<< Small Biz Server news this week February 29, 2004>>>

From: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] (sbradcpa_at_pacbell.net)
Date: 03/01/04 

Date: Sun, 29 Feb 2004 23:12:15 -0800

Small Business Server Usergroup News...

What is a User group? Its' a group of people that are passionate about
the SBS platform
--------------------------------
http://www.sdsbsug.org/groups.htm
--------------------------------

Hi all,
FYI the Adelaide SBS Users Group has been running in Adelaide, Australia,
for the last 6 months.
We meet monthly to discuss various issues including technical, business
and training. Where possible we also invite presenters for "value add".
Details of future meetings, meeting notes etc are available at
www.sbsusers.net. Site includes links to register interest to attend, or
emailing questions.

Membership is free

We look forward to hearing from you!

Dean Calvert

-----------------------
All Chicago area SBS consultants and administrators are welcome to our
first meeting of the Chicago SBS Users Group. Here's the link to the
Microsoft Events page:

  http://tinyurl.com/25abw

Bob Hood
Hood Consulting Group - Chicago
MCP - Small Business Networking
www.hoodconsulting.com
mailto:bobhood@hoodconsulting.com

--------------------------------
Bill Gates opened up the RSA Security conference
http://www.microsoft-watch.com/article2/0,4248,1537662,00.asp?kc=MWRSS02129TX1K0000535

In his RSA Conference keynote, Microsoft Chairman Bill Gates touched on
lots of security promises. He talked up enhancements that Microsoft is
building into Whidbey, Windows XP Service Pack 2, Exchange Server and a
host of other products and services.
http://2004.rsaconference.com/press-video.aspx

--------------------------

Some documents of interest [but not SBSized]
http://www.microsoft.com/downloads/details.aspx?familyid=6a80711f-e5c9-4aef-9a44-504db09b9065

This book guides you through the process of hardening your Exchange 2003
environment, including configuration recommendations and strategies for
combating external threats.

http://www.microsoft.com/downloads/details.aspx?familyid=f3a7fa86-6818-438c-90b6-84dc3cc9eb1b

This guide provides instructions and templates for protecting a domain
name from spoofing using the Caller ID Technical Specification.

http://www.microsoft.com/downloads/details.aspx?familyid=9a9e8a28-3e85-4d07-9d0f-6daeabd3b71b

"Caller ID for E-Mail: The Next Step to Deterring Spam" is Microsoft's
draft technical specification to address the widespread problem of
domain spoofing.

http://www.microsoft.com/downloads/details.aspx?familyid=d4d43d49-8772-4601-afdc-a9b0ce6bdc81

This is the patent license for those interested in implementing the
"Caller-ID for E-Mail Technical Specification."

http://www.microsoft.com/downloads/details.aspx?familyid=5577782e-462d-4bbe-92e5-b38c575229e4

Microsoft's long-range, industry-focused framework for dramatically
reducing junk e-mail (or spam)
---------------------------
http://www.betanews.com/article.php3?sid=1077727792

Microsoft has packed more of a punch into Windows XP Service Pack 2.
Details have emerged indicating that a new "Security Center" will be
incorporated into the update to further secure the three year old
operating system.

Contrary to some reports, Security Center is not the PC Satisfaction
code that Microsoft tested several months ago. Instead, Microsoft drew
upon the feedback gained during the trial to introduce a new user
interface concept.

The PC Satisfaction trial shined a spotlight on how Microsoft thought
Windows could be improved to provide customers with better security and
reliability. Testers reported features that are normally not included in
Windows but supplied by independent software vendors including: a
full-fledged antivirus scanner, a self updating firewall, and
programmatic data backups.

While similar in its appearance and style, the Windows XP Security
Center interface does not contain those elements. Instead, the interface
display dialogs telling whether "Security Essentials" such as a
firewall, automatic updating, and virus protection are turned on.

Other items in Security Center focus on tuning Windows security
settings, provide helpful hints and manage ActiveX controls.

Microsoft provides recommendations in the event that no virus protection
is present on a system. The company will not provide its own scanning
engine despite having partnered with F-Secure for PC Satisfaction, and
acquiring GeCAD in June 2003.

Commenting on the updated service pack, a Microsoft spokesperson told
BetaNews, "Microsoft did utilize feedback gained during the PC
Satisfaction Trial in building the Windows Security Center user
interface that is planned for SP2."

Other improvements destined to be included in the service pack are a new
version of Internet Explorer, safeguards for Outlook Express, improved
memory protection, and a more powerful firewall - now enabled by default.

The most recent beta release of Windows XP Service Pack 2 -- build
number 2082 -- has bundled support for the forthcoming "Lonestar" Tablet
PC upgrade, and Microsoft's Windows XP Media Center Edition. Windows
Media Player is also scheduled for an update.

Windows XP SP 2 is expected to ship midway through 2004.
-------------------------
In other news.....

- - - - - - - - - -
Hackers gain free access to MSN Premium
Programmers in China have exploited a security
hole in Microsoft's MSN Explorer software to win
free access to paid services. A flaw in Microsoft's
MSN Explorer software has allowed some Web surfers
to gain free access to features and services that
normally cost $9.95 (£5.35) a month, the software
giant confirmed on Thursday.
http://news.zdnet.co.uk/internet/security/0,39020375,39147418,00.htm
- - - - - - - - - -
Virus damage tops $80bn in February
According to security experts mi2g, virus activity
caused as much as $83bn in economic damage in February.
With numerous variants of MyDoom, Doomjuice and NetSky
causing havoc over the wires, the shortest month of
the year looks set to be one of the largest in terms
of virus impact.
http://www.pcpro.co.uk/?http://www.pcpro.co.uk/news/news_story.php?id=54319

MyDoom and Netsky cause chaos
http://www.theregister.co.uk/content/56/35882.html
http://www.usatoday.com/tech/news/computersecurity/2004-02-27-gory-doom_x.htm
F-inSecure mailing list spreads Netsky-B virus
http://www.theregister.co.uk/content/56/35911.html
ISPs' virus protection under scrutiny
http://www.itweb.co.za/sections/software/2004/0402271205.asp
Counting the cost of cybergeddon
http://www.theregister.co.uk/content/35/35910.html
Microsoft emphasises security for XP Service Pack 2
http://www.pcpro.co.uk/?http://www.pcpro.co.uk/news/news_story.php?id=54295
- - - - - - - - - -
International push to fight high-tech scams
With cybercriminals based all over the world, governments
must cooperate to clamp down on one of technology's ugly
sides - the mass-marketing scam. Representatives of more
than 60 law enforcement agencies and regulators from
around the world gathered in London on Friday to try
and formulate international cooperation against the
rising tide of marketing fraud schemes, many of which
rely on computers and mobile phones.
http://news.zdnet.co.uk/internet/security/0,39020375,39147440,00.htm
- - - - - - - - - -
Spam villains: named and shamed
The US sends out more spam than the rest of the
world put together according to inbox defenders
at Sophos. Researchers at the anti-virus firm
checked the origins of two days worth of spam,
and compiled a list of the worst offenders.
Although the vast majority of spam comes from
computers in the US, the picture is not as
simple as it appears.
http://www.theregister.co.uk/content/56/35890.html

US tops international spammers' list
http://news.zdnet.co.uk/internet/security/0,39020375,39147438,00.htm
Winning Ways to Stop Spam
http://computerworld.com/softwaretopics/software/groupware/story/0,10801,90549,00.html
South Korea mulls spam curfew regulations
http://www.theregister.co.uk/content/56/35912.html
- - - - - - - - - -
CIA slipped bugs to Soviets
In January 1982, President Ronald Reagan approved
a CIA plan to sabotage the economy of the Soviet
Union through covert transfers of technology that
contained hidden malfunctions, including software
that later triggered a huge explosion in a Siberian
natural gas pipeline, according to a new memoir by
a Reagan White House official.
http://msnbc.msn.com/id/4394002/
- - - - - - - - - -
Ferocious new Mydoom variant destroys files
A new, fast-spreading version of the Mydoom worm
destroys files on computers worldwide as it increases
attacks via e-mails, Finnish computer security experts
warned Thursday. The "Mydoom.F" worm, discovered on
Feb. 20, has so far infected about 5 percent of all
Internet e-mail traffic, said Mikko Hypponen, director
of research at a leading antivirus company F-Secure.
http://www.securityfocus.com/news/8124
http://msnbc.msn.com/id/4372699/
- - - - - - - - - -
Netsky.C worm starts to spread
Security experts have discovered a new version
of the Netsky internet worm, warning that it is
spreading around the world.
http://www.vnunet.com/News/1153066

Netsky causing billions in damages
http://zdnet.com.com/2100-1105_2-5165642.html
http://www.newsfactor.com/story.xhtml?story_title=New_Virus_Offspring_Surfaces&story_id=23256
http://computerworld.com/securitytopics/security/story/0,10801,90491,00.html
- - - - - - - - - -
Anti-Spam Solutions and Security
In a recent survey, 93% of respondents reported
dissatisfaction with the large volume of unsolicited
email (spam) they receive. [ref 1] The problem has
grown to the point where nearly 50% of the world's
email is spam [ref 2], yet only a few hundred groups
are responsible. [ref 3] Many anti-spam solutions
have been proposed and a few have been implemented.
Unfortunately, these solutions do not prevent spam
as much as they interfere with every-day email
communications.
http://www.securityfocus.com/infocus/1763

New Spam Filters Cut the Noise
http://www.wired.com/news/infostructure/0,1377,62421,00.html
- - - - - - - - - - 

-- 
http://www.sbslinks.com/really.htm

Relevant Pages

  • [NT] Cumulative Security Update for Internet Explorer (MS04-025)
    ... Get your security news from a reliable source. ... * Microsoft Windows NT Workstation 4.0 Service Pack 6a ... Navigation Method Cross-Domain Vulnerability ...
    (Securiteam)
  • SecurityFocus Microsoft Newsletter #120
    ... Strengthening Network Security: FREE Guide Network security is a ... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows File Protection Signed File Replacement... ... PlatinumFTPServer Information Disclosure Vulnerability ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #176
    ... MICROSOFT VULNERABILITY SUMMARY ... Microsoft Windows XP HCP URI Handler Arbitrary Command Execu... ... PHPNuke Category Parameter SQL Injection Vulnerability ... Microsoft Baseline Security Analyzer Vulnerability Identific... ...
    (Focus-Microsoft)
  • SecurityFocus Microsoft Newsletter #242
    ... MICROSOFT VULNERABILITY SUMMARY ... PostNuke Blocks Module Directory Traversal Vulnerability ... Groove Networks Groove Virtual Office COM Object Security By... ... The Microsoft Windows IPV6 TCP/IP stack is prone to a "loopback" condition initiated by sending a TCP packet with the "SYN" flag set and the source address and port spoofed to equal the destination source and port. ...
    (Focus-Microsoft)
  • [NT] Vulnerability in HTML Help Allows Code Execution (MS05-001)
    ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Get your security news from a reliable source. ... * Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service ...
    (Securiteam)