Windows Tips & Tricks UPDATE, February 9, 2004, —brought to you by the Windows & .NET Magazine Network and the Windows 2000 FAQ site
http://www.windows2000faq.com


This Issue Sponsored By

Argent Software
http://www.argent.com/products/download.cgi?product=xxx&Source=WNT

Windows & .NET Magazine
http://www.winnetmag.com/rd.cfm?code=fsep204xup


Sponsor: Argent Software

Free Download: Monitor Your Entire Infrastructure with ONE Solution
The Argent Guardian monitors servers, applications, any and all SNMP-compliant devices as well as the overall health of the entire network at a fraction of the cost of "framework" solutions. Network Testing Labs states that "The Argent Guardian will cost far less than MOM and yet provide significantly more functionality." Using a patented Agent-Optional architecture, the Argent Guardian is easily installed and monitoring your infrastructure in a matter of hours. Download a fully-functioning copy of the Argent Guardian at:
http://www.argent.com/products/download.cgi?product=xxx&Source=WNT


1. Commentary
by John Savill, FAQ Editor, jsavill@winnetmag.com

This week, I tell you how to determine which version of Microsoft SQL Server you're running and describe the details of the Mydoom email virus. I also explain why you might receive errors after installing Microsoft IntelliType Pro 5.0 or IntelliPoint 5.0 and why you might not be able to back up the system state on a Windows 2000 Server system.

In news around the industry, Microsoft has released a tool to remove the MyDoom virus at http://www.microsoft.com/downloads/details.aspx?familyid=c14bfbe4-3d50-464d-a26c-9c287f8a08c5&DisplayLang=en. Microsoft has also outlined a recent Microsoft Internet Explorer (IE) vulnerability and provided a fix at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms04-004.asp.


Sponsor: Windows & .NET Magazine

Get 2 Sample Issues of Windows & .NET Magazine!
Every issue of Windows & .NET Magazine includes intelligent, impartial, and independent coverage of security, Active Directory, Exchange Server, and more. Our expert authors deliver content you simply can't find anywhere else. Try two, no-risk sample issues today, and find out why 100,000 IT professionals read Windows & .NET Magazine each month!
http://www.winnetmag.com/rd.cfm?code=fsep204xup


2. FAQs

Q. How can I determine which version of Microsoft SQL Server I'm running?

A. Start the SQL Server Enterprise Manager application (go to Start, Programs, Microsoft SQL Server, and click Enterprise Manager), right-click the SQL server name, select Properties, then select the General tab to view the product version number, as this figure shows. You can also obtain the version number by starting the SQL Query Analyzer and running the command

select @@version

The following table lists the SQL Server version numbers and the corresponding product and service pack level:

Version Number  Product and Service Pack Level
=========<h4><a name="_">  </a></h4>=========================
8.00.760        SQL Server 2000 with Service Pack 3a (SP3a)
8.00.760        SQL Server 2000 with SP3
8.00.532        SQL Server 2000 with SP2
8.00.384        SQL Server 2000 with SP1
8.00.194        SQL Server 2000 with no service pack applied
7.00.1063       SQL Server 7.0 with SP4
7.00.961        SQL Server 7.0 with SP3
7.00.842        SQL Server 7.0 with SP2
7.00.699        SQL Server 7.0 with SP1
7.00.623        SQL Server 7.0 with no service pack applied
6.50.479        SQL Server 6.5 with SP5a (updated)
6.50.416        SQL Server 6.5 with SP5a
6.50.415        SQL Server 6.5 with SP5
6.50.281        SQL Server 6.5 with SP4
6.50.258        SQL Server 6.5 with SP3
6.50.240        SQL Server 6.5 with SP2
6.50.213        SQL Server 6.5 with SP1
6.50.201        SQL Server 6.5 with no service pack applied
6.00.151        SQL Server 6.0 with SP3
6.00.139        SQL Server 6.0 with SP2
6.00.124        SQL Server 6.0 with SP1
6.00.121        SQL Server 6.0 with no service pack applied

Q. What's the Mydoom (aka Novarg) virus?

A. Mydoom is a new email virus that spoofs the sender so that the message appears to have come from a friend or respected source. The email message can carry any of several subjects, including

  • hi
  • hello
  • HELLO
  • error
  • Mail Delivery System
  • Mail Transaction Failed
  • Server Report
  • status
  • test
  • Test
  • Server Request

The body of the message contains various phrases, including

  • "The message cannot be represented in 7-bit ASCII encoding and has been sent as a binary attachment."
  • "The message contains Unicode characters and has been sent as a binary attachment."
  • "Mail transaction failed. Partial message is available."

The message always contains an attachment (e.g., a .zip, .exe, or .bat file). If the recipient opens the attachment, the virus creates some registry keys to ensure that it autostarts at reboot, then harvests email addresses so that it can mail itself to other people.

The virus includes a Denial of Service (DoS) attack on Microsoft and the SCO Group that's scheduled to run on set dates. In addition, the virus opens port 3127 on the local machine to let the virus writers access and control infected machines. To avoid the spread of this virus, download up-to-date virus definition files and, as always, never open an unsolicited email attachment.

Q. Why am I receiving errors since I installed the Microsoft IntelliType Pro 5.0 and IntelliPoint 5.0 software on my Windows XP machine?

A. After installing version 5.0 of either software package, you might encounter any of the following problems:

  • The scroll wheel doesn't function.
  • Neither horizontal nor vertical scrolling functions as expected.
  • Programmable hot-key assignments don't function.
  • Button assignments don't function.
  • When you shut down your computer, you receive the error message "Type32.exe is not responding."
  • When you shut down your computer, you receive the error message "Point32.exe is not responding."

These errors will appear if the machine isn't running Windows 2000 Server Terminal Services. To resolve this problem, you can either install a patch from Microsoft that's available at http://go.microsoft.com/fwlink/?linkid=22009 or start Terminal Services on your machine. To start Terminal Services from the command line, type

net start "terminal services"

To configure Terminal Services to start automatically at reboot, perform the following steps:

  1. Start the Microsoft Management Console (MMC) Computer Management snap-in (go to Start, Programs, Administrative Tools, and click Computer Management).
  2. Expand "Services and Applications," then select Services.
  3. Right-click Terminal Services and select Properties.
  4. Under "Startup type," change to Automatic, then click OK.

Q. Why can't I back up the system state on my Windows 2000 Server system?

A. The system state contains core system elements such as Active Directory (AD); the System Volume (Sysvol), the machine's domain controller (DC) status (i.e., whether the system is a DC); the boot files; the registry; and COM+ configuration information. To back up the system state, the user must have "Back up files and directories" and "Restore files and directories" rights; otherwise, the option to back up the system state might be unavailable in Windows Backup. To grant these rights, perform the following steps:

  1. Log on to a DC.
  2. Start the Microsoft Management Console (MMC) Domain Security Policy snap-in (go to Start, Programs, Administrative Tools, and click Domain Security Policy).
  3. Expand the Security Settings, Local Policies, and User Rights Assignment branches.
  4. Double-click the "Back up files and directories" policy.
  5. Select the "Define these Policy Settings" check box, then click "Add Users or Group."
  6. Click Browse and locate the user you want to add (or a group that the user is in), then click OK.
  7. Click OK to return to the main policy dialog box.
  8. Repeat Steps 5, 6, and 7 for the "Restore files and directories" policy.
  9. After you finish Step 8, close the snap-in and force a refresh of the policies. To refresh the policies, open a command line and type secedit /refreshpolicy machine_policy /enforce
  10. Log off and log on.

3. Announcements
(from Windows & .NET Magazine and its partners)

  • Try a Sample Issue of Security Administrator!

  • Security Administrator is the monthly newsletter from Windows & .NET Magazine that shows you how to protect your network from external intruders and control access for internal users. Sign up now to get a 1-month trial issue--you'll feel more secure just knowing you did. Click here!
    http://www.secadministrator.com/rd.cfm?code=fsep254xup

  • Check Out 2 Free Web Seminars--Selecting the Right IM Security Solution and Streamlining User Provisioning and Password Management

  • Gain control over your IM security by learning about IM authentication, encryption, support for and interoperability between different IM networks, auditing, automatic legal disclaimers, and virus and worm scanning. Or, discover automating provisioning and centralizing password management and how to reduce support costs and security breaches. Register now!
    http://www.winnetmag.com/seminars

    4. Event
    (brought to you by Windows & .NET Magazine)

  • New--Microsoft Security Strategies Roadshow!

  • We've teamed with Microsoft, Avanade, and Network Associates to bring you a full day of training to help you get your organization secure and keep it secure. You'll learn how to implement a patch-management strategy; lock down servers, workstations, and network infrastructure; and implement security policy management. Register now for this free, 20-city tour.
    http://www.winnetmag.com/roadshows/computersecurity2004

    Sponsored Links

  • Argent

  • Comparison Paper: The Argent Guardian Easily Beats Out MOM
    http://ad.doubleclick.net/clk;6480843;8214395;q?http://www.argent.com/products/download_whitepaper.cgi?product=mom&&Source=WNTTextLink

  • Javelina Software

  • Check out ADvantage to bulk modify Active Directory attributes.
    http://ad.doubleclick.net/clk;7115967;8214395;t?http://www.javelinasoftware.com/winnetmag2.html

    5. Contact Us
    Here's how to reach us with your comments and questions:

    This weekly email newsletter is brought to you by Windows & .NET Magazine, the leading publication for Windows professionals who want to learn more and perform better. Subscribe today.
    http://www.winnetmag.com/sub.cfm?code=wswi201x1z

    Receive the latest information about the Windows and .NET topics of your choice. Subscribe to our other FREE email newsletters.
    http://www.winnetmag.net/email