WinInfo Daily UPDATE, February 10, 2004

This Issue Sponsored By

Argent Software

Sponsor: Argent Software

Free Download: Monitor Your Entire Infrastructure with ONE Solution
The Argent Guardian monitors servers, applications, any and all SNMP-compliant devices as well as the overall health of the entire network at a fraction of the cost of "framework" solutions. Network Testing Labs states that "The Argent Guardian will cost far less than MOM and yet provide significantly more functionality." Using a patented Agent-Optional architecture, the Argent Guardian is easily installed and monitoring your infrastructure in a matter of hours. Download a fully-functioning copy of the Argent Guardian at:

1. In the News

by Paul Thurrott, thurrott[email protected]

Gartner: Microsoft Security Improving
A recent Gartner report corroborates what industry observers have known for months: Microsoft's security initiatives are paying off for the company, and as customers move to more modern Windows versions such as Windows Server 2003 and Windows XP, they'll share in the benefits. Gartner, however, hedged its bets by chiding Microsoft for blaming many of its security compromises on people who write malicious code, perhaps in a bid to make its otherwise glowing report on Microsoft security seem less one-sided. The report is also careful to cast Microsoft's security improvements in guarded terms.
"The worms in 2003 showed there's a long way to go before Windows is secure, and \[they\] prompted Microsoft to refocus on improving security," the Gartner report says. "By 2005, Microsoft's server software products will be at or above the industry security average. Progress is further away on the desktop, but the market likely has driven Microsoft to take desktop security more seriously. Given Microsoft's dominance in the desktop market, it should demonstrate its commitment to being a security leader by providing a security update to Windows 2000, even at this late stage of the product's life cycle." Sadly, the last comment betrays a bit of ignorance about Microsoft's security plans. Although the company recently released an XP security rollup and has discussed its high-profile service pack plans for Windows 2003 and XP, Microsoft will also ship major security updates for Win2K in 2004.
According to Gartner, by 2005 the "security costs" of Windows-based servers will equal those of UNIX and Linux servers; presumably these costs are higher on Windows today. Most of the improvements will come from customers adopting modern Windows versions, dropping less secure products such as Windows NT 4.0 and Windows 98, as well as from the security-oriented updates Microsoft will ship for Windows 2003, XP, and Win2K this year. In related news, Gartner analysts also issued reports stating that Longhorn will be the likely Windows successor, that Microsoft SQL Server Yukon will be delayed and won't be significantly different from earlier versions, and that Microsoft's Software Assurance (SA) licensing program will be crucial to the company's revenues going forward. Yes, they get paid to write this stuff.

Two New MyDoom Variants Launch Attacks
Two new electronic worms emerged yesterday, both of which seek to exploit Windows-based PCs that the original MyDoom email virus have already infected. Like the weakened MyDoom.B email virus variant, however, both of the new worms are categorized as low-risk by security researchers, who note that the worms have compromised few users. And unlike MyDoom.A and MyDoom.B, instead of spreading through email attachments the new attacks prowl the Internet looking for MyDoom-compromised computers that haven't yet been inoculated.
The first worm, Doomjuice, attempts to seize infected computers and use them for Distributed Denial of Service (DDoS) attacks on Microsoft's Web site. The second worm, Deadhat, removes the MyDoom virus and waits for further instructions, presumably from yet another worm; Deadhat got its start on the Soulseek file-sharing system. The antivirus experts at Network Associates note that although Doomjuice has had a bit of success, largely because some people didn't realize they were infected with MyDoom, neither worm is expected to make much of an impact.
On the other hand, Doomjuice and Deadhat prove that earlier thinking about electronic-attack flare-ups might be out-of-date. "Computer users cannot treat the risk from malware as an episodic situation based on a specific virus event," Ian Hameroff, a security strategist at Computer Associates, said. "Instead, they need to treat the cause, be it social engineering or outdated virus definition updates, not an individual flare-up." Microsoft denied reports that Deadhat was responsible for intermittent problems on its Web site yesterday.

2. Announcements

(from Windows & .NET Magazine and its partners)

Windows & .NET Magazine Connections
Windows & .NET Magazine Connections features speakers from Microsoft as well as other top independent experts. Complete details about workshops, breakout sessions, and speakers are now online. You'll save $200 if you register before the early-bird discount expires--plus, you'll get a chance to win a Florida vacation! Go online now to register.

Try a Sample Issue of Security Administrator!
Security Administrator is the monthly newsletter from Windows & .NET Magazine that shows you how to protect your network from external intruders and control access for internal users. Sign up now to get a 1-month trial issue--you'll feel more secure just knowing you did. Click here!

3. Events Central

(A complete Web and live events directory brought to you by Windows & .NET Magazine: )

New--Microsoft Security Strategies Roadshow!
We've teamed with Microsoft, Avanade, and Network Associates to bring you a full day of training to help you get your organization secure and keep it secure. You'll learn how to implement a patch-management strategy; lock down servers, workstations, and network infrastructure; and implement security policy management. Register now for this free, 20-city tour.

Sponsored Link

Comparison Paper: The Argent Guardian Easily Beats Out MOM;6480843;8214395;q?

Javelina Software
Check out ADvantage to bulk modify Active Directory attributes.;7115967;8214395;t?


4. ==== CONTACT US ====

About the newsletter -- [email protected]
About technical questions --
About product news -- [email protected]
About your subscription -- [email protected]
About sponsoring UPDATE -- [email protected]


This email newsletter is brought to you by Windows & .NET Magazine, the leading publication for IT professionals deploying Windows and related technologies. Subscribe today.

Manage Your Account
You are subscribed as #EmailAddr#.

You received this email message because you requested to receive additional information about products and services from the Windows & .NET Magazine Network. To unsubscribe, send an email message to mailto:[email protected] Thank you!

View the Windows & .NET Magazine Privacy policy at

Windows & .NET Magazine a division of Penton Media Inc.
221 East 29th Street, Loveland, CO 80538
Attention: Customer Service Department

Copyright 2004, Penton Media, Inc. All Rights Reserved.

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.