News
TechNet Edge Video: Windows 7 Security Overview http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12348082&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
19 minutes
Paul Cooke discusses the core security features of Windows 7 and explores their usage scenarios. Businesses will benefit from enhancements that help protect sensitive information, that provide stronger protections against malware and that help secure anywhere access to corporate resources and data.
Security & Privacy Blogs: Latest Updates and Thoughts from Our Security Experts http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12348083&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Tap into the pool of security experience and knowledge from experts and peers throughout Microsoft and check out the latest information from our bloggers. Sort by keyword, follow by RSS, translate into a dozen languages, and share our findings and insights with your organization’s security team.
Protecting Your Data with Windows 7 BitLocker and BitLocker To Go (Level 300) http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12348084&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
In this webcast, we examine BitLocker enhancements and capabilities. We set up and configure Trusted Module Management personal identification numbers (PINs) using Windows Platform Trusted Module Management, and we configure startup key storage.
How Windows Server 2008 R2 Affects Your IT Infrastructure (Level 300) http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12348085&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
We will be covering many new features included in Windows Server 2008 R2 that improve the cost of ownership. We will be taking a closer look at specific technologies that will improve administration, data center, and branch office deployments.
Now Available! System Center Configuration Manager Extensions for SCAP http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355498&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
With the System Center Configuration Manager Extensions for SCAP, Configuration Manager can consume Security Content Automation Protocol (SCAP) data streams, assess systems for compliance, and generate report results in SCAP format.
Introducing the Trustworthy Computing Security and Privacy Blog Aggregator http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355499&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Stay up to date with Microsoft Trustworthy Computing’s top bloggers. Read posts in different languages, search entries by keyword, and much more.
A Safer Internet Through Information Sharing http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355500&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
In this report, the Microsoft Security Response Center summarizes the progress on three security-related programs—the Microsoft Active Protections Program, the Microsoft Exploitability Index, and Microsoft Vulnerability Research—that have increased your access to more effective countermeasures and additional information to help you better evaluate risks.
Securing the Microsoft Cloud Infrastructure http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355501&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Gain an understanding of what cloud computing at Microsoft means today and how the company delivers a trustworthy cloud-computing infrastructure with this white paper from the Online Services Security and Compliance team, a part of the Global Foundation Services division that manages security for the Microsoft cloud infrastructure.
Learning Path: Improving Database Security with SQL Server 2008 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355513&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Use this learning path to find out about new tools and security features in SQL Server 2008 to help keep your databases more secure. For example, learn how to create a policy that defines the desired surface area settings, enforce the Windows password policy on your SQL Server accounts, and activate Web Service endpoint authentication.
Learning Path: Providing Security for an Evolving IT Infrastructure http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355514&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Use the resources in this learning path to better understand how to approach security issues like dissolving network perimeters, disrupted security models from new technologies like virtualization, and the evolving Web platform.
Microsoft Security Development Lifecycle Template: What It Means for Developers http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355515&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Find out more about the new process template for Microsoft Visual Studio Team System, which is intended to ease adoption of the Microsoft Security Development Lifecycle (SDL), in this Channel 9 interview with Microsoft SDL Program Manager Jeremy Dallman.
Microsoft Security Bulletin Summary for August, 2009
http://www.microsoft.com/technet/security/bulletin/ms09-aug.mspx
Microsoft Product Lifecycle Information
Find information about your particular products on the Microsoft Product Lifecycle http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355452&s1=68628015-2ccc-cbc7-31b9-0e76c3415474 Web site.
See a list of supported service packs http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355453&s1=68628015-2ccc-cbc7-31b9-0e76c3415474: Microsoft provides free software updates for security and nonsecurity issues for all supported service packs
Forefront Edge Security
Forefront Threat Management Gateway Beta 3
Get the latest beta of the new secure Web gateway, including new URL filtering capabilities.
Forefront Threat Management Gateway (TMG) is a comprehensive Secure Web Gateway solution that helps protect employees from Web-based threats. It also delivers simple, unified perimeter security with integrated firewall, VPN, intrusion prevention, malware inspection and URL filtering. Forefront TMG Beta3 is available for download in both Standard Edition and Enterprise Edition.
http://go.microsoft.com/fwlink/?LinkID=141234&clcid=0x409
Evaluate Microsoft Forefront Unified Access Gateway Beta 2 today
Forefront Unified Access Gateway Beta 2 provides an easy and secure remote access solution with a focus on application intelligence and granular access control. Forefront UAG is the one solution to fit all of your remote access needs, as it provides centralized management and policy control across all users, devices, and network resources. When you download the latest beta software, you're automatically registered to access valuable beta resources assembled in one convenient location.
http://technet.microsoft.com/evalcenter/dd183100.aspx
Forefront TMG and ISA Server
Forefront Edge Security TechCenter
http://technet.microsoft.com/en-gb/forefront/edgesecurity/default.aspx
Please note that if you have feedback on documentation or wish to request new documents - email isadocs@microsoft.com
Forefront Edge Security Community
http://technet.microsoft.com/en-gb/forefront/edgesecurity/bb687298.aspx
Forefront TMG (ISA Server) Product Team Blog
The ISA Server Product Team Blog (http://blogs.technet.com/isablog/) is updated on a regular basis. Latest entries include:
A Few Words on the TMG Firewall Client
http://blogs.technet.com/isablog/archive/2009/05/29/a-few-words-on-the-tmg-firewall-client.aspx
IPSec Domain Isolation Using ISA Server Updated and Reposted
ISA BPA 7 and Forefront TMG for Windows Essential Business Server
FWC Parser for Netmon 3.3 on CodePlex
http://blogs.technet.com/isablog/archive/2009/06/04/fwc-parser-for-netmon-3-3-on-codeplex.aspx
Forefront TMG Beta 3 is Released
http://blogs.technet.com/isablog/archive/2009/06/09/forefront-tmg-beta-3-is-released.aspx
URL Filtering is Here!
http://blogs.technet.com/isablog/archive/2009/06/10/url-filtering-is-here.aspx
Troubleshooting Authentication Issues in ISA Server Using Net Logon Logging
Introducing Forefront Network Inspection System (NIS) in TMG Beta 3 release
How to exclude specific computers from URL Filtering?
Bing Safe Search, ISA Server and Forefront TMG
ISA Integrated NLB - Multicast with IGMP… ISA “blocks” IGMP packets
Understand duplicate authentication prompts ISA 2006 publishing MOSS using FBA
Configuring Network Inspection System (NIS)
http://blogs.technet.com/isablog/archive/2009/06/28/configuring-network-inspection-system-nis.aspx
TMG SCOM-Pack – Monitor TMG with System Center 2007 R2
New Forefront TMG Beta Documentation on TechNet
Joining Microsoft Telemetry community with Forefront Threat Management Gateway (TMG) Beta 3
MS09-031: ISA Server 2006 FBA and RADIUS OTP Bulletin
Office Web Components Advisory, ISA Server and Forefront TMG
Update on the Office Web Components Advisory
Announcing the Availability of Forefront TMG Beta 3 Tools & SDK
Excessive Authentication Traffic accessing an IIS site when using ISA Server 2006 as Forward Proxy
An Inside View: The Road From Beta to RTM
http://blogs.technet.com/isablog/archive/2009/08/04/an-inside-view-the-road-from-beta-to-rtm.aspx
Announcing the Availability of Forefront TMG URL Filtering Telemetry Package
New Tales From the Edge Articles
http://blogs.technet.com/isablog/archive/2009/08/15/new-tales-from-the-edge-articles.aspx
Another Case where Users are randomly prompt for Authentication while Browsing Internet through ISA Server 2006
Redirection to OWA 2007 Directory in ISA 2004/2006
Side Effects of Incorrect DNS configuration on ISA Server: 10060 Connection Timeout Scenario
Forefront Unified Access Gateway & Intelligent Application Gateway 2007
Intelligent Application Gateway 2007 Technical Resources
http://technet.microsoft.com/en-gb/forefront/edgesecurity/bb687299.aspx
Forefront Edge Security Community
http://technet.microsoft.com/en-gb/forefront/edgesecurity/bb687298.aspx
Forefront Unified Access Gateway Product Team Blog
The UAG Product Team Blog (http://blogs.technet.com/edgeaccessblog) is updated on a regular basis. Latest entries include:
Introducing the IAG/UAG public forum
http://blogs.technet.com/edgeaccessblog/archive/2009/06/07/introducing-the-iag-uag-public-forum.aspx
Forefront UAG Beta is Coming to Town
http://blogs.technet.com/edgeaccessblog/archive/2009/06/11/forefront-uag-beta-is-coming-to-town.aspx
Introducing Forefront Unified Access Gateway
Remote Access Technologies of the World – Unite!
Introducing UAG DirectAccess solution
UAG Array and Network Load Balancing
http://blogs.technet.com/edgeaccessblog/archive/2009/06/29/array-and-network-load-balancing.aspx
Adding the SSTP Magic to the UAG Charm
Ready, Set, Download! Forefront UAG Beta is here!
Forefront UAG Beta 2 Docs
http://blogs.technet.com/edgeaccessblog/archive/2009/07/14/forefront-uag-beta-2-docs.aspx
What’s in UAG for the end-users
http://blogs.technet.com/edgeaccessblog/archive/2009/07/19/what-s-in-uag-for-the-end-users.aspx
New White Paper: Implementing an ADFS Solution for Microsoft Dynamics CRM by Using Intelligent Application Gateway (IAG)
Comparing UAG and TMG arrays
http://blogs.technet.com/edgeaccessblog/archive/2009/07/20/comparing-uag-and-tmg-arrays.aspx
Deep Dive Into DirectAccess - Part 1
http://blogs.technet.com/edgeaccessblog/archive/2009/07/27/deep-dive-into-directaccess-part-1.aspx
Faster, Higher, Stronger – UAG Performance
Considerations for Exchange Publishing
Deep Dive Into DirectAccess - Part 2
http://blogs.technet.com/edgeaccessblog/archive/2009/08/27/deep-dive-into-directaccess-part-2.aspx
Documents
Common SQL Server Security Issues and Solutions http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355502&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Have you found yourself inadvertently in charge of a SQL Server database and don’t know all the best practices for making it secure? Get a quick overview of the top 10 security areas you should worry about, common problems, and solutions.
Securing SQL Server http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355503&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Securing SQL Server can be viewed as a series of steps, involving four areas: the platform, authentication, objects (including data), and applications that access the system. Get detailed, step-by-step guidance on how to create and implement an effective security plan.
SQL Server 2008 Replication Security http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355504&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Get guidance to help you protect the replication scenarios that you deploy in SQL Server 2008 from malicious attacks and improve the security of your data.
How Do I: Defend Against Truncation-Based SQL Injection Attacks? http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355505&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
This video demonstrates how this property of truncation may be used by an attacker to circumvent the above mentioned mitigation, resulting in a SQL injection attack. Various options for fixing SQL injection issues are also discussed.
Microsoft Source Code Analyzer for SQL Injection http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355506&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
This static code analysis tool for finding SQL Injection vulnerabilities in ASP code will scan ASP source code and generate warnings related to first-order and second-order SQL Injection vulnerabilities. It will also provide annotation support that can be used to improve the analysis of the code.
Tuning Microsoft Forefront Client Security Database Components http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355507&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Microsoft Forefront Client Security uses SQL Server for collection and reporting databases. When you are choosing the SQL Server edition and the hardware on which it will run, take the topics discussed in this article into consideration.
Microsoft Security Update Guide http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355508&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Gain a better understanding of the Microsoft security release information, processes, communications, and tools—and how to manage organizational risk and develop a repeatable, effective deployment mechanism for security updates.
Microsoft Operations Framework 4.0 http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355509&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
The Microsoft Operations Framework (MOF) is designed to help IT professionals quickly access practical, relevant information on how to connect service management principles to everyday IT tasks and activities, and to ensure alignment between IT and the business. Included in MOF 4.0 is guidance on how to use the framework to achieve the governance, risk, and compliance objectives defined in the COBIT and Val IT governance frameworks.
Firewall Client Basics: Introduction to the ISA Server Firewall Client and Forefront TMG Client
http://technet.microsoft.com/en-us/library/ee291341.aspx
Troubleshooting “Primary CSS down” scenario
http://technet.microsoft.com/en-us/library/ee388575.aspx
Understanding E-Mail Protection on Forefront TMG
http://technet.microsoft.com/en-us/library/ee338733.aspx
New Forefront TMG Beta Documentation on TechNet
http://technet.microsoft.com/en-us/library/ee207140.aspx
New Forefront UAG Beta 2 Documentation on TechNet
http://technet.microsoft.com/en-us/library/dd861463.aspx
White Paper: Implementing an ADFS Solution for Microsoft Dynamics CRM by Using IAG
Downloads
The Microsoft Office Visualization Tool (OffVis) Fact Sheet
iDefense Review of Microsoft Exploitability Index
Press Release - Black Hat 2009
The Microsoft Security Update Guide
Microsoft Security Update Guide: Helping IT Professionals Better Understand and Maximize Microsoft Security Update Release Information, Processes, Communications, and Tools.
Microsoft Internet Security and Acceleration Server 2006 Management Pack for OpsMgr 2007
This management pack monitors the performance and availability of ISA Server 2006.
Building a Safer, More Trusted Internet through Information Sharing
Building a Safer, More Trusted Internet through Information Sharing: A report from the Microsoft Security Response Center on the progress of three initiatives that share information to foster deeper industry collaboration, increase community-based defenses, and better protect customers.
Extended Security Update Inventory Tool
The Extended Security Update Inventory Tool is used to detect security bulletins not covered by MBSA including MS04-028, February 2005 bulletins, and future security bulletins that are exceptions to MBSA.
Microsoft Operations Framework (MOF) 4.0
MOF 4.0 is practical guidance for IT organizations. With the release of version 4.0, MOF now reflects a single, comprehensive IT service lifecycle—it helps IT professionals connect service management principles to everyday IT tasks and activities and ensures alignment between IT and the business.
Forefront Online Security for Exchange (FOSE) 9.1 Product Documents
Product documents for FOSE 9.1 include the following: New Features Guide, Administration Center User Guide, Directory Synchronization Tool Administration Guide, Customer Quick Cards and Forefront Online Security for Exchange Filtering Service Launch and Best Practices
Microsoft Forefront Server Security Management Console Documentation
Forefront Server Security Management Console allows administrators to easily manage Forefront Security for Exchange Server, Forefront Security for SharePoint, and Microsoft Antigen.
Microsoft Forefront Security for SharePoint with SP1 Documentation
Microsoft Antigen SP1 Documentation
Microsoft Forefront Security for Exchange Server with SP1 Documentation
Microsoft Internet Security and Acceleration Server 2006 Management Pack for OpsMgr 2007
This management pack monitors the performance and availability of ISA Server 2006.
Update for Windows Mail Junk E-mail Filter for x64-based Systems [August 2009] (KB905866)
Install this update for Windows Mail to revise the definition files that are used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content
Update for Windows Mail Junk E-mail Filter [August 2009] (KB905866)
Install this update for Windows Mail to revise the definition files that are used to detect e-mail messages that should be considered junk e-mail or that may contain phishing content.
August 2009 Security Release ISO Image
This DVD5 ISO image file contains the security updates for Windows released on Windows Update on August 11th, 2009.
Microsoft® Windows® Malicious Software Removal Tool (KB890830) x64
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
Microsoft® Windows® Malicious Software Removal Tool (KB890830)
This tool checks your computer for infection by specific, prevalent malicious software (including Blaster, Sasser, and Mydoom) and helps to remove the infection if it is found. Microsoft will release an updated version of this tool on the second Tuesday of each month.
Update for Microsoft Office Outlook 2003 Junk Email Filter (KB972688)
This update provides the Junk E-mail Filter in Microsoft Office Outlook 2003 with a more current definition of which e-mail messages should be considered junk e-mail.
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB972691)
This update provides the Junk E-mail Filter in Microsoft Office Outlook 2007 with a more current definition of which e-mail messages should be considered junk e-mail.
Windows Firewall with Advanced Security: Step-by-Step Guide: Deploying Windows Firewall and IPsec Policies
This step-by-step guide illustrates how to deploy Active Directory® Group Policy objects (GPOs) to configure Windows Firewall with Advanced Security.
Extended Security Update Inventory Tool
The Extended Security Update Inventory Tool is used to detect security bulletins not covered by MBSA including MS04-028, February 2005 bulletins, and future security bulletins that are exceptions to MBSA.
URL Filtering Telemetry Package for Forefront Threat Management Gateway Beta 3
Microsoft Forefront Threat Management Gateway (TMG) is a comprehensive Secure Web Gateway solution that helps protect employees from Web-based threats. Microsoft URL filtering telemetry package can be installed on servers running Forefront TMG Beta3 to assist Microsoft with improving the quality of the URL filtering database and fine-tuning it for your specific business environment.
Windows Server 2008 R2 Core Network Companion Guide: Deploying Computer and User Certificates
This companion guide to the Core Network Guide provides instructions on how to deploy client computer and user certificates with Active Directory Certificate Services (AD CS) and Group Policy.
Microsoft SCEP Implementation Whitepaper.
This whitepaper provides an overview of Microsoft implementation for SCEP in the Windows Server 2008 R2
Microsoft Forefront Server Security 2010 Privacy Statement
This document describes the privacy policy for Microsoft Forefront Security 2010 for Exchange and Microsoft Forefront Security 2010 for SharePoint.
Forefront Security 2010 for Exchange Server Release Candidate
Microsoft Forefront Security 2010 for Exchange Server provides fast and effective protection against malware and spam by including multiple scanning engines from industry-leading security partners. It also integrates with Forefront Online Security for Exchange to provide the defense-in-depth benefits of hosted and on-premise filtering in a single solution.
Forefront Threat Management Gateway Beta 3
http://go.microsoft.com/fwlink/?LinkID=141234&clcid=0x409
URL Filtering Telemetry Package for Forefront Threat Management Gateway Beta 3
Microsoft Forefront Threat Management Gateway (TMG) Beta 3 Tools & Software Development Kit
ISA BPA 7 and Forefront TMG for Windows Essential Business Server
Microsoft Forefront Unified Access Gateway Beta 2
http://technet.microsoft.com/evalcenter/dd183100.aspx
Events/WebCasts
Security Webcast Calendar http://go.microsoft.com/fwlink/?LinkId=37910
Find security webcasts listed in an easy-to-use calendar format.
Upcoming Security Webcasts
http://www.microsoft.com/events/security/upcoming.mspx
Register for the following Webcasts on the link above
TechNet Webcast: Information About Microsoft September Security Bulletins (Level 200)
Wednesday, September 09, 2009 11:00 A.M.-12:30 P.M. Pacific Time
Momentum Webcast: Optimize Your Desktop Infrastructure with Windows 7 and MDOP (Level 100)
Thursday, September 24, 2009 11:00 A.M.-12:00 P.M. Pacific Time
On-Demand Security Webcasts
http://www.microsoft.com/events/security/ondemand.mspx
Security Awareness Materials http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=11524381&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Guidance, samples, and templates for creating a security-awareness program in your organization.
Learn Security On the Job http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=11524382&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Learning Paths for Security - Microsoft Training References and Resources http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=11524383&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Visit TechNet Spotlight: www.microsoft.com/technetspotlight
Video on Demand, Video Downloads, PowerPoint Presentations, Audio and more
New or updated KB’s
Microsoft Internet Security and Acceleration Server
FIX: A user is prompted to change the password although the account is configured as "Password never expires" when the user tries to log on to an intranet Web site published by using ISA Server 2006 FBA
http://support.microsoft.com/kb/971142
Description of the ISA Server 2006 hotfix package: July 14, 2009
http://support.microsoft.com/kb/971143
FIX: Outlook clients cannot access the Exchange Server that is running in a Windows server cluster and is published in ISA Server 2004 by using the Exchange RPC Server protocol
http://support.microsoft.com/kb/970452
Description of the ISA Server 2004 hotfix package: June 2, 2009
http://support.microsoft.com/kb/970454
FIX: Incoming VPN connections are rejected by an ISA Server 2004 RADIUS server that is operating on a Windows Server 2003-based computer
http://support.microsoft.com/kb/970451
FIX: The ISA Server Control service cannot start after you install the MS09-012 update on a computer that operates with more than 4 CPU cores
http://support.microsoft.com/kb/970450
FIX: After you install an update for a non-English version of ISA Server 2004 with Service Pack 3, some English shortcuts are added to the Microsoft ISA Server submenu on the Start menu
http://support.microsoft.com/kb/970903
Forefront TMG and ISA Server
An ISA server or Forefront Threat Management Gateway server requests credentials when client computers in the same domain use Internet Explorer to access Web sites that contain Java programs
http://support.microsoft.com/kb/925881
A.O.B
Microsoft SDL Pro Network Member: iSEC Partners http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355510&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
iSEC Partners is a full-service security consulting firm that offers a variety of mobile, Web application, and client/server security services. Services provided by iSEC Partners include penetration testing, secure systems development, security education, and software design verification.
Community Article of the Month: Hunting SQL Injection Bugs http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355512&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
In this article, Brad Hill and Geng Yang from iSEC Partners offer some tips and tricks to help you hunt down and eliminate SQL injection in your applications.
Security Help and Support for IT Professionals http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355518&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
TechNet Troubleshooting and Support Page http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355519&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Microsoft Security Glossary http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355520&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
TechNet Security Center http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355521&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
MSDN Security Developer Center http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355522&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Sign-Up for the Microsoft Security Notification Service http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355523&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Security Bulletin Search Page http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355524&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Home Users: Protect Your PC http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355525&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
MCSE/MCSA: Security Certifications http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355526&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Subscribe to TechNet http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355527&s1=68628015-2ccc-cbc7-31b9-0e76c3415474
Register for TechNet Flash IT Newsletter http://co1piltwb.partners.extranet.microsoft.com/mcoeredir/mcoeredirect.aspx?linkId=12355528&s1=68628015-2ccc-cbc7-31b9-0e76c3415474