sjdurfey writes "Microsoft recently decided to open up IE7 to all users of Windows, not just the ones with legitimate copies of Windows. They claim it is in the 'end-users best interest'. As a result, Microsoft has decided to mark IE7 as a 'High-priority' update. This is essentially a forced update. Granted, its only a forced update if you are running Windows and have windows update set to automatically install all updates, but nevertheless, it's unnecessary. You can however uninstall IE7 from the Add/Remove Programs menu after its been installed. 'A blocking tool kit is still available for companies and organizations that don't use Windows Server Update Servicesand want to permanently prevent IE7 from automatically installing on PCs equipped with IE6.'" Update: 10/06 21:19 GMT by Z :Sorry if this seems a bit familiar.Read more of this storyat Slashdot.

  dalektcalum writes "Dr. Ann Cavoukian, Canada's Information and Privacy Commissioner, recently gave a talk entitled Privacy by Design. The talk starts off by covering the basics of privacy, and privacy law, and then moves onto the important component: how to design software that properly protects users privacy. The majority of the talk is spent on design principles, but also examines specific technologies (such as Elliptical Curve Cryptography)." The site includes a flash video of the talk, but there are also several torrents for folks who want to avoid hammering their servers.Read more of this storyat Slashdot.

  SkiifGeek writes "A survey carried out by McAfee and the NCSA found that while more than 90% of users believed that they were protected by antivirus or antimalware products that were updated at least once a week, only 51% actually were. 'Even with significantly growingawareness by everyday users of the need for efficient and effective antivirus / antimalware software, and the increasing market penetration achieved by the security industry, the nature of rapidly evolving Information Security threats means that the baseline of protection is outstripping the ability of users to keep up (without some form of extra help).' The study is available online in PDF format. What sort of an effect does this sort of thinking, and practice, have on the overall security of your systems, networks, and efforts to educate?"Read more of this storyat Slashdot.

  jBubba writes "Windows XP SP3 build 3205 is the first official & authorized release of the next Windows XP service pack; and has been made available to testers as a part of the Windows Server 2008/Windows Vista SP1 beta program. NeoSmart Technologies has the run-down on the included 1,073 patches/hotfixes including security updates. Contrary to popular belief, Windows XP SP3 does ship with new features/components, most of which have been backported from Windows Vista. Some included features: 'New Windows Product Activation model: no need to enter product key during setup. Network Access Protection modules and policies have been brought to XP after being one of the more-well-received features in Windows Vista. New Microsoft Kernel Mode Cryptographic Module - the Windows XP SP3 kernel now includes an entire module that provides easy access to multiple cryptographic algorithms and is available for use in kernel-mode drivers and services. New "Black Hole Router" detection - Windows XP SP3 can detect and protect against rogue routers that are discarding data.'"Read more of this storyat Slashdot.

  FlopEJoe writes "Ticketmaster claims that RMG Technologies is providing software to avoid security measures on their website - even to the point of utilizing bots to get large blocks of tickets. RMG saysit just 'provides a specialized browser for ticket brokers.' From the New York Times article: 'The fact that tickets to popular events sell out so quickly -- and that brokers and online resellers obtain them with such velocity -- is clouding the business, many in the music industry say. It is enough, some longtime concertgoers say, to make them long for the days when all they had to do to obtain tickets was camp out overnight.'"Read more of this storyat Slashdot.

  50Mat writes "Adobe has fessed up to a dangerous code execution vulnerability affecting software programs installed on millions of Windows machines. The flaw, publicly disclosed more than three weeks ago, could allow hackers to use rigged PDF files to take control of Window XP computers with Internet Explorer 7 installed. It affects Adobe Reader, Adobe Acrobat Standard, Professional and Elements and Adobe Acrobat 3D."Read more of this storyat Slashdot.

  PMcGovern writes "Deadline for nominations for SysAdmin of the Year 2007 is this Friday Oct. 12. The award is sponsored by Slashdot, SourceForge, Digg, Usenix, Lopsa, Splunk, and Naspa. The first 2500 sysadmins nominated win a free SysAdmin Rockstar tee shirt. Prizes include a MacBook Pro, a non-bricked Apple iPhone, Gibson guitar, Splunk license, a full-paid trip to the LISA conference, cases of Red Bull, and more. If you know a sysadmin that goes beyond the call of duty, nominate them."Read more of this storyat Slashdot.

  theodp writes "Two years ago, Robert X. Cringely wrote that Google was experimenting with portable data centers built in standard shipping containers. The idea, Cringely explained, wasn't new and wasn't even Google's, backing up his claim with a link to an Internet-Archive-in-a-Shipping-Container presentation (PDF, dated 11-8-2003) that was reportedly pitched to Larry Page. Google filed for a patent on essentially the same concept on 12-30-2003. And on Tuesday, the USPTO issued the search giant a patent for Modular Data Centers housed in shipping containers, which Google curiously notes facilitate 'rapid and easy relocation to another site depending on changing economic factors'. That's a statement that may make those tax-abating NC officials a tad uneasy."Read more of this storyat Slashdot.

  Marcy writes "Microsoft has just announced the final release of the IIS FastCGI module for IIS 5.1 (XP), 6 (2003), and 7 (2008). This FastCGI module was built with collaboration from Zend, the creators of PHP, and is intended to solve the CGI on Windows problem." It's free as in beer.Read more of this storyat Slashdot.

  Kurtz'sKompund writes "Canonical, the company that supports Ubuntu Linux, is trying to work out a deal with hardware vendors such as Dell to make Ubuntu available pre-installed on servers. 'Canonical, despite obviously supporting such a deal, had little to do with Dell's decision. Dell said it was merited by customer demand. Likewise, the decision of whether Ubuntu Server will ship pre-installed will be determined the same way.'"Read more of this storyat Slashdot.

  kurmudgeon writes "The Register is fielding reader tips that Hotmail has placed Draconian limits on the number of Hotmail recipients who can receive an email. The first 10 Hotmail addresses included in a mass email go through just fine, according to these reports. But any additional addresses are returned to sender with a message that reads: "552 Too many recipients." (Microsoft denies it has placed any such restriction on the number of senders.) This would appear to be a violation of RFC 2821, which states: "Rejection of messages (for excessive recipients) with fewer than 100 RCPT commands is a violation of this specification."Read more of this storyat Slashdot.

  Stony Stevenson writes "Security accounted for 20 percent of technology spending last year and it's expected to rise, according to a report released Tuesday. The Computing Technology Industry Association (CompTIA) surveyed 1,070 organisations and found that on average, they spent one-fifth of their technology budgets on security-related spending in 2006. That's up from the 15 percent of IT budgets spent on security in 2005, and the 12 percent spent in 2004."Read more of this storyat Slashdot.

  Lucas123 writes "The missing tape, stolen from an intern's car, contained data on all 64,467 state employees, 19,388 former employees and 47,245 Ohio taxpayers. The state believes the incident will cost them $3 million. So after four months of deliberation, the Ohio Department of Administrative Services announced today that they decided to take a week's vacation away from Jerry Miller, their payroll team leader and the guy in charge of the missing data."Read more of this storyat Slashdot.

  Lucas123 writes "In the face of Seagate's announcement this week of a new hybrid drive, Dell subsidiary Alienware just upped the ante by doubling the capacity of its desktop solid-state disk drives to 64 GB. Dell has remained silent on the solid-state disk front since announcing a 32-GB solid-state option for its Latitude D420 and D629 ATG notebook computers earlier this year. Now, Alienware seems to be telling users to bypass hybrid drives altogether. 'Hybrid we consider to be a Band-Aid approach to solid state,' said Marc Diana, Alienware's product marketing manager 'Solid state pretty much puts hybrid in an obsolete class right now.'"Read more of this storyat Slashdot.