welcome to the funcave » Will The Real EBS 2008 Exam Please Stand Up?:
http://www.chrisrue.com/funcave/2008/11/will-the-real-ebs-2008-exam-please-stand-up.html

Looking for the SBS 2008 exam?  Look for 70-653 for SBS and 70-654 for EBS exams.

There looks to be a 5 day course for SBS 2008-- Implementing and Administering Windows Small Business Server 2008:
http://www.microsoft.com/learning/en/us/syllabi/6445A.aspx  I've seen the price tag to be over $2,000 so budget accordingly.

It sounds like based on googling there will be a three day and a one day version as well but not sure of the details, or information at this time.  Stay tuned and if I hear anything I'll post on the blog about these courses.

From the partner managed newsgroup --

This is the third round of this Hyper-V Knowledge Sharing series. Now you
are familiar with Hyper-V and have general troubleshooting skills, How to
get more?

Selling tools:
==========
Integrated Virtualization ROI Tool Now Available
Strengthen the case for your solutions, reduce your sales cycle, and
demonstrate the total cost of ownership advantage of Microsoft
virtualization solutions by leveraging the Microsoft Integrated
Virtualization return on investment (ROI) tool.
http://www.microsoft.com/virtualization/tco-roi.mspx

Microsoft Assessment and Planning Toolkit
http://www.microsoft.com/downloads/details.aspx?FamilyId=67240B76-3148-4E49-943D-4D9EA7F77730&displaylang=en <http://www.microsoft.com/downloads/details.aspx?FamilyId=67240B76-3148-4E49-943D-4D9EA7F77730&displaylang=en>

Offline Virtual Machine Servicing Tool
The Offline Virtual Machine Servicing Tool manages the workflow of updating
large numbers of offline virtual machines according to their individual
needs.
http://www.microsoft.com/downloads/details.aspx?FamilyId=8408ECF5-7AFE-47EC-A697-EB433027DF73&displaylang=en <http://www.microsoft.com/downloads/details.aspx?FamilyId=8408ECF5-7AFE-47EC-A697-EB433027DF73&displaylang=en>

Gear Up - Key Sales Enablement Tool
The World is buzzing around virtualization. Your customers, our competitors,
and the media are all talking about it. But everyone's having the wrong
conversations. Virtualization is far bigger than what people think.
Together, Microsoft and you can tell a better story - one that completely
changes the game.  Download the kit in Onenote.
www.ms-gearup.com <http://www.ms-gearup.com>

Resource
=========
Microsoft Virtualization - Learning Portal
http://www.microsoft.com/learning/virtualization/default.mspx

Imagine a world where people and computers get the resources they need the
moment they need them, where companies are able to mobilize and manage the
resources of their entire infrastructure, both virtual and physical, to meet
fast-moving business demands. Welcome to the world of virtualization-where
all of this is a reality and almost anything is possible.

At Microsoft, virtualization is a means for enabling our long-standing
vision of dynamic IT, an environment that helps people in an organization
anticipate and respond to business challenges and opportunities. Microsoft
is the only company that provides an end-to-end suite of virtualization
products and technologies-all tied together by a centralized, policy-based
management system.

To help you deploy and manage the latest virtualization products-Windows
Server 2008 with Hyper-V and Microsoft System Center (including Virtual
Machine Manager 2008 and Microsoft Desktop and Application
Virtualization)-Microsoft Learning offers a complete set of training,
resources, and streamlined certification paths to help you stand out in your
field and get virtual now like never before.

Virtualization Resources
http://www.microsoft.com/virtualization/resources.mspx

Microsoft provides data center, desktop, and management virtualization
solutions. Here is a select group of resources that provide an overview of
the benefits you can achieve with our end-to-end solution set, including
white papers, podcasts, webcasts, and analyst research and reviews.

Hyper-V and Virtualization Technical Solution Center
http://technet.microsoft.com/en-us/virtualization/default.aspx

Blogs of Senior Program Manager, Hyper-V team, Windows Core Operating System
Division.
http://blogs.technet.com/jhoward/archive/tags/default.aspx


TechNet Blogs - Virtualization
http://blogs.technet.com/tags/SoftGrid/default.aspx?PageIndex=21

But I just had to share.  This is what you get when you cross a geek, a MINI owner, Martha Stewart and a Thanksgiving weekend.

While my Sister is restringing the tree with Christmas lights, I'm decorating gingerbread cookies and cinnamon ornaments.

http://www.handmadecountry.com/ezine/cinnamon.html

They look like gingerbread, smell like it but are obviously non edible and then you can tie them to packages as ornaments/gift tags.

(yeah okay, okay, so this isn't a geeky post, but you have to admit they are kinda cute in a bizarre way)

Somehow I have to do a PepperWhite Convertible lookalike in honor of my Sister's car.

Don't worry, we now return to your regularly scheduled geek blog.

Here.. read this:

How to succeed with small business cloud computing |SMB IT | Curtis Franklin | InfoWorld:
http://weblog.infoworld.com/smbit/archives/2008/11/small_business.html

And this looks interesting and I need to try it out just for grins:

http://docs.amazonwebservices.com/AWSEC2/2007-08-29/GettingStartedGuide/introduction.html

And a wise tip I read on a blog about cloud services.  When setting up any of the Microsoft Office Cloud services, don't hook it to your own Passport account but set one up specifically for that client.  If you are an employee or a consultant and you part ways you can hand over the access without having to try to get it untangled from your own personal passport account.

The other day I did a blog post about poking a hole in SBS 2008's internal firewall to ensure that Quickbooks ran properly and someone said that I needed to run an external firewall because SBS's looked like swiss cheese.  And he's right, I do need to run a proper firewall because the firewall on the Internal nic is NOT (let me repeat that) NOT to be seen/used/or thought of as an external facing firewall.  While you should not disable it as it provides critical hardening services to that firewall/networking stack, it should not be seen as any substitute for the external firewall.  Any application sitting on that server will need a policy/exclusion/allowance in that firewall policy.  Turn the firewall off, and you just locked yourself out of RDP.

This is the "swiss cheese" of SBS 2008's firewall in image form:

(Note I enable network discovery so that exception is not standard)

I also for grins clicked on that "notify me" just to see if it would do anything.

But bottom line, that's not the firewall settings of an outward facing firewall.

So what firewalls are good for SBS 2008?

Depends on your budget.  I don't consider Linksys style of firewalls to be "business" quality but I certainly have two here at home to be able to run a SBS 2003 and a SBS 2008 so that they don't complain about one another (if you need the ability to have a network outside of your SBS network, consider having two routers to provide this ability).

In a business setting, I want more.  The firewall guru of SMB, Amy Babinchak recommends http://www.calyptix.com/.  I like them for several reasons, one of them purely emotional.  If you remember Sally Fields emotional award ceremony a few years back.. "You like me, you really really like me!".... one can say similar about Calyptix and the SMB space.  "They like us, they really really like us".  We're not a "Enterprise cut down cost center" like some firewalls, nor are the interfaces need a degree in rocket science to set up.  And you can't go wrong with a paranoid Lawyer being the CEO either.   

I think you need to look at your budget and paranoia, and standardize on models for your client base.  It makes it much easier to manage.

Rolled out and baked.. now to decorate.  Hope everyone had a nice Thankgsgiving holiday.

The guidance states as follows:

http://technet.microsoft.com/en-us/library/dd283088.aspx

Do not run any applications, such as antivirus programs, in the management operating system---run all applications on virtual machines. By keeping the management operating system free of applications and running a Windows Server 2008 core installation, you will need fewer updates to the management operating system because nothing needs software updates except the Server Core installation, the Hyper-V service components, and the small (approximately 600 KB) hypervisor.

Note
If you need to use the full version of Windows Server 2008 and run applications in the management operating system, then you should run an antivirus program there.

Now while I recommend that when you are first getting started using the full GUI of Windows 2008 and HyperV is wise so that you get the basic foundational concepts down, I'm still not convinced that if you do nothing but run HyperV role in the management operating system that you need an antivirus at that level.  You put risks on the system of false positives and of virtual disks getting mangled by file scanning. 

I'm not convinced that in the SMB space even if you use full GUI that the risks of running antivirus on the parent are worth it.  You certainly need to ensure that you exclude the virtual disks to ensure that you won't suddenly lose the virtual disks.

The parent shouldn't be surfing or emailing or doing anything but run that HyperV.  If you are worried about something infecting the HyperV from the guest, I think you have a bigger problem that needs to be addressed.  What kind of connectivity are you building between that HyperV parent and the guest?  The amount and type of connectivity will dictate the amount and types of infection risk.  Now compare that to the risk that A/V companies will probably not have a HyperV build in their test matrix, that you run the risk of false positives, that if there is an issue caused by that a/v it will be the last thing you look for.  Is the risk of infection on the parent greater than the  mitigation you can develop/understand?

I think the risks outweighs the benefits up on that parent and we shouldn't knee jerk install antivirus on everything.

 Small Business Server 2008 – Screencast series and Video Tutorials:
http://www.netometer.com/video/sbs.php

Dean Stefanov does a screencast on how to change the smarthost port in Exchange 2007

How to Change Smart Host port in SBS 2008 | NetoMeter Blog:
http://www.netometer.com/blog/?p=52

Went to help someone fix their Internet connection.  Vista, wireless laptop would connect to the Linksys router but not the Internet.  Tried to walk through some troubleshooting steps but no go.  Looked at the laptop, tried to do some diagnostic steps and realized that the security center indicated that the a/v was not installed.  But clearly Norton (not my fav) was installed on the workstation as the icon in the system tray indicated.  But trying to launch the control panel would launch nothing.  Hmm.. So we had media and a product key to reinstall so let's try uninstalling Norton to then reinstall it.

Save your Norton 2008 Product Key, then download and run the Norton Removal Tool:
http://service1.symantec.com/SUPPORT/norton2008.nsf/docid/2007082908475279?Open&docid=2005033108162039&nsf=tsgeninfo.nsf&view=docid

Norton fortunately provides an uninstaller program as attempting to uninstall it would fail.  About 1/2 way through the process of using the removal tool, Internet access came back.

Many times your security solutions may be a cause of issues as well.

This looks to be interesting... however I do have to say that the comment that "just like all other FireStarter events" makes me ask what other FireStarter events have there been?

Windows FireStarter- Live Meeting:
http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?EventID=1032396930&EventCategory=2&culture=en-US&CountryCode=US

On December the 12^th (Friday) we are hosting a Windows FireStarter! If you are a Developer or an IT Pro you’d definitely not want to miss this event.

Just like all other FireStarter Events, we will be recording and making the entire content available for download post event. All the sessions in this event are presented to you by some Excellent Microsoft Speakers who are Subject Matter Experts.

Take a look at the agenda below:

We are bummed that you cannot attend this meeting in person! We’ll strive to make sure that you have as good an experience when you attend Online. If you still think you can make it in person – click here to REGISTER FOR THE IN-PERSON EVENT.

To participate in this event via Live Meeting, here’s what you’ll need to do:

When: December 12^th 2008 8:30 AM- 5:00 PM PACIFIC

The Live Meeting Space won’t be active till 8:00 AM on December 12^th

Computer Audio
To use computer audio, you need speakers and microphone, or a headset. Questions can be asked via the Q&A panel in Live Meeting.

Really going down memory lane tonight just to see if I could.

Okay so it's kinda like seeing if Microsoft Bob will load on Vista, but that's indeed SBS 4.0 on Vmware.  For the record it wouldn't load on HyperV and it's barely up in Vmware.  The video card extenstions won't install so the video is funky, but it's an interesting experience in reminding myself of how much everyone has dealt with change through these years.

To build boot floppies you can use MagicISO and then save the files and img or vfd files.  You may need to save them and rename them to the vfd format (the images won't mind a bit)

Doing some actions on that build to try to deal with drivers and what not.. well it's just painful let me put it that way.  It definitely has reinforced to me just how much change occurs in technology.

I hope you'd not spent day one of a Thankgiving weekend strolling down memory lane like I have.  You should be preparing for what's coming ahead:  Download the SBS 2008 documentation -- http://technet.microsoft.com/en-us/library/cc707659.aspx , sign up for a trial of MS online -- http://www.microsoft.com/online/default.mspx

Small Business Server 4.0 Readme.wri File:
http://support.microsoft.com/kb/180108

When you read these old chesnuts of readme files, it's a wonder people got stuff installed at all isn't it?  You had to build boot floppies first and use that to build the server.

So the other day for one of the guys that needed to test a migration from SBS 2000 to SBS 2008 I started digging through all my old media that I have.  I have all the way back to 4.0.  Well .. I have cdroms and floppy disks... but I should say it's not "workable" media for those boot floppies for sure.  Back then you couldn't boot from cdroms but had boot media.  You could regenerate that boot media, but the only computer I have that had a floppy disk drive at home is my Server.  Then I'm trying to find floppy disks that even work anymore.

Windows NT Boot Disks | Boot Disks:
http://www.bootdisks.us/windows-nt/24/windows-nt-boot-disks.html

Even that site that builds boot media is not liking to write to the floppy disks that I have.  Given that they are probably 8 years or more old and bit covered in dust, I'm not surprised.

So I'm a wiz at magicdisk, and magiciso... do they have a magicfloppy out there somewhere?

Hey I may have found one formattable floppy disk... amazing.

Think back to all the change in technology in the last how many years and how we save and store data has changed.  Think of how much more we save and store.  Change is one thing that is constant in technology isn't it?  One thing to keep an eye on is how we store our stuff.  Are we future proofing it as we store more and more.  Sticking it in platforms we can move it out and off of in future years as technologies change? 

Spoke too soon, the floppy disk writing job is dying.  Off to try to dig up another one.  Obviously floppy drives were/are not a technology that ensured future proofing.

So how many of your computers these days don't have a floppy disk?  I'm still spec'ing them on our desktops just because the HP model doesn't charge hardly anything at all for that drive and on rare rare occasion we still do get license disks and what not on it but I'm to the point that I should be asking myself why I do spec machines with it.

Windows Server 2008 Virtualization with Hyper-V: Supported Guest OS:
https://www.microsoft.com/windowsserver2008/en/us/hyperv-supported-guest-os.aspx

If you want to test a migration from SBS 2000 to SBS 2008 with a swing up to Win2k3 in the middle, for the record, a SBS 2000 will load in HyperV.  However ensure that you patch it up to SP4 in order to be able to use a mouse over an RDP window

Yes that is a SBS 2000 inside a hyper V.  And after I got it up to SP4 and it found a new virtual nic I think it's screwing up the dns as it's dog slow now.  And my first thought was 'dang, there's no fix my network wizard'.

Sometimes instead of waxing poetic about how wonderful and simple technology used to be in the "good old days", dig out of your archives that old software and see just how painful it was back then.  Patch Management was a joke.  Reconfiguring networking was a peril. Configuring Exchange was a series of how tos.

In case you are wondering the best way to do virtual floppies..check out this post: Virtual Floppy Drive - Floppy Disk Imaging and Virtualization Part II - the freeware review:
http://www.freewarereview.info/2006-03/virtual_floppy_drive_-_floppy_disk_imaging_and_virtualization_part_ii.html

Paul Thurrott's SuperSite for Windows: MOS or Windows SBS 2008? Vive la Différence!:
http://www.winsupersite.com/live/mos_v_sbs_02.asp


"But real change can and should come about only when that change makes a real difference, and makes things better. Cloud computing is that kind of change. And you can resist it. But it's happening."

"There are absolutely valid reasons to go either way at this point, and maybe there always will be, though I feel that the needle will dip ever closer to the cloud computing end of the scale more and more as time goes by."

"We live in interesting times. When it comes to the debate over cloud computing vs. self-hosted servers, I say, "viva la difference." There is, and will always be, a place for both approaches, though again, I think the volume market will migrate away from servers and to services. When it comes to Microsoft's role in this changing marketplace, well, that's a gray area, and one that we can and should debate. I'm not sure that what Microsoft is doing is what's best for its ecosystem. But I do feel, ultimately, that it's probably best interest of not just itself, but also of its customers. It's hard to complain about that. "

And that at the end of the day is the key.  The decisions that are made need to be made based on the needs of the business and not cookie cutter decisions because the vendors want businesses to do one thing or another.

Set up a test http://www.microsoft.com/online/default.mspx But get the truth for yourself and don't get sucked into the hype.

Wanna be paranoid?

Wanna support paranoia?

Every night in my mailbox I get a batch of great tailored articles on security. 

I urge you to sign up and donate and get more paranoid.

-------- Original Message --------

http://www.infosecnews.org/donate.html

Richard Clarke once said...

"If you spend more on coffee than on IT security, then you will be 
hacked. What's more, you deserve to be hacked."

For $1.00 at the local diner, you can buy a bottomless cup of coffee. At 
the local bookstore, a large three shot, double latte cappuccino is 
about $5.00. Ideally we'd like to see every InfoSec News subscriber 
sacrifice at least one or two (or more) days without his or her coffee 
to enable us to continue the work we've been doing, but also improve our 
services.

Donation drives in the past have implemented the InfoSec News RSS feed, 
a digest version of InfoSec News, and the capability to run searches of 
past InfoSec News articles. A fast server was donated and has been 
running for some two and a half years, I can't say enough good things 
about our hosting company except with present economic conditions at 
this end its been tough trying to cover the related expenses of keeping 
it all up and running.

A donation of $1 to $5 isn't a lot when you consider the work done 
behind the scenes here, such as dealing with Microsoft SMTPSVC, bounced 
mail, and dead addresses. Its no small feat finding, filtering, 
formatting, and analyzing the news stories that more than 5000 
information security, homeland defense, and open source intelligence 
professionals depend on, on a daily basis.

http://www.infosecnews.org/donate.html

Through PayPal we can accept donations in all the major currencies or 
with Amazon's Honor System, you can use your credit card without 
retyping it if Amazon already has it on file. However, Amazon and PayPal 
keeps 2.9% of your payment plus a fixed cost of $0.30 per transaction.

If you don't trust either one of those methods, that's OK, the mailing 
address here is...

William Knowles
Post Office Box 24
Golf, Illinois 60029-0024
U.S.A

I'm sorry but donations to infosecnews.org are not US tax deductible as 
charitable contributions. They may however be deductible as an operating 
expense. Contact your accountant for a determination. The same applies 
in other countries where corporations can make deductible donations 
under the terms of "Good Will".

The signature file space is also available, companies or organizations 
interested in sponsoring the list can contact me at: 
wk (shift2) infosecnews [dot] org

We greatly appreciate any amount you're willing to send out way, 
Thank you for your support! 

William Knowles 
InfoSec News


_______________________________________________      
Help InfoSecNews.org with a donation!
http://www.infosecnews.org/donate.html

P.S. yes donations would be tax deductible as a business expense for a business.

A while back I did a blog post that talked about a script to move your users after you migrated them.  I took it off the blog because the script was not complete.  I've gotten a few requests for that script and it tells me that the documentation is still confusing.  I know that there is updated documentation in the works but I'm not sure of the ETA.

In the mean time the key thing you do is to use the user account wizards to "migrate" the users and this will plop them into where they need to go.  You want to use this wizard because it will ensure that all of the key elements are as they should be.

Change user account roles

Map permitted computers to user accounts

That's probably a bit hard to read, huh?  How about this?

Check out the Perth SMB IT Professional Group!

The Perth SMB IT Professionals is a community for Information Technology service providers specialising in the (SMB) Small and Medium Business space in Western Australia.

The aim of the community is to share information, provide peer support, open discussion and best practices in providing Information Technology infrastructures and services to (SMB) Small and Medium Businesses.

The group is NON-vendor specific and aims to discuss best of breed solutions that address the needs of SMBs cost effectively, manageably and reliably with a High ROI to both the SMB and the Service provider. 

Please join our mailing list here: http://tech.groups.yahoo.com/group/smbitproperth/

Question: I've just read this comment from another tech: 1. Server 08
Has a Vista backbone, and all of the quirks and nusances that go along
with being beta tested on as a customer. (shame on you MS) 2. Vista is
an IT Professionals nightmare. With 7 different flavors of the same OS,
all but three are essentially "home versions" that have various
functionality hollowed out of them. This was done in an effort to gouge
you into buying Ultimate, Business, or Enterprise additions which are
the equivalent of XP Pro, respectively. Unless you have one of these 3,
you can give up the hopes of remote desktop sessions, or having the
ability to join a domain. 3. Vista and XP do not play nice together.
Simply put....Not compatible in a networked enviroment. 4. Unless your
client has A shiny New 08 server, with all workstations being Vista
Business, and some pretty deep pockets to pay you for reaserch and Admin
time.... Do the smart thing and walk away. What are your comments on
2008?

So during the www.thirdtier.net webcast with Amy and Eriq, one of the Q&A questions was this one above.  Wow.  There are just so many things one can comment about that question isn't there? Let's first get some reality.  While one may not like all of the Home Premium, Basic and what not, the three business versions of Vista including Ultimate, Business and Enterprise are indeed the only ones that will join a domain.  It is what it is.

 Next, the idea that Vista and XP do play nice together.  I guess I must be the oddball as I can get them to play nice. 

The idea that unless your client only has Server 2008 and Vista that you need to walk away from Windows 2008?

Now there are those that call my hestiation to go hog wild on cloud solutions as being one sided cloud bashing.  Personally, I call it making personal decisions for my firm and holding back to watch the fallout before choosing sides.  As I have stated before "at this time, for MY firm" I cannot recommend changing my premises solutions to a cloud one.  They are not comparable at this time with the technology I have and what I plan to have. 

But that doesn't mean that I'm advocating that one puts their head in the sand, doesn't sign up for betas for such things, should look to a cloud vendor to partner with and what not.

And I'm certainly not advocating the attitude evidenced in that question.  For that tech that originally posted the original comment, why in the world are you in technology in the first place for heaven's sake?  Did you have a hard time learning Windows NT?  Did you hate moving to Windows 2000?  If that was a change you embraced, what has changed between then and now?

If technology is your job and this is your attitude maybe this is time to reevaluate your career choices?  I don't mean to be harsh or rude, but the attitude that I see in that post floors me and I see it much too often on the web lately...this closed attitude.

I'm not willing to learn.

I'm not willing to investigate.

I'm not willing to sign up for betas.

For the record I have and will continue to investigate cloud offerings.  I am deploying Vista.  I have Windows Server 2008.  I plan on SBS 2008.  My plans may change.  My decisions may change.  I will still be cautious and hold back and watch what the vendors do and move and change to and guide MY firm accordingly.  But to say "Do the smart thing and walk away".... I think that person needs to take a break from technology.

Watch this... how will Technology change in the next 10 years:

http://www.microsoft.com/emea/teched2008/itpro/tv/default.aspx?vid=79

From the SBS 2008 newsgroups:

Symptoms:
- When browsing the OWA website from the SBS Console Shared Folders and Web 
Sites, we get a blank white page with an error indicator in lower left corner 
of browser with the following error:

Line: 7
Char: 1
Error: Syntax Error
Code: 0
URL: https//remote.mywebite.com/owa/auth/logon.aspx?
        url=https://remote.mywebsite.com/owa/&reason=0

- Secondly when logged on through the RWW and you click on the Check Email, 
a second page is opened. This page is all white with what appears to be a 
directort or folder structure as links on it. They look similar to folders 
that would contain my emails. When I click on any of them, none seem to 
function. Also the page has a series of red X's on it next to the "folder" 
links. This behavoir is the same local as well as from remote computers.

Resolution:  

Based on my experience, this issue may occur if the new Exchange updagte is 
corrupted.  The latest Exchange Server 2007 Service Pack 1 update is 
release update Rollup 4. Please check on the Exchange server to see if it 
is applied, if not, please install it. If you have installed, please 
uninstall it and then reinstall it again.

Install the latest release update Rollup 4 for Exchange Server 2007 Service 
Pack 1
 
Update Rollup 4(Version: 8.1.311.3) for Exchange Server 2007 Service Pack 1 
(KB952580)
http://www.microsoft.com/downloads/details.aspx?familyid=8B492ED2-EA92-412F-A852-3AA1C58D9499&displaylang=en   

The Official SBS Blog : Key Small Business Server 2008 Log Files:
http://blogs.technet.com/sbs/archive/2008/10/01/key-small-business-server-2008-log-files.aspx

Okay so if the server logs are there... where are the logs on the workstation when the connect wizard barfs?

Under C:\Program Files\Windows Small Business Server\Logs is where.

Cool huh?

Truly the easiest way to get external clients connected to your SBS 2008 is a third party trusted cert.  But what kind?  The expensive SAN cert?  The wildcard one? 

Here are the ones that work --

Godaddy $20 special.  Yes the cheapest cert Godaddy has will work with SBS 2008's Outlook Anywhere/Exchange and all that because of the magic from the SBS dev folks.  One caveat is that this low priced cert does come with that funky intermediary cert that your cell phones either need to get that intermediary on the device or they need to natively trust Godaddy from the get go (open up the phone, go to the trusted certs see if Godaddy is listed)

Eriq Neale of www.thirdtier.net recommends http://www.dotster.com/products/security/.  They are nearly as cheap, don't have the intermediary cert to deal with.

If you do not use the trusted cert, remember that you need to provide a way for that self signed cert to get deployed.  I've stuck it up in SharePoint for folks to pull down if they are not on the internal network during the beta.
The Official SBS Blog : How Do I Distribute the SBS 2008 Self-Signed SSL Certificate to My Users?:
http://blogs.technet.com/sbs/archive/2008/09/30/how-do-i-distribute-the-sbs-2008-self-signed-ssl-certificate-to-my-users.aspx