On Friday 5 th February Windows Mobile 6.5 completed evaluation by Defence Signals Directorate(DSD) for Common Criteria EAL4+ certification. http://www.dsd.gov.au/infosec/evaluation_services/epl/mobile_products/windows_mobile_v6.5.html In the Mobile Products area of the Evaluated Products List you will...

Microsoft Forefront Security for Office Communications Server (FSOCS) provides fast and effective protection against IM-based malware by including multiple scanning engines from industry-leading security partners and can help to reduce corporate liability by blocking IM messages that contain inappropriate...

Just in case you’re not on the security announcement lists…. Executive Summary This security update resolves two privately reported vulnerabilities in Microsoft Exchange Server. The first vulnerability could allow remote code execution if a specially crafted TNEF message is sent to a Microsoft Exchange...

Confused about Edge Server configuration and security? The best idea is to come to UNC316: Office Communications Server 2007 Security: Architecture and Edge Services with Derrick Buckley and Craig Pringle at Tech.Ed in Sydney next week :) But if you can't make it to Tech.Ed then it might be worthwhile...

This paper answers questions about Office Communications Server 2007 with specific regard to its integration into the perimeter network (also known as DMZ, demilitarized zone, or screened subnet). The first section, “Commonly Asked Questions,” answers key design questions from customers about...

I often get asked why the OCS AV Edge server requires a public IP address. The best explanation I've seen was recently posted by Alan Shen over at the OCS Team Blog . The A/V edge server enables users to participate in audio and video connections from outside the corporate network, such as a point...

Exchange 2007 and Office Communications Server 2007 have strict requirements for external/public certificates - specifically the use of Subject Alternative Name (SAN) certificates, aka Unified Communications Certificates. We have a KB article (kb929395) which lists some of the providers of these UC certs...

The security guide provide guidelines for assessing and managing security risks to your Office Communications Server 2007 deployment. Even if your Office Communications Server 2007 deployment is modest, you probably have components in your network that are themselves the subject of books devoted to their...

Excellent news on the security front for Windows Mobile 5 and 6. Windows Mobile 5.0 and 6.0 is now on the DSD Evaluated Products List (EPL) list - http://www.dsd.gov.au/infosec/evaluation_services/epl/epl.html Technorati Tags: wm5 , wm6 , security

While I was having lunch with one of our Exchange Engineers today I asked "what is the most common support call that comes in for Exchange 2007?". The answer was certificates - customers can be confused about what type of certificate to get, what hostnames are used (most customers use different namespace...

After reading about the latest worm to infect public IM networks, I wanted to quickly post about how enterprises can protect their LCS infrastructure from these attacks. We have a free tool for LCS called the Intelligent Message Filter The Intelligent Instant Message Filter program helps protect your...