January 2007 - Technical Rollup Mail - Security

Article
01/22/2007

News

Data Protection: The Convergence of Backup, Archive, and Disaster Recovery https://go.microsoft.com/?linkid=5921655

By Calvin Keaton, Product Manager, Microsoft System Center This article focuses on data protection as the convergence of backup, archiving, and disaster recovery, pointing to workload integration as the next step in the evolution of data protection solutions.

New Reports from the Enterprise Strategy Group https://go.microsoft.com/?linkid=5921656

Leading industry analyst firm Enterprise Strategy Group (ESG) recently released two reports. The first, The Security Development Lifecycle (SDL). Advantage, Microsoft, discusses the creation, costs, and benefits of the SDL. The second, Microsoft SQL Server Runs the Security Table, compares the security of Microsoft SQL Server to industry competitors.

Free Secure Messaging Solution Advisor Now Available https://go.microsoft.com/?linkid=5921657

The Solution Advisor is a tool that outlines a high-level Microsoft multi-layered solution for your infrastructure and messaging needs. The tool uses information you provide about such factors as company size, current messaging infrastructure, and the level of control you prefer over your messaging to create a customized response.

Announcing System Center Data Protection Manager Version 2 Beta 1 https://go.microsoft.com/?linkid=5921658

Data Protection Manager (DPM) is the new standard for Windows backup and recovery -- delivering continuous data protection for Microsoft application and file servers using seamlessly integrated disk and tape media. DPM enables rapid and reliable recovery through advanced technology for enterprises of all sizes.

Microsoft Ships First Forefront Security Products https://go.microsoft.com/?linkid=5927322

On December 8, Microsoft released to manufacturing the first two security products under the new Microsoft Forefront brand: Microsoft Forefront Security for Exchange Server and Microsoft Forefront Security for SharePoint. These products integrate multiple antivirus scan engines from industry-leading security firms into a single solution, providing comprehensive protection for messaging and collaboration systems.

Learning Paths for Security: Deploying Microsoft Identity and Access Management Technologies https://go.microsoft.com/?linkid=5927324

Use these webcasts, virtual labs, and guides to learn more about deploying identity and access management solutions, including directory services, identity life-cycle management, and access management, and to learn how applications should integrate with the infrastructure.

Microsoft Security Bulletin Summary for December, 2006

https://www.microsoft.com/technet/security/bulletin/ms06-dec.mspx

Search for previous security bulletins https://go.microsoft.com/?linkid=3992478

Security Bulletin Feed https://go.microsoft.com/?linkid=3992479 RSS https://go.microsoft.com/?linkid=3992480

Developer

Get the Latest Security Articles On MSDN Security Guidance For Developers Site https://go.microsoft.com/?linkid=5926425

Check out the recently added security articles under the 'Contributors' menu covering topics such as 'WS-Federation and Single Sign-On', 'Moving to Partial Trust', 'Windows CardSpace', 'Security Levels in Windows Communication Foundation', 'Latest in Internet Attacks: Web Application Worms' and 'User Account Control in Windows Vista'.

Microsoft SQL vs Oracle: David Litchfield Comparison Paper https://go.microsoft.com/?linkid=5926426

David Litchfield (of NGSSoftware and databasesecurity.com) has published a paper that compares the vulnerability track record of Microsoft SQL and Oracle databases over the past six years.

MS Anti-Cross Site Scripting Library 1.5 Available https://go.microsoft.com/?linkid=5926427

SQL Server 2005 Label Security Toolkit https://go.microsoft.com/?linkid=5926428

Securing Enterprise Service Communications with .NET 3.0 (WCF) https://go.microsoft.com/?linkid=5926429

Documents

Security Tip of the Month: Hardening Guide for Microsoft Windows Rights Management Services https://go.microsoft.com/?linkid=5921659

By Brian Lich, Technical Writer, Microsoft Corporation Microsoft Windows Rights Management Services (RMS) is designed with security in mind, allowing you to assign and enforce content use policies on e-mail messages, documents, and other objects controlled by an RMS-enabled application. This article offers additional steps that you can take to further enhance the security of an RMS deployment beyond the default installation settings.

Simplify File Recovery with Data Protection Manager https://go.microsoft.com/?linkid=5921660

Hard disks offer a faster and more reliable storage alternative to tape. Take a look at how Microsoft Data Protection Manager 2006 can simplify backup and recovery by letting you back up to disk.

Data Protection Manager 2006 Planning and Deployment Guide https://go.microsoft.com/?linkid=5921661

This document provides an introduction to DPM, system requirements, strategies for setting up data protection, and step-by-step instructions for installing and configuring DPM.

Data Protection Manager 2006 Operations Guide https://go.microsoft.com/?linkid=5921662

This guide provides information on monitoring DPM, managing performance and servers, archiving and restoring data, and backing up DPM to tape and troubleshooting.

Protecting Sensitive Data with Windows Vista https://go.microsoft.com/?linkid=5921663

This chapter from the Windows Vista Security Guide provides you with a design process to identify how to configure BitLocker Drive Encryption, Encrypting File System (EFS), RMS, and device control services to better meet your data protection needs.

Windows BitLocker Drive Encryption Step-by-Step Guide https://go.microsoft.com/?linkid=5921664

This guide provides instructions on how to create the two partitions required for BitLocker Drive Encryption, encrypt a drive using BitLocker and TPM, access encrypted data after lockdown, and test BitLocker by generating a lockdown.

Protecting Data by Using EFS to Encrypt Hard Drives https://go.microsoft.com/?linkid=5921665

This document provides step-by-step instructions for the main EFS-related tasks in a small to midsize business, and also lists several important best practices for using EFS.

Protect Your Data via Managed Code and the Windows Vista Smart Card APIs https://go.microsoft.com/?linkid=5921666

This article discusses Windows smart card programming basics, writing managed wrappers for smart card functionality, and transaction management for smart cards, and provides a road map for a sample smart card application.

Responding to IT Security Incidents https://go.microsoft.com/?linkid=5921667

This document will provide you with a recommended process and procedures to use when responding to intrusions identified in a small or medium-sized business (SMB) network environment. The value of forming a security incident response team with explicit team member roles is explained, as well as how to define a security incident response plan.

A Guide to Exchange Disaster Recovery Planning https://go.microsoft.com/?linkid=5921668

Learn about basic Exchange Server disaster recovery strategies, using Exchange on a Windows cluster, recovering Exchange databases, and the new recovery features in Exchange Server 2007.

Plan Ahead to Save Your Web https://go.microsoft.com/?linkid=5921669

Preparation is the key to disaster recovery. Get your Internet Information Services (IIS) Web servers ready for recovery with this guide to all the essential data you need to back up -- including some not-so-obvious items.

Exchange Disaster Recovery https://go.microsoft.com/?linkid=5921670

This article https://go.microsoft.com/?linkid=5921693 outlines how to correctly back up Exchange 2007, restore Exchange 2007, and repair corrupt databases when no backups are available. These resources https://go.microsoft.com/?linkid=5921694 show how to prepare for disaster recovery, recover items and mailboxes from backup, and rebuild a destroyed Exchange 2003 Server. They also outline best practices for backing up your Exchange server and introduce alternate server recovery procedures.

Disaster Recovery in SharePoint Products and Technologies https://go.microsoft.com/?linkid=5921671

This chapter from the Microsoft SharePoint Products and Technologies Resource Kit covers operational tasks common in disaster recovery scenarios using the native tools provided by Microsoft Office SharePoint Portal Server 2003 and Microsoft Windows SharePoint Services. In addition, this chapter discusses how to leverage SQL Server backup and restore processes to safeguard your data in SharePoint Products and Technologies solutions.

Downloads

Windows Vista Security Guide https://www.microsoft.com/downloads/details.aspx?FamilyID=a3d1bbed-7f35-4e72-bfb5-b84a526c1565&DisplayLang=en

The Windows Vista Security Guide provides recommendations and tools to further harden Windows Vista. Use the GPOAccelerator tool in this Solution Accelerator to efficiently establish the Enterprise Client (EC) environment or the Specialized Security – Limited Functionality (SSLF) environment.

Groove Server 2007 Relay Administrator's Guide, version 1 https://www.microsoft.com/downloads/details.aspx?FamilyID=c6d04019-659d-4229-ae2d-b855e0925225&DisplayLang=en

Information and instructions for configuring and operating Groove Server 2007 Relay.

Fighting Spam and Phishing with Sender ID https://www.microsoft.com/downloads/details.aspx?FamilyID=831a6f87-58b5-41ed-863d-db4aa96b0fef&DisplayLang=en

Article from TechNet Magazine on fighting spam and phishing with Sender ID

Understanding and Configuring Internet Security w/SBS 2000 https://www.microsoft.com/downloads/details.aspx?FamilyID=748b9525-3aa5-4b3f-b2e1-4d5cdfdbc7ba&DisplayLang=en

Understanding and Configuring Internet Security w/SBS 2000

Microsoft Threat Analysis & Modeling v2.1 https://www.microsoft.com/downloads/details.aspx?FamilyID=59888078-9daf-4e96-b7d1-944703479451&DisplayLang=en

Threat modeling to empower application risk management.

User Guide for Microsoft Forefront Security for Exchange Server https://www.microsoft.com/downloads/details.aspx?FamilyID=01f9aad4-afbc-49ae-a2f9-00518c5eb2f6&DisplayLang=en

Help protect your Exchange server from viruses and other malware.

Microsoft Windows Rights Management Services Client with Service Pack 2 - IA64 Edition https://www.microsoft.com/downloads/details.aspx?FamilyID=ec889d50-8819-4cf0-952c-1f7ce6be381e&DisplayLang=en

The Microsoft Windows Rights Management Services (RMS) Client Service Pack 2 is required for your computer to run applications that provide functionality based on Windows RMS technologies.

Microsoft Windows Rights Management Services Client with Service Pack 2 - X64 Edition https://www.microsoft.com/downloads/details.aspx?FamilyID=c59d8222-043c-41fc-9ad5-8a1f5bd85352&DisplayLang=en

The Microsoft Windows Rights Management Services (RMS) Client Service Pack 2 is required for your computer to run applications that provide functionality based on Windows RMS technologies.

Microsoft Forefront Security for SharePoint 10.0 MOM 2005 Management Pack https://www.microsoft.com/downloads/details.aspx?FamilyID=749bcfbe-acdd-40f9-a173-c60c94cb385a&DisplayLang=en

The Microsoft Forefront Security for SharePoint Management Pack monitors SharePoint Servers for virus and worm activity.

Microsoft Forefront Security for Exchange 10.0 MOM 2005 Management Pack https://www.microsoft.com/downloads/details.aspx?FamilyID=231e11a8-79fa-4b5e-98b6-d7ba8f7365e1&DisplayLang=en

The Microsoft Forefront Security for Exchange Management Pack monitors Exchange Servers for virus and worm activity.

Microsoft Forefront Security for Exchange Server https://www.microsoft.com/downloads/details.aspx?FamilyID=2ceb14d4-404b-4d8f-8a21-ebfc71b2e82b&DisplayLang=en

Help protect your Exchange server from viruses and other malware.

Microsoft Forefront Security for SharePoint https://www.microsoft.com/downloads/details.aspx?FamilyID=e06453b8-b2dd-4177-969c-2f89aa841e11&DisplayLang=en

Help protect your Microsoft SharePoint server from viruses and other malware.

Microsoft Forefront Security for Exchange Server Readme https://www.microsoft.com/downloads/details.aspx?FamilyID=075c93da-c61d-4271-b258-af0d6fef60fe&DisplayLang=en

Help protect your Exchange server from viruses and other malware.

Microsoft Forefront Security for SharePoint Readme https://www.microsoft.com/downloads/details.aspx?FamilyID=7ca0c2b7-3596-4622-bdcb-2b6defb0dcd9&DisplayLang=en

Help protect your Microsoft SharePoint server from viruses and other malware.

Security Update for Excel 2002 (KB923089) https://www.microsoft.com/downloads/details.aspx?FamilyID=d86620e8-c77a-45a9-9ff3-0a6aaf308984&DisplayLang=en

A security vulnerability exists in Microsoft Excel 2002 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability.

Using Windows Vista or Using Windows XP with Service Pack 2: Controlling Communication with the Internet https://www.microsoft.com/downloads/details.aspx?FamilyID=e6a35441-918f-4022-b973-e7fc0d1d2917&DisplayLang=en

For Windows Vista or for Windows XP with Service Pack 2: These white papers provide information about the communication that flows between features in two Windows desktop operating systems and sites on the Internet, and describes steps to take to limit, control, or prevent that communication in an organization with many users.

Rights Management Services Administration Toolkit with SP2 - Beta https://www.microsoft.com/downloads/details.aspx?FamilyID=bae62cfc-d5a7-46d2-9063-0f6885c26b98&DisplayLang=en

The Rights Management Services (RMS) overview describes the benefits of deploying RMS Service Pack 2 (SP2) and covers the basic features, functions, and technologies.

Firewall Client for ISA Server https://www.microsoft.com/downloads/details.aspx?FamilyID=05c2c932-b15a-4990-b525-66380743da89&DisplayLang=en

Firewall Client for ISA Server installs the Firewall Client software on 32-bit and 64-bit computers running supported Windows operating systems.

Microsoft Forefront Client Security Public Beta https://www.microsoft.com/downloads/details.aspx?FamilyID=65c7116f-d238-463c-b3c7-e2627f210aee&DisplayLang=en

Microsoft® Forefront™ Client Security provides unified malware protection for business desktops, laptops and server operating systems that is easy to manage and control. By delivering simplified administration through central management and providing critical visibility into threats and vulnerabilities, Microsoft Forefront Client Security helps protect your business with confidence and efficiency.

Microsoft Forefront Client Security Public Beta Deployment Guide https://www.microsoft.com/downloads/details.aspx?FamilyID=508b8fd8-c554-47f0-9f59-35c68d47c770&DisplayLang=en

This .doc file covers the installation of Microsoft® Forefront™ Client Security and its related components.

Microsoft Forefront Client Security Public Beta Privacy Policy https://www.microsoft.com/downloads/details.aspx?FamilyID=3e868f82-1931-4bbe-9fd6-59da040df541&DisplayLang=en

This document describes the privacy policy for Microsoft Forefront Client Security.

December 2006 Security Releases ISO Image https://www.microsoft.com/downloads/details.aspx?FamilyID=bc288abd-273b-4d3a-92a3-92ee51a510ef&DisplayLang=en

These ISO-9660 CD image files contain the security updates for Windows released on Windows Update on December 12th, 2006.

Microsoft Forefront Client Security Public Beta (Gulf States) https://www.microsoft.com/downloads/details.aspx?FamilyID=ae2a7233-2955-4940-a665-19a556749d14&DisplayLang=en

Microsoft Exchange Server 2003 Message Security Guide https://www.microsoft.com/downloads/details.aspx?FamilyID=2305405c-faf1-488a-a856-ad467bb59b26&DisplayLang=en

This guide discusses how, when using S/MIME, encryption protects the contents of e-mail messages and digital signatures verify the identity of a purported sender of an e-mail message.

Microsoft Exchange Server 2003 Security Hardening Guide https://www.microsoft.com/downloads/details.aspx?FamilyID=6a80711f-e5c9-4aef-9a44-504db09b9065&DisplayLang=en

This guide is designed to provide you with essential information about how to harden your Microsoft Exchange Server 2003 environment.

Slowing and Stopping E-Mail Transmitted Viruses in an Microsoft Exchange Environment https://www.microsoft.com/downloads/details.aspx?FamilyID=5c468fd7-eb2b-4e7b-a614-b15b5b9088d4&DisplayLang=en

This document provides you with recommendations about how to fortify a Microsoft Exchange environment against e-mail transmitted viruses and worms.

How to Configure and Run Microsoft Exchange Server 2003 Clusters in a Security-Hardened Environment https://www.microsoft.com/downloads/details.aspx?FamilyID=9a3e2b2b-695d-4ff9-bcb1-5f2f3001845e&DisplayLang=en

This guide discusses how to configure and run Microsoft Exchange Server clusters in a security-hardened environment.

Running Microsoft Exchange Server 2003 Clusters in a Security-Hardened Infrastructure https://www.microsoft.com/downloads/details.aspx?FamilyID=21916ef5-89a2-4fb4-8de4-eb62a8605ded&DisplayLang=en

This topic provides conceptual information about the configurations required to run Microsoft Exchange Server 2003 on a Microsoft Windows Server 2003 cluster in a secured environment.

Microsoft Forefront Client Security Public Beta Release Notes https://www.microsoft.com/downloads/details.aspx?FamilyID=6f10f2e4-cdcc-4d66-90ae-43b7b3c6b1de&DisplayLang=en

This document contains late-breaking critical information about Client Security.

Microsoft Forefront Client Security Public Beta Administration Guide https://www.microsoft.com/downloads/details.aspx?FamilyID=8b273826-4356-4d2b-9a60-85de589bf1b6&DisplayLang=en

This .doc file provides up-to-date information about administering Microsoft® Forefront™ Client Security.

December 12, 2006 Enterprise Update Scan Tool (standalone version) https://www.microsoft.com/downloads/details.aspx?FamilyID=26fd14ef-821c-437d-8b70-2fc87f3b180c&DisplayLang=en

Enterprise Update Scan Tool (standalone version) for detecting needed security updates for December 12, 2006 as described in , MS06-074, MS06-073, MS06-077 and MS06-078.

Extended Security Update Inventory Tool https://www.microsoft.com/downloads/details.aspx?FamilyID=2c93da1d-48a0-4e5c-991f-87e08954f61b&DisplayLang=en

The Extended Security Update Inventory Tool is used to detect security bulletins not covered by MBSA including MS04-028, February 2005 bulletins, and future security bulletins that are exceptions to MBSA.

Microsoft® Windows® Malicious Software Removal Tool (KB890830) https://www.microsoft.com/downloads/details.aspx?FamilyID=ad724ae0-e72d-4f54-9ab3-75b8eb148356&DisplayLang=en

This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.

Office Update Inventory Tool Version 2.2 https://www.microsoft.com/downloads/details.aspx?FamilyID=4d4a2722-f312-4dc0-96e6-408d578bf5a2&DisplayLang=en

The Office Update Inventory Tool version 2.2 enables administrators to check one or more computers in their organization for the status of Microsoft Office 2000, Office XP, Office 2003, and Office 2007 updates.

Definition Update for Windows Mail [December 2006] (KB905866) https://www.microsoft.com/downloads/details.aspx?FamilyID=aa029fde-f341-44fc-8b85-0c6f3d3c2d69&DisplayLang=en

Install this update for Windows Mail to revise the definition files used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content.

Definition Update for Windows Mail for x64-based Systems [December 2006] (KB905866) https://www.microsoft.com/downloads/details.aspx?FamilyID=749e10cd-f40c-4f94-8e38-d4221ded7652&DisplayLang=en

Install this update for Windows Mail to revise the definition files used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content.

Microsoft Forefront Security for SharePoint https://www.microsoft.com/downloads/details.aspx?FamilyID=e06453b8-b2dd-4177-969c-2f89aa841e11&DisplayLang=en

Help protect your Microsoft SharePoint server from viruses and other malware.

Microsoft Forefront Security for Exchange Server https://www.microsoft.com/downloads/details.aspx?FamilyID=2ceb14d4-404b-4d8f-8a21-ebfc71b2e82b&DisplayLang=en

Help protect your Exchange server from viruses and other malware.

Microsoft Forefront Security for Exchange 10.0 MOM 2005 Management Pack https://www.microsoft.com/downloads/details.aspx?FamilyID=231e11a8-79fa-4b5e-98b6-d7ba8f7365e1&DisplayLang=en

The Microsoft Forefront Security for Exchange Management Pack monitors Exchange Servers for virus and worm activity.

Providing Security for Web Applications and Infrastructure: Best Practices for Managing Security Risks https://www.microsoft.com/downloads/details.aspx?FamilyID=8a44e041-e6f2-4fcf-8399-6fef6e2d8601&DisplayLang=en

The Windows Live Security team shares best practices - from platform and network security to incident management - in providing security for web applications and infrastructure.

Microsoft Antigen for Exchange with Antigen Spam Manger Trial Software https://www.microsoft.com/downloads/details.aspx?FamilyID=866b63bf-6207-4197-9c5d-511b7212e40c&DisplayLang=en

The Messaging Security Suite includes Antigen for Exchange, Antigen for SMTP Gateways and Antigen Spam Manager and provides server-level protection against the latest e-mail threats.

Microsoft Antigen for SMTP Gateways with Antigen Spam Manager Beta https://www.microsoft.com/downloads/details.aspx?FamilyID=f5c547d4-d457-43fa-9174-c1ddf4476cf3&DisplayLang=en

The Messaging Security Suite includes Antigen for Exchange, Antigen for SMTP Gateways and Antigen Spam Manager and provides server-level protection against the latest e-mail threats.

Events/WebCasts

Microsoft Security Webcast Series: Upcoming and On-Demand

Security Webcast Calendar https://go.microsoft.com/fwlink/?LinkId=37910

Find security webcasts listed in an easy-to-use calendar format.

Upcoming Security Webcasts

https://www.microsoft.com/events/security/upcoming.mspx

Register for the following Webcasts on the link above

TechNet Webcast: Information About Microsoft January Security Bulletins (Level 200)

Friday, January 5, 2007, 11:00 A.M.-12:00 P.M. Pacific Time

TechNet Webcast: Deploying Certificate Lifecycle Manager (Level 200)

Wednesday, January 10, 2007, 11:00 A.M.-12:00 P.M. Pacific Time

TechNet Webcast: Server Management (Part 2 of 3): Monitoring Microsoft Antigen, Exchange Server, and Internet Security and Acceleration Server (Level 200)

Wednesday, January 10, 2007, 11:30 A.M.-1:00 P.M. Pacific Time

TechNet Webcast: Windows Rights Management Services (RMS) Prerequisites, Sizing, and Enterprise Impact (Level 200)

Thursday, January 11, 2007, 11:30 A.M.-12:30 P.M. Pacific Time

TechNet Webcast: Recipient Management, Policies, and Permissions in Exchange Server 2007 (Level 200)

Friday, January 12, 2007, 9:00 A.M.-10:30 A.M. Pacific Time

TechNet Webcast: User Account Control in Windows Vista (Level 200)

Friday, January 12, 2007, 1:00 P.M.-2:30 P.M. Pacific Time

TechNet Webcast: Establishing a Secure and Manageable Messaging Infrastructure (Level 200)

Monday, January 15, 2007, 11:30 A.M.-12:30 P.M. Pacific Time

On-Demand Security Webcasts

https://www.microsoft.com/events/security/ondemand.mspx

Interactive Security Webcast Calendar https://go.microsoft.com/fwlink/?LinkId=37910

Upcoming security webcasts in a dynamic, interactive format.

A.O.B

Additional Security Resources

Security Help and Support for IT Professionals https://go.microsoft.com/?linkid=5921742

TechNet Troubleshooting and Support Page https://go.microsoft.com/?linkid=5921743

Microsoft Security Glossary https://go.microsoft.com/?linkid=5921744

TechNet Security Web Site https://go.microsoft.com/?linkid=5921745

MSDN Security Developer Center https://go.microsoft.com/?linkid=5921746

Sign-Up for the Microsoft Security Notification Service https://go.microsoft.com/?linkid=5921747

January 2007 - Technical Rollup Mail - Security

News

Documents

Downloads

Events/WebCasts

A.O.B

Additional resources