MY PROFILE | PRIVACY 
Vol. 15, #34 - Aug 16, 2010 - Issue #792
Virtualization Has A Scary Side

  1. Editor's Corner
    • Virtualization Has A Scary Side
    • Registry Hack Allows WinXP SP2 Patching
    • Quotes of the Week
  2. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  3. Webinars & Seminars
    • VIPRE Email Security for Exchange Product Demo - 8/17
    • Affordable, Enterprise Email Archiving - 8/24
    • Webinar: Turn the Tables on the Bad Guys, Malware Unmasked
    • Free Desktop Virtualization Seminar with expert Brian Madden
  4. Tech Briefing
    • Redmond Investigates Zero-Day Flaw in Windows Kernel
    • Microsoft Delivers Monster Patch Batch
    • Workarounds: 5 Ways Employees Try To Access Restricted Sites
  5. Windows Server News
    • Revamping Business Operations With A VMware Private Cloud
    • vSphere and vCenter Licensing And Pricing Explained: License Guide
    • Deciphering Red Hat?S Cloud Computing Strategy
  6. Third Party News
    • Who Provides Support In A Multi-Vendor VDI Environment?
  7. WServerNews Fave Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  8. WServerNews - Product of the Week
    • VIPRE Is Number One In Proactive Protection!
Virus Bulletin: VIPRE Is Number One In Proactive Protection!

Virus Bulletin is the most influential malware testing organization in the industry. They tested all antivirus engines four times since Feb 2010. Their recent results are available on their website for public release. In the far top right sits VIPRE, AHEAD OF ALL OTHER PRODUCTS on the x-scale of proactive protection. This is another testimony to the strength of the VIPRE development and malware analysis teams. There is NO better on the planet than VIPRE. And yes, VIPRE also got the VB100 award. Here is the RAP-averages graph:
http://www.wservernews.com/100816-VB-RAP-Test

And if you had not yet thought of switching to VIPRE, now is the time!
http://www.wservernews.com/100816-VIPRE-Enterprise-Premium

Editor's Corner

Virtualization Has A Scary Side

Computerworld compiled a list of issues that IT executives are concerned with regarding the vulnerability of their virtualized architectures. The list of things that could be security problems is quite interesting actually. They range from virtual servers being "stolen", or being moved from a secure network segment onto physical hosts in an unsecured segment, to creating new, undocumented and perhaps unpatched virtual servers. The problem might be that you don't know you have a bunch of virtual servers out there.

Sure, virtualization saves large amounts of IT budget, but if 50% of your mission critical servers are running on VMs, are they all secure? To a large degree it boils down to adopting best practices, something we do not all have the time to do. In larger organizations, a single admin can roll out new VMs to their heart's delight, and the security team does not know about it until much later. Recipe for dropped balls.

Let's face it, VMs are not very visible, and the infrastructure to control them is only just getting mature. If some one hijacks a hypervisor and penetrates all the VMs that are riding on it, who would know? So, you have to make sure that system admin best practices are really being applied. The hypervisor must be patched just like any other OS system to plug security holes, says KC Condit, senior director of information security at Rent-a-Center. "VMware has issued nine significant security advisories already this year, and XenServer has also issued a number of security fixes," Like I said, this is an interesting article, and the excerpt above is only a teaser to get your interest. The best approach: Bake security in before you begin. Read More:
http://www.wservernews.com/100816-Virtualization


Registry Hack Allows WinXP SP2 Patching

If you still run the now-retired WinXP SP2, you can trick the OS into installing security updates, Sean Sullivan at F-Secure said this week. "It turns out that an SP2 system will think it's [Service Pack 3] if you edit this key: 'HKEY_LOCAL_MACHINE \ System \ CurrentControlSet \ Control \ Windows,' and edit the DWORD value 'CSDVersion' from 200 to 300, [then] reboot," he said. And he spelled out how to do this in a blog post. Thanks Sean, this might come in quite handy for some people. I would TEST this, and TEST it again if you run SP2 in production environments. Here is the post:
http://www.wservernews.com/100816-LNK-Update


Quotes of the Week

"Tolerance is giving to every other human being every right that you claim for yourself." - Robert Green Ingersoll

"Under a tyranny, the privileges of the strong are rights and the rights of the weak are privileges." - Anonymous

"No computer has ever been designed that is ever aware of what it's doing; but most of the time, we aren't either." - Marvin Minsky

Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/100816-Subscribe

PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends:
http://www.wservernews.com/100816-WXPNews

PPS: And now we have our new Win7News! You can subscribe here, and tell your friends:
http://www.wservernews.com/100816-Win7News

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]


Virus Bulletin: VIPRE Is Number One In Proactive Protection!

Virus Bulletin is the most influential malware testing organization in the industry. They tested all antivirus engines four times since Feb 2010. Their recent results are available on their website for public release. In the far top right sits VIPRE, AHEAD OF ALL OTHER PRODUCTS on the x-scale of proactive protection. This is another testimony to the strength of the VIPRE development and malware analysis teams. There is NO better on the planet than VIPRE. And yes, VIPRE also got the VB100 award. Here is the RAP-averages graph:
http://www.wservernews.com/100816-VB-RAP-Test

And if you had not yet thought of switching to VIPRE, now is the time!
http://www.wservernews.com/100816-VIPRE-Enterprise-Premium


Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

Ensure 24/7 service with joBot, AD Robot. Automated email alerts mean you spend less time tracking AD objects and more time on critical IT tasks.
http://www.wservernews.com/100816-joBot

Complete Windows Change Management - WhatChanged Free Trial. Monitor Windows change with WhatChanged. Improve availability, accelerate troubleshooting. Free Trial!
http://www.wservernews.com/100816-WhatChanged

VIPRE Enterprise is the the World's Number One in Proactive Protection, blowing away -all- other AV-engines. Yes, that is -all- other AV products.
http://www.wservernews.com/100816-VIPRE-Enterprise-Premium


Webinars & Seminars

VIPRE Email Security for Exchange Product Demo - 8/17

Securing your Exchange Server is key to protecting your enterprise environment from spam, viruses, phishing, and other messaging threats. In this product demonstration, learn how the new version of VIPRE Email Security for Exchange (formerly Ninja Email Security) can help protect your network and cut your Exchange admin time in half with this powerful, policy-based email security product.

Tuesday, August 17, 2010, 2:00pm - 2:30pm EDT
http://www.wservernews.com/100816-Email-Security-Demo


Affordable, Enterprise Email Archiving - 8/24

Exchange performance is suffering. Your users complain about email storage and don't want any quotas. Your CEO requires legal compliance. Want a high-end, feature-rich, admin-friendly product that solves all these issues at a very affordable price? Then don?t miss this Sunbelt Exchange Archiver webinar.

Tuesday, August 24, 2010, 2:00pm - 3:00pm EDT
http://www.wservernews.com/100816-Email-Archiving


Webinar: Turn the Tables on the Bad Guys, Malware Unmasked

A quarterly briefing from SunbeltLabs(TM), the malware research division of Sunbelt Software. The cyber threat landscape is constantly changing, and even with the most sophisticated security you're never completely protected from attacks. As part of our mission to 'keep the bad guys out', SunbeltLabs presents in this webinar how we use our own sandbox technology to keep you a step ahead.

Sunbelt Software's Lead Security Analyst, Brian Jack and Malware Response Manager, Dodi Glenn will discuss the current threat landscape and dig deeper into some of the most dangerous and complicated threats out there. During this briefing we will focus on two different types of threats: zero-day exploits (Stuxnet) and root-kits (TDL3/TDSS).

Whether you are dealing with spear phishing or mass attacks, join us and see how to deploy the right tools, learn how to quickly analyze malware and unmask that malware. New threats call on new technologies and techniques to protect yourself and your organization. Sign up now and turn the tables on the bad guys.

Register today; there are two sessions, one at 9am and another at 2pm (ET). Date: Wed, Aug 25, 2010 9am and 2pm Location: This is an Internet based event.
http://www.wservernews.com/100816-CWSandbox


Free Desktop Virtualization Seminar with expert Brian Madden

Attend this complimentary one-day seminar featuring industry analyst and blogger Brian Madden who explains how virtualization technologies can help you save time and money and simplify the management of your user's desktops. Coming to Washington D.C., Boston, Chicago and Irvine this year, Brian reviews the current state of desktop virtualization, application virtualization and streaming, and the evolution of thin client computing. Don?t miss out - reserve your seat today!
http://www.wservernews.com/100816-Virtualization-Seminar


Tech Briefing

Redmond Investigates Zero-Day Flaw in Windows Kernel

MS is looking into a new report of a hole in Windows that can be exploited to gain elevated privileges. They confirmed that the bug, a privilege escalation issue in the operating system's kernel driver, is being analyzed. Danish security firm Secunia published an advisory on the bug Aug. 6, identifying the issue as a boundary error in Win32k.sys that can be exploited via the "GetClipboardData()" API to cause a buffer overflow.

Microsoft Delivers Monster Patch Batch

Microsoft this week issued a record 14 security updates to patch a record-tying 34 vulnerabilities in Windows, Internet Explorer (IE), Office and Silverlight. The monster patch was discussed on the NTSYSADMIN list, and apart from a few frozen systems that needed another reboot, things seemed to be relatively kosher with this massive update. I still recommend you TEST the updates before you approve them for all your production workstations and servers. More at:
http://www.wservernews.com/100816-Monster-Patch


Workarounds: 5 Ways Employees Try To Access Restricted Sites

Company policy may forbid access to certain web sites, but some employees try creative techniques to view them anyway. Here are five common workarounds and what security can do about them. This is an interesting article and you can see what the suggested fixes are too. Recommended:
http://www.wservernews.com/100816-Workarounds


Windows Server News

Revamping Business Operations With A VMware Private Cloud

Over the past year VMware has worked to move beyond commoditized virtualization and toward a cloud computing strategy. This expert tip details the practical implementation of private clouds, how VMware?s offerings fit into this architecture and the impact of this new model on business operations:
http://www.wservernews.com/100816-VMware-Private-Cloud


vSphere and vCenter Licensing And Pricing Explained: License Guide

Organization?s today must have a basic understanding of VMware?s vSphere and vCenter licensing In order to determine whether VMware virtualization is right for their business. Access this essential guide to learn the ins and outs of this technology?s licensing and pricing: (Registration Required)
http://www.wservernews.com/100816-VMware-License-Guide


Deciphering Red Hat?S Cloud Computing Strategy

While Red Hat provides an abundance of information about its cloud offerings, it?s not always clear how they fit together. Gain insight into the overarching strategy behind Red Hat?s cloud offerings in this exclusive article:
http://www.wservernews.com/100816-Cloud-Computing-Strategy


Third Party News

Who Provides Support In A Multi-Vendor VDI Environment?

Since no single virtual desktop infrastructure package includes all the pieces for a complete virtual desktop environment, enterprise VDI installations are typically a mishmash of interconnected products from many different third party vendors. If something breaks, where does the IT manager turn for support? For instance, VDI poses storage challenges. Vendors, such as Atlantis Computing, sell products that claim to offer a fix. Then, to give end users personalized desktops, IT shops may call into service a profile management tool, and on it goes.

In order to avoid the support challenges that come with multi-vendor Virtual Desktop Infrastructure packages, many of the larger-scale vendors are working hard to stitch together more integrated enterprise products. Access this exclusive resource to learn the advantages of these products and what you can do in the meantime to ensure full VDI support. (Registration required)
http://www.wservernews.com/100816-Multivendor-Support


WServerNews Fave Links

This Week's Links We Like. Tips, Hints And Fun Stuff.



WServerNews - Product of the Week

VIPRE Is Number One In Proactive Protection!

Virus Bulletin is the most influential malware testing organization in the industry. They tested all antivirus engines four times since Feb 2010. Their recent results are available on their website for public release. In the far top right sits VIPRE, AHEAD OF ALL OTHER PRODUCTS on the x-scale of proactive protection. This is another testimony to the strength of the VIPRE development and malware analysis teams. There is NO better on the planet than VIPRE. And yes, VIPRE also got the VB100 award. Here is the RAP-averages graph:
http://www.wservernews.com/100816-VB-RAP-Test

And if you had not yet thought of switching to VIPRE, now is the time!
http://www.wservernews.com/100816-VIPRE-Enterprise-Premium