Is this thing on? : Security

Microsoft Internet Security and Acceleration (ISA) Server 2006 Service Pack 1 Released!

Scott Schnoll — Thu, 03 Jul 2008 19:07:00 GMT

Yesterday, we released SP1 for ISA Server 2006. ISA Server 2006 Service Pack 1 introduces new features and functionality for both the Standard and Enterprise Editions. The new features focus on configuration change management and enhanced troubleshooting. SP1 includes the following new features and improvements:

Configuration Change Tracking Registers all configuration changes applied to ISA Server to help you assess issues that may occur as a result of these changes.
Test Button Tests the consistency of a Web publishing rule between the published server and ISA Server.
Traffic Simulator Simulates network traffic in accordance with specified request parameters, such as an internal user and the Web server, providing information about firewall policy rules evaluated for the request.
Diagnostic Logging Viewer Now integrated as a tab into the ISA Server Management console, this feature displays detailed events on packet progress and provides information about handling and rule matching.
Improvements for existing features, including:

Support for integrated NLB mode in all three modes, including unicast, multicast, and multicast with Internet Group Management Protocol (IGMP). Previously, ISA Server integrated NLB-supported unicast mode only.
Support for use of server certificates containing multiple Subject Alternative Name (SAN) entries. Previously, ISA Server was able to use either only either the subject name (common name) of a server certificate, or the first entry in the SAN list.
Support for Kerberos Constrained Delegation (KCD) cross-domain authentication. Credentials from users located in a different domain than the ISA Server, but in the same forest, can now be delegated to an internal published Web site by using KCD.
Support for client certificate authentication in a workgroup deployment. This removes the requirement to map each client certificate to an Active Directory account.

For more information about this service pack, see Microsoft Knowledge Base Article 943462. For general information about installing ISA Server updates and hotfixes, see Microsoft Knowledge Base Article 885957.

To download ISA Server 2006 SP1 (including the Release Notes and documentation), visit http://www.microsoft.com/downloads/details.aspx?FamilyID=d2feca6d-81d7-430a-9b2d-b070a5f6ae50&DisplayLang=en.

Upcoming MVP Expert Chats

Scott Schnoll — Wed, 05 Dec 2007 00:12:00 GMT

Q&A With the Exchange MVP Experts
We invite you to attend a free Q&A chat session with Exchange Server MVPs who will answer your questions about Exchange Server, Outlook and Exchange for Small Business Server. So if you are thinking of upgrading to Exchange Server 2007 or have questions about Exchange Server 2003 we hope you can join us for this informative online chat! There are two sessions to choose from, and you can attend one or both!

Chat 1: December 5th at 10am PDT
Chat 2: December 12 at 5pm PDT
Where: TechNet Chat Room
www.microsoft.com/technet/community/chats/chatroom.aspx
Password: Public Chat no password required

Q&A With the Security MVP Experts
We invite you to attend a free Q&A chat session with Microsoft Security MVPs who will answer your questions regarding online safety issues, such as phishing, spyware, rootkits as well as server related topics. If you have questions on how to protect PCs and servers, please bring them to this informative chat.

When: December 11th at 4pm PDT
Where: TechNet Chat Room
www.microsoft.com/technet/community/chats/chatroom.aspx
Password: Public Chat no password required

Great Blog Entry on Antivirus Updates for FSS

Scott Schnoll — Mon, 17 Sep 2007 20:54:00 GMT

Molly Gilmore has posted this informative blog about antivirus signature updates for FSS. Short, but interesting read.

Microsoft Exchange Server 2007 Edge Transport and Messaging Protection

Scott Schnoll — Thu, 08 Mar 2007 03:34:00 GMT

There's some new content from MS IT Showcase on how Microsoft uses Exchange 2007's Edge Transport server in production. Check out the white paper and PowerPoint presentations below.

Microsoft Exchange Server 2007 Edge Transport and Messaging Protection

In deploying the Exchange 2007 based messaging protection solution, Microsoft IT used all messaging protection features of the Edge Transport server role and Forefront Security for Exchange Server to block, delete, reject, or quarantine unwanted messages. To further increase security, servers were hardened and audited for vulnerabilities to ensure readiness for Internet visibility. The many steps that Microsoft IT took to design a network environment, combined with the messaging protection features of Exchange Server 2007, resulted in greater flexibility, fewer false positives, and reduced TCO.
Technical White Paper | PowerPoint Presentation