User web browsing issue, W2K client

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ smallbiz
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
  - 1
    - VERY Useful SBS2000 info Been happy with our SBS2000 SP1 set up for years now finally got around to deleting the 600MB or so in the NT/Temp folder - sure there was some files that cound not be deleted as they were in use but I got rid of most of it. The server seems to be performing noticably faster now AND those PERFLIB errors that could come at any time have stopped - Over the years I knew exactly how to bring up Perflib hell - but no more !!! Thought you guys would like to know this Neil Tag: User web browsing issue, W2K client Tag: 162915
  - 2
    - Outlook AutoArchive run amok... Hey All: Weird issue on one workstation - the AutoArchive feature on one workstation refuses to stay off. And, get this, it only seems to wake up to archive the "journal". It's Outlook 2002. MS KB came up blank. Any ideas? -db- Tag: User web browsing issue, W2K client Tag: 162890
  - 3
    - "Cannot find server or DNS Error" - webmail Hi All, Has anyone run across this before ? I have a client that has XP, ME, and 98 boxes. On ONLY the XP boxes, they intermittantly get the above message when use a web-based email. ( Comcast, Webmail, ...) Any hints on where I should start looking ? Thanks Tag: User web browsing issue, W2K client Tag: 162880
  - 4
    - Serious SBS issues Firstly, I know this isn't the SBS 2003 group, but I am under pressure big time here and don't have time to use other news servers at the moment. A customer has SBS2003 Premium. Running on a high spec IBM server. We rebooted because of backup problems and upon logging in, and the desktop coming up, I get the following message: mmc.exe - Unable to locate component (red X) This application has failed to start because MFC42u.dll was not found. Reinstalling the application may fix this problem. Because of this, I can't get into things like the event viewer. Other apps seem to be OK. Thanks in advance Robbie Niblock Tag: User web browsing issue, W2K client Tag: 162878
  - 5
    - How to find your DNS Registrar... Is there a website that you can go to that will list the registrar of your domain and the spoecific information regarding your domain i.e. who is the contact? Thanks, Brad Tag: User web browsing issue, W2K client Tag: 162871
  - 6
    - Spam Relay Problem - what else can I do? Please Help. Hi folks, I haven't had to deal with spam relays like this before and am really getting bombarded. Here is the scoop: SBS 2000 w/ ISA on public IP Server was already defined to not relay I unticked check box so that even authenticated users can't relay I followed MS KB article on configuring SBS for non relay, purging queues and deleting bad mail. I only had a few hundred emails stuck in queues, but I'm a little upset that they even got there. So after all of this work last night, I remote in and check the queues and there is an smtp connector in there for the usbank scam. I enumerated it and deleted it. Later on this morning, there are smtp connectors for yahoo and our local roaddunner cfl.rr.com. Is this anyway related to webmail usage? Should I ever see any more smtp connectors than the default four that are always there? Does anybody know the default nature of the relay process in exchange? If everything is configured correctly, am I going to temporarily see a relay in the queues before it is nixed by policy? Is it possible that a user's computer is infected and that is why we are having this problem? All computers are running updated AV. I also turned up the logging as defined in the KB articles and I'm getting some events that: EXPS is temporarily unable to provide protocol security with "matrix". "CSessionContext::OnEXPSInNegotiate" called "HrServerNegotiateAuth" which failed with error code 0x8007052e ( y:\transmt\src\smtpsink\exps\expslib\context.cpp@1462 ). Thanks for any insight and help. I'm not sure where to take it from here. Steve Tag: User web browsing issue, W2K client Tag: 162858
  - 7
    - Terminal Services License General question does anybody know whether you get any licences for Terminal Services with a standard install of SBS 2000 or do need t purchase them seperatly Tag: User web browsing issue, W2K client Tag: 162855
  - 8
    - Dumb question - how long is the SBS 2003 demo? I can't seem to find this anywhere. Not that it is a huge deal but we are considering upgrading SBS 2000 to 2003 and I would like some time to play with 2003 and I can't seem to find how long the demo lasts and if there are any restrictions on functionality. MS site for ordering demo just states it is a "limited version" of SBS. Thanks Tony Tag: User web browsing issue, W2K client Tag: 162853
  - 9
    - Problem with Admin permissions MMC won't open - erro message says "Cannot open empty document". No admin tools will open - "MMC cannot open the selected file". Some software won't install - Admin permissions required although I am logged in as Admin. My guess is that permissions were changed and now I can't open the users or policies to revert back to default permissions. Running Win2k Small Business Edition and badly stuck. Help much appreciated. Tag: User web browsing issue, W2K client Tag: 162845
  - 10
    - SBS console warning Hi, I have a warning from the administrator console on the SBS 2000. Doesn't know what it means. Anyone can help? I'll let you know the details. Tks. PS. please email me if you post in the newsgroup, I don't come back here to check often. Tag: User web browsing issue, W2K client Tag: 162842
  - 11
    - Automated backup to 4mm DDs Tape - NTBackup.exe Hi, I run a scheduled backup off the SBS to a file on disk every evening, this seems to runs fine. However I have never succesfully managed to get a scheduled backup to run from the file to a tape. When the file to tape job starts it complains about the media in the tape unit. When using the Backup Wizard to set the job up I tell it to overwrite the media and the name of the media but it always complains that it is not the correct tape. What do I need to do to get this file to tape backup to run every morning automatically without NTBackup complaining? Regards, Ken. Tag: User web browsing issue, W2K client Tag: 162841
  - 12
    - Application Log Full Message Hi, I keep getting the application log full message popping up on a regular basis. It fills up with lots of information messages, mainly POP3 information messages. I have altered the Event log Group Policy for this log so that it will overwrite as required and I have used the property settings of the application log itself to filter out information messages - all to no avail, the message still keeps popping up saying the log is full, and it is with POP3 information messages? Any ideas? Regards, Ken. Tag: User web browsing issue, W2K client Tag: 162840
  - 13
    - SBS SP1a I am trying to install SBS 2000 SP1a from CD. I had previously installed the individual components (e.g. EXCH SP3) but am trying to install SP1a from CD to get the Outlook update. When i run the update it returns error: Microsoft Small Business Server 2000 Service Pack 1 - Error 1722 There is a problem with this Windows Installer pckage. A program run as part of the setup did not finish as expected. Contact your support personnel or package vendor. This appears both on screen and also logged in the Event Viewer. I have tried various fixes including KB326929 plus a recommendation to uninstall Microsoft Office and reinstall from the Sp1a CD. No go.. Does anyone have an idea or reason why this is happening? It won't even let me reinstall Outlook from an original Office 2000 CD. Belinda Tag: User web browsing issue, W2K client Tag: 162838
  - 14
    - fax machine on the network? Hello Does anyone have any experience of having a fax-copy-printer machine (with its own IP) on a SBS 2000 network? I am wondering what the pros and cons are re above and having a fax modem attached to the server.... Cheers Geoff Tag: User web browsing issue, W2K client Tag: 162824
  - 15
    - Exchange Server Vs POP3 We are trying to implement a dual heading of email access where the clients recover AND send their email using a remote POP box. We are using .OST files rather than .PST because we need Exchange Server to hold a mirror of their emails. All works fine except if you email another client of the Exchange server in which case the email is not sent out to their POP box but retained by Exchange Server internally. The trouble is that the client may be working off-site and expects all their email to be in the POP box. What settings do we need to change to force Exchange Server to leave outbound emails alone and let them go outside to the POP box in all cases? Tag: User web browsing issue, W2K client Tag: 162813
  - 16
    - Funny exchange behavior I had the following behavior from my sbs server Setup SBS 2000 ADSL fixed IP Router Linksys BEFSR11 Symptom: very slow response from outlook when checking mails other than plain text messages. While checking the behavior, I noticed that I could not connect to the internet neither from the clients nor from the server. I decided to reset the router, and presto all the problems were gone. Could somebody explain to me this. Maybe this is a bigger issue than reseting the router. BTW the last time that I had to reset the router was 2 months ago. The reason was that I could not VPN to the server from my home. Regards Miguel Sánchez Tag: User web browsing issue, W2K client Tag: 162812
  - 17
    - Move shared folders Is there a wizard in SBS2K to move the location of the users & company shared folders like there was in 4.5? If so, where is it? If not, how is it done? Thanks Stewart Tag: User web browsing issue, W2K client Tag: 162809
  - 18
    - Adding a second processor to Windows 2000 w/SBS2000 Does anyone have any experience with adding a second processor to a Windows 2000 server? I'm hoping to replace a single 733Mhz processor with 2 x 933Mhz processors. I know that I need to add multiple processor support in Device Manager but I'm just wondering if anyone has had any bad experiences? Tag: User web browsing issue, W2K client Tag: 162808
  - 19
    - Adding a second processor to Windows 2000 w/SBS 2000 Tag: User web browsing issue, W2K client Tag: 162807
  - 20
    - Linking two SBS offices? I was wondering if anyone knows of any good info on linking two remote offices, each running SBS. We're planning on opening a new office and using SBS2003 on a new server. Our current office uses SBS2K, and all is fine so we have no plans to upgrade this installation. Anyway, I don't know what the best way to manage these two servers is to provide as "seamless" an integration as possible (i.e. can 1 exchange server handle all the email? Can the two servers be VPN'ed to each other to share access to each other's resources, etc.) Thanks! Darrin Tag: User web browsing issue, W2K client Tag: 162804
  - 21
    - Help: Spam problem with Exchange! We were told by our ISP that we are sending SPAM emails and we were given an example email that we sent. When I traced that example SPAM email under Exchange Message Tracking Center, it is shown as From: xxx@africamail.com To: a list of email addresses including us. The Event is shown as: SMTP: Message Submitted to Advanced Queuing SMTP: Started Message Submission to Advanced Queue SMTP: Message Submitted to Categorizer SMTP: Started Outbound Transfer of Message --- My question is if the message is from from someone (Spam) to us why it is shown as "SMTP: Started Outbound Transfer of Message"? i.e we are sending out this Spam again. Is there somewhere in the Exchange (Windows 2000 SBS) can prevent this happen? Many thanks Leigh Tag: User web browsing issue, W2K client Tag: 162797
  - 22
    - Internet Usage - immediate view of users Hi Is there any way I can check at any one moment in time who is connected to the Internet? I have ISA monitoring set up, but that just produces a daily report. Can I get this information in real time? (SBS2K, ISA, Exchange all patched up) Thanks Anon Tag: User web browsing issue, W2K client Tag: 162795
  - 23
    - SBS 2000, Exchange won't allow me to change primary account We've got an SBS 2k setup and have several email addresses (abc.org, abc.com, abc.co.uk, etc.) for each client. SBS was set up using the abc.org setup with the others as secondary addresses for each user. All mail can be received on any email address so that side of things is working fine. However, we'd rather have the primary to be abc.com. Unfortunately, I can no longer seem to be able to select a different 'Primary' account. The option to change is there and the dialog boxes allow me to go through the procedure and appears to have succeeded at the end of the process but if I click back into the dialog box, I see that everything is back the way it was. This is driving me nuts. There are no error messages in the event viewer. Everything appears to be running fine except this. Please help, ------------------------------------------------------------- Dale Walker London Techno Events Saiko! dale@sorted.org london@sorted.org saiko@sorted.org London, UK london.sorted.org saiko.sorted.org Tag: User web browsing issue, W2K client Tag: 162791
  - 24
    - MAPI Provider failed error in Exchange 2000 I'm running Exchange 2000 in SBS and we had a power failure last night. Everything seems to have come back up okay apart from Exchange which is giving me errors in Event Viewer Event Type: Error Event Source: MSExchangeSA Event Category: MAPI Session Event ID: 9175 Date: 10/08/04 Time: 09:43:53 User: N/A Computer: NTSERV1 Description: The MAPI call 'OpenMsgStore' failed with the following error: The Microsoft Exchange Server computer is not available. Either there are network problems or the Microsoft Exchange Server computer is down for maintenance. The MAPI provider failed. Microsoft Exchange Server Information Store ID no: 8004011d-0526-00000000 For more information, click http://www.microsoft.com/contentredirect.asp. I really hope this doesnt need to be restored from a backup because we havent had a succesful one for over a week now! Tag: User web browsing issue, W2K client Tag: 162785
  - 25
    - Help with XCOPY script This is a multi-part message in MIME format. ------=_NextPart_000_000A_01C47E67.CC3A7190 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable i want to use this command to automate copying my Favorites from one = computer to another. XCOPY "\\computer1\c$\Documents and Settings\user1\Favorites" = "c:\Documents and Settings\user\Favorites" /E /H /I /Q What switch tells the batch file to automatically respond with "A" for = ALL for accepting the Overwrite request? *paul* ------=_NextPart_000_000A_01C47E67.CC3A7190 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1458" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2>i want to use this command to automate = copying my=20 Favorites from one computer to another.</FONT></DIV> <DIV><FONT face=3DArial size=3D2>XCOPY "<A=20 href=3D"file://\\computer1\c$\Documents">\\computer1\c$\Documents</A> = and=20 Settings\user1\Favorites" "c:\Documents and Settings\user\Favorites" /E = /H /I=20 /Q</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>What switch tells the batch file to = automatically=20 respond with "A" for ALL for accepting the Overwrite = request?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>*paul*</FONT></DIV></BODY></HTML> ------=_NextPart_000_000A_01C47E67.CC3A7190-- Tag: User web browsing issue, W2K client Tag: 162783
- Next
  - 1
    - Exchange in SBS 2000 I have an email that a user has been trying to send to the UK. (We are located in Australia). It keeps coming back with message being delayed delivery. What does this mean? We have attempted to send this email a few times with no outcome. It sits in the Queue as Active but it doesn't look like it is doing anything. Can anyone help me with this please? Thanks Mil Tag: User web browsing issue, W2K client Tag: 162773
  - 2
    - Command line diction for rebooting a WIN-XP computer... This is a multi-part message in MIME format. ------=_NextPart_000_0008_01C47E33.CE70B020 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable What's the command for gracefully shutting down and rebooting a computer = from from the command line? * paul * ------=_NextPart_000_0008_01C47E33.CE70B020 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2800.1458" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2>What's the command=20 for gracefully shutting down and rebooting a computer from = from the=20 command line?</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>* paul *</FONT></DIV></BODY></HTML> ------=_NextPart_000_0008_01C47E33.CE70B020-- Tag: User web browsing issue, W2K client Tag: 162772
  - 3
    - Virus Question We seem to be getting alot of virus emails which are not caught by symantec. Most of the subject lines are blank, which I am now blocking. Most of the messages/attachments in the email seem to contail the word price. Ayone else getting these and/or is this a new variant? Eddie Tag: User web browsing issue, W2K client Tag: 162759
  - 4
    - <<<< XP SP2 network install package>>> This installation package is intended for IT professionals and developers downloading and installing on multiple computers on a network. If you're updating just one computer, please visit http://www.microsoft.com/protect. http://www.microsoft.com/downloads/details.aspx?familyid=049c9dbe-3b8e-4f30-8245-9e368d3cdb5a -- http://www.sbslinks.com/really.htm Tag: User web browsing issue, W2K client Tag: 162754
  - 5
    - MS Mobile Information Server on SBS2K Are there any web resources available that can help a me learn / install / configure / use MMIS in an SBS2K environment? TIA Tag: User web browsing issue, W2K client Tag: 162749
  - 6
    - Service Packs Should I install SP4 for Windows 2000 server? Older versions of SBS required special updates. What about service packs for the individual programs (exchange, etc.) Tag: User web browsing issue, W2K client Tag: 162746
  - 7
    - OWA greetings all I am trying to setup OWA , but apperently it sets up automatically with SBS 2000 but Ican only accessit from the intranet. Is their something I need to do for internet access. Cash Tag: User web browsing issue, W2K client Tag: 162743
  - 8
    - When SBS 2000 DSRM password is definded The SBS 2000 DSRM is defined during install? A customer have an SBS 2000 domain, and the administrator leaves the company and nobody knows the DSRM password. The DSRM password was defined on SBS 2000 install? Can be discovered by tools like L0pht, or renaming the cmd.exe do default screen saver to open a command prompt, so i can change it? Tag: User web browsing issue, W2K client Tag: 162742
  - 9
    - Reinstall W2K or SBS2000 as 'in-place' upgrade? I recently attempted to transfer an image of W2K SBS2000 from a Dell Poweredge 2400 with a single processor to another Poweredge 2400 which had a dual processor. In the original build I had a 8Gb disk which was partitioned into C and D drives and a 16Gb E drive which was running Exchange and SQL. As C and D drive were quite full I decided to add another 8Gb drive to the new server and image C and D onto seperate physical drives. Rather than image the E drive - I just physically moved it over from one server to the other. At first it seemed to have gone ok. I had to install multi processor support for the dual processor, along with adding page file space (Windows reported that it had to create a temp page file) However, it just seems really 'buggy' now. The first few times I restarted the server it would take 15-20 minutes to present me with the login prompt and then a further 5 minutes of a blank screen after I logged in. It's not as though I'm getting loads of BSOD or there is anything in the event log I can go off. It just doesnt seem right. Various things seem amis - for example I can't start Network and Dial-Up Connections sometimes, but other times I can. I would like to know if performing an in-place upgrade of Windows 2000 would help or indeed if I could do SBS2000 this way too? Tag: User web browsing issue, W2K client Tag: 162737
  - 10
    - << SBS News of the Week August 8, 2004>> The BIG NEWS XP sp2 released to manufacturing Channel 9 gives a demo of XP sp2 http://channel9.msdn.com/ShowPost.aspx?PostID=9328 ------------------------------ What's the BIG news for SBSers? We can enable the firewall on those SP2s "INSIDE" the network. SBSized info for XP sp2: http://msmvps.com/bradley/archive/2004/08/07/11400.aspx Why would we want this? Defense in depth. Yes you already have ISA and RRAS firewall on the outside but you are a bit "squishy" on the inside. This helps to limit those ports that you have exposed even internally. ----------------------------- We need two patches to enable the firewall in SBS 2k3 http://www.microsoft.com/downloads/details.aspx?familyid=d70097c2-4317-40e0-b7da-feb52c6b6386 Then you need this which WILL BE ON the download site [but just not yet ... be patient.. just make sure you dont' install the SBS gpo patch until you have ONE machine on XPsp2 842933 - "The following entry in the [strings] section is too long and has been truncated" error message when you try to modify or to view GPOs in Windows Server 2003, Windows XP, or Windows 2000: http://support.microsoft.com/?kbid=842933 ------------------------------ Kevin's song of the week news://msnews.microsoft.com/#VR8MiWfEHA.2468@TK2MSFTNGP12.phx.gbl ------------------------------ Chad shares a resolution to the OWA timeout issue news://msnews.microsoft.com/#1ODazcfEHA.1356@TK2MSFTNGP09.phx.gbl --------------------------- Michael Jenkin shares his Malware cleaner tool info Spyware is getting bad.....: http://msmvps.com/bradley/archive/2004/08/08/11469.aspx -------------------------- SMBnation is COMING UP FAST FOLKS!!!! http://www.smbnation.com --------------------------- 883786 - Support WebCast: Deploying and licensing Microsoft Windows Small Business Server 2003: http://support.microsoft.com/default.aspx?scid=kb;en-us;883786 Tuesday, August 17, 2004: 2:00 PM Pacific time (Greenwich mean time - 7 hours) Are you thinking about deploying your first server? Are you upgrading to Microsoft Windows Small Business Server 2003? This Support WebCast talks about Windows Small Business Server 2003, an integrated, easy-to-use, affordable network solution for small businesses. In this session, you will learn how to select the right technology to meet your business requirements. Learn how to avoid common mistakes when implementing a first server or upgrading to Windows Small Business Server 2003. Hear about tips and tricks for easily deploying Small Business Server 2003. Hear the answers to frequently asked questions about licensing, product features, and more. ---------------------------------------- Want SBS whitepapers? Here's a listing of recent whitepapers on the Microsoft site. http://msmvps.com/bradley/archive/2004/08/08/11450.aspx Migrating from a Peer-to-Peer Network to a Windows Small Business Server 2003 Network Deploying Windows 2000 Server Terminal Server to Host User Desktops in a Windows Small Business Server 2003 Environment Installing and Securing Microsoft Small Business Manager 7.5 on Microsoft Windows Small Business Server 2003 Download this Connecting Mobile and Remote Users document Download this Windows Small Business Server 2003 Feature Comparison Guide document Download this Installing and Securing Microsoft CRM 1.2 on a Windows Small Business Server 2003 Network document Windows XP Service Pack 2 and Windows Small Business Server ------------------------------------------ Watch out for Trend and net use drives after SP2 news://msnews.microsoft.com/eXQmAhQfEHA.3612@TK2MSFTNGP12.phx.gbl Thanks Frank for that heads up! ------------------------------------------ In other news - - - - - - - - - - Phone spam misery looms Stateside A little-noticed Bill before the Senate will ensure daily misery for US cellphone users, thanks to the inattentiveness of telecomms regulator the FCC. This week the FCC ruled against spam sent to mobile users that originates from email addresses. The regulator believes that the 1991 Telephone Consumer Protection Act (TCPA) already regulates SMS text messages, and that's good enough. But a new bill, S.2603, passed by Congress (as HR.4600) two weeks ago, drives a horse and cart through the TCPA. The bill was approved by the House's Commerce, Science and Transportation Committee and will be considered by the floor. http://www.theregister.co.uk/2004/08/06/junk_fax_sms_ok/ STATEMENT BY NY AG REGARDING FCC DECISION http://www.oag.state.ny.us/press/2004/aug/aug5a_04.html - - - - - - - - - - Lawyer sues Yahoo over message-board insults A Californian who objects to personal attacks made by posters to Yahoo's message boards is attempting to launch a class-action lawsuit against the company. A California lawyer who has waged an ongoing battle with Yahoo over personal attacks made against him on Yahoo message boards has filed a proposed class- action lawsuit against the company. http://news.zdnet.co.uk/business/legal/0,39020651,39162798,00.htm - - - - - - - - - - 'Stealing songs is wrong' lessons head for UK schools At the beginning of last month the British Government launched a "Music Manifesto" to promote music in schools. But already this typically Blairite bundle of good intentions is being hijacked (with not a little cooperation from the minders in Whitehall) in order to inflict copyright lessons on schoolchildren, from pre-school onwards. http://www.theregister.co.uk/2004/08/05/uk_school_copyright_lessons/ - - - - - - - - - - Windows security update ready to go Microsoft on Friday wrapped up development on a long-awaited security update to Windows XP, paving the way for businesses and consumers to upgrade in the coming days and months. The company said it has released Windows XP Service Pack 2 to manufacturing, following a series of delays. Microsoft will make the free update available via download and via CD, but it is recommending that customers turn on Windows' automatic upgrade feature and get the update that way. http://zdnet.com.com/2100-1104_2-5300317.html http://www.msnbc.msn.com/id/5610539/ http://computerworld.com/softwaretopics/os/windows/story/0,10801,95101,00.html?from=homeheads Windows XP SP2 'Released to Manufacturing' http://www.newsfactor.com/story.xhtml?story_title=Windows-XP-SP---Released-to-Manufacturing-&story_id=26213 - - - - - - - - - - Mozilla, Opera Plug Security Holes The Mozilla Foundation and Opera Software ASA have released updates to their Web browsers to fix a series of security vulnerabilities. Mozilla on Wednesday posted new versions of its Firefox browser, Thunderbird e-mail client and Mozilla suite that provide fixes to three issues. They include a newly reported critical vulnerability affecting multiple vendors' software that uses the library for the Portable Networks Graphic (PNG) image format. http://www.eweek.com/article2/0,1759,1632120,00.asp Images open door to attackers http://news.zdnet.co.uk/0,39020330,39162797,00.htm - - - - - - - - - - Yahoo's Anti-Spy toolbar feature buggy Yahoo on Friday confirmed that its recently released toolbar has mistakenly linked an alleged spyware program with a product that has nothing to do with the application in question. A company representative said late Friday that its toolbar's Anti-Spy feature incorrectly identified alleged "hijacker" software known as SearchCentrix as being bundled with Claria's Gator eWallet product, which is designed to manage usernames and passwords. Hijacking programs redirect search results or tamper with browser settings, according to Yahoo. http://news.com.com/Yahoo%27s+Anti-Spy+toolbar+feature+buggy/2100-1024_3-5300761.html - - - - - - - - - - Security Cavities Ail Bluetooth Serious flaws discovered in Bluetooth technology used in mobile phones can let an attacker remotely download contact information from victims' address books, read their calendar appointments or peruse text messages on their phones to conduct corporate espionage. An attacker could even plant phony text messages in a phone's memory, or turn the phone sitting in a victim's pocket or on a restaurant table top into a listening device to pick up private conversations in the phone's vicinity. Most types of attacks could be conducted without leaving a trace. http://www.wired.com/news/privacy/0,1848,64463,00.html - - - - - - - - - - Can you hack the vote? A $10,000 challenge is at stake. Electronic voting systems have drawn fire from courts, lawmakers and citizens groups -- and now they're under attack by hackers. It's an organized assault, too. E-voting technology expert Rebecca Mercuri, a Harvard research fellow who has been outspoken in her opposition to such systems, has issued a "Hack the Vote" challenge, trying to illustrate what she calls the systems' unreliability and vulnerability. http://computerworld.com/governmenttopics/government/story/0,10801,95096,00.html - - - - - - - - - - Small security firm puts spotlight on big vendor bugs Research company says it has discovered 67 undisclosed vulnerabilities in major vendors' software News earlier this week that Oracle Corp. was sitting on patches for 34 undisclosed vulnerabilities in its database software may have come as a surprise to some, but not to David Litchfield, the researcher who discovered the holes. "In general, bugs are getting harder to find but in some people's software you don't have to look very hard to find bugs, they just fall apart in your hands ... like Oracle's," Litchfield said in an interview Thursday. http://www.infoworld.com/article/04/08/06/HNsecurityspotlight_1.html - - - - - - - - - - Online data a gold mine for terrorists IT's high-alert response overlooks corporate sites The widespread availability of sensitive information on corporate Web sites appears to have been largely overlooked by IT and security managers responding this week to the Department of Homeland Security's warning of a heightened terrorist threat against the financial services sector. http://computerworld.com/securitytopics/security/story/0,10801,95098,00.html - - - - - - - - - - Wardriving guilty plea in Lowe's wi-fi case In what prosecutors say is likely the first criminal conviction for wardriving in the U.S., a Michigan man plead guilty Wednesday to a federal misdemeanor for using the Internet through an open wi-fi access point at a Lowe's home improvement store in suburban Detroit. Paul Timmins, 23, pleaded guilty to a single count of unauthorized access to a protected computer. He was cleared of more serious charges of participating in a scheme organized by his roommate and another man to later use the wireless network to hack into Lowe's computers and siphon credit card numbers. http://www.securityfocus.com/news/9281 - - - - - - - - - - Image flaw pierces PC security Six vulnerabilities in an open-source image format could allow intruders to compromise computers running Linux and may allow attacks against Windows PCs as well as Macs running OS X. The security issues appear in a library supporting the portable network graphics (PNG) format, used widely by programs such as the Mozilla and Opera browsers and various e-mail clients. The most critical issue, a memory problem known as a buffer overflow, could allow specially created PNG graphics to execute a malicious program when the application loads the image. http://zdnet.com.com/2100-1105_2-5298999.html http://news.com.com/Image+flaw+pierces+PC+security/2100-1002_3-5298999.html - - - - - - - - - - Feds seek a few good hackers Attention, hackers: Uncle Sam wants you. And hackers are answering the call, or at least listening. A well-attended session at the recent Defcon 12 hackers' conference was "Meet the Feds," a recruitment presentation by a group of federal cybercrime law enforcement agents, who fielded questions from would-be cybercops. http://computerworld.com/securitytopics/security/story/0,10801,95054,00.html - - - - - - - - - - FBI publishes computer crime and security stats Every year for the past nine years, the Computer Security Institute and the FBI undertake a computer crime and security survey among companies and institutions in the US. These surveys provide interesting insights into the level of computer crime being experienced by companies, as well as how they are responding to security breaches. http://www.theregister.co.uk/2004/08/05/fbi_security_stats/ - - - - - - - - - - Biggest ever Windows upgrade gives security boost Almost since the day Microsoft Corp. released its Windows XP computer operating system nearly three years ago, it has been a favorite target of hackers and critics eager to stress its numerous security shortcomings. Now, more than two years after promising to do something about it, Microsoft is about to release the biggest update ever for Windows. The free upgrade is designed to make users safer from cyberattacks by sealing entries to viruses, better protecting personal data and fending off spyware. http://www.securityfocus.com/news/9279 Windows security update delayed again http://www.msnbc.msn.com/id/5610539/ Microsoft to begin shipping major update to Windows http://www.usatoday.com/tech/techinvestor/techcorporatenews/2004-08-05-sp2-nears-drop_x.htm - - - - - - - - - - Oracle 'sitting on security fixes' Database giant Oracle has been censured by a leading security expert for sitting on fixes to defend against a wide variety of security vulnerabilities affecting its database software. UK-based Next Generation Security Software (NGS Software) has identified 34 security vulnerabilities affecting various versions of Oracle's database software. Around half these flaws affect the latest version of Oracle's database software, 10g. At least one of these bugs could be exploited to give attackers remote access to corporate database servers without a user ID or password. http://www.theregister.co.uk/2004/08/05/oracle_security_flap/ - - - - - - - - - - What's in a worm's name? It's not easy naming worms. Antivirus researchers originally identified a recent security attack as a variant of MyDoom - but now think it's actually related to a different piece of malware. When security experts first detected a mass-mailing worm that uses Yahoo's People Search engine to harvest email addresses, they assumed it was a new variant of MyDoom, which a week earlier had attacked a number of search engines for the same purpose. http://news.zdnet.co.uk/internet/0,39020369,39162715,00.htm - - - - - - - - - - Onion Routing Averts Prying Eyes Computer programmers are modifying a communications system, originally developed by the U.S. Naval Research Lab, to help Internet users surf the Web anonymously and shield their online activities from corporate or government eyes. The system is based on a concept called onion routing. It works like this: Messages, or packets of information, are sent through a distributed network of randomly selected servers, or nodes, each of which knows only its predecessor and successor. Messages flowing through this network are unwrapped by a symmetric encryption key at each server that peels off one layer and reveals instructions for the next downstream node. http://www.wired.com/news/privacy/0,1848,64464,00.html - - - - - - - - - - Easy VoIP wiretaps coming soon Virtually everything done via TCP/IP, with the (for now) exception of instant messaging, is on its way to becoming wiretap-friendly, thanks to a tentative 5-0 decision by the US Federal Communications Commission (FCC) on Wednesday. Thanks to relentless lobbying and fear-mongering by law enforcement outfits and the companies that sell surveillance equipment to them, all broadband communications, including VoIP, will have to be modified to allow the Feds to patch in easily and immediately, in order to comply with the 1994 Communications Assistance to Law Enforcement Act (CALEA). http://www.securityfocus.com/news/9277 - - - - - - - - - - You are still the weakest security link Yet again staff have been identified as the biggest security threat to business IT systems, in a survey released today. The poll of 1,240 British businesses found employee misuse of technology topping the reasons for security breaches, with 50 per cent of businesses having problems. The second highest cause, at 45 per cent, was poorly updated antivirus software. http://www.vnunet.com/news/1157129 Bosses finger workers for virus attacks http://www.theregister.co.uk/2004/08/05/iod_sme_security/ - - - - - - - - - - Don't Toss That Personal Firewall The new firewall in Windows XP Service Pack 2 is not by any means the most important security advance in the service pack. Other changes, principally locking down the My Computer zone in Internet Explorer, will have more profound implications for security of the average system. But it's not unimportant. http://story.news.yahoo.com/news?tmpl=story&cid=1738&ncid=1209&e=2&u=/zd/20040805/tc_zd/132874 - - - - - - - - - - -- http://www.sbslinks.com/really.htm Tag: User web browsing issue, W2K client Tag: 162733
  - 11
    - Delay in Emails Second Post Please help Hey All I put a message up here the other day with the following content ---------------------------------------------------- We're currently running sbs2000 with exchange as a smtp server. There seems to be delays in receiving our emails, some come through straight away and some seem to take ages, the system had been working ok for quite sometime but over the last month or 2 the problem has be come quite a problem. We are having reports of people sending emails and us not receiving them for 2 days or even more. Anyone got any ideas on what the problem could be and how to fix it ----------------------------------------------------- Marina Roos was able to give me some idea how I could diagnose the problem but am still kinda stuck I have pasted the content of the header below, maybe someone can see what could be going wrong. I have substituted some domain info and emails for security reasons. ----------------------------------------------------------- Microsoft Mail Internet Headers Version 2.0 Received: from lon-postoffice.telstra.net ([203.50.2.186]) by server.ourdomain.local with Microsoft SMTPSVC(5.0.2195.5329); Mon, 9 Aug 2004 11:39:11 +1000 Received: (qmail 60789 invoked from network); 6 Aug 2004 19:26:25 +1000 Received: from fsdmail.comsats.net.pk (210.56.18.9) by lon-postoffice.telstra.net with SMTP; 6 Aug 2004 19:26:25 +1000 Received: from fsdmail.comsats.net.pk (fsdmail [127.0.0.1]) by fsdmail.comsats.net.pk (8.12.11/8.12.11) with ESMTP id i768OXuY008841 for <our email here>; Fri, 6 Aug 2004 14:24:33 +0600 Received: from d3q3s3 ([210.56.22.202]) by fsdmail.comsats.net.pk (8.12.11/8.12.11) with SMTP id i768ONPk008830 for <our email here>; Fri, 6 Aug 2004 14:24:30 +0600 Message-ID: <002901c47b99$d4ec86a0$ca1638d2@d3q3s3> From: "Tawakal Impex International" <tawakal@tawakalimpex.com> To: <our email here> Subject: YOUR RECENT MAIL Date: Fri, 6 Aug 2004 14:43:26 +0500 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0026_01C47BC3.BB33F480" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2615.200 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2615.200 Return-Path: tawakal@tawakalimpex.com X-OriginalArrivalTime: 09 Aug 2004 01:39:11.0765 (UTC) FILETIME=[ABC40450:01C47DB1] ------=_NextPart_000_0026_01C47BC3.BB33F480 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable ------=_NextPart_000_0026_01C47BC3.BB33F480 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable ------=_NextPart_000_0026_01C47BC3.BB33F480-- Tag: User web browsing issue, W2K client Tag: 162732
  - 12
    - A problem Hi I havebeen asked to help with the installation of a 2003 standard server at a Convent. The internet conection resides in a WIN XP pro which has shared internet set up. The server previously was an NT 4.00 as a file server. Will the 2003 tolerate being only a file server and accept an IP address from the XP pro. This will result in a workgroup including a server, rather than a 2003 domain. Will the @003 accept this. An alternative suggests itself to make the 2003 as a two NIC system treating the XP exactly as I would an ADSL router. What should I do? Don Tag: User web browsing issue, W2K client Tag: 162730
  - 13
    - Excessive internet usage after installing Cisco 837 router I installed a Cisco 837 router on a server running SBS2000 with ISA and SQL installed and configured with the default settings After leaving the site Friday with everything apparently working OK I was contacted by the ISP to warn of excessive use over the weekend. 14,000 MB over the weekend on a site whose normal usage is 600 MB per month. It seems only about 20MB was inward with the balance going out. How do I turn on logging so I can track what is happening? I must confess to not locking down the router securely believing (misguidedly?) that ISA would keep the site secure. I noticed the SQL icon on the server that was winking and showing a red knick on it I had not seen before. Is this related to anything? The server and all clients have been checked today for viruses with Symantec Corporate with up to date definitions and nothing has shown up. The problem is not there when running on the old Nokia router which I have put back in place until I find out what is wrong with the Cisco configuration (if that is the problem). Has anyone any thoughts on what is going on? Any help would be much appreciated. Paul Tag: User web browsing issue, W2K client Tag: 162726
  - 14
    - PC Moved from one domain to another - How to reset Policies? We have a client who has moved a Windows XP Pro PC, previously part of a subsidiary company's network. The local manager wanted this PC to join his local SBS2K network. All went fine EXCEPT it looks like the PC has retained settings from the previous domain's Group Policy (or is it a Local Policy???). For example, in this SBS2K network they don't want password-protected screen savers - but this PC has this feature enabled and there's no screen saver tab available on Display Properties to turn it off. So the question is: How To Restore Local and Domain Policies to their defaults? TIA Norm Hughes Tag: User web browsing issue, W2K client Tag: 162725
  - 15
    - Reinstalling exchange problems Hi, after numerous attempts of trying to restore exchange from back up without sucess, I want to try a different aproach. How about I reinstall exchange and set up mailboxes again from scratch? can everyone keep same email addresses? any forseeable snags? I have managed to restore all system data from back up and sysem state, but no matter how i try i can not restore exchange. any help apreciated Thanks Andrew Tag: User web browsing issue, W2K client Tag: 162723
  - 16
    - Song of the Week - August 8, 2004 This is a multi-part message in MIME format. ------=_NextPart_000_0006_01C47D47.2CA976B0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Well, this week I was be-bopping my way across Florida, and all the way = to Kansas City, Mo. where I had some wonderful Kansas City ribs! That = plus a couple of pints of a local stout, and I woke up in the middle of = the night with a pretty full tummy. Talking about the middle of the night ... we IT folks certainly put in = our full share of late night downloads and patches and updates. So, = without any further fanfare, the song of the week is a hit straight from = the Billy Joel song book: River of Dreams (aka Server of Fears) http://www.geocities.com/skinnyswavs24/BillyJoel_RiverOfDreams.wav In the middle of the night I keep working in my sleep From the mountain of patches To the scumware so deep I keep looking for something Something sacred I lost But the disks are too full And it's too hard to cross And even though I know the server is up I walk down every evening and look at the blinking lights And try to load a drive image to an optical disk So I can finally find out what I've been looking for In the middle of the night I keep working in my sleep Through the valley of fear With my patches so deep And I've been searching for something Taken out of my mail Something I would never lose Something that would make me turn palee I don't know why I keep working at night But now I'm tired and I don't want to work anymore I hope it doesn't take the rest of my life Until I find what it is that I've been looking for In the middle of the night I keep working in my sleep Through the jungle of doubt To backup tapes so deep I know I'm searching for something Something so undefined That it can only be seen By the eyes of the blind In the middle of the night I'm not sure about a life after this God knows I've never been a spiritual man Baptized by the fire, I wade into the newsgroups That run to the promised land In the middle of the night I keep working in my sleep Through the desert of truth To the FAQ's so deep In the middle of the night=20 --=20 Kevin Weilbacher [SBS-MVP] "The days pass by so quickly now, the nights are seldom long" ------=_NextPart_000_0006_01C47D47.2CA976B0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META http-equiv=3DContent-Type content=3D"text/html; = charset=3Diso-8859-1"> <META content=3D"MSHTML 6.00.2900.2180" name=3DGENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=3D#ffffff> <DIV><FONT face=3DArial size=3D2>Well, this week I was be-bopping my way = across=20 Florida, and all the way to Kansas City, Mo. where I had some = wonderful=20 Kansas City ribs! That plus a couple of pints of a local stout, and I = woke up in=20 the middle of the night with a pretty full tummy.</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>Talking about the middle of the night = ... we IT=20 folks certainly put in our full share of late night downloads and = patches and=20 updates. So, without any further fanfare, the song of the week is a hit = straight=20 from the Billy Joel song book:</FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV><FONT face=3DArial size=3D2>River of Dreams (aka Server of = Fears)</FONT></DIV> <DIV><FONT face=3DArial size=3D2><A=20 href=3D"http://www.geocities.com/skinnyswavs24/BillyJoel_RiverOfDreams.wa= v">http://www.geocities.com/skinnyswavs24/BillyJoel_RiverOfDreams.wav</A>= </FONT></DIV> <DIV><FONT face=3DArial size=3D2></FONT> </DIV> <DIV>In the middle of the night<BR>I keep working in my sleep<BR>From = the=20 mountain of patches<BR>To the scumware so deep<BR><BR>I keep looking for = something<BR>Something sacred I lost<BR>But the disks are too = full<BR>And it's=20 too hard to cross<BR><BR>And even though I know the server is up<BR>I = walk down=20 every evening and look at the blinking lights<BR>And try to load a = drive=20 image to an optical disk<BR>So I can finally find out what I've = been=20 looking for<BR><BR>In the middle of the night<BR>I keep working in my=20 sleep<BR>Through the valley of fear<BR>With my patches so = deep<BR><BR>And I've=20 been searching for something<BR>Taken out of my mail<BR>Something I = would never=20 lose<BR>Something that would make me turn palee<BR><BR>I don't know why = I keep=20 working at night<BR>But now I'm tired and I don't want to work = anymore<BR>I hope=20 it doesn't take the rest of my life<BR>Until I find what it is that I've = been=20 looking for<BR><BR>In the middle of the night<BR>I keep working in = my=20 sleep<BR>Through the jungle of doubt<BR>To backup tapes so deep<BR><BR>I = know=20 I'm searching for something<BR>Something so undefined<BR>That it can = only be=20 seen<BR>By the eyes of the blind<BR><BR>In the middle of the = night<BR><BR>I'm=20 not sure about a life after this<BR>God knows I've never been a = spiritual=20 man<BR>Baptized by the fire, I wade into the newsgroups<BR>That run to = the=20 promised land<BR><BR>In the middle of the night<BR>I keep = working in my=20 sleep<BR>Through the desert of truth<BR>To the FAQ's so deep<BR><BR>In = the=20 middle of the night <BR></DIV><FONT face=3DArial size=3D2> <DIV><BR>-- <BR>Kevin Weilbacher [SBS-MVP]<BR>"The days pass by so = quickly now,=20 the nights are seldom long"</DIV> <DIV> </DIV> <DIV></FONT> </DIV></BODY></HTML> ------=_NextPart_000_0006_01C47D47.2CA976B0-- Tag: User web browsing issue, W2K client Tag: 162722
  - 17
    - SBS 2003 - Oneway Satellite connection I have previously set this up on SBS2000 and its been running quite well for 12 months now (actually installed over 2 years ago). Has anyone else attempted to setup a oneway Satellite/ISDN return broadband connection on SBS2003 using CEICW? Were you successful? How far did you get? What option from the CEICW did you use? I have installed the DirecPC software (compatibilty mode) and can basically get connection setup using the Broadband with FixedIp option. The Terrestrial (ISDN) outgoing connection occurs when say opening a web page but nothing appears to be received via the Satellite. I have confirmed that there is actually a connection to the Satellite from the internet. Is it the basic firewall that could be causing it? Any thoughts on where else to look? Andrew Tag: User web browsing issue, W2K client Tag: 162718
  - 18
    - Partition filling up quickly Part 2 ***Part 1 posted yesterday***** Thanks Chad for your help, I found 3 queues on there. It's not creating those logs at that rate. However this morning I found a queue that was labeled "SmallBusiness SMTP connector - e-wholesaler.net(SMTP Connector - Remote Delivery)". Is this considered a spammer using my server as an open relay still? I followed all the steps as I was supposed to. SHould I start using a different port for my SMTP server or it has to be port 25 always?. If I do that I might have to do some changes on my Cisco PIX firewall. PLease let me know Tag: User web browsing issue, W2K client Tag: 162685
  - 19
    - Slow SBS server Hi I'm running SBS2000 on a dual xeon 2ghz server with 1gb ram and 2 x 36gb scsi hard drives, we have 9 client computers and 2 of these are wireless. The software being used is Sage Line 50, Exchange and Veritas + 1 of the hard drives is used for all files and an Access database. I have two problems which may be related 1. The client computers take anything from 45secs to 3mins to log in, but the wireless computers are almost instant. 2. The performance count for free memory when rebooted starts at approx 50% then over the space of approx 48hours reduces gradually to 1% free at which time the whole network slows down. Any ideas Many thanks Pete Tag: User web browsing issue, W2K client Tag: 162678
  - 20
    - <<< XP sp2 info >>> Is it out yet? Yes. To beta testers at this time. Should be on the Download site on Monday: http://blogs.msdn.com/mswanson/archive/2004/08/06/210345.aspx The release to manufacturing (RTM) version of Windows XP Service Pack 2 is now available for download via MSDN Subscriber Downloads. The CD ISO image weighs in at 475.35MB. If you?d rather let Windows Update automatically install it, visit this page to ensure that your Internet Connection Firewall and Automatic Update settings are configured correctly. I don?t think it?s available through Windows Update quite yet, but enabling these features will allow your computer to download it as soon as it?s posted. This is a fantastic release with a lot of new security features. I?ve been running various builds of SP2 over the past few months, and I?ve loved every minute of it. The pop-up blocker is a very welcome addition, the much improved firewall is easy to configure, and I find that I don?t have nearly as much spyware finding its way onto my computer. Some of the areas that have been improved are: network protection, memory protection, safer e-mail handling, enhanced browsing security, and improved computer maintenance. From a customer-ready e-mail that is being sent out: I am pleased to inform you that Windows XP Service Pack 2 released to manufacturing on Friday August 6, 2004. Windows XP Service Pack 2 contains major security improvements designed to provide better protection against hackers, viruses, and worms. Windows XP Service Pack 2 also improves the manageability of the security features in Windows XP and provides more and better information to help users make decisions that may potentially affect their security and privacy. On Monday, August 9, 2004, the full network installation package for Windows XP Server Pack 2 will be posted on the Windows XP Service Pack 2 site on Microsoft TechNet (http://www.microsoft.com/technet/winxpsp2). This site is also the best resource for accessing the most up-to-date technical information regarding Windows XP Service Pack 2. On-line distribution will be the primary distribution vehicle for Windows XP Service Pack 2 and below is a summary of the key milestones of the distribution plan: 8/6 Release to manufacturing 8/9 Release to Microsoft Download Center (network installation package) 8/9 Release to MSDN subscription site (CD ISO image) 8/10 Release to Automatic Updates (for machines running pre-release versions of Windows XP Service Pack 2 only) 8/16 Release to Automatic Updates (for machines NOT running pre-releases versions of Windows XP Service Pack 2) 8/16 Release to Software Update Services Later in August Release to Windows Update for interactive user installations Because of the significant security improvements outlined above, Microsoft views Windows XP Service Pack 2 as an essential security update and is therefore distributing it as a ?critical update? via Windows Update (WU) and the Automatic Updates (AU) delivery mechanism in Windows. Microsoft is strongly urging customers with Windows XP and Windows XP Service Pack 1-based systems to upgrade to Windows XP Service Pack 2 as soon as possible. -------------------------------- What do we SBSers need to do specifically? If you want to be able to enable the firewall INSIDE your networks, install http://www.microsoft.com/downloads/details.aspx?familyid=d70097c2-4317-40e0-b7da-feb52c6b6386 This update enables and configures the Windows Firewall in Windows XP Service Pack 2 on Windows Small Business Server 2003 networks. ONLY install this after you have at least one machine in the office at XP sp2 RTM as the group policy will no longer be able to be edited from the server until this is released: 842933 - "The following entry in the [strings] section is too long and has been truncated" error message when you try to modify or to view GPOs in Windows Server 2003, Windows XP, or Windows 2000: http://support.microsoft.com/?kbid=842933 [I called about 2 hours ago and they are working on the 2k3 version] ------------------------------- More reading on this http://download.microsoft.com/download/7/9/a/79a88f49-5a0f-42f8-b6bb-63939752fb80/SBS_XPSP2.DOC -------------------------------- What if I do nothing? Then the firewall will be disabled inside the network and while the active X and pop up blocking will be in place, the internal firewall blocking will not. ---------------------------------- What's the most impact I will see if I install this? Quite frankly on my desktop at the office where I have been running the RC2 candidate, none of my applications have been affected in any way, shape or form. The install does take a bit of time [its a 200+kb file and ensure that you archive the bits when installing. Once it installs the first screen up will look a bit text-installer like and then it will ask you if you want to enable auto update. First screen http://www.winsupersite.com/images/reviews/xp_sp2_02_01.gif ---------------------------------- What's this I hear about the security center? This is kewl as it monitors your patch level, your firewall status and your antivirus level. It will know that Trend SMB is loaded and alert you if it might be out of date. Symantec doesn't at this time but the patch is expected soon. Etrust needs to be on the latest and greatest engine/client to work properly. Looks like this [obviously Paul's wasn't fully enabled] http://www.winsupersite.com/images/reviews/xp_sp2_02_02.gif ---------------------------------- What the pop up blocker and active x blocker do? I see the most impact for me on business web sites like www.bankofamerica.com where we had to manually add the web site and the site it "launches off to" when making tax payments electronically so we could get page properly. When you get to a page that the IE blocks some possible harmful scripting and you need to enable it [like the first time you go to Remote Web Workplace after installation] the IE info tool bar will let you know what to do: http://blogs.msdn.com/tonyschr/archive/2004/06/15/156787.aspx The pop up manager can be adjusted as well and looks like this: http://msdn.microsoft.com/security/productinfo/XPSP2/securebrowsing/popupmanager.aspx http://www.winsupersite.com/images/reviews/xp_sp2_ie_pop-up-blocker.gif ---------------------------- What about the firewall? Won't it stop programs? If you are running with local admin rights the programs should just poke their own holes through without issue http://www.winsupersite.com/images/reviews/xp_sp2_security_alert.gif One thing to check [and unfortunately I can't here at home] On my original test of RC1 I had to manually make a port exception for tcp 27529 for Trend to pick up the dat file updates [SMB suite] I've heard from other folks that later builds did not need this manual adjustment. If someone else newly installing this can let me know if this is true, I'd appreciate it. --------------------------------- What about SBS 2000? Doesn't it need a patch too? No, the firewall and everything on the XP sp2 client will work independently of the server and you won't need to adjust any group policy to make anything work. ------------------------------- The biggest impact in my office? On the four machines that are running the sp2, I've had to let folks know how to add a web site to the trusted site zone to enable scripting when needed and to add sites to the pop up tool bar. As I've posted in my blog: http://msmvps.com/bradley/archive/2004/08/04/11232.aspx "I haven't met a web site yet that I couldn't get to work with XP sp2. Now mind you I'm adding a few to my ?trusted site zone? settings with my handy dandy Trusted site tool bar add in that works on XP sp2, IE 6 [I'm starting to sound like a broken record but I'll post it again] http://www.microsoft.com/windows/ie/previous/webaccess/pwrtwks.mspx ooh and BobP posted in another example at http://www.jasons-toolbox.com/programs.asp?Program=Trust%20Setter ---------------------------------- How soon should I be rolling this out to clients? Of course, after you test it. But I can say it's been very stable for me. Call your clients and inform them that if they are still on 98, this is the time to get off that platform and get on a OS that is much much better built for spyware and malware protection As always, these are my personal opinions, your mileage may vary. -- http://www.sbslinks.com/really.htm Tag: User web browsing issue, W2K client Tag: 162677
  - 21
    - Replacing an old workstation with a new one Hi all, I want to replace an old Windows 98 workstation with a newer, Windows XP Pro workstation. I would like to use the same machine name for the new one that was used on the old. (Of course, this is part of a SBS2000 network) What is the correct procedure for doing this? Thanks for the help. Pat (BTW, I'm not really a systems admin, but have fallen into that role. So I may have lots of questions.) Tag: User web browsing issue, W2K client Tag: 162675
  - 22
    - Event id 202 on SBS "windows server is out of licenses" I have a customer with a SBS 2000 server, a Windows 2000 member server, and an NT 4 Terminal SErver. The SBS server gets event id 202 "Windows server is out of licenses" often, and I understand that this can come from the member server, but the 2000 server has license logging disabled. Can it still be coming from that server anyhow, or can it come from the NT server? Tag: User web browsing issue, W2K client Tag: 162670
  - 23
    - Enabling user email services I have a user who current does not have email services. How to I set this up for them? Also, although we host our own smtp email, just want to give them access to an outside POP3 account at this point. We have the POP3 connector installed. Thanks for the help. I appreciate it. -Pat Tag: User web browsing issue, W2K client Tag: 162666
  - 24
    - Migration: from SBS 200 to a Standard Windows 2000/3 Domain A Customer have two SBS 2000 systems (users and password synchronized mannualy between SBSs). One SBS Domain is a "SBS SQL Forest " and the other is an "SBS Exchange Forest" The Plan: 1) Install a second Windows (Win Server 2003) DC in the Same SBS 2000 Exchange Forest " 2) Install Exchange 2003 and move MBXs from the SBS Machine to the New EXCH 2003 machine 3) Remove SBS 2000 system II know i have to be careful about recovery agent certificates, DSRM password, FSMO Roles, but i wanna know: It is possible? If it is not possible: Wich method we will use? SBS 2000 supports move mailboxes? supports integrate another EXCH in the Organization? How to upgrade Small Business Server Domain Environment to regular Windows 2003 Domain http://support.microsoft.com/default.aspx?scid=kb;en-us;555073&Product=sbs It will work? 2. Upgrade Small Business Server 2000 in place. This scenario is complicated and need to be tested before you implement it. Note: I assume that ISA/SQL server hasn't been installed in the domain. a. Add new Windows 2000 Server to the domain. b. Promote the Server from step "a" to new Windows 2000 Domain Controller (With DNS) in the same domain. c. Install Exchange 2000 on the new Windows 2000 Domain ontroller - you may need to add the Exchange 2000 to the same Exchange organization. d. Move users mailboxes from old Exchange 2000 to the new Exchange server. e. Move Public Folders from old Exchange 2000 to the new Exchange server. f. Move GC+ FSMO functions from the original domain controller to the new domain controller . g. Remove the original Exchange server from the original Exchange organization. h. Demote the original domain controller to be a member server. i. Remove the member server (step "h") from the domain. Note: If you have important files (like users home folders etc.) you may need to move them to another server. Also, some services - like Small Business Server share fax/modem may not work in the new environment. Tag: User web browsing issue, W2K client Tag: 162659
  - 25
    - setting up machine to receive smtp (no pop3:) hi... got an sbs 2k server set up to receive smtp mail. have spoken to the company that host the domain. asked them to do an MX record that points to the server. they said that, using nslookup, it resolves to xxx-xxx-xxx-xxx.in-addr.btopenworld.com and this is the value that would go in MX record. previously i've just given co's the IP and left it at that and it has worked. in this instance i tried to telnet in via this addy and wasn't able to. is this correct behaviour or is there some more info i need to provide.. or am i way off track here btw can telnet into server no problem, from remote location via IP address. Tag: User web browsing issue, W2K client Tag: 162654

I thought I might post a solution (work around?) I found to a perlexing
issue we had with web browsing: it may be no use to anyone but would have
saved me hours!

I had a single user who could not browse the web via IE6 on a W2K client
machine (SBS "internal" web pages were correctly served). For any URL, the
ISA server returned a 403 error "The ISA server denies the specified URL
(12202)". Every other user was able to browse normally and the user with
problems could browse from all XP clients we have on site. The Firewall
client is installed and configured correctly on all machines. IE settings
were correct as per SBS defaults (i.e. pointing at the SBS2000 ISA:
http://ISASERVER:8080)

There were no differences between this user's setup and that of all other
users in terms of group memberships (local or Domain).

Looking at the various ISA logs, any connection that this user tried to make
from IE generated entries in the Firewall client log rather than the Web
Proxy log entries that other users generated. An example log with
authenticated, Rule 1 and Rule 2 fields on as well as the defaults (user
name replaced):

10.0.0.50 *** IEXPLORE.EXE:3:5.0 Y 2004-08-12 09:06:10 ISASERVER -
207.46.245.92 80 15 - 3415 80 TCP Connect 20000 BackOffice Internet Access
Protocol Rule - 21 84

This suggested that for whatever reason, IE was trying to connect via the
Firewall service and not via WebProxy. After much playing with Firewall and
IE proxy settings, the only solution I found was to clear all the local IE
cache, history etc, clear the IE proxy settings, quit IE. Then reopen and
set IE proxy setting to ISASERVER:8080, including setting the advanced proxy
address field to ISASERVER:8080 (all protocols checked). Note that I had
already tried reentering http://ISASERVER:8080 and this did not work.
Firewall client remains enabled.

Why this solved the problem I don't know (HKLU registry issue?), although
I'd appreciate any suggestions on the underlying cause.

Andy Sims

Top