The release of the rollup via Microsoft Update has now gone live.  Get the RU here.

In addition to bug fixes reported by customers we have added new rules to the Exchange Best Practices Analyzer to check the health of your system. Starting this rollup, customers who wish to deploy the new BPA health rules to a server with no internet connection can do so by downloading the installing the update rollup on the server. Until Exchange Server 2007 Service Pack 2, updates to the BPA rules were available only via the web which meant customers wanting to deploy the new health check rules to servers not connected to the internet would have had to copy over the XML files manually. In Exchange 2007 SP2, we implemented a work item which allows us to ship updates to the BPA health check rules via the rollup and as well as via the traditional web based channel. 

Some of the other product improvements and critical bug fixes in this rollup which we would like to call out are

1)      KB 972705 – This one is for all the IT pros and anyone who has ever had to explain abnormal database size/log file growth in a short period of time. We have added three new registry entries to help speed up troubleshooting the issue:

• BytesLogWarningThreshold 

• BytesLogErrorThreshold 

• BytesLogCheckPeriodInMinutes 

More information on the values to set in the above registry keys is documented in KB 972705.

2)      KB 975404 – Accepting meeting requests sent via an application using CDO like Blackberry devices sometimes results in rendering an embedded message attached to the meeting request inaccessible.

3)      KB 976137 – We have made a change to the behavior of the Unified Messaging Auto attendant when it plays the greeting for callers on a holiday. Currently when callers call on a holiday, they hear the non-business hours greeting followed by the holiday greeting. In this rollup we have made a change so that the callers calling on a holiday will  only hear the holiday greeting. If your greetings are configured such that they would make sense to callers calling on a holiday only if they hear both the non-business hours greeting and the holiday greeting, then you need to re-configure them when you install this update rollup.

4)      KB 971177 – Another change in the UM Auto Attendants configuration in the Exchange Management Console. It is now aware if your time zone follows Daylight Saving Time.

5)      KB 975165 – In an environment using self-signed certificates and CAS-CAS proxying, Exchange Web Services requests proxied may start failing after the Availability Service has made a proxy request.

6)      A bug where the OWA Virtual Directory cannot be accessed via the Exchange Management Console in an environment coexisting with Exchange 2010 if the Exchange 2007 server was upgraded from Exchange 2007 SP1 to SP2.

We just released an updated version of the  Exchange Server 2010 Mailbox Server Role Requirements Calculator.  This version includes several improvements and new features, as well as some important bug fixes.  For more information about the updates to the Exchange 2010 Mailbox Server Requirements Calculator, check out Ross' blog post.

Hello all, this is just a quick reminder that Windows 2000 and Windows XP Service Pack 2 are nearing end-of-support. This applies to both Windows 2000 Server and Windows 2000 Professional, as well as all editions of Windows XP with SP2.

On July 13th, 2010, these products will no longer be eligible for regular support and free access to security updates. April 13th, 2010 is end-of-support for Windows Vista RTM version.

More information can be found at the following web sites:

· Details about Microsoft Support Lifecycle can be found here: http://support.microsoft.com/lifecycle

· Windows 2000 End-of-Support Solution Center can be found here: http://support.microsoft.com/win2000

Heads-up about this Critical out of band Internet Explorer security update released last week.

This security update resolves seven privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Explorer. The more severe vulnerabilities could allow remote code execution if a user views a specially crafted Web page using Internet Explorer. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

This security update is rated Critical for all supported releases of Internet Explorer: Internet Explorer 5.01, Internet Explorer 6, Internet Explorer 6 Service Pack 1, Internet Explorer 7, and Internet Explorer 8 (except Internet Explorer 6 for supported editions of Windows Server 2003). For Internet Explorer 6 for supported editions of Windows Server 2003 as listed, this update is rated Moderate.

This security update also addresses the vulnerability first described in Microsoft Security Advisory 979352.

For all the details see http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx