Alexander’s Blog

If you are unable to preview Word, Excel and PowerPoint files in Outlook 2010, make sure that the previewers are not disabled. The attachment previewers are enabled by default. Here’s how the previewers work in Outlook 2010.

First of all, make sure that the attached file that you are trying to preview in Outlook has the application installed. In other words, if you are trying to preview a Word file in an Outlook message then Microsoft Word must be installed on your computer. For security reasons, you have the option to selectively remove some or all the attachment previewers.

If you want to selectively use only certain attachment previewers in Outlook then follow these steps.

1. Click the File tab.
2. Click Options
3. Click Trust Center.

   

4. Under Microsoft Outlook Trust Center, click Trust Center Settings, and then click Attachment Handling.
5. Do one of the following:
   • To turn off all attachment previewers, click Turn off Attachment Preview.
   • To turn off a specific attachment previewer, click Attachment and Document Previewers, clear the check box for a previewer that you want to turn off, and then click OK.

   

I have been discouraging people from sending error reports to Microsoft for years. Microsoft’s own security experts agree that sending error reports to Microsoft is not a good idea for security reasons. One reason that I have been given was the fact that the information is sent to Microsoft unencrypted. Well, with Exchange Server 2010 Microsoft has announced that it is now using HTTPS to secure the transmission when the errors are reported to Microsoft. That’s good news. However, what is not good news is that your personal information may still be at risk. If you are okay with risking your personal information, then sending error reporting to Microsoft can be a noble cause. For those of you who are not okay with risking your private information, I suggest you do not enable error reporting.

Here’s the screen shot from Exchange Server 2010 installation wizard telling you that your transmission will be secured with HTTPS and at the same time warning you that your personal information may be at risk. However, Microsoft should be commended for making the default option to be NO, even though their recommended option is YES. I like it when vendors don’t intentionally try to trick consumers and let the consumers decide what they want after they have been given all the options. While in some other cases, such as certain Windows Vista and Windows 7 features and Microsoft Security Essentials, the exact opposite is true, in this case Microsoft and the Exchange team deserves a thank you and a pat on the back.

There are things that you should do if you are an IT administrator and there are things that you shouldn’t do. Here’s an example of things that you should never do…….and for obvious reasons.

“A former senior database administrator for GEXA Energy in Houston was sentenced today to 12 months in prison for hacking into his former employer’s computer network.

Steven Jinwoo Kim, 40, of Houston pleaded guilty in November to one count of intentionally accessing a protected computer without authorization and recklessly causing damage. Kim was sentenced today by U.S. District Judge Vanessa Gilmore in the Southern District of Texas. Kim was also ordered to pay $100,000 in restitution to GEXA Energy and to serve three years of supervised release following his prison term.

According to court documents, on Feb. 5, 2008, GEXA Energy terminated Kim from his position as a senior database administrator and revoked all of his administrative rights and access to the GEXA Energy computer network.”

Read the rest of the story here on how he used his home PC to mess up the database of about 150,000 GEXA Energy customers and copied personal information of customers to his computer causing the company $100,000 worth of loss.

Here’s something in the news lately that is rather interesting. According to this blog on ZDNet, Microsoft is turning over all Windows 7 and server source code to Russia’s new KGB.

“Microsoft has always carefully protected the source code to its operating systems. In fact, a key distinction between the various Windows variants and open source OSs like Linux and BSD is that Linux and BSD are open source.”

“That’s why a little piece of news covered by ZDNet UK’s Tom Espiner is so astonishing.

According to Espiner, Microsoft has turned over all its source code for Windows 7, along with its source for Microsoft Windows Server 2008 R2, Microsoft Office 2010 and Microsoft SQL Server to Russia’s Federal’naya sluzhba bezopasnosti Rossiyskoy Federatsii. The FSB is present-day Russia’s successor to the infamous Soviet-era KGB.”

“From a security perspective, this is an astonishing act. The agency that took over from the KGB and which has been just recently proven to be conducting long-term spying operations against the United States now has access to Windows source code — while at the same time, most American IT operations don’t.

Not only does this give the Russians the opportunity to find gaps in Windows security — it gives them the opportunity to do so while most American companies and organizations don’t have the same opportunity to find the same gaps and plug them.”

“If Microsoft’s going to give source code to Russia, it should release it to the public. Open source certainly hasn’t harmed Linux’ success and doing so would at least put American IT operators on a level playing field with the Russian secret service.”

I haven’t seen Microsoft’s response to this so far and will let Microsoft explain what exactly is and isn’t shared but I do know that Microsoft has a Product Source Program for the benefit of governments, enterprises, OEMs, developers, faculty & students, system integrators, and Microsoft MVPs like me.

The MVP Source Licensing Program (MVPSLP) is a no-cost program that licenses Microsoft Windows source code to qualified Microsoft MVPs. The program gives MVPs the opportunity to differentiate themselves professionally as Windows platform experts through access to Windows source code. Similarly, there are free programs for enterprises and governments. The Government Security Program (GSP) provides national governments with information to help them evaluate the security of Microsoft products.

I don’t think we should panic over this because Microsoft is run by Americans who love this country. It’s hard for me to believe that they would pass on any information to the Russians, or to any other government for that matter, that could impact our security. Not to mention the fact that all export of such information is subject to the U.S. export approval and over 90% of Shared Source offerings are available for download by anyone. According to Microsoft:

“The Product Source Programs, licenses selected Microsoft product source code to qualifying customers, partners, and governments. Access to source is granted only to those who are eligible and who qualifying under the terms of each program.”

Again, I haven’t seen Microsoft’s response to this but I seriously doubt that Microsoft will release every single bit of Windows code to anyone outside Microsoft…..and definitely not to the new Russian KGB (called FSB). If Microsoft does, they would join the Open Source community and as far as I know Microsoft has no intention of doing that.

My students are always asking me where to get the evaluation copies of various Microsoft products. I’ve put together a list of some of the latest software evaluation downloads. My goal is to try and keep this list updated but frankly it is going to be challenging because Microsoft is known for changing the URLs without any redirection.

1. Exchange Server 2010 (120-Day Trial)
2. Forefront Server Security Management Console
3. Forefront Threat Management Gateway 2010
4. Office Communications Server 2007 R2 (180-Day Trial)
5. Office Professional Plus 2010 (60-day Trial)
6. Project Professional 2010 (60-day trial)
7. SharePoint Server 2010 (180-day Trail)
8. Small Business Server 2008 (60-day trial)
9. SQL Server 2008 (180-day Trial)
10. System Center Data Protection Manager 2010 (180-day Trial)
11. System Center Essentials 2010 Beta
12. System Center Virtual Machine Manager 2008 R2
13. Visio Premium 2010 (60-day trial)
14. Windows 7 Enterprise (90-day Trial)
15. Windows Home Server (30-day Trial)
16. Windows HPC Server 2008
17. Windows Server 2008 R2 Trial Software

WARNING! I should warn you that sometimes when you download a trial software you may think that you are opting out of receiving phone calls and e-mails from Microsoft but you are not. For more information read my blog post: When Microsoft Says No, It May Mean Yes.

Microsoft offers more free products to consumers than any software manufacturer I know. And I am not talking about free evaluation software, I am talking about free tools, utilities and various products and services. Besides software, Microsoft offers these free TechNet and MSDN labs. These are a series of guided, hands-on labs which can be completed in 90 minutes or less.