The Next Wave of Productivity – Office 2010

Wow, it’s hard to believe that Office 2010 is here already.  I’ve been running different forms of beta for just shy of a year!  In fact, I can’t even consider running Outlook 2007 anymore, as the new Outlook 2010 makes me sooo productive.  The new Outlook ribbon, the detailed calendar views, the ability to import my Facebook internet calendar directly into Outlook (2007 did it, but one-time only, 2010 will continuously do it, keeping me up to date). 

I’ve been using it exclusively for work, and the features are amazing, but I hear (and can’t wait to try) that it has some social connectivity for personal use.  Can’t wait to get it on my home PC!

Join Microsoft & Steven Elop at the virtual launch!

Click the graphic above, to add to your calendar, then watch Stephen Elop, President of the Microsoft Business Division, announce the launch of Office 2010 and SharePoint 2010 on May 12, 2010 at 11 a.m. EST. The live Microsoft keynote focuses on the next wave of productivity that delivers:

• End user productivity across the PC, phone and browser
• IT choice and flexibility
• A platform for developers to build innovative solutions

Join the virtual launch event with Microsoft executives, product developers, partners and customers to:

• Find out how peers and partners are already seeing benefits to their business by leveraging the next wave of productivity.
• Submit your questions through live Q&A.
• Participate via blogs, tweets, social media networks, commenting, and more.

View on-demand breakout sessions showing how Office 2010 and SharePoint 2010 meet the unique challenges people and businesses are faced with today, and provide the solutions they need for tomorrow.

Read More

Create SUPER complex passwords with touch typing skills

I found this awesome tip on LifeHacker, one of my favorite blogs… Shift your fingers one key for easy to remember, super complex passwords!

You're constantly told how easy it would be to hack your weak passwords, but complicated passwords just aren't something our brains get excited about memorizing.

His clever solution: Stick with your weak, dictionary password if you must; just move your fingers over a space on the keyboard.

If you want a secure password without having to remember anything complex, try shifting your fingers one set of keys to the right. It will make your password look like gibberish, will often add in punctuation marks, and is quick and simple.

When John Pozadzides showed us how he'd hack our weak passwords, he listed his top 10 choices for getting started hacking away at your weak passwords. Let's take a look at how a few of those popular passwords fare when finger shifting to the right:

• password => [sddeptf
• letmein => ;ry,rom
• money => .pmru
• love => ;pbr

Something longer but still really lame, like, say, "topsecretpassword", becomes "yp[drvtry[sddeptf". These may not be perfect compared to secure password generators, but they're likely orders of magnitude better than a lot of people's go-to passwords.

Read More

Windows Media Player 12 Streams Your Media Library over the Internet

Here's a new one to us: Linking your Windows Live ID to Windows Media Player 12 in Windows 7 allows you to stream your entire music library to any computer. Even better: no need to install third-party software with this method.

There are many, many ways to stream your music collection over the internet—but there's something appealing about using the built-in software that Microsoft bundled with Windows 7. If you're already using Windows Media Player 12, you can listen to your home music collection from any Windows computer through the internet. What's more, it actually should work with all your media, not just your music.

In order to use this feature, you'll need a Windows Live ID then you've got to link your Windows Live ID to your media collection. In Windows Media Player, navigate to the Stream menu and choose "Allow Internet access to home media." You'll want to "Link an online ID." If you see "Add an online ID provider" in the next box, click it because you'll need to download some software depending what version of Windows 7 you're running.

Enter your Windows Live email address and password to link your media collection. Go back to the Stream menu, and click "Allow Internet access to home media." In order to enable another Windows 7 PC access, you'll need to repeat these steps. After you're finished, your library will show up in the Other Libraries category of the left-side pane in Windows Media 7.

We don't know a lot of people who actually use Windows Media Player, but this awesome feature could convince some—and it's something that would be great to see in more tight-fisted media players. (Ahem, iTunes, we're looking at you.)

Post courtesy of Lifehacker

Read More

Best of Bing – Windows 7 Themes

Are you on Windows 7 and like the Bing homepage images? You can have the best of them as wallpapers for your desktop! The first Bing’s Best theme pack was so popular, the team decided to release a second Bing theme pack: Bing’s Best 2.

In case you missed out on number one, I’ve listed them both below:

You can also download both of them from here. Enjoy!

Post courtesy of Liveside.net

Read More

Start your day with sip of coffee and byte of technology

Microsoft and HP have been bringing technology solutions to small business customers since before most people ever heard of a latte. Things change fast in our industry. Coffee Coaching’s Mission is to help you stay on top of current technologies. If you’re already in the habit of checking your Facebook page over coffee in the morning, now you can use it to stay on top of your business as well.

We’ve created a place where you can easily find video overviews of products and technologies, information on opportunities for prospecting, interact with Microsoft and HP product managers, and talk with your peers in the Coffee Coaching community.

Go to the source! Hear about Windows Small Business Server 2008 directly from the product group at Microsoft. Learn about HP’s Small business offerings directly from the engineers at HP. We have a collection of short videos on all of the Windows Server family of products and HP hardware solutions.

Click here to become a Fan of Microsoft and HP Coffee Coaching!

· Throughout the day on March 8th, as you explore the site, we will have Microsoft and HP experts available for online discussions.

Grab a cup of coffee and join us for a session of Coffee Coaching.

You Tube | Facebook | Twitter

Brought to you by:

HP | Microsoft

Read More

MVPs are Dressing my dog – that’s just weird.

Two weeks ago, Microsoft hosted the worlds MVP’s at our 2010 Summit.  SBS and Home Server MVPs are the best MVPs at Microsoft (I may be biased, but that’s what I think), followed of course only by EBS MVPs (who are mostly ex-SBS MVPs anyways!).  Ok, who am I kidding.  All MVPs are awesome, I just happen to have many of the SBS and Home Server ones as my buddies.

Microsoft does it’s best to make the MVPs welcome in the Seattle area, which includes dinners, parties, get-togethers, lunches, coffee breaks, etc.  All in the name of geek speak between MVPs and Microsoft! 

If you’re not familiar with what a Microsoft MVP is, they are community voted professionals that go above and beyond the normal to help out the general public with their issues with specific products.  Most MVPs dedicated a lot of time and energy to this cause, and as such we reward them. 

In this particular instance, the tables were turned.  The MVPs rewarded us!!  Taking advantage of the fact they were on campus they decided to dress up my mascot in appropriate attire.

Now, I’m not normally into dressing my dog, primarily because we are both men and we don’t do that.  In addition to that fact, if you put anything on Chico, he freezes.  But, for this blog, he’s willing to don the clothing and answer your questions.  Simply click in the search box and type your search.  I’m sure Chico will have a blog post for you.  If you don’t find it here, you can also check over at the official SBS blog.  If you don’t find it there, shoot me an email and I’ll see what I can do to write one up for you (no promises on timing though, Steve Balmer keeps us pretty busy over here.

Last and most importantly, I want to publicly thank all of the MVPs for their support and the wonderful gift they gave me.  I don’t have to email this to them, because being MVPs, they are so plugged in, they will find it.

Read More

Online Backup using CloudBerry Labs for Windows Home Server

Being a photographer, I get pretty worried about losing my photos. Not only the ones that I publish to my website, but the family photos that are never made public, they are priceless to me. I naturally have a built in backup set up to back up to a 1TB USB hard drive. And I’m super diligent about manually running this at least once or twice per month. This of course covers me against any hardware failure in my Media Smart server. Thankfully I haven’t had any yet, even though hard drive failure is the leading cause of data loss:

So, as it turns out, I’m not at all worried about disk failure, I’m totally covered there with duplicate through Home Server’s Drive Extender, and my bi-monthly backup. What I am worried about is natural disaster and theft (not that I live in a scary neighborhood in New York City or anything). The idea of natural disaster protection was made even more prevalent when my uncle’s home burnt to the ground early January, 2010 and he lost all of his memories in the fire. Sure insurance is taking care of the house and replaceable items, but what about the photos, or the trophy’s my cousin’s won on his mantel?

Luckily for digital data, it’s easy to move around and easy to store. Cloud based backup and storage can provide peace of mind and insurance against such loss. While I’m not an expert in cloud storage, I was looking for a few key things:

1. Global replication – what good is a backup solution if it’s in a single data center around the corner? You want geo-located, so a natural disaster that strikes and entire area, doesn’t affect your data at your storage location. This usually means bigger the better.
2. Encryption – I certainly don’t want owners of storage facility browsing my pictures. This usually comes with some component of the encryption that you own, like a password, which prevents the cloud storage owners from knowing this. (Although you won’t want to forget your password!)
3. Simplicity and Automation – I don’t want to be spending a lot of time figuring out how to use the software, and I certainly don’t want any human factor in remembering to do the actual backup! Automation was key for me.
4. Price – Hey, everyone’s looking for the best deal right?

Enter CloudBerry Labs Backup. CloudBerry is an interesting solution to the cloud backup story. They provide the software that adds the simplicity, automation and client-side piece, while Amazon S3 provides the back-end storage. This means you pay a 1-time up-front cost for CloudBerry, and the recurring cost goes directly to Amazon S3. Amazon brings #1 to the game, global replication and they are BIG (so big that discounts are given in TB instead of GB!). Amazon EXPECTS a LOT of data! I can’t say that AmazonS3 is the cheapest solution, at $0.15/GB (until you get to 10TB), they end up costing me about $20/month (~130GB of data). That’s a total of $240/year. There are cheaper solutions out there, but are they as functional as Amazon S3? Will they be in business in 2 months or 2 years? Also, Amazon has a lot of bandwidth so your uploads and downloads are fast. I’ve seen some backup solutions take upwards of 2-3 months to get a photo collection similar to mine uploaded. My 130GB of data took little over 1 week to upload, and my recovery’s are even faster. The limitation as far as I can tell, is my own bandwidth.

CloudBerry backup homepage

CloudBerry backup has a Winodws Home Server add-in, which makes management very very simple. Loading the add-in shows CloudBerry in a new tab; which opens with an extremely simple design for start-up. However, after using CloudBerry for a month, I’d like to see more status on the home page: meaning I have my backup plans in place, I’d rather see some status on the last backup(s) to ensure that I’m safe. But no one can argue the design is simple, and targeted towards backup and the most important piece, the restore. Additionally, you can get to status with a simple click on the Backup Plans sub-tab. I do enjoy a big bold number of how many GB I’m using, as it helps me understand what my monthly bill would be. A dollar value would be nice to see here too, but that would depend on querying Amazon, as I’m sure Amazon reserves the right to adjust prices as they see fit (hopefully down!)

Once setup, CloudBerry is a totally simple solution. Unfortunately, much of the complexity for the setup comes from AmazonS3 requirements. Before even using the CloudBerry software, you must setup your AmazonS3 service. CloudBerry has provided a handy instruction set exactly for that, clearly indicating they know it’s a troublesome point and are probably working on it, given the simplicity seen through the rest of the product. The setup involves creating an AmazonS3 account, and identifying your personal access Key, so Amazon can bucket the data in your personal storage space up on their service.

Because of the cost of the AmazonS3 service, CloudBerry has allowed you to be as specific as you want for backup of your data. The Windows Home Server version can even handle drive extender and show you just the data that you care about.

Further filtering on what you chose allows you to choose what TYPES of files to backup… so you can get to the heart of the data. This means you can choose your photo directory, but only backup your negatives (ie. RAW files) simply by choosing to backup .raw or .cr2, if that’s what you want to do.

One of the nice features was a compression feature. CloudBerry will compress your data, again, focusing on saving you coin with Amazon S3, as well as choose the type of encryption you want. Notice how you get to choose the password and encryption type. If you do end up using encryption CloudBerry will be pretty CPU intensive as encrypting files takes some time and CPU. It does happen in the background seemingly at a lower priority as I noticed minimal slow-downs across the rest of the product.

Finally, the wizard lets you choose your backup schedule (yes! There is that automation!) and you can setup CloudBerry to email you when the backups complete, successfully and/or with failure! Once you’re finished setting up the backup, and you launch it, you get some nice progress when viewing the backup plans sub-tab:

The plan page provides a lot of the detail that I would have expected to see on the home page, but the data is all readily available for you to see. The plans first appear compressed, so you have to expand them. I’m happy to report that they do remember that you wish to have the plans expanded, and that’s not something you have to do every time to view the details of each plan. As you can also see, I have multiple plans running. Right now I have them both backing up weekly, but I could easily sku that to be monthly for music, and daily for photos. You’ll have to assess your own comfort for data loss (more often backups tend to lead to less data loss as the deltas between backups are smaller).

The backups are incremental, meaning CloudBerry does the work to figure out what’s up at Amazon and what’s not, and sends only the new stuff and what’s changed since the last backup. Thus minimizing the bandwidth usage for your home and your storage usage up at Amazon!

Recovery

The most important part of the backup is actually the recovery. Because of the size, I didn’t recover all of my data, but I did a few spot checks here and there with some music and some photos. Simply launching the restore wizard allows you to choose when in time you want to recover your files. Naturally the default is the latest, but if you managed to mess up one of your photos, you can jump back to a space in time, provided that the backup of that file is there of course.

CloudBerry again shows you what you have on Amazon and allowing you to pick and choose entire directories, or individual files, allowing you to recover these files to the same location, or choose a new location if you don’t want to overwrite the original. Additionally, to prevent overwrites, you have to explicitly choose to overwrite the files if you’re going to the original location. Nice safety feature there.

The page that threw me for a loop was the password page. The default is of course not to require a password. If you skip over this page, and you had set a password on the backup, you’re recovery will fail, and you’ll have to start over. I wish CloudBerry was smart enough here to know that I set passwords beforehand and default this to checked, at least prompting you for a password before you continue. It would be great if they validated that password against Amazon prior to continuing as well, to prevent you going through the rest of the wizard, only to have it fail on restore.

The recovery is much the same as the backup, you get a progress bar, and the files slowly pop onto the server (dependent of course on your own bandwidth).

As a final note, the history sub-tab of CloudBerry will show you exactly what’s going on, backups and restores. As you can see, here is a test recovery that I did, where I messed up the password dialog I called out before. Running the restore again, with the password, it succeeded with no problems

All in all, CloudBerry provides a solid backup solution. There are very few bumps on the road, mostly imposed by AmazonS3, including the cumbersome setup process, and the actual cost of storing the data. However, don’t forget that you *can* do wonderful things with AmazonS3, such as (if your data is not encrypted, and your account is setup this way), you can send links to your data around, saving your home bandwidth for your family to see your data. And because Amazon is so huge, you know that one day, they aren’t going to up and disappear.

Online backup is an insurance policy, think of it as such. $240/year is a small price to pay if you’re my uncle and your house burned down.

Download CloudBerry backup for Windows Home Server

Read More

Get to know Windows Home Server Team Lead: Mark Vayman

Mark is not only a Lead Program Manager on the Windows Home Server team, he works on the drive extender technology and is also my manager!  Mark has been on the Windows Home Server team for close to 4 years.  Mark is a big user of the drive extender technology with an 8TB home server at his house!! That puts my 2TB home server to shame! 

Let’s cut to the interview:

Find the full post over at the Windows Home Server blog.

Read More

Understanding SSL Certificates

I get a lot of questions on understanding certificates in general, this post is intended to answer those general questions and is not specific to any product.  Although I plan on using Windows Home Server and Windows Small Business Server 2008  as examples here.  I do have a previous post on understanding the self-issued certificate in SBS 2003 and SBS 2008, as this post will focus on understanding trusted certificates, and what makes them trusted.

Certificates provide two purposes:

1. Authenticating the server to the client
2. Providing encryption between the server and the client

I will cover the authenticating the server to the client in this part 1 post, and will write a part 2 post that handles the second part of encryption.

Part 1 – Authenticating the Server to the Client

Think of a certificate like a drivers license; a United States drivers license as that’s what I’m most familiar with.  The drivers license has three key components that makes it what it is. 

1. A name that identifies what you are called, in my case, “Sean Daniel”
2. An expiry date, that identifies when the license is valid from.  This ensures data doesn’t get stale, like your picture, or hair colour, or if you need glasses or not to drive
3. An issuing authority, such as Washington State

This is the same as a computer SSL certificate.  It has a valid URL, an expiry date, and an issuing authority.  When the client gets to the intended URL such as https://remote.contoso.com, it asks the server for proof that it is remote.contoso.com, and the server presents it’s certificate.  The client validates the 3 checks.  Does the URL in the certificate match (ie. are you “Sean Daniel”).  Is this certificate valid (is the expiry date past today’s current date and time).  Those are the two easy to understand checks.  The final check is “do I trust the issuing authority”.  In the case of a drivers license, you’d bend it, look at it under a black light to make sure it’s authentic, and then you’d see Washington state issued it and be.  Sure, I trust the state government.

With certificates, it’s slightly different. The computer follows the certificate chain outlined in the certificate path (IE view):

In the above example for Home Server, the client will check if it trusts foo.homeserver.com.  It looks into it’s trusted certificate store for a matching certificate, none would exist of course, so it would then look for the “GoDaddy Secure Certification Authority” in the same store.  Because the “GoDaddy Secure Certification Authority” trusts foo.homeserver.com, the client can base it’s trust on that.  Again, it won’t find that certificate, so it bounces up to the root certificate and looks for “Go Daddy Class 2 Certification Authority” in the trusted root store:

As you can see from a view on my Windows 7 box, Windows 7 by default trusts this certificate, so since I trust that certificate, and that certificate trusts the “Go Daddy Secure Certification Authority”, then my Windows 7 machine also trusts this authority, and since the “Go Daddy Secure Certification Authority” trusts foo.homeserver.com, then My Windows 7 client also trusts foo.homeserver.com, and a trusted certificate connection is established.

In the non-computer world, think of it this way.  When I try to get on a plane, and I present my drivers license (domestic flights only!), they trust WA state and allow me on the plane.  If I were to present my Microsoft Identification, they would probably look at me sideways and ask for another ID, because the airlines don’t trust the Microsoft employee issuing authority.  However, if I go to my companies Christmas party I can present EITHER my drivers license, or my Microsoft ID, and they trust both, since they trust WA state, and the Microsoft employee issuing authority.

In Windows SBS 2003/2008 and the use of self issued certificates.  You install the leaf cert (sbs 2003) or the root cert (sbs 2008) into your client trusted root store, and now your client will trust that issuing authority as mentioned above.  This is outlined in my old post.

On Mobile devices, such as Windows Mobile, you need to ensure the certificate is in that root store as well, which is why some certs work and some don’t on older Windows Mobile devices.  Additionally it’s important to call out that browsers on clients behave differently too.  For example, Firefox has it’s own certificate store and doesn’t use the one in Windows.  The certificates in Windows and also on later mobile devices are updated and maintained through the secure connection of Windows Update.

Hopefully this clears up the server to client authentication.  Of course we know the client authenticates to the server by providing your username and password to prove you are indeed the user the server should give access to. 

Last important thing to remember, is NEVER install a certificate over an unsecure or un-trusted  internet connection, you should always use a SECURE method of installing certificates.  That means you download a cert over an already trusted and secure connection, or you bring it home in your pocket on a USB key.  You never know if there is going to be a malicious server giving you a bad certificate for the wrong server on the Internet.  Then you will just be giving your username and password to the wrong server on the Internet, and that would be disaster.

Update: Continue on to Part 2, now posted.

Read More

How to Lock Down a Windows 7 Kiosk or shared PC

Browsing my one of my favorite RSS feeds: LifeHacker. I came across something that might be useful to a bunch of Small Business Server VAPs configuring your network.  In many cases, some companies like to provide a courtesy kiosk for visiting folks or perhaps they have a single computer for the break room. 

Over at How-To Geek is where they outline the steps.  Basically it leverages local Group Policy (although there is no reason you can’t do this in global group policy on your Windows Small Business Server 2008 machine) to allow users to only run certain applications.  Thus preventing users from getting into trouble and lowering your total cost of ownership on that client PC (or your whole network).

I’m copying the steps here for convenience.  Thanks How-To Geek!

 

If you have a shared or public computer you might want to allow users to use only specified programs. Today we take a look at a setting in Local Group Policy that allows you to set only specified programs to run.

Note: This process uses Local Group Policy Editor which is not available in Home versions of Windows 7.

First click on Start and enter gpedit.msc into the search box and hit Enter.

Navigate to User Configuration \ Administrative Templates \ System. Then under Setting scroll down and double click on Run only specified Windows applications.

Set it to Enabled, then under the Options section click on the Show button next to List of allowed applications.

A Show Contents dialog comes up where you can type in the apps you want to allow users to run. When finished with the list, click OK then close out of Local Group Policy Editor.

If a user tries to access an application that is not on the specified list they will receive the following error message.

This is a nice feature for limiting what programs users can or cannot access on the computer.

Read More

How to enable “GodMode” in Windows 7

Ever wish you could just get to all the configuration changes in Windows with one folder, instead of going back and forth in the Control Panel? Well, now you can.  Elegant Code has a blog post on how to do this.  Here’s how:

1. Create a new folder on your desktop
2. Name the new folder:
   GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}

This gives you a new folder with a nice icon:

Opening this folder gives you the giant list of configuration items that span across all of the control panel and such.  Giving you ultimate access to configuration aspects.  I only have tried this running as an Administrator on the system. 

And just as a reminder, “God” is not considered a strong password to protect your system, so don’t let this go to your head.  ;o)

UPDATE: Looks like ZDNet gets to the bottom of all the GUID mode shortcuts.  Their post is here, including:

• 14 GUID tricks for Windows 7 only, and
• 25 GUID tricks for Vista and Windows 7

Read More

Windows Home Server Remote Access - Understanding ISP Blocking Ports

Oddly enough, over the holiday’s I was working to figure out the remote access for my friend who just recently got a home server.  For all intents and purposes, his router stated the ports were open, yet Home Server would not show that remote access is available.  A quick Bing search lead me to believe from forums that the ISP (Telus in Canada) blocks the required ports for Windows Home Server

Those ports, 80 & 443 used for HTTP and HTTPS access to the server means that you are in a double-NAT environment that your ISP provides for you.  Unfortunately you have no control over the external most NAT device and as a result, remote access won’t work for you.  Here is a video from HomeServerLand that will help you understand this scenario

WHS Remote Access: ISP Blocking Ports from HomeServerLand.

The options if you find yourself in this situation are:

• Contact your ISP and see if they will allow these ports through for you.  In many cases, they will, although in this case, Telus required we purchased a monthly static IP address, or a business class DSL line, both rather expensive.
• Use Home Server on non-standard ports, which is not that easy to do and potentially some of the updates you receive from Microsoft may or may not break this functionality.  Additionally, the ISP may still block these ports.
• Change ISPs.

Good luck with your ISP, you’ll need it!

Read More

Windows Home Server Remote Access - Understanding Double-NAT

Are you having troubles with remote access? Could it be because you have a Double-NAT configuration on your network?  HomeServerLand has a video that explains what a double-NAT is and how you can avoid it. It’s a great 2 minute video that will help you understand this configuration and how to avoid it.

WHS Remote Access: Double NAT from HomeServerLand.

This great video talks about how to determine if you have a double NAT either on your local network, or from your Internet Service Provider.

If you haven’t already, make sure you check out HomeServerLand’s very valuable router configuration support wiki.

Read More

Troubleshooting Remote Access on the Home Server Blog

In a follow up to last weeks blog on Understanding and set up of Remote Access to Windows Home Server, Sean Daniel, Program Manager for Windows Home Server, has provided further information on potential issues that you may experience when setting up your Remote Access, and how to solve the problem.

Once you finish setting up your remote access through Windows Home Server’s Wizard, a final screen will be shown.  In a perfect world, when you click on Details you’ll see all green checks once you have finished this wizard.  However, because there are three components (the home server, the ISP and the router), sometimes there is a snag in the setup. Here is an example of a working domain name with sample data:

The first check-box will actually check to make sure you have an outbound connection. This will ensure it can connect to the specific …

Read more at the Home Server team blog.

Read More