Budget air ticket.

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ smallbiz
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - Backup Exec hangs at "99% Complete" This is a multi-part message in MIME format. ------=_NextPart_000_0031_01C452EC.9CF4B9A0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable SysAdmins: I run a lot of services on our company server, one of them, the backup = service is managed in software by Veritas Backup Exec 8.6. My backup job = rotation was running smoothly until a week ago when I installed = Veritas's DirectAssist troubleshooting software. Since then, all my jobs = complete but hang at "99% complete". I've since uniunstalled this = software and recreated the backup jobs. The problem persists. Restarting = the BackupExec services clears the hang. Does anyone have experience with this already? Help! Paul G. Dorn ------=_NextPart_000_0031_01C452EC.9CF4B9A0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1400" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV> <DIV><FONT face=3DArial size=3D2>SysAdmins:</FONT></DIV> <DIV><FONT face=3DArial size=3D2>I run a lot of services on our company = server, one=20 of them, the backup service is managed in software by Veritas Backup = Exec 8.6.=20 My backup job rotation was running smoothly until a week ago when I = installed=20 Veritas's DirectAssist troubleshooting software. Since then, all my jobs = complete but hang at "99% complete". I've since uniunstalled this = software and=20 recreated the backup jobs. The problem persists. Restarting the = BackupExec=20 services clears the hang.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Does anyone have experience with this=20 already?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Help!</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Paul G. = Dorn</FONT></DIV></DIV></BODY></HTML> ------=_NextPart_000_0031_01C452EC.9CF4B9A0-- Tag: Budget air ticket. Tag: 159977
  - 2
    - SBS POP3 Connector Client has been using the POP3 conector to retrieve mail for several months; yesterday it stopped working. If I click the 'Retrieve now' button on the properties dialogue, get message 'Initialization Error'. No error number, nothing in the application event log in event viewer. I have set diagnostics logging to maximum for this connector. Is there a separate event log for Exchange / POP3 connector events? I have tried removing and replacing the global ISP mail host record in the POP3 connector dialogue, and also re- booting the server. Anyone got any ideas how to troubleshoot this? TIA Paul Tag: Budget air ticket. Tag: 159975
  - 3
    - Invitation - June Kentucky Small Business Server User Group (KYSBSUG) Meeting You are cordially invited to attend the June meeting of the Kentucky Small Business Server User Group (KYSBSUG)! Date: Wednesday June 23, 2004 Time: 6:30 pm - 8:00 pm Eastern (GMT -5) Location: University of Louisville - Shelby Campus Building: Information Technology Resource Center (iTRC) Room: The Theater Address: 9001 Shelbyville Road City/State/Zip: Louisville, KY 40222 Facility Phone: (502) 852-0900 Venue URL: http://www.theitrc.com Agenda: 6:00 - 6:30 - Meet fellow SBSers, grab some refreshments & find a seat 6:30 - 6:45 - Orientation for new KYSBSUG members / attendees 6:45 - 7:20 - Presentation: "Building a Profitable Business Model around Microsoft Small Business Server 2003" Presenter - Tim Barrett from KYSBSUG 7:20 - 7:35 - SBS Q&A 7:35 - 7:45 - Information on TS2 and upcoming local Microsoft Events 7:45 - 8:00 - Wrap-up and drawing for a boxed copy of Office 2003 Small Business Edition 2003 (NFR) and other giveaways Admission and parking are FREE! The Theater at the iTRC offers comfortable stadium-style seating for 55 people and a large projection screen, so be sure to invite anyone interested in Microsoft Small Business Server! IMPORTANT - This is a secure building, so please try to arrive before 6:30 PM E.D.T. to be sure you can get in the building. E-mail Tim Barrett at timbarrett@rehabdesigns.com or call (502) 266-9061 x105 with any questions. Campus Map: http://www.theitrc.com/html/shelby_campus.html Expedia Map: http://tinyurl.com/2meg5 Directions to the U of L Shelby Campus - iTRC: (The Shelby Campus is in the EAST end of Louisville, one block West of Hurstbourne Lane) From the Airport: Take I-264 East (Watterson Expressway) out of the airport for approximately 6 miles. Once you pass the I-64 interchange, look for US 60 (Shelbyville Road) which is the St. Matthews/Middletown exit. Go East towards Middletown for approximately 1 mile through a commercial, and then residential, area. Shelby Campus will be on your left. From I-64: I-64 West into Louisville to the Jeffersontown/Middletown exit #15 which is Hurstbourne Lane (State Road 1727). At the end of the ramp, turn right towards Middletown. Stay on Hurstbourne to US 60 (Shelbyville Road) which is approximately 1 mile. Turn left onto US 60. Shelby Campus is on your right just past the first red light. From I-65: I-65 North into Louisville to I-264 East (Watterson Expressway). Go approximately 6 miles to US 60 (Shelbyville Road) at the St. Matthews/Middletown exit (which is just past the I-64 interchange). Go East towards Middletown for approximately 1 mile through a commercial, and then residential, area. Shelby Campus will be on your left. From I-71: I-71 South into Louisville to I-264 West (Watterson Expressway). Go approximately 2 miles to the US 60 (Shelbyville Road) at the St. Matthews/Middletown exit. Go East towards Middletown for approximately 1 mile through a commercial, and then residential, area. Shelby Campus will be on your left. Tag: Budget air ticket. Tag: 159973
  - 4
    - Solution - Win2k SBS POP3 Connector - C0000005 ACCESS_VIOLATION Group, Had this error yesterday, a Google search didn't come up with a quick solution so I thought I'd post how I fixed it, in our case. (I think) it turned out to be a corrupt message in the POP3 Conn. queues. I had read on some older posts that corrupt email can jam up the service, and proceeded to delete the mail on our hosting server - did not fix the problem. We also had a corrupt event app log, which I thought maybe hung up the service. So I fixed that (set eventview service to Disabled, reboot, delete ..\system32\config\*.evt, reset service to Auto, reboot). POP3 Conn started, but would not retreieve mail. Finally I stopped the POP3 Connector and deleted orphaned messages in ..\Program Files\MS BackOffice\???\POP3 Conn\Incoming and InForward, and another directory full of .etb files (can't remember as I write this, on different machine now) that turned out to be the account information. Recreating the account information after restarting the service seemed to solve the issue and the POP3 Connector is working again. Something in there was corrupt. We also had those event log problems and my wins db was corrupt, and CHKDSK took a long time (was remote so couldn't see screen + logging was disabled) so I'm thinking drive issues. Possibly antivirus quaratined something out of there and fubared it, I have since excluded the directory. Hope this helps someone in the future. Nate Erb IT Fusion SOS - Milwaukee, WI (414) 852-5851 Tag: Budget air ticket. Tag: 159969
  - 5
    - Group Policy error Hi I have implemented group policy for the users so that they cannot open the network properties. This is working on all windows 2000 machines but this is not working on xp systems. I checked the event log and the error was Type Error Source MsiInstaller Description: The description for Event ID ( 10000 ) in Source ( MsiInstaller ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. The following information is part of the event: Product: Microsoft Group Policy Management Console with SP1 -- You must be running Windows XP SP1 or Windows Server 2003 build 3602 or later to install Microsoft Group Policy Management Console with SP1, (NULL), (NULL), (NULL), (NULL), (NULL), (NULL). Some one help me on this issue Thanks Vinod Tag: Budget air ticket. Tag: 159968
  - 6
    - Users Hi, If the server is SBS2000 then you do not need to create the computer account on the server. With Win2000 servers the accounts are created when the computer is joined to the domain. Make sure that you have joined the domain using a user account that has permission to create the account. Tag: Budget air ticket. Tag: 159965
  - 7
    - Viewing a user session I was just curious.... I have a small network with 10 computers and a SBS2000 server. Is it possible to view a user session from one of the other machines on the network using software built into Windows SBS, and if not, what software could I use to do that? Thanks Tag: Budget air ticket. Tag: 159964
  - 8
    - Arjen Jongeling, een oude bekende Hoewel, Arjen Jongeling is hier nog nooit geweest en ik denk dat Arjen Jongeling hier ook nooit meer zal terugkomen. Sterker nog, Arjen Jongeling zit hier helemaal fout. Maar ja, het doet het goed in de Google archieven. Tag: Budget air ticket. Tag: 159962
  - 9
    - Windows 2003 System Accounts within 2000SBS Domain Sorry if you have seen this already but I think I posted it to the wrong place. I have just added a Windows 2003 DC to a Windows 2000 SBS domain and I seem to be missing at least one system account specific to windows 2003 (specifically the 'NETWORK SERVICE' account). Before you ask I did follow through the ADPrep routine prior to bringing the 2003 server into the domain, and all went well. Has anyone else experienced this or have any ideas on what to try to get this system account to show/install itself? The reason this was noticed and came about was due to a problem with the fax service and running it on a domain controller - apparently I needed to give the network service account some user rights according to this link: http://www.adminlife.com/247reference/msgs/13/67140.aspx Upon trying to add the account I identified that it wasn't listed therefore my current situation above .. I am going to try to add the SID for this account (S-1-5- 20) directly to those rights and see if that solves my problem in the mean time, but I would appreciate any thoughts anyone might have on this still. Tag: Budget air ticket. Tag: 159960
  - 10
    - SBS 2003 - VPN - IPX Configuration I have VPN and RRAS setup however I cannot find out how to configure the IPX portion of the VPN clients connection. I want to provide the vpn client with the IPX/SPX network information that allows him/her to use the protocol through pptp. I scoured the internet, help files, etc. Microsoft posts... ----- A computer running the NWLink IPX/SPX/NetBIOS Compatible Transport Protocol (NWLink) cannot connect to other computers. Cause: Routing might be configured incorrectly. Solution: Try the following: Verify that you have NetBIOS broadcast propagation (type 20 packets) enabled on all the router router Hardware that helps local area networks (LANs) and wide area networks (WANs) achieve interoperability and connectivity and that can link LANs that have different network topologies (such as Ethernet and Token Ring). Routers match packet headers to a LAN segment and choose the best path for the packet, optimizing network performance.interfaces between the computers. (A Windows remote access server, which is a server running Windows Server 2003 and the Routing and Remote Access service, is an IPX router.) You can enable NetBIOS broadcast propagation in Routing and Remote Access. Verify that you do not have more than eight routers between the computers running Windows. ... Note: Computers running operating systems in the Windows Server 2003 family cannot be IPX routers. ----- Post 2 (Really Helpful!!!) --- Cause: The VPN client is configured to request its own IPX node number, and the VPN server is not configured to allow IPX clients to request their own IPX node number. Solution: Configure the VPN server to allow IPX clients to request their own IPX node number. --- Is ipx routing capability a necessity for SBS 2003 RRAS to provide the necessary ipx/spx information to the vpn client in order to have a successful ipx/spx connection through pptp? What am I missing? HELP!!! Tag: Budget air ticket. Tag: 159953
  - 11
    - Exchange 2003 POP3 Connector removing routing details? Hello, In Outlook if I click View> Options I can see the email headers. If I download messages directly from the POP3 server at my ISP, the headers generally contain three or more lines starting with: 'Received:'. This shows which email servers have been used to route the email from the original sender, through my ISP and to me. When I received emails through my exchange account, which uses the POP3 Connector, I only get one entry beginning: 'Received: from mail pickup service'. All the information about the routing of the messages through my ISP and from the originator appear to have been stripped from the messages. This did not used to happen before we migrated from SBS2000 to SBS2003. Is there a setting somewhere to prevent the POP3 Connector from removing these headers? TIA Phil. Tag: Budget air ticket. Tag: 159951
  - 12
    - LANDREGISTERY WEB SITE I have a small buisiness 2000 server all web sites seem to work ok except a land register web site and surtain pages will not display . I think this is ISA problem Can anyone help Tag: Budget air ticket. Tag: 159939
  - 13
    - SBS 2003 Premium licensing... Doing a dual server install shortly. The primary domain controller will obviously be the SBS box, and the second machine will be a Windows2003 box which will be the apps server. There are a total of 20 workstations (WXP).SBS comes with 5 clients, and we were going to purchase another 20 clients. How does that work with the second server? I assume that I don't have to buy 20 client licenses for it aswell as the primary server. Regards Robbie Niblock Tag: Budget air ticket. Tag: 159934
  - 14
    - SBS2003 POP3 Error Seem to be having this at a number of customers sites who are using SBS2003 and POP3 e-mail. Error 1053 POP3 Connector The delivery process for message finished with one or more errors. It doesn't seem to be affecting e-mail delivery but could do with figuring out why its logging it as an error. Thanks Tag: Budget air ticket. Tag: 159931
  - 15
    - SBS 2003 Backup - Can't Exclude folders Running the SBS 2003 Backup Configuration wizard, and trying to exclude folders, but it keeps saying that the folders are required to restore the system, or a sub-folder of a required folder. I have a number of shared folders that just contain old archive information that needs to be available to users, but doesn't need to be regularly backed up. How can I exclude these from my backup. TIA Phil. Tag: Budget air ticket. Tag: 159928
  - 16
    - Upgrading SBS Group Policy for Windows XP Hello, I am trying to upgrade the sbs policy to include the additional xp features (using kb 307900). However, the new values are not injected into the existing policies. There is one exception to this: if I create a brand new policy on the server and then open that policy on an xp pro machine (without opening it first on the server), it updates perfectly. However, if i then attempt to open up the policy on the server, all new settings are lost.... Can anyone shed any light on what is going wrong? TIA Stephen Tag: Budget air ticket. Tag: 159925
  - 17
    - << Small Biz server news [was posted last night and got lost in the Kevin's song of the week..... news://msnews.microsoft.com/u59UrcMUEHA.3332@tk2msftngp13.phx.gbl KB's of interest.... 834141 - FIX: IP address is revealed in the content-location field in the TCP header in IIS 6.0: http://support.microsoft.com/?kbid=834141 843073 - Non-English language reports contain English text after you install Service Pack 2 in ISA Server 2000: http://support.microsoft.com/?kbid=843073 837019 - Description of the Outlook 2003 hotfix package: March 17, 2004: http://support.microsoft.com/?kbid=837019 837365 - You cannot expand the public folders list in Exchange System Manager on a Windows Small Business Server 2003-based computer: http://support.microsoft.com/?kbid=837365 836413 - You receive an "unexpected error occurred" error message when you try to access resources on a Windows-based network from your Macintosh computer: http://support.microsoft.com/?kbid=836413 840685 - An event ID 1000 error message is logged to the application event log when you restart Windows Small Business Server 2003: http://support.microsoft.com/?kbid=840685 <<SMBnation announces Dr. Tom [Mr. ISA] Shinder and Brian Livingston as Keynoters http://www.smbnation.com/ >> Last week two security patches for Microsoft products - one for DirectX, one for CRM applications. Microsoft Security Bulletin MS04-016: Vulnerability in DirectPlay Could Allow Denial of Service (839643): http://www.microsoft.com/technet/security/Bulletin/MS04-016.mspx Microsoft Security Bulletin MS04-017: Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service (842689): http://www.microsoft.com/technet/security/Bulletin/MS04-017.mspx No patch for this one - take mediation at this time.... (1) HIGH: Internet Explorer Multiple Vulnerabilities Affected: IE 6.0 and 6.0 SP1 Description: Fully patched versions of Internet Explorer reportedly contain the following vulnerabilities that are being exploited in thewild to compromise client systems. (a) Internet Explorer successfully processes a webserver response that redirects the location of a resourceto a file on the client system. Note that this file can be accessed inthe security context of the "Local Computer Zone". (b) Internet Explorer contains a cross-domain vulnerability that can be triggered whenhandling a frame, and a "modal dialog box" that is invoked from theframe. These vulnerabilities can be exploited by a malicious website toexecute arbitrary code on a client system. The technical details and theexploits have been publicly posted. Status: Microsoft not confirmed, no patches available.Council Site Actions: Most of the reporting council sites are awaitingthe vendor patches. Some sites plan to roll out the patch during thenormal system update cycle and others plan to expedite the rollout.Several sites have already notified their desktop support teams to beaware of the problem. http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0031.html Analysis by Jelmer CERT Advisoryhttp://www.kb.cert.org/vuls/id/713878 --------------------- UPDATE - YES IT WORKS JUST FINE ON XP WITH IE6 and even works like a champ on XP sp2] So I just kicked my workstation at the office and the workstation at home's Internet explorer to ?high security? settings. What that means is that I've shut down the scripting and active X to be automatically blocked at all times. Then if I have a web site that I really trust and know if an OK site, I add it to ?my trusted site? list. Now this normally is a pain and a bother.... tools, options, security, internet zone, add sites, blah blah... way way way too cumbersome. Well not anymore! My MVP buddies showed me this gem -- http://www.microsoft.com/windows/ie/previous/webaccess/pwrtwks.mspx This little IE addition adds a quick shortcut under ?Tools? for ?add to trusted sites?. I just did this to a couple of people at the office and here at home and showed them all they have to do when they get to a web site that they really ?need? to have working [like a business site] they can add the site to the trusted zone and hit ?refresh? and voila. Very nice. Very much safer out here. I've also adjusted my "trusted zone" to not be "low" and instead is now "medium" so it prompts me instead of automatically scripting. And add sites to the trusted zone SPARINGLY. **************************************************************** (2) MODERATE: Oracle E-Business Suite SQL Injection VulnerabilitiesAffected: Oracle E-Business Suite versions 11i, 11.5.1 to 11.5.8Oracle Applications version 11.0Description: Oracle E-Business suite offers a set of applications toautomate business processes such as marketing, customer services,supply-chain management etc. The pertinent business information istypically stored in a single database, and accessed via the webfront-end offered by the E-Business suite applications. This suitecontains multiple SQL injection vulnerabilities. These flaws can beexploited via malicious HTTP requests to execute arbitrary SQLstatements and procedures against the back-end database, possiblyresulting in the compromise of the entire database. Note that theInternet facing web servers hosting the E-Business suite applicationsface the maximum risk. Very limited technical details regarding how toexploit the flaws have been posted.Status: Vendor confirmed, updates available.Council Site Actions: Only one of the reporting council sites is usingthe affected software; however their Oracle servers are internal facingonly. They plan to install the patches after regression testing.Referencesosting by Integrigy Securityhttp://archives.neohapsis.com/archives/vulnwatch/2004-q2/0032.html Oracle Security Advisoryhttp://otn.oracle.com/deploy/security/pdf/2004alert67.pdf Oracle E-Business Suite Homepagehttp://www.oracle.com/applications/index.html SecurityFocus BIDhttp://www.securityfocus.com/bid/10465 California identity theft law remains low-key Nearly a year after California's landmark SB 1386 identity theft law went into effect, there has been none of the troublesome litigation that had been predicted to come in its wake. But the law has raised overall corporate awareness of the need to have strong privacy protections in place, legal experts said last week. http://computerworld.com/securitytopics/security/privacy/story/0,10801,93667,00.htmlPreventing identity theft focus of regional meetinghttp://www.usatoday.com/tech/news/2004-06-08-id-theft_x.htm Security gaps in Dutch airline and government wireless networksDuring its special on computer attacks on June 3, the Dutch current-affairs programme, Zembla, demonstrated to television viewers just how easy it is to break into wi-fi networks and gain access to confidential information. The networks found to be lacking in security were operated by the Dutch airline, KLM, and the Ministry for Public Works and Water Management (Rijkswaterstaat). http://www.dmeurope.com/default.asp?ArticleID=1984 GAO points to airport security holes http://www.fcw.com/fcw/articles/2004/0607/web-gaotsa-06-08-04.asp - - - - - - - - - - Russia and China 'behind current spam deluge' As hardcore criminals step up their spamming, experts believe that nine out of 10 of all emails may soon be unsolicited junk. Organised criminals based in Russia are fuelling the rise in the amount of spam sent over the Internet, according to a leading opponent of junk mail. http://news.zdnet.co.uk/internet/security/0,39020375,39157120,00.htm - - - - - - - - - - Woman fights for new domain to protect children Three years ago, Mary Conyers was shocked and horrified when her granddaughter accidentally pulled up an a___t website on the Internet. ?She finished her homework and was going to look at Teen magazine and bam! there it was,? Conyers, the founder of Protect Every Child, said. A simple spelling error sent Conyers' granddaughter to this p_____graphic website featuring teenagers. At that moment, Conyers made a promise to her granddaughter that she's still fighting to keep. http://rdu.news14.com/content/headlines/?ArID=48769&SecID=2 - - - - - - - - - - Apple posts second Mac OS X vuln patch Update Apple has posted a second software update intended to fix a vulnerability that exploits the way Mac OS X handles URI links. We installed the update, Security Update 2004-06-07, on a Mac OS X 10.3.4 machine. After restarting the machine, we went straight to Unsanity's web site, the location of a pair of web pages that test the URI vulnerability. Neither tests was blocked by the update, details of which can be found here. http://www.wired.com/news/mac/0,2125,63756,00.html - - - - - - - - - - Microsoft releases monthly security patches Microsoft Corp. released software updates for versions of Windows XP and Windows Server 2003 and warned customers about a security vulnerability in a Windows component called IDirectPlay4, which is used to support multiplayer network games. http://security.itworld.com/4940/040608mssecurity/page_1.html http://zdnet.com.com/2100-1105-5228887.html http://news.com.com/Microsoft+patches+a+pair+of+flaws/2100-1002_3-5228887.html http://computerworld.com/securitytopics/security/story/0,10801,93728,00.html - - - - - - - - - - Symantec: New Virus Deletes All Files Security The virus that "deletes your whole hard drive" has been a staple in dozens of e-mail hoaxes that have circulated the Net in recent years. In the real world, such viruses are few and far between. According to Symantec, the new VBS.Pub is just such a beast. http://news.netcraft.com/archives/2004/06/08/symantec_new_virus_deletes_all_files.html Another Trojan on the attack http://news.zdnet.co.uk/internet/security/0,39020375,39157002,00.htm - - - - - - - - - - Cisco picks Trend to fight network worms Cisco and Trend Micro yesterday extended an existing security alliance with a deal to combine their respective technologies in the fight against network worms and computer viruses. Trend is among three AV companies who signed up to Cisco's Network Admission Control (NAC) program last year, a scheme designed to curtail the spread of computer worms across internal networks. http://www.theregister.co.uk/2004/06/08/cisco_trend_fight_worms/ http://www.newsfactor.com/story.xhtml?story_title=Cisco-Picks-Trend-To-Fight-Worms&story_id=24489 - - - - - - - - - - Intrusion-prevention start-up touts 'memory firewall' The growing speed at which malicious hackers can exploit new vulnerabilities is creating a need for intrusion-prevention technologies capable of proactively detecting and blocking attacks even before software fixes become available for them. With that need in mind, Determina Inc., a Redwood City, Calif.-based start-up being launched today, is introducing new technology that it claims offers a better way to head off attacks than other intrusion-prevention products. http://computerworld.com/securitytopics/security/story/0,10801,93701,00.html - - - - - - - - - - Michigan man pleads guilty to wireless hack into stores A Michigan man pleaded guilty on Friday to four counts of wire fraud and unauthorized access to a computer after he and two accomplices used a vulnerable wireless network at a Lowe's Companies Inc. store in Michigan to attempt to steal credit card numbers from the company's main computer systems in North Carolina and other Lowe's stores in the U.S. Brian Salcedo could face up to 18 years in prison for the crime, which the government claims could have caused more than $2.5 million in damages. http://computerworld.com/securitytopics/security/cybercrime/story/0,10801,93708,00.html http://www.theregister.co.uk/2004/06/07/us_wardriver_guilty_plea/ - - - - - - - - - - New virus cracks credit cards A new computer virus "Korgo" raging now in Europe, Asia and North America decodes numbers of credit cards used in online systems, an Austrian Internet service provider "Vienna Online" informed. Therein virus looks like its predecessor "Sasser" worm, which incurred huge damage to companies and individuals, ISP experts said. http://www.crime-research.org/news/07.06.2004/409/ - - - - - - - - - - UK law firms fall down on security One in 10 UK legal firms has suffered an IT security failure and one in 20 has lost a client because of it, a report claims. Research by NOP, commissioned by security VAR Evolution Systems, also found worryingly high levels of IT insecurity among the 100 legal practitioners it surveyed. http://www.vnunet.com/news/1155655 - - - - - - - - - Virus writers deploy bulk mail software Hackers have used spamming software to distribute thousands of copies of a new Trojan. Email filtering firm MessageLabs alone has intercepted more than 4,000 copies of the Demonize-T Trojan over the last 24 hours. Demonize-T is a multi-stage Trojan that uses an object data exploit in Internet Explorer (patch here) to download and execute an encoded visual basic script from a website. http://www.theregister.co.uk/2004/06/07/demonize_trojan/ - - - - - - - - - - CPU-based security for Windows XP, Red Hat Linux coming Microsoft Windows XP Service Pack 2 and the next version of Red Hat Enterprise Linux 3 will support new CPU-based security protections designed to stop incoming malicious executable code from being triggered. http://computerworld.com/securitytopics/security/story/0,10801,93712,00.html - - - - - - - - - - NIST keeps publishing One way to quantify the growth in importance of computer security work is to count the pages of security guidelines published by the National Institute of Standards and Technology in the past year. The total is 1,200 pages, said Ed Roback, chief of the Computer Security Division. Speaking June 4 in Washington, D.C., at the E-Gov Institute's Annual Government Solutions Forum, Roback said documents on topics as unremarkable sounding as security categorization often generate strong responses. http://www.fcw.com/fcw/articles/2004/0607/web-nist-06-07-04.asp - - - - - - - - - - Data theft detective work begins at the office Intellectual property and other sensitive consumer data are seeping out the doors of corporations at an alarming rate -- and the culprits aren't necessarily a cracker with a broadband connection holed up in his mom's basement, or a wiseguy who's Dumpster diving. Users nestled inside the enterprise firewall with an abundance of unmanaged privileges are most often to blame, according to a soon-to-be-released study conducted by the director of an identity theft program at Michigan State University. http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci968920,00.html Passwords can sit on hard disks for years http://www.newscientist.com/news/news.jsp?id=ns99995064 RSA focuses anew on the password problem http://computerworld.com/securitytopics/security/story/0,10801,93711,00.html - - - - - - - - - - The Deadly Duo: Spam and Viruses A small nugget of good news lies buried among the mountains of unsolicited commercial e-mail: the spam volume held steady from April to May, according to two leading e-mail processing firms. Brightmail's Probe Network found that spam leveled at 64 percent, while Postini measured the monthly volume unchanged at 78 percent. According to Brightmail's assessments, the last time the spam volume was unchanged was August 2003 when it maintained a 50 percent level. http://www.internetnews.com/stats/article.php/3364421 - - - - - - - - - - Where, Oh Where Is Windows XP SP2?: http://www.microsoft-watch.com/article2/0,1995,1611161,00.asp RC2 of XP expected any day... stay tuned.... UPDATE - Microsoft Offers Second Release Candidate for Windows XP SP2: http://www.eweek.com/article2/0,1759,1612473,00.asp Expected to be out shortly.... -- http://www.sbslinks.com/really.htm Tag: Budget air ticket. Tag: 159923
  - 18
    - creating a new sbs2000 domain Hi, I have an sbs2000 domain, and the setup of this domain is not right(lots of errors, misconfiguration), and the only solution is to format and create new sbs domain again. i have 24 clients in this domain and the clients operating systems varies between windows 98 and windows 2000 my question, how can i after configuring the new sbs domain to move user data from the old domain profile to the new domain profile those of you who have been there, any suggestions? any problems i should be aware of? any advice is highly appreciated. Thanks. Tag: Budget air ticket. Tag: 159922
  - 19
    - Iomega REV Drive Hi, I installed Iomega today on a SBS2000 latest SP & Patches and could NOT find the key (Eliot wrote)HKLM\software\microsoft\smallbusinessserver\backup - the smallbusinessserver does NOT Exist. I also cannot see the REV drive in MyComputer but can see it in Explorer. Using their backup program, it doesn't allow backup of network drives or mapped drives. I have a Windows 2000 Terminal Server connected to the network and the Iomega REV backup Program cannot see this server. Any assistance would be appreciated. Regards David Hellewell Tag: Budget air ticket. Tag: 159921
  - 20
    - how to access webmail from the internet I am sure there is a simple answer, but I am stuck. I can access webmail from the intranet site of my sbs2k3. What do I do to get to webmail or remote workplace from the internet? Thanks IT phytosan Tag: Budget air ticket. Tag: 159920
  - 21
    - SBS2003 remote workplace problems When trying to access the remote workplace link I am told that I should follow the instructions of the assistant, but no assitant appears. Instead I get an error on page Icon at the bottom of the window "Invalid procedure call or argument" Who can help? thanks IT PHYTOSAN Tag: Budget air ticket. Tag: 159916
  - 22
    - Correct IP config I have the hardest time figuring out how to setup my network ip's, DNS's and gateways to allow the clients to connect to the internet aswell as the company net. I have the following setup: 4 clients connecting to a wireless router to a SBS2003 server 1 remote client set up for VPN the SBS2003 server is connected to the internet through a separate networkcard so that all traffic flows through the internet Router IP: 192.168.2.1, subnet 255.255.255.0 no DHCS Server IP: 192.168.2.105 (internal) static public ip (external) DHCS enabled router at VPN client: 192.168.3.1 subnet 255.255.255.0 what is the correct setup for the 4 clients: IP(s) automatic or given? if given, what should it be? DNS(s) automatic or given? if given, what should it be? Gateway(s) automatic or given? if given, what should it be? what is the correct setup for the VPN client? IP(s) automatic or given? if given, what should it be? DNS(s) automatic or given? if given, what should it be? Gateway(s) automatic or given? if given, what should it be? what is the correct setup for the Server external card? Static public IP DNS automatic or those published by ISP? Gateway(s) automatic or that of DSL device? what is the correct setup for the VPN clients network connection IP(s) automatic or given? if given, what should it be? DNS(s) automatic or given? if given, what should it be? Gateway(s) automatic or given? if given, what should it be? thanks IT Phytosan Tag: Budget air ticket. Tag: 159915
  - 23
    - Internet Service Down Hi All: This morning our internet connections from our SBS server went south. I have checked the ISP connection and the DSL modem by using a laptop to connect to the internet through the DSL modem, service works fine. Our setup is as follows: SBS with 2 NIC's, router (Netgear), DSL modem (Actiontec). I have checked the IP addresses and nothing appears changed from last Friday when everything was running fine. I have even rerun the ICW hoping that would solve the problem but still cannot connect to the internet. I hope that someone can give me some direction to solve my problem. A second issue is that in our event log I am receiving Event ID errors 1126, and warning id 1655. I have read KD318170 and it refers to installing the latest service pack. I have installed SBS SP1a which should include the latest. Would a reinstall of SP1a solve the problem? Any help would be appreciated. I am sure that I have not been specific enough so will provide any additional nformation that may be needed. Thanks in advance Gerald P Tag: Budget air ticket. Tag: 159914
  - 24
    - Can't use rkill Hello I have some problems with rkill command. I have 2 computers in a workgroup called "home". I am trying to kill a proccess on a remote computer using the rkill command and i get the following errors : 1. rkill /install \\servername - Opening Service Control manager on \\servername access is denied 2. rkill /view \\servername - The RPC server is unavailable I tried everything I possibly could. Thanks for your help. Tag: Budget air ticket. Tag: 159903
  - 25
    - ISA and internal Webcam Hi everyone, I have a weird problem which I think is ISA-related... this is the scenario: SBS2k + ISA w/2 NICs WinXP Pro workstations (ISA firewall client + proxy settings) 1 Webcam (built-in webserver) connected directly to the switch inside the SBS Lan (and a static IP assigned). I can access the webcam perfectly from my laptop (which isn't part of the domain nor has the ISA client installed or proxy settings). However, all other workstations (which are configured to use ISA) can see the webcam but with many errors: pics don't load, links don't work and more importantly the ActiveX component is never even loaded to see the picture. I think it has to do with the ISA proxy since it might be blocking something and/or doesn't know where to look for the camera. I can pinpoint the problem because it still connects and some stuff does load (and some load after a reload, ect.). Any ideas/suggestions? -- Javier [SBS MVP] << SBS ROCKS!!! >> Tag: Budget air ticket. Tag: 159902
- Next
  - 1
    - Adding Windows Server 2K3 to SBS2K domain I have found some resources showing that it is possible to add a W2K3 server to our SBS2K domain, but I also read that each of the servers you add uses one of the SBS2K licenses. Is that correct? If I remember correctly you can have a max of 50 SBS2K licenses. Is that right? Also, when I add a W2K3 Server, I would license it per-seat, using the total number of seats purchased with the SBS2K server, right? Thanks! Tag: Budget air ticket. Tag: 159901
  - 2
    - Anyone installed the new ISA ISASP2.exe on SBS2000? I didn't hear any discussion on the issue so I thought I'd ask...Any surprises with this service pack? db Tag: Budget air ticket. Tag: 159894
  - 3
    - I would like to schedule defragmentation on the system volume. Hi I would like to schedule defragmentation on the system volume and other volumes C, D, E & F Can anybody advise how to go about this. Regards Barry Tag: Budget air ticket. Tag: 159889
  - 4
    - cannot mount media on ntbackup on sbs 2003 I have a Sony AITi130/S (wide SCSI) tape drive running on SBS 2003. It works fine with 3rd party software, but media will not mount using ntbackup. Usually I get an error saying "Backup device is not responding. Please check to make sure the device is on, cables are connected." I have checked cables and termination and I find no reason why it would work with 3rd party software but not ntbackup. Any suggestions? -- MTP Tag: Budget air ticket. Tag: 159888
  - 5
    - How to turn of DHCP Hello, We have an SBS2000server with one NIC and a DSL modem and a Zywall firewall. All the 12 work stations assign IP address automatically. Weve been experiencing some slowness with the network recently, and an engineer suggested that we assign a fixed IP address to each ws and remove DHCP from the server. Is removing DHCP as simple as deactivating the one scope that they have ? Or should we completely remove it ? Any help would be appreciated. Thanks, Tony Tag: Budget air ticket. Tag: 159887
  - 6
    - Firewall and SBS 2003 Does anyone know of a good firewall that can be configured through SBS 2003 ICW? I have a D-Link router on my home network and SBS 2003 says that it can configure it automatically, but then generates an error when trying to do so. Configuring it manually, I can get it to work just fine, but not sure if I have it configured in the most secure manner. This is my test server. At work, we have a Cisco 506e that SBS 2003 ICW says it can configure automaticaly, but then also generates an error. I do not know how to configure this firewall manually, though. This firewall, I inherited and I know it has not been updated in a couple years with OS releases and we don't even have a GUI interface to configure it. I'm sure there are newer firewalls on the market that provide just as secure protection, are much easier to configure and are probably configurable by SBS 2003 itself. Has anyone had success with any? I'm a networking novice. Just looking for decent intrusion protection, vpn and owa access. Thanks, John Tag: Budget air ticket. Tag: 159886
  - 7
    - Firewall and SBS 2003 Hello, I've been able to get SBS 2003 to work with all my remote access requirements working just fine on several test machines at home. The problem is that at work, I've inherited a Cisco PIX firewall 506e that I have no idea how to configure. This has been in place for several years with no updates installed on it. There is no GUI interface and I'm not at all familiar enough with Cisco firewalls to update or re-configure it to work with SBS 2003. (Previously, we had NT 4, with no remote access other than OWA configured). My question is, does anyone know of a good basic firewall that SBS can configure through the ICW that will work well with SBS using VPN and OWA. I have several users that need to connect through VPN but they have dynamic IP's so I'd like to allow VPN pass-through and use Windows Authentication to allow access. Is this a good solution for SBS 2003? Thanks, John Tag: Budget air ticket. Tag: 159885
  - 8
    - chip tuning Quer economizar ganhando Potência? Temos chip de conversão gasolina para álcool trazendo uma boa economia mensal. Para conversão a álcool veja exemplo de Economia: Veiculo: Fiat palio 1.0 8v ano 98 com 78.000 km Media feita com 1.500 km rodados entre cidade e estrada Gasolina:1500km consumo (10km/l)=150lts x r$1.85 = r$ 277,50 Álcool: 1500km consumo (7,5km/l) = 200lts x r$ 0,70 = r$ 140,00 Diferença (economia no bolso!) = r$ 137,50 Preço especial apenas para as 100 primeiras vendas. http://www.tmq.net/chipvix/index.html conversão gnv gasolina alcool gás natural potencia turbo aspirados carros automoveis "chip tuning" chip tuning ( Tag: Budget air ticket. Tag: 159882
  - 9
    - DHCP Updating DNS Hi All Should I allow DHCP to automatically update my DNS records? Everything is on the same box, SBS 2000. I'm no expert on DNS but it appears that the records are not updating/refreshing and after looking through hundreds of web pages, I stumbled upon the DHCP automatically updating DNS records and thought I might give that a try. Some of the errors I have been getting are. Event Type: Failure Audit Event Source: Security Event Category: Directory Service Access Event ID: 565 Date: 09/06/2004 Time: 15:00:06 User: COMP\COMP14$ Computer: COMPSERVER Description: Object Open: Object Server: DS Object Type: computer Object Name: CN=COMP14,CN=Computers,DC=comp,DC=internal New Handle ID: - Operation ID: {0,123849695} Process ID: 284 Primary User Name: COMPSERVER$ Primary Domain: COMP Primary Logon ID: (0x0,0x3E7) Client User Name: COMP14$ Client Domain: COMP Client Logon ID: (0x0,0x761CBB5) Accesses Write Property Privileges - Properties: Create Child Control Access Public Information servicePrincipalName Event Type: Failure Audit Event Source: Security Event Category: Directory Service Access Event ID: 565 Date: 10/06/2004 Time: 08:55:40 User: COMP\COMP17$ Computer: COMPSERVER Description: Object Open: Object Server: DS Object Type: dnsNode Object Name: DC=86,DC=100.168.192.in- addr.arpa,CN=MicrosoftDNS,CN=System,DC=comp,DC=internal New Handle ID: - Operation ID: {0,135282785} Process ID: 284 Primary User Name: COMPSERVER$ Primary Domain: COMP Primary Logon ID: (0x0,0x3E7) Client User Name: COMP17$ Client Domain: COMP Client Logon ID: (0x0,0x8104053) Accesses Write Self Privileges - Properties: Write Property %{00000000-0000-0000-0000-000000000000} --- dnsRecord ACCESS_SYS_SEC dNSTombstoned I havent actually had any issues from users but they are concerning me a little! thanks Mark Tag: Budget air ticket. Tag: 159875
  - 10
    - Terminal Service crashing Fax Service My client reports that accessing the server though the Terminal Services Client (in remote administration mode) several times a day will crash the fax service. Does anybody know why that would be happening? They are running SBS 2000 with service pack 4 on a Dell PowerEdge 2600 with a Brooktrout TruFax 200 faxboard. They have all the latest critical updates and device drivers. Tag: Budget air ticket. Tag: 159874
  - 11
    - Adding ISA to a current SBS2000 installation. Please can someone help. I need to add ISA to an existing SBS2000 installation. When I installed the system originally there was no need for ISA as we already have a firewall in place, however I now need to be able to limit net access for some employees and hence I now need to add it. I have found the setup program under disk 2 but is this the correct way to add it and am I likly to bork the server by doing this. If not is there another way of adding it short of a whole reinstall? Thnaks in advance Jez Tag: Budget air ticket. Tag: 159872
  - 12
    - Install SBS console I recently installed SBS 2000, and apparently the installation did not complete because I do not have the SBS console, and I need to add user licenses. Microsoft says to install the console, rerun setup and then selet consoles from the components option. If I rerun setup all I get is a message saying SBS is unable to upgrade this operating system. I never even get to the componenet reinstall. Help! Jim... Tag: Budget air ticket. Tag: 159870
  - 13
    - Symantec Corporate Edition 9.0 Antivirus Notification on SBS2000 Folks, With version 8.0 of Symantec Antivirus Corp Edition, System Center never showed any infections on our server. Now with version 9.0 about 4 times a day our server catches a virus (usually Netsky) with it's Real-time protection. Furthermore, I've experimented when sending an email from a client machine and witnessed briefly the email scanner popup on the server! We use our server as a shared drive for our in-house software apps. Our Antivirus and mail servers are on different machines. On a final note, the SBS2000 application log is filled every few days with tonnes of Symantec alerts. Version 8.0 never did this. I'd appreciate any suggestions about where to start. Plastic Man plastic_man1968@yahoo.dot.co.uk (remove spamtrap) Tag: Budget air ticket. Tag: 159867
  - 14
    - Trend patch for long virus pattern numbering Trend have released patches to enable their products to recognise longer virus pattern numbers (at present they are 3 digit) We have the previous incarnation of Trend suite, i.e. Scanmail 6.1; OSCE 5.5; ServerProtect 5.5 When I went to autoupdate OSCE 5.5 to 5.58, I followed the instructions to temporarily change the update URL, and then change it back (to an almost identical URL to the original). All seemed to go fine, apart from having to reboot to access the HTML management page from the server. The ServerProtect instructions also mention a change to that upate URL (which I did and whice seemed to update fine) but.... there is no mention of changing the URL back to the original or similar. I guess I'll have to contact Trend, but anyone know if this is correct or not? Don't want ServerProtect to not be updating the pattern files... Although I like Trend as a firm (their support is good and well-intentioned) and their products seem reliable and competively priced, their documentation sometimes seems like it has been badly translated from another language... Tag: Budget air ticket. Tag: 159864
  - 15
    - vpn ip issuing problem Hi I have just reinstalled my sbs2000 using the ip 10.0.0.2/255.255.255.0. I am now trying to vpn to a remote sbs 2000 with ip 192.168.16.2/255.255.255.0. The problem is that when I am connected, I get an address in the range 192.168.16.x from the remote dhcp but the subnet mask is 255.255.255.255!!! I then have problem in logging in to the terminal services on the remote sbs2000. Are these two connected? What can I do to fix this? Thanks Regards Tag: Budget air ticket. Tag: 159863
  - 16
    - Exchange Performance we have about 2 Gb of email stored in public folder. When we do searching in outlook, it is very slow. any method to improve the performance? Many thanks in advance Tag: Budget air ticket. Tag: 159860
  - 17
    - Move Pagefile.Sys Hi all. Server -> SBS 2000 I have 600 MB free space on C: drive. All the backups are running just fine. Could I move the PageFile.sys from C: drive to D:, without any problem? When I move it from C: to D:, SBS tells me that there will be no information for dumping. This situation would be temporary, because we are thinking in buying a new server. Thanks a lot in advance. Best regards, Joaquim. Tag: Budget air ticket. Tag: 159858
  - 18
    - Microsoft Office? Hi there, Does anyone know what the licence issues are with Microsoft Office 2000 OEM edition, on a corporate network? We are looking at buying about 7 more computers to add to our SBS domain, are we allowed to use the OEM version instead of the retail version on these new computers? Thanks in advance Andy C Tag: Budget air ticket. Tag: 159856
  - 19
    - SBS-2003 Slooow We have 2 x SBS-2003 (one English and one Dutch) on 2 different locations. Both Pentium IV-2.8 GHz and 512 Mb memory. One is for 2 users and the other for 10 users. With ADSL. The problem is that when the servers are just started they work fine, but in a few days sending e-mail is getting slower. Sending a Word document takes normally a few seconds, but after a few days it takes about one minut. Restarting the server solves this problem. Any ideas ? Marty We think that SBS-2003 is slower than SBS-2000, not only with sending e-mail. Can anyone agree with this ? Tag: Budget air ticket. Tag: 159854
  - 20
    - Security Failure - Is it a Concern??? Hi all Below is an error that I have been getting in my Security log and it appears for several machines when they log on. Is it something to be worried about?? Event Type: Failure Audit Event Source: Security Event Category: Directory Service Access Event ID: 565 Date: 09/06/2004 Time: 15:00:06 User: COMP\COMP14$ Computer: COMPSERVER Description: Object Open: Object Server: DS Object Type: computer Object Name: CN=COMP14,CN=Computers,DC=comp,DC=internal New Handle ID: - Operation ID: {0,123849695} Process ID: 284 Primary User Name: COMPSERVER$ Primary Domain: COMP Primary Logon ID: (0x0,0x3E7) Client User Name: COMP14$ Client Domain: COMP Client Logon ID: (0x0,0x761CBB5) Accesses Write Property Privileges - Properties: Create Child Control Access Public Information servicePrincipalName Thanks for your help Mark Tag: Budget air ticket. Tag: 159852
  - 21
    - Exchange Log Possible to commit exchange logs without doing backup? Tag: Budget air ticket. Tag: 159850
  - 22
    - Local Policy & Remote Desktop Connection Local Policy & Remote Desktop Connection Our Network is composed of a Windows 2000 SBS Server and all Workstations are running Windows 2000 OS ... Recently, we have purchased two workstations with Windows XP Professional and using a VPN connection, and then the Remote Desktop Connection the Windows XP Professional users can log to their Desktop with no problems when they are out-of-office ... I have upgraded a couple of workstations from Windows 2000 to Windows XP Professional ... Then tried to log remotely using a VPN connection and access the upgraded workstions using Remote Desktop Connection, but I get the following message when I try to log to the workstation: "The local policy does not permit you to logon interactively" When I logged as a local Administrator to that specific workstation, I found that under Administrative Tools, Local Security Policy, Local Policies, User Rights Assignment, Log on Locally everything is set correctly in terms of the Users and Groups which are allowed to access this machine (Administrator / Users / Everyone ... etc.) I have also checked the second workstation which I have upgraded to Windows XP Professional and the same problem presist ... Also, I have used NTRights.exe to force the "Log on Locally", but no success ... Kindly help me with that issue as I don't want to go through the route of clean installation of the Wondows XP Pro and all the applications ... Thank you in advance for your cooperation ... Reda Hanna Tag: Budget air ticket. Tag: 159849
  - 23
    - <<Small Biz Server News the week of June 13, 2004 >> Kevin's song of the week..... news://msnews.microsoft.com/u59UrcMUEHA.3332@tk2msftngp13.phx.gbl KB's of interest.... 834141 - FIX: IP address is revealed in the content-location field in the TCP header in IIS 6.0: http://support.microsoft.com/?kbid=834141 843073 - Non-English language reports contain English text after you install Service Pack 2 in ISA Server 2000: http://support.microsoft.com/?kbid=843073 837019 - Description of the Outlook 2003 hotfix package: March 17, 2004: http://support.microsoft.com/?kbid=837019 837365 - You cannot expand the public folders list in Exchange System Manager on a Windows Small Business Server 2003-based computer: http://support.microsoft.com/?kbid=837365 836413 - You receive an "unexpected error occurred" error message when you try to access resources on a Windows-based network from your Macintosh computer: http://support.microsoft.com/?kbid=836413 840685 - An event ID 1000 error message is logged to the application event log when you restart Windows Small Business Server 2003: http://support.microsoft.com/?kbid=840685 <<SMBnation announces Dr. Tom [Mr. ISA] Shinder and Brian Livingston as Keynoters http://www.smbnation.com/ >> Last week two security patches for Microsoft products - one for DirectX, one for CRM applications. Microsoft Security Bulletin MS04-016: Vulnerability in DirectPlay Could Allow Denial of Service (839643): http://www.microsoft.com/technet/security/Bulletin/MS04-016.mspx Microsoft Security Bulletin MS04-017: Vulnerability in Crystal Reports Web Viewer Could Allow Information Disclosure and Denial of Service (842689): http://www.microsoft.com/technet/security/Bulletin/MS04-017.mspx No patch for this one - take mediation at this time.... (1) HIGH: Internet Explorer Multiple VulnerabilitiesAffected: IE 6.0 and 6.0 SP1 Description: Fully patched versions of Internet Explorer reportedlycontain the following vulnerabilities that are being exploited in thewild to compromise client systems. (a) Internet Explorer successfullyprocesses a webserver response that redirects the location of a resourceto a file on the client system. Note that this file can be accessed inthe security context of the "Local Computer Zone". (b) Internet Explorercontains a cross-domain vulnerability that can be triggered whenhandling a frame, and a "modal dialog box" that is invoked from theframe. These vulnerabilities can be exploited by a malicious website toexecute arbitrary code on a client system. The technical details and theexploits have been publicly posted.Status: Microsoft not confirmed, no patches available.Council Site Actions: Most of the reporting council sites are awaitingthe vendor patches. Some sites plan to roll out the patch during thenormal system update cycle and others plan to expedite the rollout.Several sites have already notified their desktop support teams to beaware of the problem.Referencesosting by Rafel Ivgi http://archives.neohapsis.com/archives/fulldisclosure/2004-06/0031.html Analysis by Jelmer CERT Advisoryhttp://www.kb.cert.org/vuls/id/713878 Modal Dialog Box Referencehttp://msdn.microsoft.com/library/default.asp?url=/workshop/author/dhtml/reference/methods/showmodaldialog.asp SecurityFocus BIDshttp://www.securityfocus.com/bid/10473 http://www.securityfocus.com/bid/10472 UPDATE - YES IT WORKS JUST FINE ON XP WITH IE6 and even works like a champ on XP sp2] So I just kicked my workstation at the office and the workstation at home's Internet explorer to ?high security? settings. What that means is that I've shut down the scripting and active X to be automatically blocked at all times. Then if I have a web site that I really trust and know if an OK site, I add it to ?my trusted site? list. Now this normally is a pain and a bother.... tools, options, security, internet zone, add sites, blah blah... way way way too cumbersome. Well not anymore! My MVP buddies showed me this gem -- http://www.microsoft.com/windows/ie/previous/webaccess/pwrtwks.mspx This little IE addition adds a quick shortcut under ?Tools? for ?add to trusted sites?. I just did this to a couple of people at the office and here at home and showed them all they have to do when they get to a web site that they really ?need? to have working [like a business site] they can add the site to the trusted zone and hit ?refresh? and voila. Very nice. Very much safer out here. I've also adjusted my "trusted zone" to not be "low" and instead is now "medium" so it prompts me instead of automatically scripting. And add sites to the trusted zone SPARINGLY. **************************************************************** (2) MODERATE: Oracle E-Business Suite SQL Injection VulnerabilitiesAffected: Oracle E-Business Suite versions 11i, 11.5.1 to 11.5.8Oracle Applications version 11.0Description: Oracle E-Business suite offers a set of applications toautomate business processes such as marketing, customer services,supply-chain management etc. The pertinent business information istypically stored in a single database, and accessed via the webfront-end offered by the E-Business suite applications. This suitecontains multiple SQL injection vulnerabilities. These flaws can beexploited via malicious HTTP requests to execute arbitrary SQLstatements and procedures against the back-end database, possiblyresulting in the compromise of the entire database. Note that theInternet facing web servers hosting the E-Business suite applicationsface the maximum risk. Very limited technical details regarding how toexploit the flaws have been posted.Status: Vendor confirmed, updates available.Council Site Actions: Only one of the reporting council sites is usingthe affected software; however their Oracle servers are internal facingonly. They plan to install the patches after regression testing.Referencesosting by Integrigy Securityhttp://archives.neohapsis.com/archives/vulnwatch/2004-q2/0032.html Oracle Security Advisoryhttp://otn.oracle.com/deploy/security/pdf/2004alert67.pdf Oracle E-Business Suite Homepagehttp://www.oracle.com/applications/index.html SecurityFocus BIDhttp://www.securityfocus.com/bid/10465 California identity theft law remains low-key Nearly a year after California's landmark SB 1386 identity theft law went into effect, there has been none of the troublesome litigation that had been predicted to come in its wake. But the law has raised overall corporate awareness of the need to have strong privacy protections in place, legal experts said last week. http://computerworld.com/securitytopics/security/privacy/story/0,10801,93667,00.htmlPreventing identity theft focus of regional meetinghttp://www.usatoday.com/tech/news/2004-06-08-id-theft_x.htm Security gaps in Dutch airline and government wireless networksDuring its special on computer attacks on June 3, the Dutch current-affairs programme, Zembla, demonstrated to television viewers just how easy it is to break into wi-fi networks and gain access to confidential information. The networks found to be lacking in security were operated by the Dutch airline, KLM, and the Ministry for Public Works and Water Management (Rijkswaterstaat). http://www.dmeurope.com/default.asp?ArticleID=1984 GAO points to airport security holes http://www.fcw.com/fcw/articles/2004/0607/web-gaotsa-06-08-04.asp - - - - - - - - - - Russia and China 'behind current spam deluge' As hardcore criminals step up their spamming, experts believe that nine out of 10 of all emails may soon be unsolicited junk. Organised criminals based in Russia are fuelling the rise in the amount of spam sent over the Internet, according to a leading opponent of junk mail. http://news.zdnet.co.uk/internet/security/0,39020375,39157120,00.htm - - - - - - - - - - Woman fights for new domain to protect children Three years ago, Mary Conyers was shocked and horrified when her granddaughter accidentally pulled up an adult website on the Internet. ?She finished her homework and was going to look at Teen magazine and bam! there it was,? Conyers, the founder of Protect Every Child, said. A simple spelling error sent Conyers' granddaughter to this pornographic website featuring teenagers. At that moment, Conyers made a promise to her granddaughter that she's still fighting to keep. http://rdu.news14.com/content/headlines/?ArID=48769&SecID=2 - - - - - - - - - - Apple posts second Mac OS X vuln patch Update Apple has posted a second software update intended to fix a vulnerability that exploits the way Mac OS X handles URI links. We installed the update, Security Update 2004-06-07, on a Mac OS X 10.3.4 machine. After restarting the machine, we went straight to Unsanity's web site, the location of a pair of web pages that test the URI vulnerability. Neither tests was blocked by the update, details of which can be found here. http://www.wired.com/news/mac/0,2125,63756,00.html - - - - - - - - - - Microsoft releases monthly security patches Microsoft Corp. released software updates for versions of Windows XP and Windows Server 2003 and warned customers about a security vulnerability in a Windows component called IDirectPlay4, which is used to support multiplayer network games. http://security.itworld.com/4940/040608mssecurity/page_1.html http://zdnet.com.com/2100-1105-5228887.html http://news.com.com/Microsoft+patches+a+pair+of+flaws/2100-1002_3-5228887.html http://computerworld.com/securitytopics/security/story/0,10801,93728,00.html - - - - - - - - - - Symantec: New Virus Deletes All Files Security The virus that "deletes your whole hard drive" has been a staple in dozens of e-mail hoaxes that have circulated the Net in recent years. In the real world, such viruses are few and far between. According to Symantec, the new VBS.Pub is just such a beast. http://news.netcraft.com/archives/2004/06/08/symantec_new_virus_deletes_all_files.html Another Trojan on the attack http://news.zdnet.co.uk/internet/security/0,39020375,39157002,00.htm - - - - - - - - - - Cisco picks Trend to fight network worms Cisco and Trend Micro yesterday extended an existing security alliance with a deal to combine their respective technologies in the fight against network worms and computer viruses. Trend is among three AV companies who signed up to Cisco's Network Admission Control (NAC) program last year, a scheme designed to curtail the spread of computer worms across internal networks. http://www.theregister.co.uk/2004/06/08/cisco_trend_fight_worms/ http://www.newsfactor.com/story.xhtml?story_title=Cisco-Picks-Trend-To-Fight-Worms&story_id=24489 - - - - - - - - - - Intrusion-prevention start-up touts 'memory firewall' The growing speed at which malicious hackers can exploit new vulnerabilities is creating a need for intrusion-prevention technologies capable of proactively detecting and blocking attacks even before software fixes become available for them. With that need in mind, Determina Inc., a Redwood City, Calif.-based start-up being launched today, is introducing new technology that it claims offers a better way to head off attacks than other intrusion-prevention products. http://computerworld.com/securitytopics/security/story/0,10801,93701,00.html - - - - - - - - - - Michigan man pleads guilty to wireless hack into stores A Michigan man pleaded guilty on Friday to four counts of wire fraud and unauthorized access to a computer after he and two accomplices used a vulnerable wireless network at a Lowe's Companies Inc. store in Michigan to attempt to steal credit card numbers from the company's main computer systems in North Carolina and other Lowe's stores in the U.S. Brian Salcedo could face up to 18 years in prison for the crime, which the government claims could have caused more than $2.5 million in damages. http://computerworld.com/securitytopics/security/cybercrime/story/0,10801,93708,00.html http://www.theregister.co.uk/2004/06/07/us_wardriver_guilty_plea/ - - - - - - - - - - New virus cracks credit cards A new computer virus "Korgo" raging now in Europe, Asia and North America decodes numbers of credit cards used in online systems, an Austrian Internet service provider "Vienna Online" informed. Therein virus looks like its predecessor "Sasser" worm, which incurred huge damage to companies and individuals, ISP experts said. http://www.crime-research.org/news/07.06.2004/409/ - - - - - - - - - - UK law firms fall down on security One in 10 UK legal firms has suffered an IT security failure and one in 20 has lost a client because of it, a report claims. Research by NOP, commissioned by security VAR Evolution Systems, also found worryingly high levels of IT insecurity among the 100 legal practitioners it surveyed. http://www.vnunet.com/news/1155655 - - - - - - - - - Virus writers deploy bulk mail software Hackers have used spamming software to distribute thousands of copies of a new Trojan. Email filtering firm MessageLabs alone has intercepted more than 4,000 copies of the Demonize-T Trojan over the last 24 hours. Demonize-T is a multi-stage Trojan that uses an object data exploit in Internet Explorer (patch here) to download and execute an encoded visual basic script from a website. http://www.theregister.co.uk/2004/06/07/demonize_trojan/ - - - - - - - - - - CPU-based security for Windows XP, Red Hat Linux coming Microsoft Windows XP Service Pack 2 and the next version of Red Hat Enterprise Linux 3 will support new CPU-based security protections designed to stop incoming malicious executable code from being triggered. http://computerworld.com/securitytopics/security/story/0,10801,93712,00.html - - - - - - - - - - NIST keeps publishing One way to quantify the growth in importance of computer security work is to count the pages of security guidelines published by the National Institute of Standards and Technology in the past year. The total is 1,200 pages, said Ed Roback, chief of the Computer Security Division. Speaking June 4 in Washington, D.C., at the E-Gov Institute's Annual Government Solutions Forum, Roback said documents on topics as unremarkable sounding as security categorization often generate strong responses. http://www.fcw.com/fcw/articles/2004/0607/web-nist-06-07-04.asp - - - - - - - - - - Data theft detective work begins at the office Intellectual property and other sensitive consumer data are seeping out the doors of corporations at an alarming rate -- and the culprits aren't necessarily a cracker with a broadband connection holed up in his mom's basement, or a wiseguy who's Dumpster diving. Users nestled inside the enterprise firewall with an abundance of unmanaged privileges are most often to blame, according to a soon-to-be-released study conducted by the director of an identity theft program at Michigan State University. http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci968920,00.html Passwords can sit on hard disks for years http://www.newscientist.com/news/news.jsp?id=ns99995064 RSA focuses anew on the password problem http://computerworld.com/securitytopics/security/story/0,10801,93711,00.html - - - - - - - - - - The Deadly Duo: Spam and Viruses A small nugget of good news lies buried among the mountains of unsolicited commercial e-mail: the spam volume held steady from April to May, according to two leading e-mail processing firms. Brightmail's Probe Network found that spam leveled at 64 percent, while Postini measured the monthly volume unchanged at 78 percent. According to Brightmail's assessments, the last time the spam volume was unchanged was August 2003 when it maintained a 50 percent level. http://www.internetnews.com/stats/article.php/3364421 - - - - - - - - - - Where, Oh Where Is Windows XP SP2?: http://www.microsoft-watch.com/article2/0,1995,1611161,00.asp RC2 of XP expected any day... stay tuned.... -- http://www.sbslinks.com/really.htm Tag: Budget air ticket. Tag: 159847
  - 24
    - User Policy Hi I have SBS 2000 Domain controller with windows 2000 pro and windows xp pro clients. I have assigned a group policy for all the users not to access the network properties i.e. the users cannot change the ip address etc. in their systems this is working in windows 2000 clients but in windows xp clients this is not working and in the event log i am getting the error. The error is: Event Type: Error Event Source: Userenv Event Category: None Event ID: 1000 User: NT AUTHORITY\SYSTEM Computer: SLDN220IN Description: The Group Policy client-side extension Security was passed flags (17) and returned a failure status code of (1332). what could be the problem. Please some one help me on this query Thanks Vinod Tag: Budget air ticket. Tag: 159846
  - 25
    - Remote Access I used to have Remote access to my SBS 2000. But since I installed the service pack 1 no one can log on to the server remotely? Can some one please help me to fix this problem? Thanks Tag: Budget air ticket. Tag: 159844

mail@hkrnet.org

Top