Wednesday, April 27, 2005 10:47 AM
DSSInternet
Technical Rollup Article - February 2005
February 2005 Article
Security:
Windows AntiSpyware (Beta) is a security technology that helps protect Windows users from spyware and other potentially unwanted software.
http://www.microsoft.com/downloads/details.aspx?FamilyID=321cd7a2-6a57-4c57-a8bd-dbf62eda9671&DisplayLang=en
Support for Internet Protocol security (IPSec) in Windows 2000 allows network administrators to secure network traffic without having to update applications or train users.
http://www.microsoft.com/downloads/details.aspx?FamilyID=501a48d5-a3ee-4094-aeb4-16bbff098810&DisplayLang=en
Microsoft Security Bulletin Summary for January 2005 http://www.microsoft.com/technet/security/bulletin/ms05-jan.mspx
Security Clinics & Labs https://www.microsoftelearning.com/security/
Microsoft Security Guidance Center: Recently Published http://www.microsoft.com/security/guidance/recent/default.mspx
Top Stories
Microsoft Acquires Anti-Spyware Leader GIANT Company http://go.microsoft.com/?linkid=1856087
Microsoft has acquired GIANT Company Software Inc., a provider of top-rated anti-spyware and Internet security products. Microsoft will use intellectual property and technology assets from the acquisition to provide Microsoft Windows users with new tools to help protect them from the serious and growing threat of spyware and other deceptive software. Customers have made it clear that they want Microsoft to deliver effective solutions to protect against the threat.
Try Out Microsoft Windows AntiSpyware (Beta) http://go.microsoft.com/?linkid=1856088
Microsoft Windows AntiSpyware (Beta) is a security technology that helps protect Windows users from spyware and other potentially unwanted software. Known spyware on your PC can be detected and removed. This helps reduce negative effects caused by spyware, including slow PC performance, annoying pop-up ads, unwanted changes to Internet settings, and unauthorized use of your private information.
Rights Management Can Protect or Offend http://go.microsoft.com/?linkid=1856089
Read an article by David Coursey, published in eWEEK December 3, 2004, giving key real-world examples of how Windows Rights Management Services can solve business problems.
Announcing the Securing Wireless LANs with Certificate Services Version 1.6 http://go.microsoft.com/?linkid=1856090
Securing Wireless LANs with Certificate Services is a solution that addresses vulnerabilities in today's wireless networks. Based on the WLAN deployment at Microsoft, this guidance is intended for organizations from several hundred to many thousands of wireless network users that want to deploy WLAN technology with a high degree of confidence in its security. Download it here http://go.microsoft.com/?linkid=1856091.
Still Not Backing Up Your Data? http://go.microsoft.com/?linkid=1856092
You should know this by now: Computers can and do fail. And nasty viruses can take down your system by creeping through your antivirus software and firewall.
Are You Doomed If Your Office Computer Tech Quits? http://go.microsoft.com/?linkid=1856093
It's the nightmare that most small businesses aren't prepared to face: What would happen if you suddenly lost your office computer expert? Would you be in big trouble?
Using Least-Privileged User Accounts (LUA) http://go.microsoft.com/?linkid=1856094
Anyone who has been a victim of viruses, worms, and other malicious software (malware) will appreciate the security principle of "least privilege." If all processes ran with the smallest set of privileges needed to perform the user's tasks, it would be more difficult for malicious and annoying software to infect a machine and propagate to other machines. Find out more about this important security principle.
Five Tips for Top-Notch Password Security http://go.microsoft.com/?linkid=1856095
Whether there are only a few or there are hundreds of PCs on your network, there's one thing that can separate your system from being compromised: a great password.
Security Guidance
Microsoft Security: Tip of the Month http://go.microsoft.com/?linkid=1856096
In this month's tip you'll learn more about "social engineering," the term hackers use to describe the art of persuading people to divulge information such as account names and passwords, and how to defend against it.
Key Archival and Management in Windows Server 2003 http://go.microsoft.com/?linkid=1856097
This white paper covers best practices and procedural steps in a key recovery strategy, as well as migration procedures for moving from a Microsoft Exchange Key Management Server environment to a Windows Server 2003 Certificate Authority.
New Security Guidance Center for Small Business Launched http://go.microsoft.com/?linkid=1856098
With our do-it-yourself computer security checklist, you can quickly and easily reduce your risk from viruses, hackers and similar threats. No advanced technical expertise is required; these are simple, straightforward tasks that most anyone can do.
Information Workers Security Handbook (Microsoft Word doc, 496 KB) http://go.microsoft.com/?linkid=1856099
This document provides, in plain language, the needed background information on how computer networks work and the specific security risks they face. It also provides real-world actions you can take to better secure your own computer and help preserve the security of the network as a whole.
Free Online Book! Improving Web Application Security: Threats and Countermeasures http://go.microsoft.com/?linkid=1856100
This guide helps you design, build, and configure hack-resilient Web applications that reduce the likelihood of successful attacks and mitigate the extent of damage should an attack occur. It was created for architects and developers who need a holistic and systematic approach to securing their network, host, and application across phases and roles throughout the product lifecycle.
Video: Protecting Your Computer from Spyware http://go.microsoft.com/?linkid=1856101
Watch this video to find out more about spyware -- what it is, ways your computer can become infected, symptoms of infection, and the top three things you can do to prevent spyware.
Security Blogs
• Jerry Bryant http://go.microsoft.com/?linkid=1856156 RSS http://go.microsoft.com/?linkid=1856157
• Michael Howard http://go.microsoft.com/?linkid=1856158 RSS http://go.microsoft.com/?linkid=1856159
• Brian Johnson http://go.microsoft.com/?linkid=1856160 RSS http://go.microsoft.com/?linkid=1856161
• Eric Lippert http://go.microsoft.com/?linkid=1856162 RSS http://go.microsoft.com/?linkid=1856163
• Ivan Medvedev http://go.microsoft.com/?linkid=1856164 RSS http://go.microsoft.com/?linkid=1856165
• Stephen Toulouse http://go.microsoft.com/?linkid=1856166 RSS http://go.microsoft.com/?linkid=1856167
Further information:
MVP Article of the Month -- Computer Forensics: Disk Imaging Overview http://go.microsoft.com/?linkid=1856103
IT professionals are inundated with information on how to prevent intrusions and attacks -- but what do you do if the worst happens in spite of your security patches, firewalls, and other efforts?
Windows Platform
Patterns & Practices http://www.microsoft.com/resources/practices/default.mspx
Summary
The patterns & practices Enterprise Library is a library of application blocks designed to assist developers with common enterprise development challenges. Application blocks are a type of guidance, provided as source code that can be used "as is," extended, or modified by developers to use on enterprise development projects. Enterprise Library features new and updated versions of application blocks that were previously available as stand-alone application blocks. All Enterprise Library application blocks have been updated with a particular focus on consistency, extensibility, ease of use, and integration.
Downloads
The latest release of Enterprise Library was released in January 2005:
Download Enterprise Library, January 2005 http://www.microsoft.com/downloads/details.aspx?FamilyId=0325B97A-9534-4349-8038-D56B38EC394C&displaylang=en
The terms of use of Enterprise Library are specified in the End User Licensing Agreement (EULA).
http://msdn.microsoft.com/library/en-us/dnpag2/html/pageula.asp
Utility that helps you write WMI scripts for system administration.
Overview
A completely new version of the famous Scriptomatic, the utility that writes WMI scripts for you. (And, in the process, teaches you the fundamental concepts behind writing WMI scripts for yourself.) Unlike its predecessor, Scriptomatic 2.0 isn't limited to writing just VBScript scripts; instead, Scriptomatic 2.0 can write scripts in Perl, Python, or JScript as well. In addition, Scriptomatic 2.0 gives you a host of new output formats to use when running scripts, including saving data as plain-text, as a stand-alone Web page, or even as XML. Scriptomatic 2.0 handles arrays, it converts dates to a more readable format, and it works with all the WMI classes on your computer; on top of all that, it also writes scripts that can be run against multiple machines.
http://download.microsoft.com/download/2/2/b/22b169c0-2133-42d5-9d68-dc149755e1dc/Scriptomatic2.exe
Want tabbed browsing, search toolbars, and more? http://go.microsoft.com/?linkid=1808145
Windows Marketplace has new add-ons that make Internet Explorer more productive, fun, and safe.
Essential guidance for safer computing http://go.microsoft.com/?linkid=1808146
Confused by all the warnings about computer viruses, worms and web scams? You'll find up-to-date security news and advice here to ensure that your computer - and your privacy - stay protected.
Microsoft At Home http://go.microsoft.com/?linkid=1808147
Check out our new At Home site dedicated to helping home PC users get more from their PC and Microsoft software using simple and easy to understand language.
Are you new to e-mail? Not any more http://go.microsoft.com/?linkid=1808148
Whether you are new to e-mail or not, it may seem daunting to pick up new skills. But improving your e-mail prowess is easier than you think. Learn keyboard shortcuts and different ways to do the same common tasks.
Microsoft downloads
Microsoft ActiveSync 3.8
Description: Microsoft ActiveSync 3.8 is the latest synchronization software for Windows Mobile-based Pocket PCs and Smartphones.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=d2645c21-8a85-45a2-8d13-653beb6cdddc&DisplayLang=en
Microsoft® Identity Integration Server 2003 Scenarios
Description: The scenarios for Microsoft Identity Integration Server 2003 introduce users to the fundamental concepts and functionality of Microsoft Identity Integration Server.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=15032653-D78E-4D9D-9E48-6CF0AE0C369C&displaylang=en
Care Management Reference Implementation for Microsoft Office 2003
Description: The Care Management reference implementation for Microsoft® Office 2003 contains sample code, templates, and guidance that demonstrate the possibilities in using the Microsoft Office System to address critical business issues.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=2CE5A873-3767-452A-A938-69BC3BA990FA&displaylang=en
Securing Remote Users at Microsoft
Description: PUBLISHED December 2003. Discussion of Microsoft IT's Secure Remote User initiative to improve the security of remote access connections.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=5FBE3559-17BF-4430-8578-9CA7D7387E00&displaylang=en
Deploying Windows XP Service Pack 2 in Enterprise Environments
Description: Description: Planning and Implementation Guides The guides describe planning and implementation considerations for deploying Microsoft® Windows® XP Service Pack 2 (SP2) in enterprise environments.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=8977ab8d-a52a-46c9-badf-e32ea65b376f&DisplayLang=en
Microsoft Password Change Notification Service
Description: Password Change Notification Service captures passwords on the domain controller so Identity Integration Server can synchronize.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=c0964f2e-fa9f-4fc7-ac13-c43928efee9d&DisplayLang=en
Tools:
Volume Expansion Using Diskpart.exe
Description: Description of how Microsoft IT regularly uses the Diskpart.exe utility to dynamically increase disk volume capacity on servers running Microsoft Windows Server 2003 and Microsoft Windows 2000 Server.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=BCB9100D-698F-40A3-BF53-692D793C6E4F&displaylang=en
Log Parser 2.2
Description: Log parser is a powerful, versatile tool that provides universal query access to text-based data such as log files, XML files and CSV files, as well as key data sources on the Windows® operating system such as the Event Log, the Registry, the file system, and Active Directory®.
Download URL: http://www.microsoft.com/downloads/details.aspx?FamilyID=890cd06b-abf8-4c25-91b2-f8d975cf8c07&DisplayLang=en
Free Downloads
• Shareware pick: InkSaver http://go.microsoft.com/?linkid=1808150
• Windows XP SP2 http://go.microsoft.com/?linkid=1808151
• Windows Media Player 10 http://go.microsoft.com/?linkid=1808152
• Halo 2 skin for Windows Media Player http://go.microsoft.com/?linkid=1808153
• Photo Story 3 http://go.microsoft.com/?linkid=1808154
• DirectX 9.0c http://go.microsoft.com/?linkid=1808155
Internet
BizTalk Server
BizTalk Server 2004 Service Pack 1
Description: BizTalk Server 2004 SP1 contains a collection of hotfixes, security fixes, and performance enhancements. Before installing BizTalk Server 2004 SP1, it is recommended that you carefully review the documentation located in the Related Resources section to the right.
Download URL: http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=f4a5ab9e-d599-4cc8-abdf-ae6ae68bac3d
Microsoft BizTalk Server Adapter Migration Toolkit http://www.microsoft.com/downloads/details.aspx?FamilyId=3383F89E-8223-4DB5-947A-1873C4C555BB&displaylang=en
Migrating BizTalk 2002 custom components to BizTalk 2004
Microsoft BizTalk Adapter v2.0 for mySAP Business Suite http://www.microsoft.com/biztalk/evaluation/adapter/adapters/sap/2004/default.asp
Microsoft BizTalk Adapter for mySAP Business Suite provides a comprehensive messaging solution for your SAP system infrastructure. With the BizTalk Server 2004 suite of tools and services, you can XML-enable your existing SAP investments, making it possible to more securely and reliably integrate disparate applications.
http://msdn.microsoft.com/BPI/TechGuides/default.aspx Technical Guides
A series of online documents that address some of the technical issues that have been identified by Microsoft BizTalk Server customers and partners. These documents range from describing BizTalk performance characteristics to security. These online documents are aimed at the BizTalk administrator or developer in any phase of a BizTalk Server implementation lifecycle.
AOB
Extending Windows SSO to Enterprises http://www.winnetmag.net/WindowsSecurity/Article/ArticleID/44407/44407.html
Streamline and integrate non-Windows platforms and applications
Webcasts: (http://www.microsoft.com/seminar/events/itpro.mspx)
http://www.microsoft.com/seminar/events/series/digitalblackbelt.mspx New Black Belt series of Security web casts for developers in February.
https://www.interopmonth.com/home/ A month-long webcast series focusing on interoperability – why it matters to the business, common strategies and methods, and guidance on specific implementation scenarios between the major platform players
http://www.microsoft.com/seminar/events/series/windowsserver2003admin.mspx Windows Server 2003 Administration – Understanding Key Concepts webcast series.
http://www.microsoft.com/seminar/events/series/mikenash.mspx Security360 is a monthly webcast series hosted by Mike Nash, Corporate Vice President Security Business & Technology Unit, Microsoft Corporation. Each 60-minute webcast focuses on a specific security topic and includes commentary from security industry experts outside of Microsoft. Security360 also features a checklist of recommendations and resources to help guide your security strategy, a live question and answer session, and a progress update on Microsoft security enhancements.
New Internet KB articles for the month of January:
http://support.microsoft.com/kb/838231 FIX: A blank page is returned when you request a Content Management Server 2002 resource that you do not have permissions to access
http://support.microsoft.com/kb/838842 FIX: You receive a low free disk space error message when you try to run Site Stager in Content Management Server 2001 Service Pack 1
http://support.microsoft.com/kb/883638 FIX: "Violation of the Standard Edition License restrictions" error message when you try to add an Active Directory directory services users group to the Subscribers role in Microsoft Content Management Server 2002
http://support.microsoft.com/kb/892416 FIX: A link may be saved as a friendly URL instead of a GUID-based link in Content Management Server
http://support.microsoft.com/kb/887530 The Searches.GetByUrl method does not retrieve the correct URL after you enable the "Map Channel Names to Host Header Names" option in Content Management Server 2002
http://support.microsoft.com/kb/891394 FIX: You receive an error message when you enter a single quotation mark in the display text of a shared attachment from the resource gallery in Content Management Server
http://support.microsoft.com/kb/885276 FIX: You receive an error message when you try to connect to Content Management Server 2002 SP1a from a Site Manager SP1a client
http://support.microsoft.com/kb/810914 The Database Configuration Application appears to stop responding when you migrate many thousands of postings from Content Management Server 2001 to Content Management Server 2002
http://support.microsoft.com/kb/838369 BUG: You cannot use an asterisk ("*") character to configure a redirection to a URL with Internet Information Services (IIS) Manager in Internet Information Services 6.0
http://support.microsoft.com/kb/841460 You may experience performance problems when you use the URL authorization feature of IIS 6.0
http://support.microsoft.com/kb/884503 FIX: You cannot configure CGI wildcard application mapping in IIS 6.0 in Windows Server 2003
http://support.microsoft.com/kb/886461 FIX: You cannot download large files from an ASP.NET application on a computer that is running IIS 6.0
http://support.microsoft.com/kb/889651 How to assign a private key to a new certificate after you use the Certificates snap-in to delete the original certificate in Internet Information Services
http://support.microsoft.com/kb/328720 Calls to the Server.CreateObject method on separate ASP pages may fail if you store a remote COM+ object in a session variable and you are using IIS 5.0
http://support.microsoft.com/kb/821734 FIX: A courtesy redirect may return the ACv1VSite# host name instead of the cluster name
http://support.microsoft.com/kb/842002 An e-mail message takes a long time to open in Outlook Web Access, and the Exchange computer is running IIS 5.0
http://support.microsoft.com/kb/824058 MSCS Resource Monitor may stop responding in Internet Information Server 4.0
