Discover a free security tool that leads you through a series of questions to help you confidently harden your security.
-
Categories
-
Archives
- July 2010
- June 2010
- May 2010
- April 2010
- March 2010
- February 2010
- January 2010
- December 2009
- November 2009
- October 2009
- September 2009
- August 2009
- July 2009
- June 2009
- May 2009
- April 2009
- March 2009
- February 2009
- January 2009
- December 2008
- November 2008
- October 2008
- September 2008
- August 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- February 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- June 2007
- May 2007
- April 2007
-
Blogroll
- Denis Gobo
- IIS.net
- Jesper’s Blog : Windows Server 2008
- Microsoft Windows Small Business Server Blog posts | TechRepublic
- TechNet Announcements for Week of 12/14/2009
- TechNet How-to Videos
- Windows Server 2008 - Blogs
- Windows Server Clustering & PCNews
- Windows Server Division WebLog
- WindowsNetworking.com
-
Meta
Extend the monitoring and management capabilities of System Center Operations Manager 2007 to non-Microsoft platforms including Solaris, HP-UX, Red Hat, SUSE, and now (with this beta refresh) AIX.
Watch the third interview with the server virtualization team to learn more on Virtual Machine and Volume Shadow Copy Service snapshots.
Watch TechEd speaker J. Peter Bruzzese talk about best tricks and tips collected from Microsoft developers and bloggers.
Excerpt from the post on the SBS blog by group program manager Dean Paron:
On behalf of the SBS team, I am extremely pleased to announce that Windows Small Business Server 2008 software has been finalized! Today both SBS Standard and Premium are being released to manufacturing, which means we begin the process of finalizing international versions, creating media, building packaging, delivering the product to distribution channels and handing it off to our OEM partners, so it will be widely available by our November 12 launch. (More information about launch will come in the future.)
Joel Sider
In June of this year, we released a beta version of UrlScan 3.0, which can help mitigate SQL injection attacks. Today, we’re happy to announce the final release of UrlScan 3.0 for Internet Information Services (IIS).
UrlScan 3.0 is a security tool that restricts the types of HTTP requests that IIS will process. By blocking specific HTTP requests, the UrlScan 3.0 security tool helps to prevent potentially harmful requests from reaching applications on the server. UrlScan 3.0 is an update to UrlScan 2.5 and requires IIS 5.1 or later, including the latest IIS 7.0 on Windows Server 2008.
Nazim Lala, who works on the IIS development team responsible for UrlScan 3.0, describes some of the RTW feature additions over on the IIS.net community portal. You can also read the walkthrough articles on how to install and use the tool.
Download UrlScan 3.0 RTW here:
The UrlScan 3.0 filter can easily be deployed to mitigate SQL injection attacks while the root cause is being fixed. Remember, UrlScan 3.0 is merely a stopgap giving you time to address flaws in Web application code that might make it vulnerable to SQL injection attacks – not fixing the root cause allows the risk to remain.
We know you probably know this already, but as a reminder, even though the UrlScan 3.0 security tool can help protect your server from attacks, you should always evaluate and apply the latest security updates from Microsoft.
Eric Rezabek