MY PROFILE | PRIVACY 
Vol. 16, #14 - Apr 11, 2011 - Issue #823
Patch Tuesday Is Gonna Be Ugly

  1. Editor's Corner
    • Patch Tuesday Is Gonna Be Ugly
    • Thanks Very Much - You Really Liked That Idea
    • What Are Your Peers Doing With Cloud, Virtualization and HA?
    • Quotes of the Week
  2. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  3. Webinars & Seminars
    • VIPRE Antivirus Business Product Demonstration - 4/26
    • BriForum 2011: Register today!
  4. Tech Briefing
    • Microsoft Says Office 2010 SP1 Coming This Summer
    • Eight Android Apps For IT
    • LinkedIn Adds App For Android Smartphones
    • Intel Moves to 10 Cores
    • Windows 8 Security Features
  5. Windows Server News
    • VMware vSphere 5
    • Securing Virtual Machines In The Cloud
    • Understanding Your Options For Desktop Virtualization
    • Studs And Duds In The Windows Server 2008 R2 Feature Set
  6. Third Party News
    • VIPRE Enterprise 4.0 - Console Update 3 / Agent Update 2 - Beta
    • eEye Goes Freemium - Announces Retina Community
  7. WServerNews FAVE Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff
  8. WServerNews - Product of the Week
    • Switch To VIPRE! Check Out This Competitive Upgrade Program
Switch To VIPRE! Check Out This Competitive Upgrade Program

GFI Software Makes it Easy to Switch to VIPRE Antivirus Business Fast and Easy Security at a Great Price - $10/$12 per seat. GFI Software announces its $10/$12 per seat competitive upgrade program to VIPRE Antivirus Business and VIPRE Business Premium for existing customers of popular antivirus and endpoint security products from any competing antivirus product. The upgrade program provides new licenses of VIPRE Antivirus Business at an aggressive $10/$12 per seat, up to 60% off the normal list price and is being offered in an effort to help small and medium businesses solve the current problems with their existing antivirus solutions, which include slow performance and difficult management. More:
http://www.wservernews.com/110411-VIPRE-Antivirus-Business

Editor's Corner

Patch Tuesday Is Gonna Be Ugly

When next Tuesday rolls up, many of us will be scrambling to make sense of the 17 fixes that Redmond will be pushing out, patching 64 security vulnerabilities in its products. Security experts had been expecting a large April security update after March's few fixes, and Redmond's advance notice appears to meet those expectations -- and then some. Some of these fixes are not pretty, you should have a look. One of them in particular is the long-awaited cumulative fix for Internet Explorer. It will address every supported Windows operating system and covers IE 6, 7 and 8 browsers. Make sure you TEST, TEST, TEST before you deploy this one!

They announced this week that nine fixes were "critical" and eight are "important." Remote code execution (RCE) attack risks dominate April's list, as 15 of the 17 security bulletins address problems in this area. Two security bulletins point to information disclosure and elevation-of- privilege threats. Here is the MS Advance Notification for April 2011:
http://www.wservernews.com/110411-Patch-Tuesday


Thanks Very Much - You Really Liked That Idea

I'd like to thank everyone that responded to the announcement of my new training initiative: KnowBe4. Hundreds of you that are frustrated with continuous malware infections like the idea of training end-users against phishing attacks and social engineering. The orders are rolling in since we made it so affordable it's a no-brainer to subscribe, and it takes about 10 minutes to deploy.

I did not plan it that way, but with this monster Epsilon data breach this week, the amount of (spear) phishing attacks is only going to get worse. You really do need something in place to get and keep end-users on their toes. You too can find out what percentage of your users are Phish-prone. Get your free Phishing Security Test here:
http://www.wservernews.com/110411-Phishing-Security-Test


What Are Your Peers Doing With Cloud, Virtualization and HA?

We'd like to invite you to participate in the latest joint ITIC/GFI Software survey on Virtualization, high availability and cloud deployment trends. We're sensitive to your time constraints. This survey should take only a few minutes to complete. It polls organizations on their current experiences with virtualization and the cloud as well as future deployment plans for both those crucial technologies. All responses will be kept confidential. As always, we thank you in advance for your participation. As an added incentive, ITIC and GFI are giving away a free iPad and a free iPod to the survey respondents who provides the most insightful response to the final essay question. So be sure to provide us with your Email address along with your comment within the Essay question response. Once the survey is finalized, we'll publish the Executive Summary and survey highlights in this newsletter. To further show our appreciation, anyone who completes the survey can get a complimentary copy of the Report once it's published by sending an Email to Laura DiDio at: [email protected] Here's the survey link. We look forward to your input!
http://www.wservernews.com/110411-Virtualization-Survey


Quotes of the Week

"A dream doesn't become reality through magic; it takes sweat, determination and hard work." - Colin Powell

"It's easy to play any musical instrument: all you have to do is touch the right key at the right time and the instrument will play itself." -- Johann Sebastian Bach

Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/110411-Subscribe

PS: Did you know this newsletter has a sister publication for XP users called WXPnews? You can subscribe here, and tell your friends:
http://www.wservernews.com/110411-WXPnews

PPS: And now we have our new Win7News! You can subscribe here, and tell your friends:
http://www.wservernews.com/110411-Win7News

Hope you enjoy this issue of WServerNews! Warm regards, Stu Sjouwerman  |   Email me: [email protected]

Switch To VIPRE! Check Out This Competitive Upgrade Program

GFI Software Makes it Easy to Switch to VIPRE Antivirus Business Fast and Easy Security at a Great Price - $10/$12 per seat. GFI Software announces its $10/$12 per seat competitive upgrade program to VIPRE Antivirus Business and VIPRE Business Premium for existing customers of popular antivirus and endpoint security products from any competing antivirus product. The upgrade program provides new licenses of VIPRE Antivirus Business at an aggressive $10/$12 per seat, up to 60% off the normal list price and is being offered in an effort to help small and medium businesses solve the current problems with their existing antivirus solutions, which include slow performance and difficult management. More:
http://www.wservernews.com/110411-VIPRE-Antivirus-Business

Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

rDirectory's Community Edition is a pre-configured, easy to use, web-based directory and search engine that downloads in just minutes - and it's absolutely free!
http://www.wservernews.com/110411-Community-Edition

Subscribe to the latest hot e-zine: CyberheistNews: 'Arming you with the facts'. Getting you ammo to defend your network against cybercrime:
http://www.wservernews.com/110411-Cybercrime-Defence

Four Free Tools to Detect Local Insecure Browser Plugins:
http://www.wservernews.com/110411-Insecure-Plugins


Webinars & Seminars

VIPRE Antivirus Business Product Demonstration - 4/26

Join us for a look at VIPRE Antivirus Business, powerful, high-performance endpoint malware protection, which combines antivirus and antispyware into a single agent. Plus take a deep dive into other new features including scalable multi-site tiering and role-based access control:

2:00PM EDT / 11:00AM PT / 18:00 GMT
Date: Tue, Apr 26, 2011
Location: This is an Internet based event.
Register here:
http://www.wservernews.com/110411-VPE-Product-Demo


BriForum 2011: Register today!

The most advanced, technical, hands-on desktop virtualization event is returning to Europe this May and Chicago this July. Independent industry experts, led by Brian Madden, share the latest tips and strategies around desktop virtualization, VDI, application virtualization, and Remote Desktop Services. Register today:
http://www.wservernews.com/110411-BriForum-2011


Tech Briefing

Microsoft Says Office 2010 SP1 Coming This Summer

The CNET blog by Jay Greene had the scoop. "We are on track for delivering Office 2010 SP1 and SharePoint 2010 SP1 in mid-summer 2011," the Microsoft Office Sustained Engineering Team wrote in a blog post. The company will release more details about the service pack. Here is the TechNet Blog post:
http://www.wservernews.com/110411-Office-2010-SP1


Eight Android Apps For IT

The Gearhead column at InfoWorld has been keeping tabs on the best Android apps for IT workers. Here's the cream of the crop in a slide show you do not want to miss, some of these are just cool tools and do not have all -that- much to do with IT, but are just a lot of fun:
http://www.wservernews.com/110411-8-Android-Apps


LinkedIn Adds App For Android Smartphones

LinkedIn finally announced the availability of an app for Android smartphones. For V1.0 of the app they focused on core features, wrote Chad Whitney, senior product manager at LinkedIn, in a blog post. The main menu has six features: updates, search, connections, invitations, messages and reconnect. The last feature presents brings suggestions for new connections. The app is free at Android Market:
http://www.wservernews.com/110411-LinkedIn-Android


Intel Moves to 10 Cores

Intel trotted out its latest 32nm Westmere-EX or E7 Xeons, which support up to 10 cores connected by a ring bus. They are supposed to deliver up to 40% better performance than the eight-core Nehalem-EX chips they replace. But wait... there's more: AMD is expected to come up with a 16-core Interlagos chip next quarter based on its Bulldozer architecture to ward off the Intel E7 threat.

These puppies are considered so powerful they're pitted against competitive RISC chips like IBM's Power chip and Oracle's Sparc chip. One rack of 'em is supposed to replace 18 racks of 2006 dual-core servers and cut energy costs by a whopping 93%.

The four-socket flavor supports 2TB of memory along with other features like Turbo Boost, Hyper-Threading, Virtualization Technology, Intelligent Power and high-end RAS features.

Windows 8 Security Features

WindowsITPro Security Update Blog's Jeff James had some interesting news you are going to want to check out: "There's been a flurry of news in recent days revealing some of the expected new features in Windows 8, with our own Paul Thurrott (and Rafael Rivera from Within Windows) ferreting out some news and sources on their own, while Tom Warren at WinRumors also has some information about potential changes and improvements to Windows 8 on the backup front. There haven't been too many other details come to light about what new security features Windows 8 may include, but there has been enough news and rumors in certain areas to lead us to speculate a bit. Read More...
http://www.wservernews.com/110411-Windows-8-Security-Features


Windows Server News

VMware vSphere 5

Details of VMware's forthcoming vSphere release have leaked. These VMware vSphere 5 details include information about new storage, networking and availability features - get exclusive insight in this featured article:
http://www.wservernews.com/110411-VMware-vSphere-5


Securing Virtual Machines In The Cloud

Finding protection for a virtual infrastructure may seem unnecessary, but it's increasingly important to ensure the security of virtual machines in cloud-based environments. Learn how to effectively secure your virtual machines in this popular piece of content:
http://www.wservernews.com/110411-Cloud-Security


Understanding Your Options For Desktop Virtualization

Before you jump on the desktop virtualization bandwagon, you need to figure out whether your organization can benefit from the technology. This featured tip will help you understand the different types of desktop virtualization to determine which option is best for your company:
http://www.wservernews.com/110411-Virtualization-Options


Studs And Duds In The Windows Server 2008 R2 Feature Set

R2 made a feature-savvy entrance when it was released almost two years ago, but not every enhancement has lived up to the hype. Find out which features are worth all the talk, and which have proved to be a disappointment in this expert tip:
http://www.wservernews.com/110411-Windows-Server-2008-R2


Third Party News

VIPRE Enterprise 4.0 - Console Update 3 / Agent Update 2 - Beta

We are very pleased to announce our upcoming Beta releases for the VIPRE Enterprise family of products. These betas pertain to both the console (Update 3) and agent software (Update 2).

This is a very comprehensive update, with a number of enhancements and fixes designed to improve the overall functionality, performance, stability, and ease-of-use of the product.

As of March 31, 2011, the following Betas are currently available:
  • VIPRE Enterprise server: 4.0.4537 (Update 3 - Beta 1) - English Only
  • VIPRE Enterprise agent: 4.0.4164 (Update 2 - Beta 1) - English Only
Please note: VIPRE Enterprise Premium and CounterSpy Enterprise will become available in Beta soon. An announcement will be made once available.

The headline features for these updates are as follows:

Foreign Languages
  • Introduces German and Italian language option for the VIPRE Site Service (VSS) and agents.
  • Agent languages can be defined on a per-policy basis, allowing admins to take advantage of multi-language agents via a single console. (Note: Foreign languages not available in CounterSpy Enterprise)
Hybrid Agent Support
  • Beta agents can now be easily installed via the console at a policy level, allowing administrators to easily install/upgrade agents to betas.
  • In VIPRE Enterprise Premium, an added convenience feature will allow administrators to deploy either a VIPRE Enterprise Premium or a VIPRE Enterprise (non-premium) agent by policy via a single console.
VSS Update Scheduling
  • Administrators can now specify exact times that the VIPRE Site Service will check for definition updates. This is beneficial for sites that are constrained by low-bandwidth connectivity, as well as regions where bandwidth metering may be a concern.
Improved Detection Technology
  • Enhancements to Active Protection allow for improved remediation of malware, including Conficker.
  • Improvements have been made to our rootkit engine technology.
  • Improvements have also been made to the boot-time cleaner.
Usability Improvements for New Installations
  • On brand new console installations, an informational dialog will be displayed when the console is opened if less than five agents are installed. This dialog contains references pertaining to agent installation prerequisites, firewall configuration prerequisites, information about our competitive antivirus product uninstallers, as well as additional resources.
Default Remediation Handling
  • On brand new installations only, the Default policy will no longer be completely passive, and will now quarantine threats out-of-the-box by default. The exceptions to this are the "cookies" and "commercial remote control tools" categories, as these are set to "allow" and "report-only" respectively. Upgrades are not affected.
Bug Fixes
  • A bug in the VIPRE Enterprise Premium agent that could cause Cisco VPN client connectivity issues has been fixed.
  • Corrected the problem where the VIPRE Enterprise Premium agent could cause systems to lose network connectivity after an unspecified interval.
  • In addition, a number of bug fixes in both the console and agent are included.
For a complete list of changes, as well as instructions on how to download the betas, please visit the following pages on our Beta Forums: VIPRE Enterprise (Console):
http://www.wservernews.com/110411-VPE-Console-Beta

VIPRE Enterprise (Agent):
http://www.wservernews.com/110411-VPE-Agent-Beta

VIPRE Enterprise Premium: COMING SOON
CounterSpy Enterprise: COMING SOON

Please report any problems or feedback to the Beta Forums under the respective product area.

eEye Goes Freemium - Announces Retina Community

eEye this week announce the release of their newest free tool developed to support the IT Security community. Retina Community is a free vulnerability scanner for up to 32 IPs, powered by the renowned Retina Network Security Scanner technology. Retina Community identifies vulnerabilities, configuration issues, and missing patches across operating systems, applications, devices, and virtual environments.

Much more than a stripped down "free trial" product, Retina Community gives you powerful vulnerability assessment to strengthen security and compliance with these capabilities:
  • Vulnerability assessment for up to 32 IPs
  • Zero-day vulnerability identification
  • SCAP configuration scanning
  • Integrated vulnerability updates and alerting
  • Detailed vulnerability and executive-level reporting
  • Report export to XML, CSV, and PDF
Download Retina Community at
http://www.wservernews.com/110411-Retina-Community


WServerNews FAVE Links

This Week's Links We Like. Tips, Hints And Fun Stuff



WServerNews - Product of the Week

Switch To VIPRE! Check Out This Competitive Upgrade Program

GFI Software Makes it Easy to Switch to VIPRE Antivirus Business Fast and Easy Security at a Great Price - $10/$12 per seat. GFI Software announces its $10/$12 per seat competitive upgrade program to VIPRE Antivirus Business and VIPRE Business Premium for existing customers of popular antivirus and endpoint security products from any competing antivirus product. The upgrade program provides new licenses of VIPRE Antivirus Business at an aggressive $10/$12 per seat, up to 60% off the normal list price and is being offered in an effort to help small and medium businesses solve the current problems with their existing antivirus solutions, which include slow performance and difficult management. More:
http://www.wservernews.com/110411-VIPRE-Antivirus-Business