MY PROFILE | PRIVACY 
Vol. 16, #45 - November 14, 2011 - Issue #854

WANTED: Common Sense In The IT Department

  1. Editor's Corner    
    • WANTED: Common Sense In The IT Department
    • News As IT Happens
  2. Admin Toolbox
    • Admin Tools We Think You Shouldn't Be Without
  3. Webinars & Seminars
    • Building A High Impact Security Awareness Program - SANS Mgt 433
    • Free Desktop Virtualization Seminar
    • Directions On Microsoft Topic: Windows 8 Hardware Guidance
  4. Tech Briefing
    • IT Job Growth Stalls 
    • Stupid iPhone 4S Security Loophole 
    • Critical Patches By Adobe, Apple, Microsoft & Mozilla
    • Mobile Threats Top Holiday Scam List
  5. Windows Server News
    • Guide To Low-Cost Desktop Virtualization 
    • FAQ: Virtualization Storage Consolidation And Shared Storage 
    • VMware vCenter Operations 101: Performance Monitoring Badges
  6. Third Party News
    • "We Discovered A Serious Human Vulnerability" 
    • Tool To Simulate Poor Network Connection
  7. WServerNews FAVE Links
    • This Week's Links We Like. Tips, Hints And Fun Stuff.
  8. WServerNews - Product of the Week
    • Coming in December! myPassword v3.2

 

Coming in December! myPassword v3.2 

myPassword v3.2, Namescape?s top-tier password management solution for Active Directory features the new essential reports most requested by our customers. The new Administration Console provides a more efficient way to manage myPassword?s settings, email notifications and intrusion detection features. New configurable user activity and summary reports can be exported, and configuration logs track changes to myPassword settings. Real-time complexity compliance notification indicates the strength of a new password as it is created, ensuring your users adhere to password complexity policies.

Contact us and learn how to start 2012 by saving money on Help Desk calls with myPassword.

 

Editor's Corner

WANTED: Common Sense In The IT Department

I have been reading InfoWorld since 1981 (dang that's 30 years!) ever since it came in a dead-tree tabloid format. They have moved to the web long since, and still provide great quality IT information. One of their blogs is especially fun to read. It's the Off the Record blog. These are all crazy-but-true stories and they are all anonymous, so you can pretty much count on them being real. Fun to read, and perhaps fun to post to as well. For your next break, here is some much needed IT R & R: http://www.wservernews.com/go/1321007202390

News As IT Happens

After some initial hesitance I jumped on twitter and do not regret it. I'm tweeting on interesting security events as they happen, and also when I find cool stuff that does not make it in the WServerNews Faves. Follow me on twitter, you will see that it's fun. Follow me @stuallard

Warm regards,
Stu Sjouwerman

Quotes of the Week

"If you want to make an apple pie from scratch, you must first create the universe." -- Dr. Carl Sagan

"I find hope in the darkest of days, and focus in the brightest. I do not judge the universe." -- Dalai Lama

"I want to put a ding in the universe." -- Steve Jobs

Warm regards, and thank you for being a WServerNews subscriber. No trees were killed in the sending of this message, but a large number of electrons were terribly inconvenienced. Please tell your friends about us. They can subscribe here:
http://www.wservernews.com/go/1307096257843

Stu Sjouwerman
email me: [email protected]

 

Admin Toolbox

Admin Tools We Think You Shouldn't Be Without

mPowerTools - an AD admin essential!  200+ reports, bulk import/export, scheduling, GPO/File Share Reports. Eliminate scripting! ONLY $1,499!
http://www.wservernews.com/go/1321277751530

 

Webinars & Seminars

Building A High Impact Security Awareness Program - Mgt 433

Lance Spitzner will teach a 2-day class at SANS, December 15-16 in Washington. DC as part of SANS CDI. If you or your organization is considering a security awareness program, or looking to improve an existing one, this intense two day course is for you. We are also teaching this as a simulcast, meaning you can virtually attend the class and get the same training but without having to leave home:
http://www.wservernews.com/go/1321007564468

Free Desktop Virtualization Seminar

Coming to Denver this November and LA this December, independent expert and desktop virtualization guru Brian Madden will update you on where the desktop virtualization market is in 2011, focusing on what?s real and what?s not. Spend just a few hours out of the office to take advantage of a live Q&A, peer networking opportunities and tons of valuable information.

Register today!
http://www.wservernews.com/go/1321007593390

Directions On Microsoft Topic: Windows 8 Hardware Guidance

Although Microsoft unveiled a Developer Preview of Windows 8 and Windows Server 8 at it's Build conference in September 2011, the next version of the Windows operating system is not likely to be generally available until late 2012 or early 2013. In the meantime, organizations will want to continue to deploy Windows 7 and refresh their aging computer hardware. This TeleBriefing will provide Directions on Microsoft's best guidance of the current hardware specifications for Windows 8 based on the Developer Preview and other Windows 8 blogs and documentation. We will also discuss how these requirements are likely to change, so that organizations purchasing new hardware in the interim will be able to upgrade to Windows 8 when it is released.

Analyst: Mike Cherry, Research VP Windows & Mobile
Date: Thursday, Nov. 17, 2011
Time: 10:00 a.m. PST

Register for this TeleBriefing by clicking the link below:
http://www.wservernews.com/go/1321007719890

 

Tech Briefing

IT Job Growth Stalls

Growth in the IT jobs market has stalled in recent months. Compared to a year ago, the IT job market looks healthy. As of November 1, Dice.com listed 81,680 available tech jobs, up 12% from 72,673 jobs in November 2010. But a look at Dice's stats from the last five months shows that growth in the IT jobs market has stalled: Available tech jobs:

  • November 1: 81,680
  • October 1: 83,567
  • September 1: 82,836
  • August 1: 81,498
  • July 1: 82,867

"The recruiting environment for tech professionals is less urgent than what we experienced in the first half of the year," stated Alice Hill, managing director at Dice.com. While the job count is up 12% compared to a year ago, and the number of resumes viewed on Dice is at an all-time high, "the Dice job count has plateaued for five months - a subtle sign that some restraint has returned to the recruiting landscape."

Story with current Top 5 hiring requests here at NetworkWorld:
http://www.wservernews.com/go/1321007830750

Stupid iPhone 4S Security Loophole

You may have missed this, but there is a hole in Siri, the much-touted iPhone 4S personal assistant. The default setting for the new A.I. is "On", which means that even when a user's phone is locked, anyone could pick it up, hold down the home button and tell Siri to send texts and emails. OUCH!

There's an easy fix though, if you don't want Siri to work when the phone is locked, simply change the default setting from "Allow access to Siri when locked with a passcode" to "Off." Just make sure it's done.

Critical Patches By Adobe, Apple, Microsoft & Mozilla

Adobe, Apple, Microsoft and Mozilla all released updates on Tuesday to fix critical security flaws in their products. Adobe issued a patch that corrects four vulnerabilities in Shockwave Player, while Redmond pushed out updates to address four Windows flaws. Apple slipped out an update for its version of Java that mends at least 17 security holes, and Mozilla issued yet another major Firefox release, Firefox 8.

More at:
http://www.wservernews.com/go/1321007966531

Mobile Threats Top Holiday Scam List

Malware targeting Android-powered mobile devices and Apple computers top a list scams and security threats the people need to guard against this holiday shopping season:
http://www.wservernews.com/go/1321008013390

 

Windows Server News

Guide To Low-Cost Desktop Virtualization

Virtual Desktop Infrastructure hasn't taken the desktop world by storm because the infrastructure requirements make large scale VDI projects more expensive to deploy than traditional PCs. Access this expert guide to learn about desktop virtualization technologies that provide the flexibility and security of VDI at a much lower price tag. Also discover how to cut costs when using server-hosted VDI products, such as XenDesktop and VMware View, and the latest VDI cost-saving news. (RR)
http://www.wservernews.com/go/1321008102718

FAQ: Virtualization Storage Consolidation And Shared Storage

As you consolidate servers and provision virtual machines (VMs), don?t forget to make the best use of your storage resources. With virtualization storage consolidation, you?ll save on costs and facilitate the advanced features of virtualization. Learn how to get these benefits and more with the answers to these frequently asked questions about virtualization storage consolidation and shared storage: (RR)
http://www.wservernews.com/go/1321008143906

VMware vCenter Operations 101: Performance Monitoring Badges

Virtualization performance monitoring is critical for diagnosing problems and planning for future capacity. VMware vCenter Operations, announced in March, is a virtualization management tool in the vCenter suite that provides performance monitoring for your VMware infrastructure. Discover how this technology reduces a very complex set of performance monitoring counters down to a simple set of indicators in this exclusive tip: (RR)
http://www.wservernews.com/go/1321008214640

 

Third Party News

"We Discovered A Serious Human Vulnerability"

"I'm a system administrator and we regularly get user's workstations infected with malware. Then Microsoft reported that 45% of the infections are caused by the users being 'social engineered', so we decided to test itout for ourselves.

"First we did the Email Exposure Check. Out of our 197 users, 87 email addresses were found on the Internet. Then we did the Phishing Security Test, and sent these 87 a relatively simple simulated phishing attack, that could have been sent by any bad guy.

"We were shocked to see that our spam filters and antivirus did not catch the phishing email, and that 24 of these 87 clicked on the link. We discovered a serious human vulnerability." -- P.H. System Admin

Find out for yourself how big this human security hole is in your organization. Fill out this form, you will the results for free:
http://www.wservernews.com/go/1321008603078

Tool To Simulate Poor Network Connection

Jon asked the NTSYSADMIN list: "I see there are a few tools out there, but curious if anyone know which ones work the best. I?m trying to simulate low bandwidth, dropped packets, and latency between a VM on my laptop and a server."

What came out as a good solution was this: WANem. The Wide Area Network emulator. WANem is a Wide Area Network Emulator, meant to provide a real experience of a Wide Area Network/Internet, during application development / testing over a LAN environment:
http://www.wservernews.com/go/1321008707812

 

WServerNews FAVE Links

This Week's Links We Like. Tips, Hints And Fun Stuff

 

WServerNews - Product of the Week

Coming in December! myPassword v3.2 

myPassword v3.2, Namescape?s top-tier password management solution for Active Directory features the new essential reports most requested by our customers. The new Administration Console provides a more efficient way to manage myPassword?s settings, email notifications and intrusion detection features. New configurable user activity and summary reports can be exported, and configuration logs track changes to myPassword settings. Real-time complexity compliance notification indicates the strength of a new password as it is created, ensuring your users adhere to password complexity policies.

Contact us and learn how to start 2012 by saving money on Help Desk calls with myPassword.