www.fusspils.net

  • Increase font size
  • Default font size
  • Decrease font size

DPM 2010 Beta

Wednesday, 30 September 2009 11:11 Fusspils
E-mail Print PDF

There is a public beta of DPM 2010 that has just been released.  I am really looking forward to testing this one out, some of the highlights -

Laptop Protection

Though we enabled client protection in DPM 2007 SP1, it was designed for desktops and not optimized for mobile/often-disconnected user. DPM 2010 laptop feature is completely built from scratch and offers an optimized experience for DPM Admin as well as the laptop user.

  Seamless backups for roaming users (Backup over VPN, Backup when connected, Alert for SLA’s not met)

  Rich support for folder inclusion/exclusion and file types exclusion

  Integration with local Shadow Copies for Vista & W7 

  Scales up to 1000 clients per DPM server

  Support for XP, Vista, and Win7


Reliability and Manageability

In addition to features, this is an area where we’ve made some really significant investments in DPM 2010, with special recognition of the feedback from our enterprise customers who are deploying DPM across the large Windows farms within their heterogeneous environments.

  A new “Auto-Grow” feature that will extend the replica volume as the production data grows. 

  You will see far fewer “Replica Inconsistent” errors and many of them will automatically get fixed by Auto-Rerun, Auto-CC (Consistency Check).

  We have made DPM 2010 very flexible and robust to adapt for environment/configuration changes.

  There is a new Backup SLA report that you can configure for your needs and get it emailed every day.  You can even view it in the Protection View of the DPM UI, so no more custom scripts to determine if you have met your backup requirements.

Full article
Download DPM 2010 Beta here

Last Updated on Wednesday, 30 September 2009 11:13
 

Microsoft Security Essentials

Tuesday, 29 September 2009 17:33 Fusspils
E-mail Print PDF

The Microsoft antivirus/anti malware solution is live now.  I have only heard good things about this from Beta testers so I will be testing it out and will post results soon

Get it here

 

Vulnerability in Wireless LAN AutoConfig Service Could Allow Remote Code Execution

Sunday, 20 September 2009 21:13 Fusspils
E-mail Print PDF

Microsoft Security Bulletin MS09-049 - Critical

General Information
Executive Summary
This security update resolves a privately reported vulnerability in Wireless LAN AutoConfig Service. The vulnerability could allow remote code execution if a client or server with a wireless network interface enabled receives specially crafted wireless frames. Systems without a wireless card enabled are not at risk from this vulnerability.

This security update is rated Critical for supported editions of Windows Vista and Important for supported editions of Windows Server 2008. For more information, see the subsection, Affected and Non-Affected Software, in this section.

The security update addresses the vulnerability by extending the Wireless LAN AutoConfig service to properly validate wireless frames prior to processing them. For more information about the vulnerability, see the Frequently Asked Questions (FAQ) subsection for the specific vulnerability entry under the next section, Vulnerability Information.

Recommendation. The majority of customers have automatic updating enabled and will not need to take any action because this security update will be downloaded and installed automatically. Customers who have not enabled automatic updating need to check for updates and install this update manually. For information about specific configuration options in automatic updating, see Microsoft Knowledge Base Article 294871.

For administrators and enterprise installations, or end users who want to install this security update manually, Microsoft recommends that customers apply the update immediately using update management software, or by checking for updates using the Microsoft Update service.

Get It

 

Judge Orders Gmail Account Deactivated After Bank Screws Up

Monday, 28 September 2009 22:35 Fusspils
E-mail Print PDF

If you havent been following this story it goes like this.  A bank employee sent some rather sensitive information/data to an incorrect Gmail account.  The bank demanded that Google release the Gmail account holders name/details and are taking them to court as they refused to disclose the info.  I Don't like the way that the bank is using a "sue you" method as an internal security policy.  The Story...


A California federal judge has ordered Google to temporarily de-activate a Gmail account after a bank mistakenly sent sensitive data to the account.

U.S. District Judge James Ware also ordered Google to disclose the identity of the Gmail account holder.

The Rocky Mountain Bank of Wyoming sued Google to obtain the account holder’s name after a bank employee erroneously e-mailed an attachment to the account containing sensitive information on 1,325 individual and business bank customers. The attachment contained customer names, addresses, Tax ID and Social Security numbers and loan information.

The employee sent a second e-mail to the recipient instructing the person to delete the e-mail and attachment without opening it. When the employee got no answer, the bank contacted Google to find out if the account was active or not. Google wouldn’t provide any information without a court order so the bank sued Google to get the account holder’s name and contact information.

Google has stated that once it receives a court order to identify an account holder, its policy is to notify the account holder before complying with the order to give the account holder a chance to file an objection

Credit

 

New rather nasty trojan aimed at stealing bank details

Friday, 18 September 2009 20:04 Fusspils
E-mail Print PDF

One of the world's nastiest password-stealing trojans evades detection by the majority PCs running anti-virus programs, according to a study that examined 10,000 machines.

Zeus, a stealthy piece of malware that sits on a PC and waits for users to log in to bank websites, is detected just 23 per cent of time by AV programs, according to the study (PDF) released by security firm Trusteer. Even AV programs with up-to-date malware signatures were unable to identify the infection a majority of the time, the authors said.

Zeus, which also goes by the name Zbot and PRG, escapes detection using sophisticated techniques such as root-kit technology, the Trusteer report said. The company is able to detect it by examining the fingerprint Zeus leaves when it penetrates an infected PC's browser process.

A recent report estimated that Zeus is the No. 1 trojan, with 3.6 million infections in the US alone, or about 1 per cent of the installed base of PCs. Trusteer's study, which found Zeus accounted for 44 per cent of the banking malware infections, was consistent with that finding. After sneaking onto a PC, it sits quietly in the background until a user logs on to a financial website. It then sends the login credentials to a remote server in real time, sometimes by use of instant messaging programs.

Of Zeus-infected machines, about 31 per cent don't run AV at all and 14 percent run AV that's out of date. The remaining 55 per cent had AV programs that were up to date.

Source The Register

Last Updated on Friday, 18 September 2009 20:06
 
More Articles...


Page 4 of 8