July 2009 – Technical Rollup Mail – Security
News
Security
What's New in Internet Explorer 8 (IE8) Security http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078948&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
By Gina Narkunas, Director – IE8 Product Marketing, Microsoft Corporation Gain insight into the rapid evolution of Web-based threats and learn more about how the new security and privacy protections in Internet Explorer 8 can benefit your organization.
Evaluate Microsoft Codename “Geneva” Beta 2 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078949&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Microsoft Codename “Geneva” Beta 2 is an open platform that provides simplified user access and single sign-on for on-premises and cloud-based applications in the enterprise, across organizations and on the Web. Download Beta 2 today and learn more about “Geneva” at www.microsoft.com/geneva http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078884&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
The Id Element - Your One-Stop Shop for All Things Identity on Channel9 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078950&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Find out what you want to know about identity and access control. From weekly interviews with product team members and developer how-tos to news and key resources, this new site offers content for identity experts and those just getting started. Don’t forget to also download the Identity Developer Training Kit http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078885&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Security Features in Microsoft Online Services http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078951&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learn about the Business Productivity Online Suite—a set of subscription-based enterprise software services that operate within a complete ecosystem of features and capabilities designed to meet and in many cases to exceed the security and availability goals that you have for your business applications.
Microsoft Security Bulletin Summary for June, 2009
http://www.microsoft.com/technet/security/bulletin/ms09-jun.mspx
Integrate and Extend Security Across the Enterprise with Microsoft “Geneva” (Evaluate Beta 2) http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12041163&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
With Geneva and Active Directory federation technologies, enterprises can more efficiently deploy and manage new applications, establish a consistent security model to consolidate access management, and facilitate easy collaboration between organizations.
Download the Forefront Client Security TCO Analysis http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12041164&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Find out how Microsoft Forefront Client Security can help you reduce vulnerabilities and lower total cost of ownership. Download the datasheet on Forefront Online Security for Exchange. http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12041090&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Information Rights Management Application Patterns White Paper http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12114809&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
This white paper provides architecture and design guidance for building an information rights management (IRM)-aware application using Microsoft Active Directory Rights Management Services. The IRM Application Patterns Reference Implementation, available on MSDN, implements the patterns discussed within this article. http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12114726&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Microsoft Internet Security and Acceleration Server
Forefront Edge Security TechCenter
http://technet.microsoft.com/en-gb/forefront/edgesecurity/default.aspx
Please note that if you have feedback on documentation or wish to request new documents - email isadocs@microsoft.com
Forefront Edge Security Community
http://technet.microsoft.com/en-gb/forefront/edgesecurity/bb687298.aspx
Forefront TMG (ISA Server) Product Team Blog
The ISA Server Product Team Blog (http://blogs.technet.com/isablog/) is updated on a regular basis. Latest entries include:
Intelligent Application Gateway 2007
Intelligent Application Gateway 2007 Technical Resources
http://technet.microsoft.com/en-gb/forefront/edgesecurity/bb687299.aspx
Forefront Edge Security Community
http://technet.microsoft.com/en-gb/forefront/edgesecurity/bb687298.aspx
Intelligent Application Gateway Product Team Blog
The IAG Product Team Blog (http://blogs.technet.com/edgeaccessblog) is updated on a regular basis. Latest entries include:
Documents
What's New in Client Security http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078952&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Get a quick overview of new security features in Windows 7, and changes to security features and technologies from Windows Vista.
BitLocker Drive Encryption Deployment Guide for Windows 7 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078953&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Delve deep into the various aspects of deploying BitLocker Drive Encryption on computers running Windows 7 Enterprise or Windows 7 Ultimate from using certifications and smart cards to enabling BitLocker by using the command line.
BitLocker Drive Encryption Step-by-Step Guide for Windows 7 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078954&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Designed to help you become familiar with BitLocker Drive Encryption in a Windows 7 test environment, this guide details basic information and procedures you need to start configuring and deploying BitLocker in your organization.
Implementing and Administering the ActiveX Installer Service in Windows 7 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078955&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learn how to use the ActiveX Installer Service to manage the deployment of ActiveX controls by using Group Policy on computers in an organization.
AppLocker Step-by-Step Guide http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078956&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
This step-by-step guide is designed to help administrators become familiar with AppLocker by providing the instructions needed to set up AppLocker in a test lab environment. Each scenario provides basic information and procedures that administrators can use to start configuring and deploying AppLocker in their network environments.
How to Turn Off Security Messages and Other System Notifications in Windows 7 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078957&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Windows 7 gives you more control over the Security Messages and other Notifications you may or may not want to receive. Learn how, for starters, you can configure how notifications are handled on the Taskbar—choosing to hide certain types of notifications, such as Action Center messages, Network messages, Windows Update Automatic Updates messages, and so on.
Slipstreaming a Forefront Client Security Client Installation http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078958&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learn how to slipstream a Forefront Client Security engine update into your System Center Configuration Manager (SCCM) or script-based initial Client Security client deployment, so that you are deploying the most up to date engine.
Internet Explorer 8 Enhanced Security Configuration http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078959&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Internet Explorer Enhanced Security Configuration places your server and Internet Explorer in a configuration that decreases the exposure of your server to potential attacks that can occur through Web content and application scripts. Learn more about this configuration and browser security best practices.
Downloads
Update for Root Certificates [May 2009] (KB931125)
This item updates the list of root certificates on your computer to the list that is accepted by Microsoft as part of the Microsoft Root Certificate Program.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=f814ec0e-ee7e-435e-99f8-20b44d4531b0
Security Features in Microsoft Online Services
This white paper describes how the Microsoft concern for security, as defined in the Trustworthy Computing initiative, has driven key features in the design, deployment, and operation of the Microsoft Online Services environment.
The Business Productivity Online Suite is a set of subscription-based enterprise software services hosted by Microsoft and sold with partners. The services operate within a complete ecosystem of features and capabilities designed to meet and in many cases to exceed the security and availability goals that you have for your business applications.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=5736aaac-994c-4410-b7ce-bdea505a3413
Increasing Your Organization’s Security and Privacy with Internet Explorer 8
Guidance for Enhancing Internet Explorer Security for Desktop Users
Learn about the emerging threat types on the web today and how Internet Explorer 8’s new security features help protect against them.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=198d40a4-6896-49b3-b8f2-c151e9797634
Hotfixes and Security Updates in Windows Server 2008 SP2 and Windows Vista SP2
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=4e478e21-3d31-4a10-b8ed-e1bb770e3212
Forefront Online Security for Exchange (FOSE) 9.1 Product Documents
Product documents for FOSE 9.1 include the following: New Features Guide, Administration Center User Guide, Directory Synchronization Tool Administration Guide, Customer Quick Cards and Forefront Online Security for Exchange Filtering Service Launch and Best Practices
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=9c34eba6-059b-455a-a44f-96b1b06b4b21
Microsoft Directory Synchronization Tool 9.1
May 2009
The Microsoft Directory Synchronization Tool 9.1 enables you to securely synchronize selected data between an on-premise Active Directory and the Forefront Online Security for Exchange (FOSE) and Exchange Hosted Archive (EHA) services.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=3cda6dcc-1124-4e0b-b991-de9d85ed12e1
Update for Windows Mail Junk E-mail Filter [June 2009] (KB905866)
Install this update for Windows Mail to revise the definition files that are used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=aa029fde-f341-44fc-8b85-0c6f3d3c2d69
Update for Microsoft Office Outlook 2003 Junk Email Filter (KB970011)
This update provides the Junk E-mail Filter in Microsoft Office Outlook 2003 with a more current definition of which e-mail messages should be considered junk e-mail.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=df364c4f-eb47-4df1-b51b-dbe2b539b379
Security Features in Microsoft Online Services
This white paper describes how the Microsoft concern for security, as defined in the Trustworthy Computing initiative, has driven key features in the design, deployment, and operation of the Microsoft Online Services environment.
The Business Productivity Online Suite is a set of subscription-based enterprise software services hosted by Microsoft and sold with partners. The services operate within a complete ecosystem of features and capabilities designed to meet and in many cases to exceed the security and availability goals that you have for your business applications.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=5736aaac-994c-4410-b7ce-bdea505a3413
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB970012)
This update provides the Junk E-mail Filter in Microsoft Office Outlook 2007 with a more current definition of which e-mail messages should be considered junk e-mail.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=c8d0f17b-bdcc-4378-b518-0023c03e4e70
June 2009 Security Release ISO Image
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on June 9th, 2009.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=d81a8c5e-ca61-473f-bdf7-5bb3b3169d16
Microsoft® Windows® Malicious Software Removal Tool (KB890830) x64
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=585d2bde-367f-495e-94e7-6349f4effc74
Microsoft® Windows® Malicious Software Removal Tool (KB890830)
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=ad724ae0-e72d-4f54-9ab3-75b8eb148356
System Center Operations Manager 2007 R2 SCW Roles and Security Hardening Guide for Windows Server 2008
The Operations Manager 2007 R2 SCW Roles and Hardening guide help protect and harden your Operations Manager 2007 R2 environment
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=c22c81eb-c6dc-4190-a4c9-2edbf5b528f1
SQL Server 2008 Security DataSheet
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=65c2a014-5cbc-424e-ad5d-8d1da0bf6f58
Extended Security Update Inventory Tool
The Extended Security Update Inventory Tool is used to detect security bulletins not covered by MBSA including MS04-028, February 2005 bulletins, and future security bulletins that are exceptions to MBSA.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=2c93da1d-48a0-4e5c-991f-87e08954f61b
Forefront Threat Management Gateway Beta 3
Forefront Threat Management Gateway (TMG) is a comprehensive Secure Web Gateway solution that helps protect employees from Web-based threats. It also delivers simple, unified perimeter security with integrated firewall, VPN, intrusion prevention, malware inspection and URL filtering. Forefront TMG Beta3 is available for download in both Standard Edition and Enterprise Edition.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=e05aecbc-d0eb-4e0f-a5db-8f236995bccd
IT Infrastructure Threat Modeling Guide
This Solution Accelerator provides you with a method to develop IT infrastructure threat modeling processes for your environment and prioritize your IT infrastructure security investments. The guide describes and considers the existing Microsoft Security Development Lifecycle (SDL) threat modeling process and uses it to establish a threat modeling process for IT infrastructure.
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=e1d53e3f-a512-4668-85b3-169a777fc58f
Microsoft Forefront Codename "Stirling" Beta Privacy Statement
This document describes the privacy policy for Microsoft® Forefront Client Security
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=d34c6d9c-a555-4432-bb32-af21f5a6feab
Hotfix and Security Update List: Windows Server 2008 SP2 and Windows Vista SP2
Hotfixes and Security Updates in Windows Server 2008 SP2 and Windows Vista SP2
http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=d8b2cf4b-a2df-4664-8dd8-e840001e33f3
Events/WebCasts
Security Webcast Calendar http://go.microsoft.com/fwlink/?LinkId=37910
Find security webcasts listed in an easy-to-use calendar format.
Upcoming Security Webcasts
http://www.microsoft.com/events/security/upcoming.mspx
Register for the following Webcasts on the link above
TechNet Webcast: Information About Microsoft July Security Bulletins (Level 200)
Wednesday, July 15, 2009 11:00 A.M.-12:30 P.M. Pacific Time
TechNet Webcast: Windows 7 Enhanced Security and Control (Level 300)
Wednesday, July 15, 2009 10:00 A.M.-11:00 A.M. Pacific Time
TechNet Webcast: Protecting Your Data with Windows 7 BitLocker and BitLocker To Go (Level 300)
Wednesday, July 29, 2009 10:00 A.M.-11:00 A.M. Pacific Time
On-Demand Security Webcasts
http://www.microsoft.com/events/security/ondemand.mspx
Security Awareness Materials http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=11524381&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Guidance, samples, and templates for creating a security-awareness program in your organization.
Learn Security On the Job http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=11524382&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learning Paths for Security - Microsoft Training References and Resources http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=11524383&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Visit TechNet Spotlight: www.microsoft.com/technetspotlight
Video on Demand, Video Downloads, PowerPoint Presentations, Audio and more
A.O.B
MVP Article of the Month: Securing the Client Infrastructure http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12078962&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learn about some of the keys to keeping clients safe in this article by Microsoft Enterprise Security MVP Deb Shinder—proper configuration settings, secure application development, and the deployment of the appropriate security mechanisms based on how and where the client computer is used.
