Log in

View Full Version : Microsoft Releases Exchange Server ActiveSync Web Admin Tool


Janak Parekh
12-08-2005, 05:15 AM
<div class='os_post_top_link'><a href='http://www.microsoft.com/downloads/details.aspx?FamilyID=e6851d23-d145-4dbf-a2cc-e0b4c6301453&DisplayLang=en' target='_blank'>http://www.microsoft.com/downloads/...&DisplayLang=en</a><br /><br /></div>"The Microsoft Exchange Server ActiveSync Web Administration tool enables administrators to manage the process of remotely erasing lost, stolen, or otherwise compromised mobile devices.<br /><br />By using the Exchange Server ActiveSync Web Administration Web tool, administrators can perform the following actions:<br /> View a list of all devices that are being used by any enterprise user<br /> Select/De-select devices to be remotely erased<br /> View the status of pending remote erase requests for each device<br /> View a transaction log that indicates which administrators have issued remote erase commands, in addition to the devices those commands pertained to..."<br /><br />Microsoft has released the second of three components to complete their massive Exchange/Pocket PC upgrade supporting "true push" and remote management. This component is installed on the server and adds the UI toolkit to enable remote wipes; combined with Exchange 2003 SP2 and the MSFP for WM5, administrators will have a complete solution. The emphasis is on the word <i>will</i>, though, because the MSFP has yet to be released, and even when it is, it's up to individual OEMs to release ROM updates to include the new features. Let's hope OEMs don't skimp on this and do it in a timely fashion.

Airscanner
12-08-2005, 03:35 PM
I'm not sure if built in remote wipe is such a good idea. It has the potential for possible exploit by a network worm. For example, read this vulnerability in Pocket Controller released by Seth Fogie yesterday:

http://airscanner.com/security/05080401_pocketcontroller.htm

Also, I wonder how much security a remote RAM wipe really adds, now that most devices have large built-in memory cards and some have serveral GBs of external memory cards. For example, Many organizations keep their databases on storage card, and that data won't be touched by remote wipe.

Or is WM 5.0 remote wipe going to do more than just a hard reset? Can anyone here speak on that issue?

Thanks!

Brad