Evaluating Windows XP Service Pack 2 RC2
dncsky1530 writes "Information Week has a good evaluation of Windows XP SP2, excerpt: "The code for release candidate 2 finally looks like a real release candidate. And sure enough, it will help you big-time with security. But what sorts of headaches will the eventual final version mean for IT shops? We'll take it piece by piece... Remember when Microsoft said service packs wouldn't deliver any new functionality? That lasted for about six months back in 1997. Windows XP Service Pack 2 is jammed-packed with both invisible and visible improvements to Windows XP. The biggest boon is that the free update, which will probably ship some time in September, does in fact make Windows XP far more secure""
Mainstream Web sites that employ unsigned ActiveX applets, downloads, pop-up windows, browser helper objects, and other code- or scripting-based functions may encounter difficulty with SP2 version IE 6. Most of these activities are prevented by default, and until thousands of Web sites and Web-based applications are upgraded to more gracefully deal with the new IE's many security precautions, a lot of Web stuff is going to be broken--or, at least, temporarily halted.
While a lot of people here are going to say, "wow, everyone is going to go to Mozilla/FireFox." I have serious doubts that we will see that. All we are going to see is a bunch of broken websites and people complaining. The solution is going to be to turn off the default security options and go back to browsing like they did before.
Microsoft just isn't that interested in upgrading Internet Explorer's feature set. As a result, it's unlikely we'll see tabbed browsing before Longhorn, and it's not even guaranteed for that release. No wonder so many people are jumping ship for Mozilla Firefox and Opera.
Nah, I really doubt that the single reason people are moving to Mozilla FF and Opera are for tabbed browsing. I surf daily and probably at greater lengths than the average person and I don't find tabbed browsing to be my #1 concern.
I found it particularly interesting that the "Windows Security Center (WSC)" didn't detect NAV or ZA for virus or firewall... While they assured the author that they would be detected by the time that XP SP2 comes out I just have to wonder why MS would force them to rewrite their software to work w/WSC. If MS was so concerned w/third parties being able to protect Windows users you would think that they would work with the companies to get it to work, not the other way around.
Microsoft also is working on the 5.0 version of Windows Update, its Windows-updating Web site, which handles a lot more than just critical updates. It's primarily a user-interface update, but one of the underlying improvements is that you'll no longer be required to restart your computer so often after applying updates.
Honestly, most of my most recent XP updates have been installed without a restart. It's really not a huge deal to *ME* and I am sure it's not a huge deal to most other non-technical users as they probably restart their computer almost daily because of various unknown reasons.
All in all, I look forward to it but I wonder how many will install it. Will it make a difference when it comes out? Will 100% of the XP users out there upgrade and stop the vunerabilities from spreading? I doubt it. We are going to suffer through this same shit because Windows users aren't the smartest bunch out there.
Amen to that! I work at a computer shop and 90% of the repairs we do end with us giving a lecture about spyware.......Our record is 1300 infected spyware files.
-Will
You actually worry about cleaning it? I just recommend reformatting :p. It's got 2 big advantages:
:).
1) It's easier to do (even if it takes longer there's no guesswork/trudging through the registery)
2) It tends to be such a big deal for the relative (backing up etc) that I tend to get asked less
Then again, doesn't Adaware do a good enough job as it is?
And so they produce garbage like IE zones controlling ActiveX security and weak patches to ADO.Streams for years now.
One line blog. I hear that they're called Twitters now.
You are not the only one with a test network. I once updated my system and then the enterpriseware suddenly quit working. On all the production systems. Boss was angry. I spent the whole night regressing the software until I realized that the software was incompatible with the ICF in WinXP. I announced that to the company's CS and they updated their website Knowledge Base with that tidbit.
From then on, I ran all upgrades through a three system network with one masquerading as the "server". In addition to software status, all configuration data is recorded as well. I wonder if I'm violating my licensing agreement this way. Oh, well.
A NYC lawyer blogs. http://www.chuangblog.com/
I do wonder though if there might be any money to be made by MSFT shipping RC2 on a disk and charging you say $1.00, postage included....What am I saying...I'm sure if there's money to be made, they'll do it.
Nothing great was ever achieved without enthusiasm
Out of curiousity, what stops the malware/spyware from clicking the "Yes, let this program access the Internet." button when it pops up? If you have to type a password, what stops it from waiting until you type it for another program, sniffing it, then typing it in automatically when it tries to run?
You got that wrong. XP's firewall blocks programs from listening on ports--incoming traffic. XP SP2 does not block outgoing traffic, for example a web browser that establishes an outgoing TCP connection will get through just fine, no special configuration required. There is no special whitelist entry for IE, as you'll notice that Firefox or Opera get through fine as well.
ZoneAlarm does much more in that it can block outgoing traffic on a program-by-program basis. But ZoneAlarm also asks questions that are impossible for most users to answer without a course in Windows XP internals, like "Do you want to allow SVCHOST.EXE to access the Internet?" I can see why Microsoft decided to leave this functionality out.
The best outcome would be if programs like ZoneAlarm coordinate their work with the built-in firewall and extend its functionality. I don't think they are in danger of becoming obsolete. Similarly, Windows has bundled a defragger since Win95 but that hasn't stopped a half-dozen companies from writing better ones.
In the middle of typing something? Just hit enter right at the moment that the reboot reminder box pops up? Tough - you're rebooting whether you relike it or not! Poor poor POOR UI design there, Bill...
This happens quite often with Windows. Not just in this case, or with dialogue boxes, but just generally with windows containing an error message. I'm not that excited about a task completing or a page not being found that I'm interested in stopping writing my email or entering a URL or whatever to click on an OK on a box with no other options. Is there a registry setting anywhere for Windows as a whole - something to the effect of a `Take focus away from user to report an error` boolean or something? Do other operating systems handle this problem another way?
There is a very important change to version five of Windows update. If you have a corporate product key it compares it to Microsoft's list of keys that have been sold. It won't let you update without a valid key. It makes the key generator worthless, and will create a black market in legitimate corporate keys.
The service pack itself doesn't seem to care, and there will still be other methods like Windows update catalog, but they are closing the big loophole.
Havoc Penington, the bane of my Linux desktop.
I'm one of a handful of people in my company who are even aware of OSS, Linux, and the like. My boss (System Administrator of my building) is afraid of anything that doesn't have Bill's seal of approval. But when my boss saw how much more efficiently I could research something on the web using tabbed browsing, and the built-in (customizable) search bar, he did a double-take. He installed it and started using it about 25% of the time. After the CERT warning came out, he dumped IE and issued a warning to the building that they need to be using Opera, Firefox or similar non-MS browser.
Unfortuantly you are totally wrong about poor ui design.
When a unasked for popup comes up the first reaction of the average user is to get rid of it. There are statistics which proove that 75% of all users will hit enter to any dialog box without reading it in your average run the mill office.
Don't take this lightly. This is the very reason for most of the problems we have in the internet today. Norton antivirus used to default to "read anyways" when it detected a email virus.
This was realized by microsoft a while ago and now all dialog boxes default to the secure option instead of the least intrusive. Since windows only wants you to restart if it couldn't apply the patch to the machine during installation ( e.g. applications which were to be patched were running / files were in use ) it makes perfect sense to default to reboot. If there is a big exploit in IE it needs to be fixed as fast as possible. Who really tourns off their pc nowadays ? Even after receiving the patch you might run your unpatched ie for a week.
"Out of curiousity, what stops the malware/spyware from clicking the "Yes, let this program access the Internet." button when it pops up?"
Nothing whatsoever. It's a security problem inherent to ANY software firewall.
I wrote a little trojan a while back, and I knew that the guy I wanted to send it to was using zonealarm. I just grabbed that version of ZA, used Spy++ to find the right hWnds for the "Accept" and "Always repeat this choice" buttons, sent it a WM_CLICK event, and ZA was worthless.
From a design standpoint this is just flat-out stupid:
It's designed to check whether an antivirus program is installed, whether that program is running, and whether it's updated with the latest antivirus definitions. When any of the security checks for antivirus, firewall, or critical Windows updates aren't met, Windows Security Center alerts you with system tray pop-up notifications that open the large WSC Control Panel
How long before proper functionality with a core OS component is leveraged against vendors? From a business standpoint it's pretty shrewd. But from the OS design standpoint it's flat out stupid. The OS provides a platform for userspace apps. The OS is not supposed to wrap around userspace apps.
"You don't have MS approved anti-virus checker installed. Please enter a credit card number for the $129.95 fee, the #39.95 yearly maintenance agreement, or we will disable your Windows update key within 2 days."
+++ATHZ 99:5:80
I've not seen it mentioned anywhere, so maybe it's just a drive incompatibility issue, but when I installed SP2 RC1, I could no longer play DVDs - I would receive an error telling me that the TV OUT on my card must be disabled first.
I rolled back to SP1 and bingo, everything would play fine again.
You might try RC2. I had the same problem with my Intel VPN client. Works fine under RC2 though.