The 13 Security Bulletins Microsoft for this month...

We got a huge number of Microsoft security updates today:

1. MS10-003 - Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution (978214)
2. MS10-004 - Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)
3. MS10-005 - Vulnerability in Microsoft Paint Could Allow Remote Code Execution (978706)
4. MS10-006 - Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)
5. MS10-007 - Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)
6. MS10-008 - Cumulative Security Update of ActiveX Kill Bits (978262)
7. MS10-009 - Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (974145)
8. MS10-010 - Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)
9. MS10-011 - Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037)
10. MS10-012 - Vulnerabilities in SMB Server Could Allow Remote Code Execution (971468)
11. MS10-013 - Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)
12. MS10-014 - Vulnerability in Kerberos Could Allow Denial of Service (977290)
13. MS10-015 - Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)

The full version of their bulletin summary is in http://www.microsoft.com/technet/security/Bulletin/MS10-feb.mspx and MSRC's blog entry on the above is in http://blogs.technet.com/msrc/archive/2010/02/09/february-2010-security-bulletin-release.aspx

Microsoft Security Bulletin Minor Revisions - February 9, 2010

Issued: February 9, 2010

Summary

The following bulletins have undergone a minor revision increment.
Please see the appropriate bulletin for more details.

* MS10-002 - Critical
* MS09-060 - Critical

Bulletin Information:

* MS10-002 - Critical

- http://www.microsoft.com/technet/security/bulletin/ms10-002.mspx
- Reason for Revision: V1.2 (February 9, 2010): Added entry to the
Update FAQ to clarify how the URL Validation Vulnerability
(CVE-2010-0027) is addressed by both this update (MS10-002)
and the MS10-007 update. Also, corrected the severity rating
for Internet Explorer 6 Service Pack 1 when installed on
Microsoft Windows 2000 Service Pack 4 for CVE-2010-0027.
- Originally posted: January 21, 2010
- Updated: February 9, 2010
- Bulletin Severity Rating: Critical
- Version: 1.2

* MS09-060 - Critical

- http://www.microsoft.com/technet/security/bulletin/ms09-060.mspx
- Reason for Revision: V1.4 (February 9, 2010): Revised this
bulletin to announce a detection logic change to fix the
issue where the July 8, 2008 update for Outlook 2003
(KB953432) was incorrectly being offered in addition to the
update package for Microsoft Office Outlook 2003 (KB973705).
This is a deployment change only that does not affect the
files contained in the initial update. Customers who have
successfully updated their systems do not need to reinstall
this update.
- Originally posted: October 13, 2009
- Updated: February 9, 2010
- Bulletin Severity Rating: Critical
- Version: 1.4

Microsoft Security Advisory Notification - February 9, 2010

Issued: February 9, 2010

Security Advisories Updated or Released Today

* Microsoft Security Advisory (979682)
- Title: Vulnerability in Windows Kernel Could Allow
Elevation of Privilege
- http://www.microsoft.com/technet/security/advisory/979682.mspx
- Revision Note: V2.0 (February 9, 2010): Advisory updated to
reflect publication of security bulletin.
* Microsoft Security Advisory (977377)
- Title: Vulnerability in TLS/SSL Could Allow Spoofing
- http://www.microsoft.com/technet/security/advisory/977377.mspx
- Revision Note: V1.0 (February 9, 2010): Advisory published.

So why use http://connect revisited

Okay so I was wrong.  There's some magic in http://connect but the rest is the magic of group policy.

First off if you have a local profile it will move that local profile to the domain profile.

And that's where the SBS magic stops.

What happens next will happen whether or not you use the sbs connect or merely manually install the workstations.  All of the rest of the magic is actually pushed out by group policy.. not by any voodoo done by the SBS box.

•    Create a Windows SBS group on the Start menu, and place the Internal Web site link in the group.
•    Create a shortcut to the internal Web site on the desktop of computers running the Windows XP operating system.
•    Set the Home page link in Internet Explorer to point to the internal Web site.
•    Create favorite links in Internet Explorer for the Internal Web site, Outlook Web Access, and Remote Web Workplace.
•    Configure Windows Firewall ports to allow the following features to work:
•    Core Networking
•    Remote Assistance
•    Remote Desktop
•    Windows Management Instrumentation (WMI)
•    Configure Automatic Update on the client computer to install updates automatically.
•    Install the Windows Small Business Server 2008 Client Agent application on the client computer (Client Side Extension).
•    Configure the Windows Small Business Sever 2008 WMI Provider to help ensure system health monitoring.
•    Install the Windows SBS 2008 Desktop Links gadget on client computers running the Windows Vista operating system.
•    Deploys an outlook 2003 PRF auto configuration profile (Outlook 2007 utilizes Exchange 2007 autodiscover to connect)

All of that is all done via group policy.

Now about that Vista/Win7 gadget.  On a Win7/Vista box right mouse click on the right side and click on add gadgets.

There will be a SBS gadget in there.

Click on it and you'll get a short cut to key items

This gadget works when you are domain joined, not when you are not domain joined.

TechNet Webcast: Information About Microsoft February Security Bulletins

Solution: ConfigMgr2007 SP2 Setup stuck in Upgrade status

Microsoft Security Bulletin(s) for February 9, 2010

Note: There may be latency issues due to replication, if the page does not display keep refreshing

Today Microsoft released the following Security Bulletin(s).

Note: »www.microsoft.com/technet/security and »www.microsoft.com/security are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

Bulletin Summary:

»www.microsoft.com/technet/securi···feb.mspx

Critical (5)

Microsoft Security Bulletin MS10-006
Vulnerabilities in SMB Client Could Allow Remote Code Execution (978251)
»www.microsoft.com/technet/securi···006.mspx

Microsoft Security Bulletin MS10-007
Vulnerability in Windows Shell Handler Could Allow Remote Code Execution (975713)
»www.microsoft.com/technet/securi···007.mspx

Microsoft Security Bulletin MS10-008
Cumulative Security Update of ActiveX Kill Bits (978262)
»www.microsoft.com/technet/securi···008.mspx

Microsoft Security Bulletin MS10-009
Vulnerabilities in Windows TCP/IP Could Allow Remote Code Execution (974145)
»www.microsoft.com/technet/securi···009.mspx

Microsoft Security Bulletin MS10-013
Vulnerability in Microsoft DirectShow Could Allow Remote Code Execution (977935)
»www.microsoft.com/technet/securi···013.mspx

Important (7)

Microsoft Security Bulletin MS10-003
Vulnerability in Microsoft Office (MSO) Could Allow Remote Code Execution
»www.microsoft.com/technet/securi···003.mspx

Microsoft Security Bulletin MS10-004
Vulnerabilities in Microsoft Office PowerPoint Could Allow Remote Code Execution (975416)
»www.microsoft.com/technet/securi···004.mspx

Microsoft Security Bulletin MS10-010
Vulnerability in Windows Server 2008 Hyper-V Could Allow Denial of Service (977894)
»www.microsoft.com/technet/securi···010.mspx

Microsoft Security Bulletin MS10-011
Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (978037)
»www.microsoft.com/technet/securi···011.mspx

Microsoft Security Bulletin MS10-012
Vulnerabilities in SMB Server Could Allow Remote Code Execution (971468)
»www.microsoft.com/technet/securi···012.mspx

Microsoft Security Bulletin MS10-014
Vulnerability in Kerberos Could Allow Denial of Service (977290)
»www.microsoft.com/technet/securi···014.mspx

Microsoft Security Bulletin MS10-015
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165)
»www.microsoft.com/technet/securi···015.mspx

Moderate (1)

Microsoft Security Bulletin MS10-005
Vulnerability in Microsoft Paint Could Allow Remote Code Execution (978706)
»www.microsoft.com/technet/securi···005.mspx

Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so.

If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety 1-866-727-2338. International customers should contact their local subsidiary.

As always, download the updates only from the vendors website - visit Windows Update and Office Update or Microsoft Update websites. You may also get the updates thru Automatic Updates functionality in Windows system.

Security Tool
Find out if you are missing important Microsoft product updates by using MBSA

Anybody remember ‘Judy Patch’?

I have been trawling through some of my saved URL’s and came across this one. At the time, it was difficult to determine if the website was for real or just an attempt at comedy. Personally, I believe that it was constructed in all good faith that it would be of help to people.I don’t think that Judy Patch is still doing this, thankfully.

Judy Patch was not and is not alone. There are many ‘have a go’ heroes in this world, and some may be living not too far away from you. They are generally recommended by a friend of a friend. Finding a good local computer technician is not always easy to find. In Judy’s case, a look at her website would be enough to set alarm bells ringing.

This is an excerpt from ‘Judy Patch’ self help website. I have made no changes to the content whatsoever. For posterity, you can save a link to what remains of the original website.. http://www.leenks.com/link19958.htm 

-------------------------------------------------------------------------------------

Angelfire finally restored my web site, a hacker got into my main frame and got my hard drives Ip Address. Im taking donations at my paypal address so I can recover from this unfortunate event and continue to produce my informational CD about how computers work. If everyone could donate $1 I would be much obliged.

Hello, and welcome to my guide on computer hardware for beginners.

My name is Judy Patch and I have always been fascinated by computers.

I wrote this guide to inform others on the basic hardware components of today's standard home P.C.s

This site is sill a working progress, being my first website, its not perfect. Please email any queries, tips, etc Alternitavely, you can contact me via MSN messenger using this address. Thank you

-Judy

Central Programming Unit

the C.P.U. (or 'motherboard' as it is more commonly known) is the main part of hardware you need to know about. It is a large circuit that is made up of tiny microscopic wires and connections that pass data to different parts of the computer.

All computers have C.P.U.s

The C.P.U. has many plugs and slots for various other pieces of computer hardware such as R.A.M., a chip, cards, FDD disk drives, A.G.P. cards etc...

The C.P.U. looks quite complicated, but is in fact quite simple.

A C.P.U.'s speed is measured by the amount of busses it has. A Bus is a tiny microscopic electronic component that carries computer data. The more busses a cpu has, the more data can be carried at once, the faster it is. Most of today's modern C.P.U.s have over 700 busses.

An image of a typical CPU unit

Chip

The chip is, in a sense, the 'brain' of the computer. it plugs into a special slot in the the C.P.U. and processes all the computers data. The chip's speed is measured in Megahertz (mhz) the more mhz the chip has, the faster it is.

There are three main types of chips, Celeron, Pentium and A.M.D. There are no distinct differences between the three, just different brands, although, Pentium is the most widely known and is suported by most, if not all, software companies.

The chip has many pins on its under-face, these pins slot into the holes of the C.P.U.'s chip-slot so it can communicate with the C.P.U.

A Pentum chip

Random Access Memory

Random access memory, or R.A.M. is used by the computer to store files and data until the P.C. is shut down.

whenever you create a file, edit a document or make any similar changes, all this information is stored in your R.A.M. until you shut down, then it is transferred onto your HDD disk drive. Ofcourse a computer runs better if it has more R.A.M., the standard amout of R.A.M. for todays home P.C.s is about 512 mgb of R.A.M.

There are different types of R.A.M. which include EDO, SD and DDR. There is a new standard of R.A.M. beginning sale this year, it is known as DDR2 which holds more data than normal DDR R.A.M.

DDR3 is also expected to go on sale in early 2007 which will be able to hold even more data than DDR and DDR2.

A R.A.M. unit

HDD Disk Drive

HDD Disk Drives or 'Hard Drives' are where all the computers data is stored when the computer is off.

R.A.M. cannot keep data stored unless it has power, whereas hard drives can hold data even when no power is present. Hard drives come in a range of sizes, but the standard for today is about 80 gb.

Every Hard drive has a unique IP address. An IP address is used by the internet so the governmnet can keep track of you. That way if someone is doing something illegal, such as hacking, the government or police can identify this person by their IP address, simmilar to a cars liscence plate.

Some hackers however, have found ways to steal peoples IP address by using special virusses called trojan horses. Once the hacker has stolen someones IP address, they can use it while hacking to avoid being caught.

stealing IP addresses is illegal and I will not be explaining how to do it here.

A typical HDD Disk Drive

Adding disks into a cluster using PowerShell

With Windows 2008 R2, we now have the option to use PowerShell when you want to look at things in the cluster from a command line along with the cluster.exe command. If you want to add a disk to a cluster using PowerShell, there are several different options.

In my previous article, I explained how to add a disk in Windows 2008. This still applies to 2008 R2, but if you’re more comfortable using PowerShell, here are a couple of ways to do this. I am a novice PowerShell user so my examples are just some of the ways of accomplishing this task. Of course there are other ways to do it, so feel free to leave comments with your examples.

If you’ve got a disk that shows up as an available disk, adding a disk through PowerShell is very straight forward. Here's how we can check to see if there are any available disks for cluster:

PS C:\> Get-ClusterAvailableDisk

Cluster    : MyCluster
Name       : Cluster Disk 2
Number     : 6
Size       : 17425367040
Partitions : {X:}
Id         : 0xB6F579CA
                                                                                   

For this disk, the easiest way to add it to the cluster would be to use the following command:

PS C:\> Get-ClusterAvailableDisk | Add-ClusterDisk

Name                          State                         Group                         ResourceType
----                          -----                         -----                         ------------
Cluster Disk 2                OnlinePending                 Available Storage             Physical Disk

This command would add all disks from the Get-ClusterAvailableDisk output into the Available Storage group in your cluster using the default (terrible) naming convention for cluster disks. This is a nice little command to quickly add disks to the cluster. However, if you’re in a situation where the disk is NOT showing up in the Get-ClusterAvailableDisk output, like in a multi-site cluster, we’ll need to work a little harder to add the disk into the cluster. Previously, I showed how this was done using cluster.exe so we can apply these same concepts to PowerShell. First, we’ll create the empty resource:

PS C:\> Add-ClusterResource -Group "Available Storage"

cmdlet Add-ClusterResource at command pipeline position 1
Supply values for the following parameters:
Name: Disk X:
ResourceType: Physical Disk

Name                          State                         Group                         ResourceType
----                          -----                         -----                         ------------
Disk X:                       Offline                       Available Storage             Physical Disk

In this example, the Add-ClusterResource command prompted me for the missing parameters for the command. I manually specified the Disk X: value and the Physical Disk resource type. I can avoid having to manually enter these by specifying the -Name and -ResourceType values in the command:

PS C:\> Add-ClusterResource -Name "Disk X:" -ResourceType "Physical Disk" -Group "Available Storage"
	
Name                          State                         Group                         ResourceType
----                          -----                         -----                         ------------
Disk X:                       Offline                       Available Storage             Physical Disk

So at this point, I have an empty disk resource with no parameters to identify the disk:

PS C:\> Get-ClusterResource "Disk X:" | Get-ClusterParameter

Object                        Name                          Value                         Type
------                        ----                          -----                         ----
Disk X:                       DiskIdType                    5000                          UInt32
Disk X:                       DiskSignature                 0x0                           UInt32
Disk X:                       DiskIdGuid                                                  String
Disk X:                       DiskRunChkDsk                 0                             UInt32
Disk X:                       DiskUniqueIds                 {}                            ByteArray
Disk X:                       DiskVolumeInfo                {}                            ByteArray
Disk X:                       DiskArbInterval               3                             UInt32
Disk X:                       DiskPath                                                    String
Disk X:                       DiskReload                    0                             UInt32
Disk X:                       MaintenanceMode               0                             UInt32
Disk X:                       MaxIoLatency                  1000                          UInt32
Disk X:                       CsvEnforceWriteThrough        0                             UInt32
Disk X:                       DiskPnpUpdate                 {}                            ByteArray

I would then need to issue the following command in order to set the DiskPath value and query the output:

PS C:\> Get-ClusterResource "Disk X:" | Set-ClusterParameter DiskPath "X:"

PS C:\> Get-ClusterResource "Disk X:" | Get-ClusterParameter

Object                        Name                          Value                         Type
------                        ----                          -----                         ----
Disk X:                       DiskIdType                    5000                          UInt32
Disk X:                       DiskSignature                 0x0                           UInt32
Disk X:                       DiskIdGuid                                                  String
Disk X:                       DiskRunChkDsk                 0                             UInt32
Disk X:                       DiskUniqueIds                 {}                            ByteArray
Disk X:                       DiskVolumeInfo                {}                            ByteArray
Disk X:                       DiskArbInterval               3                             UInt32
Disk X:                       DiskPath                      X:                            String
Disk X:                       DiskReload                    0                             UInt32
Disk X:                       MaintenanceMode               0                             UInt32
Disk X:                       MaxIoLatency                  1000                          UInt32
Disk X:                       CsvEnforceWriteThrough        0                             UInt32
Disk X:                       DiskPnpUpdate                 {}                            ByteArray

At this point, I would bring the disk online and the cluster will then perform its magic to translate the DiskPath into the DiskSignature and other properties of the disk. Much like cluster.exe, I can use PowerShell to online the disk using the Start-ClusterResource command:

PS C:\> Start-ClusterResource "Disk X:"

Name                          State                         Group                         ResourceType
----                          -----                         -----                         ------------
Disk X:                       Online                        Available Storage             Physical Disk

PS C:\> Get-ClusterResource "Disk X:" | Get-ClusterParameter

Object                        Name                          Value                         Type
------                        ----                          -----                         ----
Disk X:                       DiskIdType                    0                             UInt32
Disk X:                       DiskSignature                 0xB6F579CA                    UInt32
Disk X:                       DiskIdGuid                                                  String
Disk X:                       DiskRunChkDsk                 0                             UInt32
Disk X:                       DiskUniqueIds                 {16, 0, 0, 0...}              ByteArray
Disk X:                       DiskVolumeInfo                {1, 0, 0, 0...}               ByteArray
Disk X:                       DiskArbInterval               3                             UInt32
Disk X:                       DiskPath                                                    String
Disk X:                       DiskReload                    0                             UInt32
Disk X:                       MaintenanceMode               0                             UInt32
Disk X:                       MaxIoLatency                  1000                          UInt32
Disk X:                       CsvEnforceWriteThrough        0                             UInt32
Disk X:                       DiskPnpUpdate                 {0, 0, 0, 0...}               ByteArray

Much like using the DiskPath value with cluster.exe, the cluster identifies the mount point specified in the DiskPath property value and then updates the cluster disk resource properties.

As this is PowerShell, we can combine the creation of the resource, setting of the private properties and the online of the resource all in one big, ugly command:

PS C:\> Add-ClusterResource -Name "Disk X:" -ResourceType "Physical Disk" -Group "Available Storage" |Set-ClusterParameter DiskPath "X:" ; Start-ClusterResource "Disk X:"

Name                          State                         Group                         ResourceType
----                          -----                         -----                         ------------
Disk X:                       Online                        Available Storage             Physical Disk

If you want more info on other available PowerShell commands for use with Failover clustering, I'd recommend reviewing this article which maps cluster.exe commands to their equivalent PowerShell commands.

Error handling in a NativeActivity

Note: This blog post is written using the .NET framework 4.0 RC 1

Using Workflow Foundation 4 the NativeActivity is the powerhouse when it comes to building native activities. One of its many capabilities is around error handling. Every so often I run into one of these things where things don’t quite work the way I expect them to and this is one of these cases.

The basics of error handling when scheduling child activities.

Whenever a NativeActivity is executed it is passed an instance of the NativeActivityContext which it can use to schedule other activities using the ScheduleActivity() function. This ScheduleActivity() function has a few overloads, one of them using an FaultCallback. This FaultCallback is called when some kind of exception occurs while executing the child activity being scheduled. The fault handling function is called with a couple of parameters including a NativeActivityFaultContext and the exception that is unhandled. The NativeActivityFaultContext contains a HandleFault() function used to indicate that the fault was handled. Not quite as straightforward as a try/catch block but given the asynchronous nature of workflow that would not work.

So I expected the following activity to catch any exceptions and continue.

public sealed class MyActivity : NativeActivity

{

    public Activity Body { get; set; }

    protected override void Execute(NativeActivityContext context)

    {

        context.ScheduleActivity(Body, FaultHandler);

    }

    private void FaultHandler(NativeActivityFaultContext faultContext, Exception propagatedException, ActivityInstance propagatedFrom)

    {

        Console.WriteLine(propagatedException.Message);

        faultContext.HandleFault();

    }

}

Do not use, this code has a serious error!

Lets test this code by executing the following workflow:

private static Activity CreateWorkflow()

{

    return new Sequence

    {

        Activities =

        {

            new WriteLine { Text = "Start outer sequence." },

            new MyActivity 

            {

                Body = new Sequence

                {

                    Activities = 

                    {

                        new WriteLine { Text = "Start inner sequence." },

                        new Throw { Exception = new InArgument<Exception>(ctx => new DivideByZeroException()) },

                        new WriteLine { Text = "End inner sequence." }

                    }

                }

            },

            new WriteLine { Text = "End outer sequence." }

        }

    };

}

Given this workflow I would expect the following output:

However what really happens is something else as I receive the following output:

As we can see the second inner WriteLine still executes even though the exception is caught at a higher level!

This behavior reminds me of the infamous VB6 On Error Resume Next where an error would just be ignored and the next statement executed. Not really what I was expecting or want.

So the fix is easy. All that is needed is to explicitly cancel the child activity being executed using the CancelChild() function. Below the correct version of my NativeActivity.

public sealed class MyActivity : NativeActivity

{

    public Activity Body { get; set; }

    protected override void Execute(NativeActivityContext context)

    {

        context.ScheduleActivity(Body, FaultHandler);

    }

    private void FaultHandler(NativeActivityFaultContext faultContext, Exception propagatedException, ActivityInstance propagatedFrom)

    {

        Console.WriteLine(propagatedException.Message);

        faultContext.HandleFault();

        faultContext.CancelChild(propagatedFrom);

    }

}

The correct fault handler

Enjoy!

www.TheProblemSolver.nl
Wiki.WindowsWorkflowFoundation.eu

End of the line

Windows 7 RC users will get notification around Feb 15th that usage of the RC will come to an end.. Details here..

http://windowsteamblog.com/blogs/windows7/archive/2010/02/01/important-reminder-regarding-expiration-of-the-windows-7-rc.aspx

Users of Windows 2000 should also be aware that support is coming to a very definite end. Without security updates of any kind, it will be increasingly difficult to maintain any level of safety if the computer is connected to the Internet for any length of time.

{Activa} tu conocimiento - Workshop Desarrollo para Windows 7.

9 de febrero 2010 16 de febrero 2010 23 de febrero 2010 2 de marzo 2010

Durante los martes del mes de febrero (o sea desde hoy) vamos a dictar un ciclo de talleres orientados a desarrollar aplicaciones cliente que sean compatibles y exploten todas las ventajas de la plataforma Microsoft Windows 7®.

Para este fin vamos a basarnos en el "Windows 7 Training Kit For Developers" el cual pueden descargar aquí.

Pueden asistir de forma presencial en las instalaciones de Microsoft Bogotá, o pueden asistir de forma virtual. Para inscribirse y conocer los demás temas de logística, lo pueden hacer a través del portal de {Activa} Colombia, aquí.

Los espero!!!.

Llegó el RC1 de Visual Studio 2010

Ya está disponible el RC1 de las diferentes ediciones de Visual Studio 2010, del .Net Framework 4.0 y TFS 2010.

Aunque inicialmente la pueden descargar los suscriptores de MSDN, seguramente al finalizar la semana estará disponible para todos los usuarios.  Más información la pueden conseguir en http://msdn.microsoft.com/en-us/vstudio/dd582936.aspx

Para los que ya tienen sus máquinas virtuales o infraestructura funcionando con el Beta 2, la ruta de actualización a RC es posible.  Les recomiendo que revisen el borrador de la guía: Team Foundation Server 2010 Beta 2 to RC Upgrade Guide.  Una guía similar va a estar disponible para actualizar de Beta 2 a RTM y de RC a RTM que son rutas de actualización también soportadas.

Esta versión incluye mejorar muy amplías en temas de desempeño, especialmente de los editores de formularios de aplicaciones, y  uso de memoria entre otras.  Igualmente incluye algunas características nuevas con relación a la versión Beta 2.  Algunos de estas nuevas características específicamente para pruebas las pueden encontrar en: http://blogs.msdn.com/vstsqualitytools/archive/2010/02/05/what-s-new-for-testing-tools-in-the-rc.aspx

Si quieren dar feedback sobre su experiencia con esta versión pueden contestar la encuesta disponible en https://mscuillume.smdisp.net/Collector/Survey.ashx?Name=VS2010-RC 

Características en Windows Server 2008 R2

Windows 2008 R2 proporciona un conjunto de funciones añadidas para el servidor llamadas características. Estas formaban parte de Windows 2008 con algunas nuevas en R2. De estas características se extraen las que son obligatorias para que ciertos roles funcionen, de las que añaden fiabilidad al servidor, como el clustering por ejemplo. Algunos sólo añaden estética, como Experiencia de Escritorio. Cuando planeamos nuestro servidor puede que necesitemos instalar algunas de ellas para lograr la configuración querida. En muchos casos no necesitaremos instalar características necesarias a un role. Las que son obligatorias normalmente se instalarán al instalar el propio role.

Para instalar una característica abrimos el Administrador del Servidor, y elegimos Características.

Pulsando en el enlace Agregar características obtendremos acceso al asistente:

Tabla de características:

How to change the temp location for the OAB Generation process on Exchange 2007 sp2 and Exchange 2010

Hi folks,

Dave Goldman blogged how to change the OAB Generation process temp folder. However it only applies for Exchange Server 2007 SP2 and Exchange Server 2010.

By the way, if you are going to change that make sure that you specify the new location in your exclusion list of your AV.

Read more at source: http://blogs.msdn.com/dgoldman/archive/2010/02/06/how-to-change-the-temp-location-for-the-oab-generation-process-on-exchange-2007-sp2-and-exchange-2010.aspx

Cheers,
Anderson Patricio
http://msmvps.org/Blog/AndersonPatricio
http://www.andersonpatricio.org
Twitter: @apatricio

Technorati : OAB, change path, geration process
Del.icio.us : OAB, change path, geration process
Zooomr : OAB, change path, geration process
Flickr : OAB, change path, geration process

Free Instructor-Led Training for OCS

Hi folks,

The OCS Communicator team blogged about two free training for Live Meeting and OCS Communicator (Introduction). It's a high level training to introduce the basic features of both products.

Check them out:

• Office Communicator https://events.livemeeting.com/967/15027/reg.aspx?pc=05
• Live Meeting http://office.microsoft.com/en-us/livemeeting/HA102429721033.aspx

Cheers,
Anderson Patricio
http://msmvps.org/Blog/AndersonPatricio
http://www.andersonpatricio.org
Twitter: @apatricio

MVPS HOSTS File Update Feb-09-2010

The MVPS HOSTS file was recently updated [Feb-09-2010]
http://www.mvps.org/winhelp2002/hosts.htm

Download: hosts.zip (148 kb)
http://www.mvps.org/winhelp2002/hosts.zip

How To: Download and Extract the HOSTS file
http://www.mvps.org/winhelp2002/hosts2.htm

HOSTS File - Frequently Asked Questions
http://www.mvps.org/winhelp2002/hostsfaq.htm

Note: the "text" version makes a great resource for determining possible unwanted connections ...
http://www.mvps.org/winhelp2002/hosts.txt (599 kb)

Quoi de neuf dans Microsoft Office 2010

La nouvelle version de Microsoft Office est désormais annoncée disponible pour le public en Juin 2010. Le développement touche à sa fin puisque la RC (Release Candidate) vient d’être finalisée.

• Quoi de neuf ?

Premier point, presque rassurant, l’interface n’est presque pas remaniée.

Le menu Office (que tous les débutants ne trouvaient pas) est remplacé par…un menu Fichier !!! Celui-ci, lance une nouvelle fenêtre, un menu plein écran, en quelque sorte… beaucoup plus intuitif !!

La grande nouveautés est le fait que Office existera pour PC mais aussi en version Web : si vous placez un document Office dans un dossier spécial sur Internet (SkyDrive),vous pouvez éditer celui ci directement via une version web de Excel, Word, PowerPoint, ou One Note. Ceci est aussi possible sur Firefox, Opera, et sur d’autres plateformes que Windows Mobile…

Le travail collaboratif est aussi mis en avant avec la possibilité de travailler à plusieurs sur un même document.

La fonction PowerPivot d’Excel va sublimer les possibilités d’analyse d’Excel, depuis des bases SQL, mais aussi des bases hétéroclites.

Outlook est remanié : le ruban y est présent, de nouvelles fonctions de réseau social, de travail collaboratif ainsi que de gestion des mails plus “intelligente et automatisée”.

PowerPoint est l’application mise en valeur, avec de nouvelles fonctionnalités de gestion multimédia (retouche et montage de vidéo) .

Les Microsoft TechDays sont une très bonne opportunité pour découvrir toutes ces nouveautés.

Laurent Gébeau – http://www.twitter.com/mtoo

Banning illegal file-sharers could breach human rights

Banning web users suspected of illegally downloading content from the internet could breach human rights legislation, says the Joint Select Committee on Human Rights.

According to the group of MPs and members of the House of Lords, the proposals set out in the Digital Economy Bill reference 'technical measures' which could be employed to block internet pirates' web connections.

However the committee said the technical measures had not been "sufficiently specified".

"The concern we have with this Bill is that it lacks detail," said Andrew Dismore MP and chair of the Committee.

http://www.networkworld.com/news/2010/020810-banning-illegal-file-sharers-could-breach.html

Leaky anti-virus defences letting malware through

Even users running up-to-date anti-virus software still get infected with malware, according to stats from an online malware scanning service.

Nearly a third (25,000 out of 78,800) of computers with up-to-date anti-virus software were discovered to be infected with malicious code when users scanned their PC using SurfRight's HitmanPro 3 behavioural scan.

SurfRight's analysis is based on 107,435 users who put their PC through its scanner between 10 October and 4 December 2009. Around a quarter of these users (28,608) either had no scanner installed or were running security software that was out of date.

Surfers are much more likely to turn to SurfRight's software if they suspected their Windows PC was running slowly or might be infected with malware, so the figures from SurfRight's audit are bound to come out worse than those from the general web population.

http://www.theregister.co.uk/2010/02/08/security_scanner_shortcomings/