Welcome to the Microsoft Security Newsletter - a
monthly newsletter for IT professionals and developers
bringing security news, guidance, updates, and community
resources direct to your inbox. If you have suggestions
or comments about the Microsoft Security Newsletter,
please
send us your feedback.
Viewpoint
|
|
By Ryan McGee, Senior Security Product Manager,
Microsoft Corporation
The typical business work force today is both
mobile and collaborative. This article discusses
the importance of a defense-in-depth strategy,
which involves the use of multiple security
technologies at multiple points in the network
to reduce the overall probability that attacks
can exploit business-critical resources or that
information can be leaked outside the business.
|
Top Stories
|
|
Microsoft Forefront Security for Exchange Server
is the next version of Microsoft Antigen for
Exchange and the first product available under
the Microsoft Forefront business security
product brand. The solution integrates tightly
with Microsoft Exchange Server 2007 to provide
advanced protection against e-mail threats,
optimized server performance, and centralized
management. Download the
Forefront Security for Exchange Server beta
today.
|
|
|
Exchange Server 2007 Beta 2 is now available. It
offers built-in features to help protect against
spam and viruses as well as improvements that
provide people in your organization with
anywhere access to e-mail, voice mail,
calendars, and contacts from a range of devices.
Download or order the beta today, or visit the
Exchange Server TechCenter to learn more.
|
|
|
Get the latest updates from the product team on
what will make Windows Vista the most secure
version of Windows yet. This blog, which
features Security Technology Unit Corporate VP
Ben Fathi, will make you aware of how Windows
Vista is more secure, keep you updated on the
latest developments, and give you a
behind-the-scenes look at the development
process from the people building the product.
|
Security Guidance
|
|
One of the most compelling features of Microsoft
Exchange Server 2003 when combined with
Microsoft Office Outlook 2003 is the ability to
use the Remote Procedure Call (RPC) over HTTP
feature. This article offers a description of
this feature, a checklist of the minimum server
requirements, and different deployment
scenarios.
|
|
|
Improve your messaging safety and productivity.
This free eBook is a valuable resource for
information on messaging security innovations
and solutions, and it provides strategies for
defending your e-mail infrastructure.
|
|
|
The Solution Advisor is a tool that outlines a
high-level Microsoft multilayered solution for
your infrastructure and messaging needs. The
tool creates a customized response by using
information that you provide about such factors
as company size, current messaging
infrastructure, and the level of control you
prefer to have over your messaging.
|
|
|
Make your Microsoft Exchange Server 2003 system
more secure and help protect your messages and
data using the resources and tools offered in
this library.
|
|
|
Learn about multiple strategies for making your
Exchange deployment more reliable and available.
This article covers recovery strategies, running
Exchange on a Windows cluster, new recovery
features in Exchange Server 2007, and more.
|
|
|
Get detailed technical guidance on installing
and working with Microsoft Antigen Enterprise
Manager, Microsoft Antigen for Exchange,
Microsoft Antigen for SMTP, and Microsoft
Antigen Spam Manager. These guides will teach
you how features like the Antigen Spam Manager
provide sophisticated and robust spam detection
and removal through the integration of
technologies like the SpamCure anti-spam engine
from Mail-Filters.
|
|
|
Find out how other companies are using Antigen to meet their e-mail and
collaboration security needs.
|
This Month's Security Bulletins
Critical:
Important:
MVP Update
|
|
|
|
Jim McBee is an MCSE, MCT, and Exchange MVP
based in Honolulu, Hawaii. He is a consultant
and speaks at conferences and events around the
Pacific Rim, the United States, and Europe. Jim
is the author of several books, including
Microsoft Exchange Server 2003 Advanced
Administration. He also occasionally
blogs about Exchange-related topics.
|
|
|
A messaging administrator’s daily activities
includes many tasks both small and large,
including mailbox and recipient management,
queue management, backups, disaster recovery
preparedness, virus protection, and system
health monitoring. One of the most popular
topics at conferences, in Internet newsgroups,
and on discussion boards is preventing spam. In
this article, Exchange MVP Jim McBee explores
some of the many products and approaches related
to eliminating spam from the Inbox.
|
Partners with Expertise in Security Solutions
|
|
CertifiedMail overcomes the inherent insecurity
of the Internet as a transport mechanism for
confidential data by enabling organizations to
send and track sensitive information securely
over the Internet using their current e-mail
systems. CertifiedMail solutions support the
secure e-mail requirements of U.S. and European
privacy and data protection regulations while
increasing the privacy and accountability of
communications. A Gold Certified Partner and
member of the
SecureIT Alliance, CertifiedMail supports
strategic Microsoft operating system technology
like Windows Server, SQL Server, Exchange
Server, and .NET.
|
Microsoft Product Lifecycle Information
Security Events and Training
|
|
E-mail availability is a top priority for
businesses today, but it is threatened by
viruses, worms, spam, and attackers. Learn how
to provide a defense-in-depth approach for
protecting Inboxes before threats ever hit your
network. Take advantage of the tools and
resources offered here and learn about
multilayer e-mail security from our experts.
|
|
|
This virtual lab shows how Microsoft's security
products portfolio can help you protect your
information and control access. Learn how to
augment the built-in security of Exchange
Server, Microsoft Office SharePoint Portal
Server, and Microsoft Office Live Communications
Server by using Internet Security and
Acceleration Server 2006 to provide secure
remote access, using Antigen to provide tailored
antivirus protection, and using Windows Rights
Management Services to safeguard content from
unauthorized use.
|
|
|
With a layered, multiple scan engine approach,
Antigen products help stop the latest threats
before they affect businesses and users.
Register to try Antigen with this free,
full-featured virtual lab, which offers two
modules -- "Antigen Servers: Protecting
SharePoint Servers and Instant Messaging" and
"Antigen Servers: Protecting Exchange Server
against Viruses and Spam."
|
|
|
In this virtual lab, you will learn fundamental
design principles for building secure
applications as well as tools and techniques for
writing secure code and new runtime security
checks for detecting buffer exploits.
|
|
|
This lab will teach you how to build secure
applications using various tools and techniques
and provide you with knowledge about fundamental
design principles for building secure
applications. In this lab, you will also learn
about technologies such as FxCop and code access
security.
|
Upcoming Security Webcasts
Microsoft On Demand Security Webcasts
|
• |
New! Learning Path for Security: Reinforcing
Perimeter Defense
Learn about the latest integrated edge-security
technology and best practices for designing your
demilitarized zone (DMZ) and implementing
perimeter defense, securing your Microsoft
application infrastructure, improving your
branch office gateway environment, and
delivering Web access protection to help
safeguard your IT environment from
Internet-based threats. Included in this
discussion will be an in-depth preview of ISA
Server 2006, now in beta.
|
|
• |
Using Microsoft Antigen 9.0 to Secure E-Mail
Servers (Level 200)
Attend this webcast to learn about the latest
versions of Microsoft Antigen for Exchange,
Antigen for SMTP Gateways, and Antigen Spam
Manager. Discover how these products can help
protect your business from viruses, worms, spam,
and inappropriate content. Find out how Antigen
manages multiple antivirus engines to help
improve overall virus detection, integrates
multiple anti-spam technologies for maximum
protection against unsolicited e-mail, and
prevents undesirable language or inappropriate
content from entering or leaving your
organization’s e-mail system.
|
|
• |
Security Matters: Secure Messaging (Level 200)
This webcast outlines the Microsoft approach to
securing a messaging infrastructure. Learn about
the comprehensive, multilayered Microsoft
messaging solution, which comprises on-premise
software and hosted services that complement
Microsoft Exchange Server.
|
|
• |
|
For IT Professionals: TechNet Webcasts
For Developers: MSDN Webcasts
|
|
|
Volume 3, No. 8 
August 2006 |
|
Additional Security Resources
|
|
|
© 2006 Microsoft Corporation. All rights reserved.
Microsoft, Forefront, MSDN, SharePoint, Visual C++, Visual
Studio, Windows, Windows Server, and Windows Vista are
either registered trademarks or trademarks of Microsoft
Corporation in the United States and/or other countries. All
other trademarks are property of their respective owners.
Digital Signatures Help Make Microsoft Security Newsletters
More Secure
To help increase your security, Microsoft will soon begin
digitally signing all of its security newsletters with the
Internet standard, Secure Multipurpose Internet Mail
Extensions (S/MIME). This means that if you use Microsoft
Outlook, or another full-featured e-mail program, you have
an added assurance that the e-mail newsletter came from
Microsoft and has not been tampered with. However, many
Web-based e-mail programs and some other e-mail programs do
not support digital signing with S/MIME. To learn more,
please see
how digital signatures help make Microsoft security
newsletters more secure.
To cancel your subscription to this newsletter, reply to
this message with the word UNSUBSCRIBE in the Subject line.
You can also unsubscribe at
http://www.microsoft.com/info/unsubscribe.htm. You can
manage all your Microsoft.com communication preferences at
this site.
Legal
Information.
This newsletter was sent by the Microsoft Corporation
1 Microsoft Way
Redmond, Washington, USA
98052 |
|
|
|
|
