Subscribe to Windows IT Pro
Make sure that overzealous antispam software doesn't block your copy of Windows Client UPDATE--add [email protected] to your list of allowed senders and contacts.
This email newsletter comes to you free and is supported by the following advertisers, which offer products and services in which you might be interested. Please take a moment to visit these advertisers' Web sites and show your support for Windows Client UPDATE.
- IE 7.0 Beta 2 Preview A Different Beast
2. News & Views
- Here Come the Exploits: Microsoft Patches 7 Flaws
- Tip: Removing "Help and Support" from Windows XP start menu
- Featured Thread: Google Desktop--Security Risk?
4. New and Improved
- Tell Us About a Hot Product and Get a T-Shirt!
==== Sponsor: Bindview ====
Finding a faster and easier way to determine effective permissions on Windows can be incredibly challenging. In this free white paper you'll discover why it's essential to determine effective permissions, how to determine who has access to critical information in Windows, how to determine where each individual has access in Windows, and more! This is the must-have white paper to resolve overlapping permission grants for local and network access, shared hierarchies, local machine rights and more!
==== 1. Commentary: IE 7.0 Beta 2 Preview A Different Beast ====
by David Chernicoff, [email protected]
For those of you who can’t get enough beta software, Microsoft has made available the Beta 2 Preview of Microsoft Internet Explorer (IE) 7.0. The usual caveats apply: This isn’t released software, Microsoft doesn't support it, and it shouldn’t be installed on a production system. If none of that stops you, you can download the beta preview at this URL:
Even if you're gung ho about testing IE 7.0, I’d suggest you start by reading the technology overview documentation, which can be downloaded at this URL:
I know many people will be interested in examining IE 7.0; make sure that you also consider the down side of doing so at this time. IE 7.0 is very different in appearance and behavior from IE 6.0. If you're used to a customized browser interface on your current browser and any of the various third-party add-ins, you’ll have to start from scratch to customize IE 7.0, and you'll likely find that your third-party tools no longer function.
IE 7.0 protects users from themselves as well as from the normal avenues of attack, disabling malicious content by default. This means that you might have trouble connecting to many sites and Web content that you currently access unless you enable specific features of the browser, so this beta preview is for the hands-on type who doesn't mind configuring his or her own browser tools. For example, with cross-domain scripting attacks, in which a Web page opens up a legitimate site in a different domain, then strips data that the user enters, IE 7.0 limits the activity of the Web site to the site's domain only. However, if the Web site is one that transfers commercial transaction control to another site (a type of online transaction that's fairly common) users would have to explicitly allow such activity in the browser configuration, then disable it after the transaction to provide maximum security from external attacks.
More About Baseline Configurations
In response to my column of February 2, "Windows OneCare Worth At Least One Look," I received several messages from vendors who make what they believe are the best-in-class standalone system utilities, who wrote that no product can replace the capabilities that their products offer. I agree completely with that sentiment. The point that needs to be made, however, is that the vast majority of small office/home office (SOHO) users get a negative experience by being forced to use the various utility suites installed on most of the computers sold today. These users have neither the skills nor the time to figure out how to make these utilities work best, and the availability of OneCare gives them a baseline configuration from which they can evaluate other third-party tools. This isn’t the case with corporate volume purchasers who are able to specify configurations and have the IT personnel to ensure their configurations work correctly.
==== Sponsor: NetPro Computing ====
Recover and restore everything in your AD--from users and GPOs to domains and entire forests, including their predefined attributes.
==== 2. News & Views ====
by Paul Thurrott, [email protected]
Here Come the Exploits: Microsoft Patches 7 Flaws
It's been almost 6 months since we've seen a Microsoft monthly security update with several new fixes. This month, the company shipped seven security fixes, two of which are labeled as critical. Every time Microsoft issues patches, hackers review the flaws to see which they can exploit. Security researchers were quick to issue warnings that some of the flaws Microsoft has fixed are incredibly easy to exploit. The point is clear: Users who don't update their machines with the fixes soon could be in trouble.
The most serious flaw, perhaps, is in Windows Media Player (WMP) 10 for Windows XP. Hackers who successfully exploit this flaw can remotely control the affected PC. Security researchers are most worried about this flaw because it's easy to exploit and few users would expect an attack to come from within WMP. The other critical flaw, in the Microsoft Internet Explorer (IE) image-rendering engine, has similar properties, in that it allows remote code execution. The patch is an updated version of the patch for the Windows Metafile Format (WMF) flaw that Microsoft issued last month.
The other five fixes are all rated important. These flaws involve various components of Windows, including the WMP plug-in for non-Microsoft browsers, TCP/IP, the Web Client Service, the Input Method Editor, and Microsoft Office PowerPoint 2000.
In related news, Microsoft has elected not to fix a new zero-day vulnerability in IE 5.0 and later until it ships XP Service Pack 3 (SP3) in late 2007. According to the company, the flaw, which was actually discovered last summer, requires users to follow an exact series of steps for a successful exploit to occur. For this reason, Microsoft doesn't feel the flaw warrants an immediate fix. It's unclear why the company can't simply fix this flaw in a future monthly security release. After all, Microsoft has scheduled at least 18 of them before XP SP3 ships.
==== Events and Resources ====
(A complete Web and live events directory brought to you by Windows IT Pro:
Let industry expert Brian Moran teach you the tips and tricks he’s learned in 15 years of experience fine-tuning SQL Server systems. This is a web seminar you won’t want to miss! Live event: Tuesday, March 21, 2006; 12:00 noon Eastern time
Learn the best ways to manage your email security (and fight spam) using a variety of solutions and tips.
Use clustering technology to protect your company against network outages, power loss and natural disasters. Live Event: 2/28/2006; 12:00 noon, Eastern time
Align compliance with business efficiency, and learn how fax-document management plays a role in your strategy. http://www.windowsitpro.com/go/whitepapers/esker/docmanagement?code=0215emailannc
Gain control of your messaging data with step-by-step instructions for complying with the law, ensuring your systems are working properly and ultimately making your job easier.
===== Featured Whitepaper ====
Learn about recovery to virtual computer environments, hardware migration strategies, hardware repurposing for optimal resource utilization, meeting recovery time objectives, increasing disaster tolerance, and more.
==== 3. Resources ====
Tip: There must be something in the air, because in the last week I’ve received three email messages asking me how to remove the “Help and Support” entry from the Windows XP Start menu. I replied to the first message and pointed out that the entry can be disabled when you customize the Start Menu by doing the following:
1. Right-click on the Taskbar and select properties.
2. Select the Start Menu tab.
3. Click Customize.
4. Click Advanced.
5. Uncheck the Help and Support check box in the Advanced Start menu options list.
6. Click OK.
I got a quick response asking if there was a way to apply this change to a group of computers without having to visit each computer. There is. You can use Group Policy from the User Configuration / Administrative Templates / Start Menu and Taskbar group by selecting Enable the Remove Help menu for Start Menu policy.
Contributed by David Chernicoff.
Google Desktop--security risk? See what Mark Joseph Edwards has to say about it on the Security Matters blog:
==== Hot Release ====
Align compliance with business efficiency, and learn how fax-document management plays a role in your strategy.
==== Announcements ====
(from Windows IT Pro and its partners)
The Windows IT Pro Magazine Master CD-ROM has it all!
Get the Windows IT Pro Magazine Master CD-ROM and get portable, high-speed access to the entire Windows IT Pro article database--that’s a library of over 9,000 articles in one place! The newest issue includes BONUS Windows IT Tips, and if you sign up now, you will get 25% off. Limited quantities are available, so order now:
Save 44% off Windows Scripting Solutions Newsletter
For a limited time, order Windows Scripting Solutions Newsletter and SAVE up to $30 off the regular price. You'll get 12 helpful issues loaded with expert-reviewed, downloadable code and scripting techniques, as well as hundreds of tips on automating repetitive tasks. You will also get FREE, unlimited access to the full online scripting article database (over 500 articles). Subscribe now:
==== 4. New and Improved ====
by Dianne Russell, [email protected]
Tell Us About a Hot Product and Get a T-Shirt!
Have you used a product that changed your IT experience by saving you time or easing your daily burden? Tell us about the product, and we'll send you a Windows IT Pro T-shirt if we write about the product in a future Windows IT Pro What's Hot column. Send your product suggestions with information about how the product has helped you:
==== Contact Us ====
About the newsletter -- [email protected]
About technical questions -- http://www.windowsitpro.com/forums
About product news -- [email protected]
About your subscription -- [email protected]
About sponsoring an UPDATE -- [email protected]
This email newsletter is brought to you by Windows IT Pro, the leading publication for IT professionals deploying Windows and related technologies. Subscribe today.
Windows IT Pro, a division of Penton Media, Inc.
221 East 29th Street, Loveland, CO 80538,
Attention: Customer Service Department
Copyright 2006, Penton Media, Inc. All Rights Reserved.