100503-Change-Log
This is a manual upgrade process and should not require a reboot of your Enterprise Server. To download the latest version, open your Enterprise Console, navigate to the dashboard, and select the 4.0.4301 hyperlink beside "Available Version."

How VIPRE Avoids Killing Windows System Files

This is a recent interview with Mark Patton our VP R&D that appeared in our newsletter for VIPRE consumer customers, SunbeltSecurityNews. You can subscribe here:
http://www.wservernews.com/100503-SunbeltSecurityNews

We sat down with Mark and questioned him on a variety of things ranging from 'false positives' to rogue security software.

SSN: What exactly are false positives anyway?

MP: The definition of the term is similar to "false alarm". When a malware file is detected, that is a "positive." If that file is truly malware, then that is a "true positive." If that file is NOT actually malware, the detection is considered a "false positive." If an AV product then deletes that file, and the file was needed for the computer or other software to run, this is bad.

SSN: People are hearing about false positives, like the recent Bitdefender false positive that harmed a Windows file. What does VIPRE do to protect against critical Windows system files being removed?

MP: False Positives are definitely one of the biggest problems facing the AV industry. Keeping up with the daily onslaught of new malware keeps our AV Labs busy around the clock, 7 days a week. We have automated systems that analyze new malware in order to determine that it is indeed malware, and selects which of the several VIPRE detection technologies should be used. If these systems cannot categorize the sample, it is routed to one of our malware researchers for analysis. It is during these first few steps of analysis that most of the non- malware samples are filtered out. At this point, detections are written and submitted to Sunbelt Software's QA Lab. These guys have several layers of testing to ensure that the detections are correct and that they do not release detections for non-malware files (i.e. false positives). These are some of the tests they do:

They maintain a repository of millions of non-malware files that includes files from every major software manufacturer in over 50 languages. Thousands of new files are added every day. This repository currently has over 600,000 files from Microsoft alone. This system has scores of computers running in parallel to scan this whitelist with the VIPRE definitions to determine that none of these "good" files are detected.

They do extensive testing on our signature detections to ensure that there are no collisions between good and bad files. They have a bank of Windows computers of a variety of versions and service packs that are scanned before every definition release.

Once the definitions are released and are running on the customer's computer, VIPRE itself helps to prevent the removal of "good" files using digital certificates and Windows File Protection to double-check that detected files are not false positives.

Even with all this, the occasional false positive happens and we need to react quickly. To give us visibility into what is being detected; scan results from customer computers are sent to our AV Labs around the clock via our ThreatNet system. We have systems that monitor this traffic continuously, looking for non- malware being detected. We also get potential false positive files sent directly from customers. These reports are all processed immediately and, if found to be an actual false positive, are fixed within minutes and released.

SSN: What does VIPRE do to protect against Rogue Security programs?

MP: First of all, Rogue Security programs are malware that makes you think your PC is infected and then arm-twists you in paying for the malware to have it "removed". We have a team of AV researchers who are specialists in rogue detections. Specifically, we target rogues and other malware based on heuristic (rules) detections. Our detections focus on several behavioral characteristics we see mostly in rogue programs. In addition, we actively monitor distribution sites and exploits to ensure that our AV Lab has the latest rogue malware.

SSN: VIPRE 4.0 seems to be quite a leap from earlier versions. Is it as powerful as I think it is? If so why?

MP: It is more powerful, and more thorough. We have added Web Filtering to VIPRE 4.0 that helps customers from getting infected in the first place. We continue to make improvements to our detections, and especially to our MX-V technology that gives us even better 0-day threat detection.

SSN: Any other thoughts on VIPRE that our readers would appreciate knowing?

MP: For over a year, we have been focused entirely on making our malware detections as one of the best in the industry. Because of this effort, Sunbelt VIPRE is now consistently in the top 5 of all AV companies in the world.

WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff.



WServerNews - Product of the Week

Watch a Demo Get a $20 Amazon.com Gift Card

iPrism Web Filter, the TCO leader in Web Security, is a comprehensive appliance with easy setup & zero maintenance. iPrism doesn't require ANY changes to your current network, even Citrix! Watch a demo of iPrism & get a $20 Amazon.com Gift Card for your time.
http://www.wservernews.com/100503-iPrismDemo