-------| Exchange & Outlook UPDATE |-------
IN THIS ISSUE
*Commentary: Fighting Image Spam
*Exchanging Ideas: Making Exchange ActiveSync Work
*New and Improved: CDP for Exchange Server 2007
++++++++++++++++++++++++++++++++++++++++++++++++++
OUR SPONSORS WHO HELP SUPPORT FREE DELIVERY OF THIS NEWSLETTER:
Best Practices for Email Archiving & Migrations
http://www.symantec.com/offer?a_id=33206
Messaging Security for Small and Mid-sized Businesses
http://www.windowsitpro.com/go/seminars/symantec/messagingsecurity/?partnerref=EXCMid0118
The Essential Guide to Infrastructure Consolidation
http://www.windowsitpro.com/go/essential/hp/infrastructure/?code=EXCHot0118
++++++++++++++++++++++++++++++++++++++++++++++++++
Sponsor: Symantec
Best Practices for Email Archiving & Migrations
Is your company challenged with the increasing size and number of messages causing storage requirements to grow rapidly? Is your email storage consumption per month greater than .5 TB? Is your email backed up on tape? If so, learn how IBM and Symantec deliver a comprehensive archiving solution to capture and store email, files, instant messaging, databases, VoIP as well as many other document formats—while helping to reduce storage costs and simplifying management. The solution provides an archive that is easily searchable based on powerful indexing and specialized accelerator applications. Benefits include lower operational and legal regulatory risks and costs related to corporate governance, compliance, risk management, and legal discovery. Register now for this must attend webinar!
http://www.symantec.com/offer?a_id=33206
++++++++++++++++++++++++++++++++++++++++++++++++++
***COMMENTARY: Fighting Image Spam
by Paul Robichaux, Exchange Editor, exadmin@windowsitpro.com
Spammers are clever. You can say lots of other things about them (most of which aren't printable in this UPDATE), but you have to give them their due: In the ongoing fight between spammers and antispam providers, the spammers are continuing to show a high degree of adaptability and resourcefulness. The latest example: image spam.
Early attempts at image spam a few years ago were fairly clumsy; they consisted of conventional-looking multipart MIME messages with the spammer's pitch tucked into an image attachment. These turned out to be pretty simple to block because most spammers used the same image filename across spam runs. Over time, spammers figured out how to improve the basic mechanism by doing things such as adding blocks of text that attempted to confuse Bayesian filters.
In late 2006, though, there was a sharp increase in the amount of image spam; some estimates put the increase at 50 percent or more. What made this spam onslaught so insidious—beyond the huge increase—was that it used a variety of new techniques. For example, as antispam vendors such as Barracuda Networks started deploying optical character recognition (OCR) to convert the images to text for filtering, spammers started using blurred fonts and color combinations that can confuse the OCR software.
Some vendors were faster to respond than others, of course. Users of hosted services such as Microsoft Exchange Hosted Filtering or Postini Integrated Message Management fared well against the recent image spam because hosted services can recognize and tag the message as spam quickly when the same message is sent rapidly to lots of people. That's exactly what the spammers were doing, so hosted services had an edge over other types of spam protection. One of the big advantages of Exchange Server 2007 is that Microsoft is finally releasing regular updates to its built-in spam filter, which will help in the future.
If you're not using one of these services already, what can you do to improve your spam protection? One option is to change spam filters. Several filters, including Vamsoft's ORF (with its companion tool, Image Spam Agent), Barracuda Network's Barracuda Spam Firewall, and Sunbelt Software's Sunbelt Messaging Ninja, have features targeted exclusively at image spam. You might also be able to set up filtering rules in your existing antispam solution; for example, the Hawk Wings blog at http://www.hawkwings.net/2006/08/01/mailapp-rule-fix-for-image-spam explains how to catch image spam based on its frequent use of a particular MIME type; you can apply the same technique if your filtering solution supports filtering by MIME type.
In the past, I would have recommended examining the sender IP addresses of spam messages and using them to block traffic from the originating countries; previous outbreaks seem to have come primarily from a handful of countries. However, as spammers get smarter, they're increasingly turning to arrays of compromised computers that don't have contiguous address ranges that are easy to block. For drastic cases, you might consider filtering all incoming messages that contain GIF or JPEG attachments, although that solution will probably be too severe for most environments.
Antispam vendors will continue to attack the problem, and their efforts will no doubt bear fruit—until those regrettably clever spammers come up with a new wrinkle. I guess that's why they call it an arms race!
++++++++++++++++++++++++++++++++++++++++++++++++++
Sponsor: Symantec
Messaging Security for Small and Mid-sized Businesses
Did you know that 75% of corporate intellectual property resides in email? The challenges facing this vital business application range from spam to the costly impact of downtime and the need for effective, centralized email storage systems. Join us for a free Web seminar and learn the key features of a holistic approach to managing email security, availability, and control. On-Demand Web Seminar.
http://www.windowsitpro.com/go/seminars/symantec/messagingsecurity/?partnerref=EXCMid0118
++++++++++++++++++++++++++++++++++++++++++++++++++
***EXCHANGING IDEAS
Focus: Making Exchange ActiveSync Work
Cheap and simple wireless access
EAS provides wireless access to calendar, contact, and message data without requiring the addition of any server-side software—all you need is Exchange 2003 and a compatible device.
http://www.windowsitpro.com/Articles/ArticleID/45360/45360.html
------
Have a question? Got answers? Join your peers in the Exchange discussion forums:
http://forums.windowsitpro.com/web/forum/categories.aspx?catid=40&entercat=y
Current Threads:
Inbound SMTP mail - Auto forward from Web Site
SMTP Communication Error
Information store event ID 1022
------
Don't forget to sound off in our Instant Poll. This month's question is "What tools does your organization use for email retention?"
http://www.windowsitpro.com/MicrosoftExchangeOutlook/Index.cfm
~~~~ Hot Spot: ~~~~
The Essential Guide to Infrastructure Consolidation
Learn the essentials about how consolidation and selected technology updates build an infrastructure that can handle change effectively.
http://www.windowsitpro.com/go/essential/hp/infrastructure/?code=EXCHot0118
++++++++++++++++++++++++++++++++++++++++++++++++++
***NEW AND IMPROVED
by Blake Eno, products@windowsitpro.com
CDP for Exchange Server 2007
FalconStor Software announced continuous data protection (CDP) and recovery support for Exchange Server 2007 that protects not only the files but also the entire system. The FalconStor Message Recovery option provides recovery of single messages and mailboxes, using a wizard interface. FalconStor CDP also complements Exchange 2007's new high-availability features, which include continuous replication, local continuous replication, and single copy cluster. Pricing for FalconStor CDP starts at $4,990. For more information, contact FalconStor at 631-777-5188 or 866-669-3252.
http://www.falconstor.com
------
Wanted: your reviews of products you've tested and used in production. Share your experiences and ratings of products to "whatshot@windowsitpro.com" and get a Best Buy gift certificate.
++++++++++++++++++++++++++++++++++++++++++++++++++
***EVENTS AND RESOURCES
These Windows-related events, papers, and resources will help you keep your knowledge and skills up to date and help you deploy, secure, and maintain the latest Exchange- and Windows-related technologies. For more Exchange related resources, visit
http://www.windowsitpro.com/go/exchangeresources
How do you manage security vulnerabilities? If you depend on vulnerability assessments to determine the state of your IT security systems, don't miss this Web seminar. Special research from Gartner indicates that deeper penetration testing is needed to augment existing vulnerability management processes. Learn more today!
http://www.windowsitpro.com/go/seminars/coresecurity/vulnerability/?code=0115
Are you familiar with the new government regulations affecting email? Learn about the dozens of issues surrounding the security of email in business today and make sure that your company is in compliance. Download your copy of this must-have white paper today!
http://www.windowsitpro.com/go/whitepaper/stbernard/protectionservices/?code=0110featwp
Combat phishing and pharming with complete protection against complex Internet threats by filtering at multiple points on the gateway, network, and desktop.
http://www.windowsitpro.com/go/whitepapers/websense/phishing/?code=0111featwp
==== FEATURED WHITE PAPER ========================
What is the true cost of an inhouse email archiving solution and how does it compare to the cost of an outsourced solution? Find out from independent researchers what the total cost of ownership (TCO) of both solutions really is and how the management of an inhouse solution can strain IT budgets and staff. Download your copy of this white paper today!
http://www.windowsitpro.com/go/whitepapers/fortiva/emailarchive/?code=
==== ANNOUNCEMENTS ===============================
Special Invitation for VIP Access
Become a VIP subscriber and get continuous, inside access to ALL the content published in Windows IT Pro, SQL Server Magazine, Exchange & Outlook Pro VIP, Scripting Pro VIP, and Security Pro VIP. Subscribe now and SAVE $100:
https://store.pentontech.com/index.cfm?s=1&promocode=eu276buv
Ring in the New Year with Windows IT Pro
Don't miss Windows IT Pro in 2007! As a subscriber, you'll get full access to must-have coverage relating to Windows Vista deployment, virtualization, disaster recovery, Active Directory enhancements, the Office 2007 launch, SharePoint fundamentals, and much more. Order now and save 58% off the cover price.
https://store.pentontech.com/index.cfm?s=1&promocode=eu2071uw
~~~~ Contact Us ~~~~
About the newsletter -- letters@windowsitpro.com
About technical questions -- http://www.windowsitpro.com/forums
About product news -- products@windowsitpro.com
About your subscription -- exchangeandoutlookupdate@windowsitpro.com
About sponsoring UPDATE -- salesopps@windowsitpro.com
====================
This email newsletter is brought to you by Exchange & Outlook Administrator, the leading publication for IT professionals managing, securing, optimizing, and migrating Exchange and Outlook. Subscribe today!
https://store.pentontech.com/index.cfm?s=1&promocode=eu205xeb
View the Windows IT Pro Privacy policy at
http://www.windowsitpro.com/AboutUs/Index.cfm?action=privacy
Windows IT Pro a division of Penton Media Inc.
221 East 29th Street, Loveland, CO 80538,
Attention: Customer Service Department
Copyright 2007, Penton Media, Inc. All Rights Reserved.
End of Article
Register
