November 2007 - Posts
http://www.microsoft.com/downloads/details.aspx?FamilyId=44C66AD6-F185-4A1D-A9AB-473C1188954C&displaylang=en
Microsoft Exchange Server 2007 Service Pack 1 (SP1) has been designed specifically to help meet the challenges of any business and the needs of all the different groups with a stake in the messaging system. Exchange Server 2007 SP1 is a mission-critical communications tool that enables employees to be more productive and access their information anywhere and anytime while providing a messaging system that enables rich, efficient access to e-mail, calendar items, voice mail, and contacts. For the administrator, Exchange Server 2007 SP1 provides advanced protection options against e-mail security threats, such as spam and viruses, as well as the tools to help manage internal compliance and high availability needs...
If you run an environment with several LOB's (Lines of Business), you may have done as we have and created collections for each LOB for full layered application installations. For us, this is a convenient method for ensuring that each new machine receives every necessary application for its particular LOB. If you do something similar, you may encounter a situation where a particular series of installation "hangs" and will not proceed. Here is one possible scenario.
As I've said in the past, execmgr.log is your friend. Learn to check it regularly for any problem dealing with packages or advertisements. For a hung series of installations, you can look for the following as a possible cause: (Notice the portion in bold.)
Content is available for program Windows Update Agent x86 (5.8.0.2694). execmgr 11/28/2007 12:00:31 PM 3932 (0x0F5C)
Raising event:
[SMS_CodePage(437), SMS_LocaleID(1033)]
instance of SoftDistProgramWaitingForAnotherProgram
{
AdvertisementId = "CEN20007";
BlockingPackageID = "CEN00008";
BlockingProgramName = "Bloomberg-Open_Bloomberg-V6.08-R1";
ClientID = "GUID:B7185999-454D-4F27-ACCA-B275CD0C6F03";
DateTime = "20071128180032.002000+000";
MachineName = "AST64G10F1INTR";
PackageName = "CEN00037";
ProcessID = 452;
ProgramName = "Windows Update Agent x86 (5.8.0.2694)";
SiteCode = "AST";
ThreadID = 3932;
};
execmgr 11/28/2007 12:00:32 PM 3932 (0x0F5C)
Successfully raised SoftDistProgramWaitingForAnotherProgram event for program Windows Update Agent x86 (5.8.0.2694). execmgr 11/28/2007 12:00:32 PM 3932 (0x0F5C)
This section can aid you in narrowing down the causes of the hangup by identifying which package and program is causing the problem. In this case, we had a particular application which would only install (within SMS) via a wrapper. We hand changed the deployment method to "Run from Distribution Point" and the app blew chunks. After switching it to "Download... " it went through without a hitch. If, in the interest of time, you need to layer the remaining applications while you figure out how to fix your particular hangup, just open Task Manager, and end the process which is related to your hung app installation. The remaining advertisements will queue up and finish.
I picked this up a long time ago and I'm sure I got it from MyITForum, but I cannot find a download reference there any longer. In any case, I thought it would be a good idea to get it out here so others could use these. The toolset adds a drop-down menu to your SMS console and gives some added functionality.
I've uploaded the zip file for people who wish to download to tool.
Nice little guide:
http://www.microsoft.com/technet/security/guidance/clientsecurity/2007office/default.mspx
Received yesterday afternoon - my apologies for the delay in posting.
********************************************************************
Title: Microsoft Security Bulletin Re-Releases
Issued: November 13, 2007
********************************************************************
Summary
=======
The following bulletins have undergone a major revision increment.
Please see the appropriate bulletin for more details.
* MS07-049 - Important
Bulletin Information:
=====================
* MS07-049 - Important
- http://www.microsoft.com/technet/security/bulletin/ms07-049.mspx
- Reason for Revision: V2.0 (November 13, 2007): The security
update for Microsoft Virtual PC 2004, Microsoft Virtual PC
2004 Service Pack 1, Microsoft Virtual Server 2005 Standard
Edition, Microsoft Virtual Server 2005 Enterprise Edition,
Microsoft Virtual Server 2005 R2 Standard Edition, and
Microsoft Virtual Server 2005 R2 Enterprise Edition did not
correctly install in certain cases. Microsoft recommends that
customers apply the update at the earliest opportunity. No
action is required on systems where the security update has
been successfully installed. For details please read the
"Frequently Asked Questions (FAQ) Related to This Security
Update" section.
- Originally posted: August 14, 2007
- Updated: November 13, 2007
- Bulletin Severity Rating: Important
- Version: 2.0
Received yesterday afternoon - my apologies for the delay in posting.
********************************************************************
Microsoft Security Bulletin Summary for November 2007
Issued: November 13, 2007
********************************************************************
This bulletin summary lists security bulletins released for
November 2007.
The full version of the Microsoft Security Bulletin Summary for
November 2007 can be found at
http://www.microsoft.com/technet/security/bulletin/ms07-nov.mspx.
With the release of the bulletins for November 2007, this bulletin
summary replaces the bulletin advance notification originally
issued on November 8, 2007. For more information about the bulletin
advance notification service, see
http://www.microsoft.com/technet/security/Bulletin/advance.mspx.
To receive automatic notifications whenever
Microsoft Security Bulletins are issued, subscribe to Microsoft
Technical Security Notifications on
http://www.microsoft.com/technet/security/bulletin/notify.mspx.
Microsoft is hosting a webcast to address customer questions on
these bulletins on Wednesday, November 14, 2007, at 11:00 AM Pacific
Time (US & Canada). Register for the November Security Bulletin
Webcast at
http://www.microsoft.com/technet/security/bulletin/summary.mspx.
Microsoft also provides information to help customers prioritize
monthly security updates with any non-security, high-priority
updates that are being released on the same day as the monthly
security updates. Please see the section, Other Information.
Critical Security Bulletins
===========================
Microsoft Security Bulletin MS07-061
- Affected Software:
- Windows XP Service Pack 2
- Windows XP Professional x64 Edition
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Impact: Remote Code Execution
- Version Number: 1.0
Important Security Bulletins
============================
Microsoft Security Bulletin MS07-062
- Affected Software:
- Microsoft Windows 2000 Server Service Pack 4
- Windows Server 2003 Service Pack 1
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP1 for Itanium-based Systems
- Windows Server 2003 with SP2 for Itanium-based Systems
- Impact: Spoofing
- Version Number: 1.0
Other Information
=================
Microsoft Windows Malicious Software Removal Tool:
==================================================
Microsoft will release an updated version of the Microsoft Windows
Malicious Software Removal Tool on Windows Update, Microsoft Update,
Windows Server Update Services, and the Download Center.
Non-Security, High-Priority Updates on MU, WU, and WSUS:
============================================================
For this month:
* Microsoft is planning to release three non-security,
high-priority updates on Microsoft Update (MU) and
Windows Server Update Services (WSUS).
* Microsoft is planning to release zero non-security,
high-priority updates for Windows on Windows Update (WU).
Note that this information pertains only to non-security,
high-priority updates on Microsoft Update, Windows Update, and
Windows Server Update Services, and released on the same day as the
Security Bulletin Summary. Information will not be provided about
non-security updates released on other days.
Most companies have a technology usage policy which governs ways in which employees can utilize phones, workstations, servers, the network, etc. What many companies do not have, however, is a clear statement which users must accept (much like a software EULA) prior to logging onto the corporate network. Although employees are asked to sign a usage policy when they are hired (generally) instituting a longon usage statement can help aleviate the "they didn't tell me" defense in the case of a protested termination.
This can be done on a domain-wide level using Group Policy. Within the console tree, these settings are located: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\
Interactive logon: Message test for user attempting to log on - enable this setting and place your usage statement within the given box. (With Windows 2000 Server domains, this message is limited to 512 characters. In addition, Windows 2000 workstations will not properly display messages created on Windows 2003 Server or Windows XP machines using Group Policy. You must undefine the policy and then define it using a Windows 2000 box in order for it to be displayed properly on a Windows 2000 machine.)
Interactive logon: Message title for users attempting to log on - enable this setting and place the title for your usage statement with the given box.
Received from Microsoft late last night:
********************************************************************
Title: Microsoft Security Advisory Notification
Issued: November 7, 2007
********************************************************************
Security Advisories Updated or Released Today
==============================================
* Microsoft Security Advisory (944653)
- Title: Vulnerability in Macrovision SECDRV.SYS
Driver on Windows Could Allow Elevation of Privilege
- http://www.microsoft.com/technet/security/advisory/944653.mspx
- Revision Note: November 07, 2007: Advisory revised to
include indentified workarounds for this vulnerability and
additional information on what is secdrv.sys.
Received from Microsoft late last night:
********************************************************************
Title: Microsoft Security Advisory Notification
Issued: November 5, 2007
********************************************************************
Security Advisories Updated or Released Today
==============================================
* Microsoft Security Advisory (944653)
- Title: Vulnerability in Macrovision SECDRV.SYS
Driver on Windows Could Allow Elevation of Privilege
- http://www.microsoft.com/technet/security/advisory/944653.mspx
- Revision Note: Advisory Published