Windows, XP, Exchange, SQL, LCS

Windows:


Internet Protocol Security for Microsoft Windows Server 2003


http://www.microsoft.com/downloads/details.aspx?familyid=e6590330-d903-4bdd-9655-81b86df655e4&displaylang=en


 


XP:


Understanding Security in Microsoft Internet Explorer 6 in Windows XP SP2


http://www.microsoft.com/downloads/details.aspx?familyid=e550f940-37a0-4541-b5e2-704ab386c3ed&displaylang=en


 


Exchange:


CIS Benchmarks for Exchange 2003


http://www.cisecurity.org/bench_exchange.html


 


SQL:


How do you spell S-Q-L? – I am not sure if this is sad or funny or both


http://www.sqlservercentral.com/columnists/sMcCown/howdoyouspellsql_printversion.asp


 


LCS:


Office Communicator 2005: Microsoft Office Communicator 2005 Planning and Deployment Guide


http://www.microsoft.com/downloads/details.aspx?familyid=04ce058b-5024-4198-8d27-2aa331fd5a3d&displaylang=en

Microsoft Exchange Server 2003 SP2 Community Technology Preview

It’s out!! The Microsoft Exchange Server 2003 SP2 Community Technology Preview is here!


Great, late on a Friday. Thanks Microsoft, what are you trying to do waste my entire weekend?


You can download it here – http://www.microsoft.com/downloads/details.aspx?familyid=db3813c5-b0fa-4230-813b-902aca775ada&displaylang=en


Should be fun! Only 112 MB :) It is of course unsupported and not to be used on a production network.

How much longer can you afford to run Windows 2000?

As predicted here 4 days ago Zotob hit the Internet pretty hard. CNN reports that CNN, ABC and the New York Times took a pretty big hit. All of this prompted Microsoft to release an official statement – http://www.microsoft.com/presspass/press/2005/aug05/08-16zotob.mspx. The text says:


 


Zotob has thus far had a low rate of infection. Zotob only targets Windows 2000. Customers running other versions such as Windows XP, or customers who have applied the MS05-039 update to Windows 2000 are not impacted by this attack.


 


I am guessing the press people at Microsoft have not read the Internet buzz around this one yet?


 


So how much longer will Microsoft bail the 5 and ½ year old Windows 2000 out of these messes? As you are probably aware official support for Windows 2000 ended June 30th, 2005.  Days before Microsoft released Microsoft Security Advisory (891861) (http://www.microsoft.com/technet/security/advisory/891861.mspx)


Release of Update Rollup 1 for Windows 2000 Service Pack 4 (SP4). Here is the link to the KB http://support.microsoft.com/kb/891861 which will allow you to download the rollup, if you have not done so already. Notice that this is a rollup; service packs for Windows 2000 are a thing of the past. http://www.microsoft.com/windows/lifecycle/servicepacks.mspx states that service packs are supported for 12 months, it does not mention rollups.


 


Will the next big worm/virus/bug that hits Windows 2000 have a supported fix? 5 and ½ years is a long time for any software product. Microsoft has made great strides with XP – SP2 and Windows Server 2003 – SP1 to cut down on worms/virus/bugs, and it appears to be working.

Free, SQL, Exchange, Windows, LCS

Free:


Free Course on Windows Server 2003 Service Pack 1 (One) – Nice!


http://blogs.technet.com/windowsserver/archive/2005/08/15/409201.aspx


https://www.microsoftelearning.com/security/


 


SQL:   


http://www.escapeyesterworld.com – Very interesting


 


Exchange:


Community Technology Preview Build of Exchange Server 2003 Service Pack 2 Coming on Friday


http://hellomate.typepad.com/exchange/2005/08/community_techn.html


 


Resources you may not know about – http://blogs.technet.com/exchange/archive/2005/08/15/409202.aspx


 


Microsoft Executive Circle Webcast: Windows Mobile Enterprise Features


http://msevents.microsoft.com/cui/WebCastEventDetails.aspx?EventID=1032276580&EventCategory=5&culture=en-US&CountryCode=US


 


 


Windows:


Microsoft Windows Server Update Services


http://www.microsoft.com/downloads/details.aspx?familyid=2478d594-a29c-483c-9dc1-9740bf3081a5&displaylang=en


 


Microsoft Windows Server Update Services Operations Guide


http://www.microsoft.com/downloads/details.aspx?familyid=e26bcdb4-ef0b-4399-8a71-9b3b00c4f4cd&displaylang=en


 


Interoperability Considerations for IPsec Server and Domain Isolation


http://www.microsoft.com/downloads/details.aspx?familyid=10359569-ef11-499a-9e1f-85da3fca608c&displaylang=en


 


LCS:


Microsoft Office Live Communications Server 2005 Intelligent Instant Message Filter


http://www.microsoft.com/downloads/details.aspx?familyid=0ed13372-f3d2-40f0-ba5d-c880359a40f5&displaylang=en


 


Role Agent for Microsoft Office Live Communications Server 2005


http://www.microsoft.com/downloads/details.aspx?familyid=2fb830b5-aa88-41b1-9ab9-235548d4270f&displaylang=en


 


Live Meeting 2005: Microsoft Office Live Meeting Intranet Portal SP2


http://www.microsoft.com/downloads/details.aspx?familyid=429bb528-fd1b-45b7-af2b-cbbf4a8e65ff&displaylang=en


 

Potentially Nasty Worm

Did you patch last Tuesday? Everything? If not beware:


 


New worm using a fresh exploit found – http://www.f-secure.com/weblog.


 


This worm replicates by scanning random machines at port 445/TCP” Which is good, because we block that port, but what about non-fire walled machines and laptop that got infected while not on our network?“


 


ISC information:
http://isc.sans.org/diary.php?date=2005-08-14


 


FrSIRT information:


http://www.frsirt.com/english/advisories/20050814.ZotobA.php

A couple of items that the Scobleizer (Robert Scoble) would approve of

I read Robert Scoble – Scobleizer: Microsoft Geek – all the time. Truly great stuff, the man is nuts (and I mean that in a good, geeky way).


While surfing this past weekend I found a couple of unique items that I know Robert would just love. Or at least he would find the humor in.


The first is a combination Cup Holder and Cigarette Lighter for your PC – http://www.isellsurplus.com/product.asp?id=9754&C=10. Way too cool. This is also known as the Redneck PC Option J Yes, you too can light up and have a beer while surfing the web!


The second is for every red-blooded American that surfs websites that are not work safe or plays games at work – http://www.isellsurplus.com/product.asp?ID=13992&C=10&S=-1. It’s called the Stealth Switch Desktop Cloaking Device (great name). It’s a PS/2 or USB foot pedal to hide things you don’t want anyone to see on your desktop J Amazing!


Who the heck things these things up anyways? What kind of sick, twisted mind… Wait, since I like both of these products what does that say about me? Wait, don’t answer that!!!


All links on this page are work safe :)

About Me:

First of all thanks for your interest in what makes me tick, I hope you like what you read. In all honesty, there really is not much to say, though I do talk all the time in person. I am certifiably crazy, I mean nuts – luckily to date the authorities have not caught up with me and put me away.

 

I love computers; that is all I do and know. I am been working in the field for over 22 years now (I am 40 years old, so yes my whole Adult life). I eat and breathe computers. I am boring as hell at a party. I can’t discuss politics, religion, current affairs, etc. I think in hex, I tell binary and clustering jokes, I see the world as a bunch of sites yet to be configured. I am pretty much a geek full time. I have been recognized by Microsoft as an MVP in Windows Clustering; I am one of six people in the world to receive this distinction, and I am very proud and thankful to Microsoft for it.

 

During the business day I am a Principal Computer Scientist working on site at NASAMarshall Space Flight Center (MSFC).  I work in the NASA Data Center (NDC) Architect and Engineers group of IT Security. My focus is on Windows Server 2003 Active Directory services, Clustering technologies, Exchange 2003, SQL 2000, and infrastructure design. I currently hold a Secret Security Clearance, I would tell you more but I would have to kill you.

 

I truly love my job and what do for NASA; it’s a great place to work. I true geek’s dream come true. Since most of NASA is contract help, I am no different. I get paid by SAIC. They have been an excellent company to work for, top self! Bottom line, if you are a recruiter looking to hire someone, I am not interested – please leave me alone.

In my spare time, I own and run Net Working America, Inc. (www.nw-america.com). I am the President and lead consultant (currently the only one too).  I do lots of technical editing, authoring of books, publications, training courses (including
Microsoft Official Curriculum as a subject matter expert and author), and public speaking.  I have been a Microsoft Certified Trainer for the past 9 years. I just love to speak in public (or even to myself for that matter). I have also been a source of information in many articles written by other authors and has been quoted in the industry press on many different topics regarding IT (basically I will talk to anyone at anytime about computer – I always have something to say).


I am also involved in www.ClusterHelp.com, where I teach, write the labs, and help on the courseware. If you are looking for cluster training, I garentee you won’t find anything half as good.


I have been married over 16 years now with a great, understanding wife (Leslianne) and 4 wonderful children. I have three boys and a girl, Taylor – 12, Tucker – 10, Tia – 6 (Daddy’s little girl), and Tanner – toddler.


 


I currently live in Huntsville, Alabama. I firmly believe every US citizen should live in the South at some point in their lives. The only problem would be nobody would live in the North. Hey, I am still a damn Yankee; I talk too fast, drive too fast, and think too fast for the folks down here. But don’t get me wrong, while the South is pretty darn neat – I am a Northerner (as anybody from the South will tell you)! My wife never wants to leave, so I am pretty sure we won’t (did you read the recruiters?).


 


I was born at Henry Ford Hospital- Detroit, Michigan. I love Michigan and would live there today if not for my NASA job. I love sports, so my favorite teams are the Detroit Red Wings, The University of Michigan – Wolverines, Detroit Pistons, Detroit Lions, and the Detroit Tigers. Besides computers, I will talk about sports, but only the teams listed above J GO WINGS!!!


 


Cheers and God Bless You!

Windows, Exchange, LCS, SMS, Misc.

Windows:


Vulnerability in Plug and Play Could Allow Remote Code Execution and Elevation of Privilege (899588) – Microsoft is warning everyone to patch ALL Windows 2000 servers with this. The word is all over the Internet.


http://www.microsoft.com/technet/security/advisory/899588.mspx


 


Exchange:


Why should you use Diskpar (Diskpart in W2003 SP1)?


http://blogs.technet.com/exchange/archive/2005/08/10/408950.aspx


 


Microsoft Exchange Server 2003 Domain Rename Fixup (XDR-Fixup)


http://www.microsoft.com/downloads/details.aspx?familyid=24b47d4a-c4b9-4031-b491-29839148a28c&displaylang=en


 


LCS:


Live Communications Server 2005 Document: Planning Guide


http://www.microsoft.com/downloads/details.aspx?familyid=f7bc430f-3cac-4dbd-8ec3-b93186f343fa&displaylang=en


 


Live Communications Server 2005 Document: Deploying Intelligent Instant Message Filter


http://www.microsoft.com/downloads/details.aspx?familyid=e6b4131a-f3c7-4c56-acb3-1b6e0c5d73ae&displaylang=en


 


SMS:


Scenarios and Procedures for Microsoft Systems Management Server 2003: Security


http://www.microsoft.com/downloads/details.aspx?familyid=3d81b520-a203-4376-a72d-fd34a6c4a44c&displaylang=en


 


Miscellaneous:


Visio Connector for Microsoft Baseline Security Analyzer (MBSA) – Version 2, pretty cool if you have not seen it yet.


http://www.microsoft.com/downloads/details.aspx?familyid=8ea27d78-32b5-4f37-a7fd-99ee2aa76c62&displaylang=en


 


ReadMe for Windows Server Update Services


http://www.microsoft.com/downloads/details.aspx?familyid=9f15b49a-e6d8-4aaa-8fad-d9e618abed8a&displaylang=en


 


SHOWTIME and MSN Video to Stream First Episode of “Barbershop: The Series” on MSN – Interesting, paid cable TV comes to your desktop for free?


http://www.microsoft.com/presspass/press/2005/aug05/08-11BarbershopPR.mspx

Microsoft Clustering and Firewalls

When we installed our first Exchange 2003 Cluster at work our firewall group was very mad, they called screaming about how we had set it up. They did not like the fact that ingress (inbound) traffic was to the Virtual IP (VIP) and egress (outbound) traffic was via which ever node was controlling the Exchange Virtual Server (EVS) at the time. “This will simply not do”, they said. “We want you to use the same IP for inbound and outbound traffic”. “You are making our firewall rules very difficult to maintain and manage!


 


Hmm, I see the point our firewall group was trying to make. Why was the traffic pattern this way?


 


Simple answer – that is how Microsoft wrote the clustering code. No, that would not do, they are pretty smart and would want a better answer.


 


Longer answer – You can’t send traffic on a network that does not really exist. Think about what the VIP is, it’s not real. A VIP by definition is not real. Because of this fact, nothing can leave it. The only direction traffic moves via the VIP is inbound. The VIP is bound to a physical network interface (on the controlling node), thus allowing it to interact with the real world. All outbound or return traffic has to come from a real network interface. So, traffic is allowed to come into the VIP, which is bound to a real network interface. That real network interface is then the one that replies or send out information. This makes rules in the firewall very interesting (because the inbound is static – always the VIP, but outbound is from which ever node is controlling at that moment and can change over time), hence why they were so mad!

Conclusion:


The Virtual is for inbound traffic only. Outbound traffic is via the controlling node at that time. After I explained this, my firewall team was still not happy, but at least they fully understood J Did I mention that this is how other clustered services like SQL Server 2000 handle traffic too?

Exchange, SQL, LCS, SPS, AD, Project, SMS, Misc.

Exchange:


Exchange Server Best Practices Analyzer Tool v2.1a – Run the old one, it will update itself (US only).


http://www.microsoft.com/downloads/details.aspx?familyid=dbab201f-4bee-4943-ac22-e2ddbd258df3&displaylang=en


 


Exchange Server Mailbox Merge Wizard (ExMerge)


http://www.microsoft.com/downloads/details.aspx?familyid=429163ec-dcdf-47dc-96da-1c12d67327d5&displaylang=en


 


Microsoft Exchange Server 2003 Auto Accept Agent


http://www.microsoft.com/downloads/details.aspx?familyid=3d0884e6-c603-491d-bf57-acf03e046bfe&displaylang=en


 


Microsoft Exchange Server 2003 Load Simulator (LoadSim)


http://www.microsoft.com/downloads/details.aspx?familyid=92eb2edc-3433-47ca-a5f8-0483c7ddea85&displaylang=en


 


Microsoft Exchange Server 2003 Exchange Profile Update


http://www.microsoft.com/downloads/details.aspx?familyid=56f45ac3-448f-4ccc-9bd5-b6b52c13b29c&displaylang=en


 


Designing Outlook Forms (Part 1)


http://www.msexchange.org/articles/Designing-Outlook-Forms-Part1.html


 


Implementing iSCSI for Exchange Server 2003


http://www.msexchange.org/tutorials/Implementing-iSCSI-Exchange-Server-2003.html


 


Windows-based SMTP Tar Pitting Explained


http://www.msexchange.org/tutorials/Windows-based-SMTP-Tar-Pitting-Explained.html


 


The difference between “Replication Status” and status of replication


http://blogs.technet.com/exchange/archive/2005/08/03/408600.aspx


 


OMA 2003 Logon Process


http://blogs.technet.com/exchange/archive/2005/08/05/408728.aspx


 


Public Folder Replication Fails with Event IDs 3086 and 3085


http://blogs.technet.com/exchange/archive/2005/08/08/408796.aspx


 


SQL:


Excellent SQL webcast by Kimberly Tripp


http://www.microsoft.com/events/series/msdnsqlserver2005.mspx


 


MSDN TV: Intelligent Applications Powered by SQL Server 2005 Data Mining


http://www.microsoft.com/downloads/details.aspx?familyid=87b41628-f584-4319-b357-0705d461913c&displaylang=en


 


Live Communication Server:


Presence Controls for Microsoft Office Communicator 2005


http://www.microsoft.com/downloads/details.aspx?familyid=75febb65-cd20-44ec-a603-430e14d45fa6&displaylang=en


 


Live Communications Server 2005 Document: Technical Overview


http://www.microsoft.com/downloads/details.aspx?familyid=10325531-53f7-48cc-86f3-b8da69f86239&displaylang=en


 


Live Communications Server 2005 Enterprise Edition Document: Lab Quick Start


http://www.microsoft.com/downloads/details.aspx?familyid=5634a517-5a49-4b5d-990d-c312f7bb4283&displaylang=en


 


Live Communications Server 2005 Standard Edition Document: Lab Quick Start


http://www.microsoft.com/downloads/details.aspx?familyid=e311942b-6490-42f4-b3a2-bd13ff5addd3&displaylang=en


 


Live Meeting 2003 Document: Detailed Guide to the Live Meeting Add-In Pack for Microsoft Outlook and Messenger


http://www.microsoft.com/downloads/details.aspx?familyid=a7c574a1-a3d3-4f17-b458-270b3531f514&displaylang=en


 


Live Meeting 2005 Document: Live Meeting 2005 API Reference Guide


http://www.microsoft.com/downloads/details.aspx?familyid=ac48894b-9471-41c2-9b44-170655f400cc&displaylang=en


 


Live Meeting 2005 Windows-based Meeting Console Standalone Installer – All Languages


http://www.microsoft.com/downloads/details.aspx?familyid=1218c09c-7aa3-4b3a-82b4-e7a3a40725ec&displaylang=en


 


SPS:


Windows SharePoint Services Applications Template: Room And Equipment


http://www.microsoft.com/downloads/details.aspx?familyid=21de1e7e-6a92-463b-b5fd-c9dfcdacc069&displaylang=en


 


Windows SharePoint Services Applications Template: Expense Report Portal


http://www.microsoft.com/downloads/details.aspx?familyid=2aa403f9-b691-404c-a6d3-601dd1fc8421&displaylang=en


 


Windows SharePoint Services Applications Template: Event Planning


http://www.microsoft.com/downloads/details.aspx?familyid=4d64d8e1-180f-4a79-9936-1efb540b1c15&displaylang=en


 


Windows SharePoint Services Applications Template: RFP Management


http://www.microsoft.com/downloads/details.aspx?familyid=aadd4854-71cf-4288-b374-0f78efd76d03&displaylang=en


 


Windows SharePoint Services Applications Template: HR InfoPath Forms


http://www.microsoft.com/downloads/details.aspx?familyid=71560d71-558b-4dc8-906a-808efc329942&displaylang=en


 


Windows SharePoint Services Applications Template: Loan Initiation Management


http://www.microsoft.com/downloads/details.aspx?familyid=081f186f-a445-4605-9e97-1c2d6756ba7d&displaylang=en


 


Windows SharePoint Services Applications Template: Change Management


http://www.microsoft.com/downloads/details.aspx?familyid=8481322a-88ea-44cf-9db2-63b43a03feb2&displaylang=en


 


Windows SharePoint Services Applications Template: Meeting Management


http://www.microsoft.com/downloads/details.aspx?familyid=0e5d104d-9e44-4b5f-a30e-cb82abffe45d&displaylang=en


 


Windows SharePoint Services Applications Template: Classroom Management


http://www.microsoft.com/downloads/details.aspx?familyid=e6b628a2-c0f6-4a0f-b374-08cbca430028&displaylang=en


 


Windows SharePoint Services Applications Template: Legal Document Review


http://www.microsoft.com/downloads/details.aspx?familyid=90180ad0-1420-4ed3-b8a6-7041f1c4f5c8&displaylang=en


 


Windows SharePoint Services Applications Template: Employee Scheduling


http://www.microsoft.com/downloads/details.aspx?familyid=8fb33404-13e0-424b-a75e-dd517e85263b&displaylang=en


 


Windows SharePoint Services Applications Template: Marketing Communications Campaign Site


http://www.microsoft.com/downloads/details.aspx?familyid=8108c7b8-975b-4e72-a5a3-fe1352599393&displaylang=en


 


Windows SharePoint Services Applications Template: Employee Training


http://www.microsoft.com/downloads/details.aspx?familyid=1ffa62cf-fa48-40b4-b66f-0dc3a3405223&displaylang=en


 


Windows SharePoint Services Applications Template: HelpDesk Dashboard


http://www.microsoft.com/downloads/details.aspx?familyid=82e86a1d-c818-496b-8ad4-818aaf1c2fed&displaylang=en


 


Windows SharePoint Services Applications Template: Board of Directors


http://www.microsoft.com/downloads/details.aspx?familyid=2bfd39a4-0bd3-4519-bf72-fd78b13650e0&displaylang=en


 


Windows SharePoint Services Applications Template: Project Team Management


http://www.microsoft.com/downloads/details.aspx?familyid=8c580176-09b4-4001-9c2b-2ad5b7ec2a12&displaylang=en


 


Windows SharePoint Services Applications Template: Absence Request and Vacation Schedule Management


http://www.microsoft.com/downloads/details.aspx?familyid=96dbe5f3-203a-40f8-a03a-64d0a9811368&displaylang=en


 


Windows SharePoint Services Applications Template: Competitive Intelligence


http://www.microsoft.com/downloads/details.aspx?familyid=829911d8-51fa-4008-a7e3-25d6465c806b&displaylang=en


 


Windows/Active Directory:


Windows Server 2003 Help for Windows System Resource Manager


http://www.microsoft.com/downloads/details.aspx?familyid=f82ddf2b-76e8-4fcd-a188-7d1a8a50e149&displaylang=en


 


Group Policy Object Infrastructure Management


http://www.microsoft.com/downloads/details.aspx?familyid=43090fae-e22a-4b6f-abc7-487a58b303a5&displaylang=en


 


Windows Server System Reference Architecture (WSSRA)


http://www.microsoft.com/downloads/details.aspx?familyid=d44e34ec-b4e2-49a1-9f40-9ed4ba3765df&displaylang=en


 


Microsoft Windows Update Services Overview


http://www.microsoft.com/downloads/details.aspx?familyid=2478d594-a29c-483c-9dc1-9740bf3081a5&displaylang=en


 


Certificate Renewal Wizard Concatenates Certificate


http://www.microsoft.com/downloads/details.aspx?familyid=9ab5be43-c72f-4652-b912-065ee2a83c02&displaylang=en


 


Managing Intra-Windows Compatibility for IPsec


http://www.microsoft.com/downloads/details.aspx?familyid=780f325f-9d4d-4346-8618-b31ba8b4bf3d&displaylang=en


 


Project:


Enterprise Project Management at Microsoft


http://www.microsoft.com/downloads/details.aspx?familyid=95b9f89b-fb34-4606-a92c-de2274eeea7b&displaylang=en


 


SMS:


Deploying Windows Server 2003 SP1 with Systems Management Server


http://www.microsoft.com/downloads/details.aspx?familyid=0abfb5f4-0611-4ae6-a03f-3ee6e3bb6b1f&displaylang=en


 


SMS 2003 SP1 Updated Advanced Client


http://www.microsoft.com/downloads/details.aspx?familyid=4d0ab3df-c150-4cfe-bf33-40f4ca5278cb&displaylang=en


 


SMS 2003 Inventory Tool for Microsoft Updates


http://www.microsoft.com/downloads/details.aspx?familyid=ba59d1a1-ff98-4103-824d-bbe6e414346b&displaylang=en


 


Miscellaneous:


Microsoft Solution for Windows-based Hosting Version 3.0


http://www.microsoft.com/downloads/details.aspx?familyid=1cb154f4-2b88-45e8-8a6d-bf41ccbf386b&displaylang=en