MSMVPS.COM

Coleções de ícones

Luiz — Sat, 21 Nov 2009 01:38:00 GMT

Depois de alguns anos usando uma antiga coleção de ícones que eu tinha, concluí que o visual estava ultrapassado (ou então eu já estava cansado dele). Resolvi, então, ir atrás de novos ícones. O primeiro lugar a que recorri, obviamente, foi o Google. Estava atrás de coleções gratuitas. Para a minha surpresa, não foi tão fácil achar algo bom. Eu até achei ícones muito bonitos, mas...(read more)

There is a marked difference..

Mike Hall — Fri, 20 Nov 2009 21:51:26 GMT

Yesterday, I un-installed Microsoft Office 2007 from my Vista installation. Wow, did that take a time to complete or what. The purpose was to install the newly released Office 2010 Beta. First attempt – please uninstall FrontPage 2003 and Access server database. More time passed. Second attempt – it is installing but when will it finish? It finally did finish, after which I had this unswerving desire to get back to Windows 7. After a few months of using Windows 7, notwithstanding aspects I do not...(read more)

Need to Pass 70-653

HandyAndy's SBS-Rocks Blog — Fri, 20 Nov 2009 21:22:20 GMT

So you have been looking at the new requirements from MS and realize you need to take and pass 70-653. Don’t panic my friend Bea the queen of IT Training, a.k.a. Beatrice Mulzer has just finished her MCTS EXAM 70-653 Primer, Configuring Windows Read More......(read more)

Tout sur la migration ou l’installation de Windows 7

Mtoo — Fri, 20 Nov 2009 20:31:06 GMT

Si vous voupréparer une migration Windows 7 et ne savez pas par quoi commencer.

Le Coach, c’est Fabrice Meillon qui vous explique tout, en Français…

Sommaire du Coach Installation, Migration et Déploiement

Atelier - Mise à niveau et migration vers Windows 7

Atelier - Prise en main des outils de déploiement - le WAIK

Atelier - Utilisation du XP Mode

Atelier - Installation automatisée avec le MDT

Atelier - Migration des paramètres utilisateurs avec l'USMT

Atelier - Installation et démarrage - Boot - sur VHD

C’est ici : http://technet.microsoft.com/fr-fr/windows/technet-coach-windows7-chapitre1.aspx

Laurent Gébeau – www.toutwindows.com

Weekend reading

Rui Silva — Fri, 20 Nov 2009 20:10:08 GMT

Unified Messaging (Voicemail) in Exchange 2010 Understanding Shadow Redundancy in Exchange 2010 Exchange 2010 RTM DAG using Server 2008 R2 – Part 4 Introducing the Outlook Social Connector Review of Outlook Social Connector Provider Extensibility How do I disable these engine end-of-life notifications I am receiving from Antigen and Forefront? 11 Languages MUI out of the box Announcing the Outlook Social Connector Developing a provider for the Outlook Social Connector how to publish Exchange 2010...(read more)

Dernière opportunité de gagner un Windows 7 ultimate

Mtoo — Fri, 20 Nov 2009 20:04:28 GMT

Bonjour

Pour continuer de vous remercier pour votre fidélité, je vous offre de nouveau une nouvelle licence Windows 7 Ultimate.

Il suffit de répondre à ma question sur mon livre d’or : http://mtoo.net/livre/livredor.php.

Quelle est la seule ville au monde dans laquelle a été ouvert un Windows Café ?

Le premier à répondre gagne une version de Windows 7 Ultimate , le suivant des cadeaux surprise Microsoft.

Et pour tous les autres un grand merci pour votre fidélité, vos visites, et n’hésitez pas à me laisser un mot sur mon livre d’or.

Bonne chance !

Laurent Gébeau

Expression Web 3 Service Pack 1 Now Available

Kathleen Anderson — Fri, 20 Nov 2009 19:40:00 GMT

Microsoft Expression Web 3 Service Pack 1 (SP1) contains significant fixes and improvements in publishing, SuperPreview, file management, extensibility, and other areas of the program. You can get a more complete description of SP1, including a list of issues that were fixed, in the Microsoft Knowledge Base article 976594: Description of the Microsoft Expression Web 3 Service Pack 1. SP1 includes improvements developed as a result of user input from Microsoft Connect, such as support for custom Windows colors, improved text selection, and better performance.

Download Expression Web 3 SP1 here. [English]

Other languages:

German: http://download.microsoft.com/download/7/F/8/7F85E5EB-800E-4284-AC4C-7A49FAC1315E/WebSP1_de.exe

French: http://download.microsoft.com/download/B/1/6/B16EDAD7-983F-415E-871D-E3A33C056411/WebSP1_fr.exe

Italy: http://download.microsoft.com/download/6/0/8/608C8631-7DC8-4B10-848F-35B19F516F5C/WebSP1_it.exe

Spanish: http://download.microsoft.com/download/B/0/5/B05606F9-7888-4D51-A9E1-51D8020BA1EC/WebSP1_es.exe

Traditional Chinese http://download.microsoft.com/download/4/E/2/4E2EFB9E-2FB4-47CA-B2ED-7B7BDCC59E96/WebSP1_zh-Hant.exe

Simplified Chinese: http://download.microsoft.com/download/2/F/B/2FB54FE1-A207-4AD2-82DB-D9FE8265F35F/WebSP1_zh-Hans.exe

Japanese: http://download.microsoft.com/download/3/E/F/3EFF5FF4-0E07-4F2F-84DB-384EEDC8AEEA/WebSP1_ja.exe

Korean: http://download.microsoft.com/download/C/4/2/C427C5B6-2CF5-402D-AC20-A5D16E8CC618/WebSP1_ko.exe

WMICookbook: Read Routing Table

RichardSiddaway — Fri, 20 Nov 2009 16:59:33 GMT

When we need to troubleshoot networking problems we will sometimes need to read the routing table on a machine. The routing table contains the information on the routes known to the network interfaces. This can be created automatically or manually . On the local machine we can use the route command to find this information – but how do we find it on a remote machine. WMI has a class that enables us to read the routing table.

            001              
002               
003               
004               
005               
006               
007               
008               
009               
010               
011               
012               
013               
014               
015               
016               
017               
018               
019               
020               
021               
022               
023               
024               
025               
026               
027               
028               
029               
030               
031               
032               
033               
034               
035               
036               
037               
038               
039               
040               
041               
042               
043               
044               
045               
046               
047               
048               
049               
050               
051               
052               
053               
054               
055               
056               
057               
058               
059               
060               
061               
062               
063               
          function Get-RouteTable {               
param (               
    [parameter(ValueFromPipeline=$true)]               
    [string]$computer="."               
)               
              
## create class for object               
$source=@"                
public class WmiIPRoute                 
{                 
    private string _destination;                 
    private string _mask;                 
    private string _nexthop;                 
    private string _interface;                 
    private int _metric;                 
    
     public string Destination {                 
        get {return _destination;}                 
        set {_destination = value;}                 
    }                 
    
    public string Mask {                 
        get {return _mask;}                 
        set {_mask = value;}                 
    }                 
    
    public string NextHop {                 
        get {return _nexthop;}                 
        set {_nexthop = value;}                 
    }                 
    
    public string Interface {                 
        get {return _interface;}                 
        set {_interface = value;}                 
    }                 
    
    public int Metric {                 
        get {return _metric;}                 
        set {_metric = value;}                 
    }                 
}                 
"@               
Add-Type -TypeDefinition $source               
              
    $data = @()               
    Get-WmiObject -Class Win32_IP4RouteTable -ComputerName $computer| foreach {               
        $route = New-Object -TypeName WmiIPRoute               
        $route.Destination = $_.Destination               
        $route.Mask        = $_.Mask               
        $route.NextHop     = $_.NextHop               
        $route.Metric      = $_.Metric1               
                      
        $filt = "InterfaceIndex='" + $_.InterfaceIndex + "'"                
        $ip = (Get-WmiObject -Class Win32_NetworkAdapterConfiguration -Filter $filt -ComputerName $computer).IPAddress               
              
        if ($_.InterfaceIndex -eq 1) {$route.Interface = "127.0.0.1"}               
        elseif ($ip.length -eq 2){$route.Interface = $ip[0]}               
        else {$route.Interface = $ip}               
                      
        $data += $route               
    }               
    $data | Format-Table -AutoSize                
} 
       
 

Our function takes a single parameter – a computer name (or IP address) I’ve used the advanced function parameters to this function operates on the pipeline. We then create a .NET class to hold our data – we will be accessing a couple of WMI classes so we’ll make the presentation neat. The class is added using Add-Type.

As an aside I really like this technique for collecting data together into a single object. Its neater and easier to use than Add-Member.

We can then use Get-WmiObject -Class Win32_IP4RouteTable -ComputerName $computer to retrieve the routing information. We create an instance of our object and populate the properties. One thing we need to know is the Interface ie which address on our machine is using this route, We can find this from the Win32_NetworkAdapterConfiguration class. There isn’t an association but we can find the address by using the InterfaceIndex as a filter – its the same value in both classes. if the InterfaceIndex = 1 its the Loopback Adapter on 127.0.0.1

We can then add our route to the data. When all the routes are collected we can display the data. The data could be output onto the pipeline but at the moment I can’t think what else to do with it so we’ll leave it like this for now.

Note: Win32_IP4RouteTable is only available on Windows 2003 and later

Technorati Tags: PowerShell,WMI,Networking,Routing Table

Opera 10.01 Remote Array Overrun (Arbitrary code execution)

donna — Fri, 20 Nov 2009 16:20:30 GMT

Topic : Opera 10.01 Remote Array Overrun (Arbitrary code execution)
SecurityAlert : 73
CVE : CVE-2009-0689
SecurityRisk : High (About)
Remote Exploit : Yes
Local Exploit : Yes
Exploit Given : Yes
Credit : SecurityReason Research
Date : 20.11.2009
Affected Software :
- - Opera 10.01
- - Opera 10.10 Beta
NOTE: Prior versions may also be affected.

Opera fix: The vulnerability was fixed in the latest release candidate Opera RC3

Vulnerability details in http://securityreason.com/achievement_securityalert/73

Note: For users who have the new beta build: Opera v10.10 Build 1892 (BETA), you should check with Opera ASA if it's affected

Zero-day vulnerabilities in Firefox extensions discovered

donna — Fri, 20 Nov 2009 16:12:49 GMT

One of the reasons behind Firefox's popularity is the availability of a vast library of extensions. Users use them to modify the browser to their liking and make their browsing experience easier and more pleasant. The problem is, unbeknown to them, these extensions are exposing them to risk.

At the SecurityByte & OWASP AppSec Conference in India, Roberto Suggi Liverani and Nick Freeman, security consultants with security-assessment.com, offered insight into the substantial danger posed by Firefox extensions.

Mozilla doesn't have a security model for extensions and Firefox fully trusts the code of the extensions. There are no security boundaries between extensions and, to make things even worse, an extension can silently modify another extension.

Any Mozilla application with the extension system is vulnerable to same type of issues. Extensions vulnerabilities are platform independent, and can result in full system compromise.

The researchers believe that the weakest link in the chain is the human factor. Many add-on developers do it for a hobby and are not necessarily aware of how dangerous a vulnerable extension can be.

More in http://www.net-security.org/secworld.php?id=8527

So how do you do a dry run?

bradley — Fri, 20 Nov 2009 15:12:00 GMT

So how do you do a dry run without buying a new server? Look around/or build from Frys and find an overgrown desktop that can support HyperV and 64bit and stick at least 8 gigs of ram in there. You don't need a test lab with boxes all over the place, you do need a nice enough overgrown desktop that can handle virtualization and lots of RAM.

Right now the machine I'm using for my dry run is the server I ultimately plan to migrate to. But before that I have a box that is nothing but a virtual platform with even removable drive drays that I can slide drives and and out and make machines as I need them.

Like many things in tech, you can't just read, you have to do. Invest in yourself here.

Ultimos lugares para el Run09 Reloaded

Leandro Amore — Fri, 20 Nov 2009 14:12:34 GMT

Microsoft TechNet & MSDN te invitan a participar de las próximas jornadas de capacitación en donde se presentará Windows 7, Visual Studio 2010, SQL Server 2008 R2, Windows Server 2008 R2, entre muchas otras tecnologías que serán lanzadas en estos Read More......(read more)

Dumb code could stop computer viruses in their tracks

donna — Fri, 20 Nov 2009 14:11:31 GMT

On the day a new computer virus hits the internet there is little that antivirus software can do to stop it until security firms get round to writing and distributing a patch that recognises and kills the virus. Now engineers Simon Wiseman and Richard Oak at the defence technology company Qinetiq's security lab in Malvern, Worcestershire, UK, have come up with an answer to the problem.

Their idea, which they are patenting, is to intercept every file that could possibly hide a virus and add a string of computer code to it that will disable any virus it contains. Their system chiefly targets emailed attachments and adds the extra code to them as they pass through a mailserver. A key feature of the scheme is that no knowledge of the virus itself is needed, so it can deal with new, unrecognised "zero day" viruses as well as older ones.[...]

"This is not based on virus signature detection, so it is not something malware writers can imagine their way around," Wiseman says. Qinetiq, which has just acquired the military networking firm Boldon James, plans to exploit the trick in future secure mailservers. "It sounds like it might have some promise," says Ross Anderson, a software security engineer at the University of Cambridge. But he adds: "I'm not sure that injecting raw machine code into attachments will be a panacea."

http://www.newscientist.com/article/mg20427355.600-dumb-code-could-stop-computer-viruses-in-their-tracks.html

MS AJAX Lib beta is out

luisabreu — Fri, 20 Nov 2009 14:10:45 GMT

You can get it from here. I’m curious to see if it contains new features…

Reactive Extensions for .NET

luisabreu — Fri, 20 Nov 2009 13:58:14 GMT

I’ve just noticed this post from the Parallel team. Now, this will be useful because it seems like it solves lots of the bugs introduced in the latest public CTP of the Parallel lib :)

New York voting machines hit by malware to lead to allegations of voter fraud and machine failures

donna — Fri, 20 Nov 2009 13:52:29 GMT

Voting machines in a New York town have been hit by a virus casting doubt on the accuracy of counts retrieved from any of the machines.

According to the Gouverneur Times Cathleen Rogers, the democratic elections commissioner in Hamilton County, claimed that a problem had been found with their voting machines the week prior to the election, and the ‘virus' had been fixed by a technical support representative from Dominion, the manufacturer. [...]

In Symantec's 2010 security predictions, it claimed that highly specialised malware was uncovered in 2009 that was aimed at exploiting certain ATMs, indicating a degree of insider knowledge about their operation and how they could be exploited.

http://www.scmagazineuk.com/new-york-voting-machines-hit-by-malware-to-lead-to-allegations-of-voter-fraud-and-machine-failures/article/158190/?

Security Trends to Watch in 2010

- Antivirus is Not Enough
- Social Engineering as the Primary Attack Vector
- Rogue Security Software Vendors Escalate Their Efforts
- Social Networking Third-Party Applications Will be the Target of Fraud
- Windows 7 Will Come into the Cross-Hairs of Attackers
- Fast Flux Botnets Increase
- URL-Shortening Services Become the Phisher’s Best Friend
- Mac and Mobile Malware Will Increase
- Spammers Breaking the Rules
- As Spammers Adapt, Spam Volumes Will Continue to Fluctuate
- Specialized Malware
- CAPTCHA Technology Will Improve
- Instant Messaging Spam

http://www.symantec.com/connect/blogs/don-t-read-blog
http://www.symantec.com/podcasts/detail.jsp?podid=b-2010_security_outlook

Students Signing Up For Computer Hacking

donna — Fri, 20 Nov 2009 13:45:52 GMT

The threat of cyber attacks on businesses and governments has led to a rapid increase in the number of universities offering students the chance to learn how to hack computer networks. The degrees have been set to feed the expanding industry of "ethical hacking", in which companies pay hackers to infiltrate their systems and expose weaknesses.

The prospect of a lucrative career in the security services, police, defence and IT industries has fuelled the popularity in the courses, with hundreds of undergraduates and graduate students already enrolled.

The ethical hacking degree at Abertay University in Dundee was set up in 2006 and was the first of its kind in the UK. Since then, other courses have been set up at Coventry, Northumbria and Sunderland, with more in the pipeline at Glasgow Caledonian, Edinburgh Napier and Leeds Metropolitan amongst others.

Colin McLean, the programme tutor in Ethical Hacking and Countermeasures at Abertay, told Sky News that teaching his students to hack networks means they will have the skills to protect banks, businesses and the critical national infrastructure against cyber attacks.

"The current people in those jobs are not protecting against hackers," he said.

"There should be jobs for people who know exactly what hackers are doing and obviously how to stop the hackers as well."

Critics have warned of the dangers of arming young people with knowledge that could so easily be turned to criminal endeavour.

http://news.sky.com/skynews/Home/Technology/More-Universities-Offer-Hacking-Courses-As-Govts-And-Frims-Look-To-Counter-Cyber-Criminal-Threat/Article/200911315458299?

Zip Tools: The Best Alternatives to WinZip and WinRar

Windows Tools, Help & Guides | Mintywhite.com — Fri, 20 Nov 2009 13:00:15 GMT

Windows 7 Media Center Customization Handbook | Get FREE books (Password: ilikefree ) Windows 7 Media Center Customization Handbook | Get FREE books (Password: ilikefree) WinZip and WinRAR are classic file managers for compressed archives; however Read More......(read more)

Update Rollup 1 for Exchange Server 2007 SP2

Rui Silva — Fri, 20 Nov 2009 11:50:36 GMT

Update Rollup 1 for Exchange Server 2007 Service Pack 2 (KB971534) is now available to download. Overview Update Rollup 1 for Exchange Server 2007 Service Pack 2 (SP2) resolves issues that were found in Exchange Server 2007 SP2 since the software was released. This update rollup is highly recommended for all Exchange Server 2007 SP2 customers. For a list of changes that are included in this update rollup, see KB971534 . This update rollup does not apply to Exchange Server 2007 Release To Manufacturing...(read more)

StreamInsight talk coming up at SQLBits

Rob Farley — Fri, 20 Nov 2009 11:47:24 GMT

My talk on StreamInsight is up next. I’ll try to blog more about that later. For now, I want to mention more about SQLBits itself. This is by far the largest SQL-only conference I’ve attended (I haven’t been to SQL-PASS yet), and it’s great to be involved.

Yesterday I had an all-day seminar about the new items for Developers in SQL 2008. It was a good time – the delegates responded very positively, and many of them have caught up with me since.

But for me, the conference is being a great way of catching up with (and meeting for the first time) a bunch of SQL people that I rarely see. I’ve met people that lived only a few miles from where I grew up, and people that read my blog (Hi!), discovered people who have connections to Adelaide, and even found that my Adelaide friend Martin Cairney (who is also here) has a strange connection to Donald Farmer (of Microsoft), that their parents shared a back fence or something… Now Trevor Dwyer tells me a colleague of his knows me from somewhere… the world is very small here.

My StreamInsight talk will be interesting I hope. I have some stuff to show off, and I plan to involve the audience a little as well. If you’re at SQLBits and feel like being involved in an interactive session, then definitely come along. I want to hear from people in the audience who have dabbled with StreamInsight and also other vendors’ Complex Event Processing offerings. This is a brand new technology from Microsoft, and there will be a large range of adoption levels in the room.

MS discovers flaw in Google plug-in for IE

donna — Fri, 20 Nov 2009 11:33:35 GMT

Microsoft has helped discover a flaw in the Google Chome Frame plug-in for Internet Explorer users.

The plug-in allows suitably coded web pages to be displayed in Internet Explorer using the Google Chrome rendering engine. Redmond warned that the plug-in made IE less secure as soon as it became available back in September, an argument bolstered by the discovery of a cross-origin bypass flaw in the add-in

Successfully exploiting the flaw creates a means for hackers to bypass security controls though not to go all the way and drop malware onto vulnerable systems.

Google acknowledged the flaw and urged users to update to version 4.0.245.1 of Google Chrome Frame. All users should be updated automatically to the latest version of the software, which also tackles a number of performance and stability glitches. Chief among these are problems handling iFrames, as explained in Google's security advisory here.

http://www.theregister.co.uk/2009/11/20/google_plug_in_bug/

IE8 bug makes 'safe' sites unsafe

donna — Fri, 20 Nov 2009 11:31:43 GMT

The latest version of Microsoft's Internet Explorer browser contains a bug that can enable serious security attacks against websites that are otherwise safe.

The flaw in IE 8 can be exploited to introduce XSS, or cross-site scripting, errors on webpages that are otherwise safe, according to two Register sources, who discussed the bug on the condition they not be identified. Microsoft was notified of the vulnerability a few months ago, they said.

Ironically, the flaw resides in a protection added by Microsoft developers to IE 8 that's designed to prevent XSS attacks against sites. The feature works by rewriting vulnerable pages using a technique known as output encoding so that harmful characters and values are replaced with safer ones. A Google spokesman confirmed there is a "significant flaw" in the IE 8 feature but declined to provide specifics.[...]

Late on Thursday afternoon, Microsoft told The Register: "Microsoft is investigating new public claims of a vulnerability in Internet Explorer. We're currently unaware of any attacks trying to use the claimed vulnerability or of customer impact."

Once its investigation is finished, the company will "take appropriate action," including issuing a patch or guidance on how users can protect themselves against exploits.

http://www.theregister.co.uk/2009/11/20/internet_explorer_security_flaw/

Cisco's free iPhone app grabs security feeds

donna — Fri, 20 Nov 2009 11:23:46 GMT

Cisco has made available a free iPhone app that can be used to receive more than a dozen security-related information feeds in customizable form related both to Cisco products and to general security topics, such as newly detected threats.

The Cisco SIO To Go iPhone application draws from the wealth of information continuously generated in Cisco's security intelligence operations (SIO) that monitor and consolidate information drawn from sensors and other sources about security threats worldwide. Michael Weir, manager of marketing for security, says the tool is Cisco's first iPhone app specifically for security; a few others were designed for use with Cisco's WebEx service and utilities.

"It's data that's valuable and actionable for you," says Weir about Cisco SIO To Go, which lets users select from a range of information, including risk reports or news-related events.

http://www.networkworld.com/news/2009/111909-cisco-iphone-app-security.html

Up Close and Technical look at SocialPet

donna — Fri, 20 Nov 2009 11:21:58 GMT

SocialPet, a new product from Jetmetric, lets administrators send fake phishing e-mails to selected employees to determine which ones know enough to ignore the messages and which don't - posing a threat to company security.

http://www.eweek.com/c/a/Security/Up-Close-and-Technical-look-at-SocialPet/

Job Spam Uses Twitter

donna — Fri, 20 Nov 2009 11:18:33 GMT

TrendLabs researchers were alerted to the discovery of spammed messages that contained Twitter URLs. The spam uses subjects such as N3 Earn Extra Income! 7L, C2 Exrtra Income Daily 4P, and Q0 $$$ Oppurtunity 6O. It informs users about supposed work-from-home opportunities for Google that pay good sums of money. It then entices users to click the Twitter URL to view the details of the bogus 'opportunities.'

When users click the link, they will land in the sender's Twitter page where another URL is posted in a tweet along with a message that encourages them to work online. The said URL points to a bogus site about working online and some success stories. This spam attack used Twitter as a technique to lure users into clicking the link. Since Twitter is a trusted source, users may think the email they received is legitimate.

http://blog.trendmicro.com/job-spam-uses-twitter/

Malicious Java Applet Poses as Carrie Prejean Video

donna — Fri, 20 Nov 2009 11:15:56 GMT

McAfee Labs has observed various spam runs exploiting the recent sensational Carrie Prejean news. The Prejean video is rapidly becoming one of the most searched-for topics ever on the net since the existence of the tape became common knowledge.

Evil Maid wanted, B.S. in Computer Science a plus

donna — Fri, 20 Nov 2009 11:10:58 GMT

Some weeks ago, Polish researcher Joanna Rutkowska published an attack on the TrueCrypt Full-Disk Encryption (FDE) software, which allows an attacker with access to an unattended PC to install a password sniffer in a first strike, and to steal the PC including the FDE password in a second strike.

She coined the term "evil maid attack" for this kind of incident, as it specifically applies to scenarios in which a traveller leaves a portable PC unattended in a hotel room, and a person who has access, but not necessarily dedicated technical skills (e.g. a room maid) actually executes the attack.

Technically, this person (in the absence of any reliable data on popular names for room maids, let’s just call her Trudy) inserts a bootable medium (e.g. a CD-ROM or USB stick), turns the laptop on, and consequently the bootable malware code on the medium gets executed.

This code then installs a transparent key logger in the Master Boot Record (MBR) of the hard disk. Later, the unsuspecting owner turns on his laptop, enters the passphrase and boots up. Without his knowledge, the keylogger intercepts the passphrase and stores it on the hard disk.

Finally, Trudy only needs to steal the laptop and to hand it over to the person who targeted the victim. Both steps don't require any particular technical knowledge, and can be performed by a person instructed/bribed by the master attacker.

It's not only TrueCrypt which is susceptible to this kind of attack, but basically all pure software FDE products. These products don't employ any additional hardware (e.g. TPM chip) to maintain the integrity of the boot process.

There are several ways to mitigate them quite efficiently (in Mac and Windows), find out in http://www.sophos.com/blogs/gc/g/2009/11/20/guest-blog-evil-maid-wanted-bs-computer-science/

Europe’s heartland in large-scale credit card theft

donna — Fri, 20 Nov 2009 10:55:46 GMT

Initial reports of a possible large scale breach of credit card data from a payment processing company in Spain are sketchy at best and the lack of information is not helping to allay the concerns of credit card customers across Europe.

In a statement released today, the Zentraler Kreditausschuss (Central Credit Committee) explained that German banks were acting in response to a warning issued by Visa and Mastercard over a potential data theft at a Spanish company. The Spanish company in question has not yet been identified as it is the subject of police investigations but it is widely believed to be a payment processing company responsible for dealing with payments made in Spain using credit cards issued in foreign countries.

In what is being described as a "primarily preventative measure" many German banks have begun cancelling more than 100,000 credit cards, notifying the card holders and issuing replacements. The mass replacement of cards is not restricted to Germany; banks in Austria Sweden and Finland have also begun to reissue credit cards according to reports.

http://countermeasures.trendmicro.eu/europes-heartland-in-large-scale-credit-card-theft/

SCOM: MPs atualizados para SP1 e R2

Cleber Marques — Fri, 20 Nov 2009 10:22:00 GMT

Pessoal, vou aproveitar o início deste feriadão para comentar um pouco sobre as alterações feitas nos MPs para o próprio SCOM, vejam:

Operations Manager 2007 SP1 Management Pack

(10/26/2009 - 800 KB)

http://www.microsoft.com/downloads/details.aspx?FamilyID=5fcc1917-7ba6-4b35-a38a-5d37fcbc9ef7

Entre as alterações realizadas para esta versão do Management Pack temos: Alterações no alerta para registro de SPN pelo SDK, Adição de uma regra para avisar sobre certificados que irão expirar (para agentes, gateways e servidores em domínios não confiáveis), e mais. Este Management Pack se aplica apenas ao Operations Manager 2007 SP1.

Operations Manager 2007 R2 Management Pack

(10/8/2009 - 1.4 MB)

http://www.microsoft.com/downloads/details.aspx?familyid=61365290-3C38-4004-B717-E90BB0F6C148

Entre as alterações realizadas para esta versão do Management Pack temos: alteração no layout de algumas views, problemas com a geração de alertas relacionados ao AEM, criação de uma nova regra que conta número de conexões da console e de agentes em um Management Group, e mais. Este Management Pack se aplica apenas ao Operations Manager 2007 R2.

Obrigado pela leitura e até a próxima publicação,

Abraços.

Cleber Marques

Microsoft MVP & MCT | Charter Member: SCVMM & MDOP
Projeto MOF Brasil: Simplificando o Gerenciamento de Serviços de TI
Meu Blog | MOF.com.br | CleberMarques.com | CanalSystemCenter.com.br

Exchange 2007 Sp2 Rollup 1 ist verfügbar

Wstein — Fri, 20 Nov 2009 08:25:00 GMT

Microsoft hat für Exchange 2007 Service Pack 2 das Rollup 1 zur Verfügung gestellt. Den Download findet ihr unter http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=de91f994-6263-47ef-89d7-6d344997459d im Microsoft Downloadcenter. Der zugehörige KB-Artikel mit der Liste der Änderungen ist unter http://support.microsoft.com/?kbid=971534 verfügbar.

Viel Spass bei der Installation

Viele Grüße

Walter Steinsdorfer