Slashdot Mirror


Evaluating Windows XP Service Pack 2 RC2

dncsky1530 writes "Information Week has a good evaluation of Windows XP SP2, excerpt: "The code for release candidate 2 finally looks like a real release candidate. And sure enough, it will help you big-time with security. But what sorts of headaches will the eventual final version mean for IT shops? We'll take it piece by piece... Remember when Microsoft said service packs wouldn't deliver any new functionality? That lasted for about six months back in 1997. Windows XP Service Pack 2 is jammed-packed with both invisible and visible improvements to Windows XP. The biggest boon is that the free update, which will probably ship some time in September, does in fact make Windows XP far more secure""

17 of 448 comments (clear)

  1. Won't matter, they won't install it. by garcia · · Score: 5, Interesting

    Mainstream Web sites that employ unsigned ActiveX applets, downloads, pop-up windows, browser helper objects, and other code- or scripting-based functions may encounter difficulty with SP2 version IE 6. Most of these activities are prevented by default, and until thousands of Web sites and Web-based applications are upgraded to more gracefully deal with the new IE's many security precautions, a lot of Web stuff is going to be broken--or, at least, temporarily halted.

    While a lot of people here are going to say, "wow, everyone is going to go to Mozilla/FireFox." I have serious doubts that we will see that. All we are going to see is a bunch of broken websites and people complaining. The solution is going to be to turn off the default security options and go back to browsing like they did before.

    Microsoft just isn't that interested in upgrading Internet Explorer's feature set. As a result, it's unlikely we'll see tabbed browsing before Longhorn, and it's not even guaranteed for that release. No wonder so many people are jumping ship for Mozilla Firefox and Opera.

    Nah, I really doubt that the single reason people are moving to Mozilla FF and Opera are for tabbed browsing. I surf daily and probably at greater lengths than the average person and I don't find tabbed browsing to be my #1 concern.

    I found it particularly interesting that the "Windows Security Center (WSC)" didn't detect NAV or ZA for virus or firewall... While they assured the author that they would be detected by the time that XP SP2 comes out I just have to wonder why MS would force them to rewrite their software to work w/WSC. If MS was so concerned w/third parties being able to protect Windows users you would think that they would work with the companies to get it to work, not the other way around.

    Microsoft also is working on the 5.0 version of Windows Update, its Windows-updating Web site, which handles a lot more than just critical updates. It's primarily a user-interface update, but one of the underlying improvements is that you'll no longer be required to restart your computer so often after applying updates.

    Honestly, most of my most recent XP updates have been installed without a restart. It's really not a huge deal to *ME* and I am sure it's not a huge deal to most other non-technical users as they probably restart their computer almost daily because of various unknown reasons.

    All in all, I look forward to it but I wonder how many will install it. Will it make a difference when it comes out? Will 100% of the XP users out there upgrade and stop the vunerabilities from spreading? I doubt it. We are going to suffer through this same shit because Windows users aren't the smartest bunch out there.

  2. Re:New features, yes. by Flyinace2000 · · Score: 5, Interesting

    Amen to that! I work at a computer shop and 90% of the repairs we do end with us giving a lecture about spyware.......Our record is 1300 infected spyware files.

    --
    -Will
  3. Cleaning? by Biogenesis · · Score: 5, Interesting

    You actually worry about cleaning it? I just recommend reformatting :p. It's got 2 big advantages:

    1) It's easier to do (even if it takes longer there's no guesswork/trudging through the registery)
    2) It tends to be such a big deal for the relative (backing up etc) that I tend to get asked less :).

    Then again, doesn't Adaware do a good enough job as it is?

    1. Re:Cleaning? by poofmeisterp · · Score: 4, Interesting

      No.

      It misses a lot. It gets a lot. It should be used with other applications, but in the end, only a trained eye can figure out based on the case of letters in a process name, the path to the executable in the registry's run section, and the dates on files, what is spyware and what's a legit process/file. You also gotta know how to kick the butt of those redundant BHO/registry, dual-running-process bastards that replace keys and objects as you try to remove them. No software will ever be good enough, in my opinion, to do that automatically.

  4. Re:hmm by AndroidCat · · Score: 5, Interesting
    The problem with Microsoft is that they have two camps slugging it out. The Raymond Chen Camp and The MSDN Magazine Camp. (This was already covered on Slashdot, but is worth a re-read.) MSDN gang always wants the latest and greatest jammed in the box ASAP--the trouble is, they seem to know squat about real security. And they've been in control for some time now.

    And so they produce garbage like IE zones controlling ActiveX security and weak patches to ADO.Streams for years now.

    --
    One line blog. I hear that they're called Twitters now.
  5. Best Practices by darkmeridian · · Score: 5, Interesting
    Am I the only one that has a little series of computers that I roll out updates before I roll them out enterprise-wide? I know some people have a test system... but for my network (and the sake of the hospital's uptime) I have a small testing network.


    You are not the only one with a test network. I once updated my system and then the enterpriseware suddenly quit working. On all the production systems. Boss was angry. I spent the whole night regressing the software until I realized that the software was incompatible with the ICF in WinXP. I announced that to the company's CS and they updated their website Knowledge Base with that tidbit.

    From then on, I ran all upgrades through a three system network with one masquerading as the "server". In addition to software status, all configuration data is recorded as well. I wonder if I'm violating my licensing agreement this way. Oh, well.
    --
    A NYC lawyer blogs. http://www.chuangblog.com/
  6. Re:Yeah, good for those with broadband by fishdan · · Score: 4, Interesting
    Just because you don't have broadband in your house, doesn't mean you don't have access to broadband. Most public libraries haev broadbadn and CD burners, and sell CD's at $0.25 each, which is a nice way donate money to them.

    I do wonder though if there might be any money to be made by MSFT shipping RC2 on a disk and charging you say $1.00, postage included....What am I saying...I'm sure if there's money to be made, they'll do it.

    --
    Nothing great was ever achieved without enthusiasm
  7. Re:Will this kill ZoneAlarm? by Sancho · · Score: 4, Interesting

    Out of curiousity, what stops the malware/spyware from clicking the "Yes, let this program access the Internet." button when it pops up? If you have to type a password, what stops it from waiting until you type it for another program, sniffing it, then typing it in automatically when it tries to run?

  8. Re:Will this kill ZoneAlarm? by kawika · · Score: 5, Interesting

    You got that wrong. XP's firewall blocks programs from listening on ports--incoming traffic. XP SP2 does not block outgoing traffic, for example a web browser that establishes an outgoing TCP connection will get through just fine, no special configuration required. There is no special whitelist entry for IE, as you'll notice that Firefox or Opera get through fine as well.

    ZoneAlarm does much more in that it can block outgoing traffic on a program-by-program basis. But ZoneAlarm also asks questions that are impossible for most users to answer without a course in Windows XP internals, like "Do you want to allow SVCHOST.EXE to access the Internet?" I can see why Microsoft decided to leave this functionality out.

    The best outcome would be if programs like ZoneAlarm coordinate their work with the built-in firewall and extend its functionality. I don't think they are in danger of becoming obsolete. Similarly, Windows has bundled a defragger since Win95 but that hasn't stopped a half-dozen companies from writing better ones.

  9. Re:New features, yes. by Threni · · Score: 5, Interesting

    In the middle of typing something? Just hit enter right at the moment that the reboot reminder box pops up? Tough - you're rebooting whether you relike it or not! Poor poor POOR UI design there, Bill...

    This happens quite often with Windows. Not just in this case, or with dialogue boxes, but just generally with windows containing an error message. I'm not that excited about a task completing or a page not being found that I'm interested in stopping writing my email or entering a URL or whatever to click on an OK on a box with no other options. Is there a registry setting anywhere for Windows as a whole - something to the effect of a `Take focus away from user to report an error` boolean or something? Do other operating systems handle this problem another way?

  10. SP2 and Windows update by StarHeart · · Score: 4, Interesting

    There is a very important change to version five of Windows update. If you have a corporate product key it compares it to Microsoft's list of keys that have been sold. It won't let you update without a valid key. It makes the key generator worthless, and will create a black market in legitimate corporate keys.

    The service pack itself doesn't seem to care, and there will still be other methods like Windows update catalog, but they are closing the big loophole.

    --
    Havoc Penington, the bane of my Linux desktop.
  11. Users do switch MozFF/Opera for tabbed browsing by vaderhelmet · · Score: 5, Interesting

    I'm one of a handful of people in my company who are even aware of OSS, Linux, and the like. My boss (System Administrator of my building) is afraid of anything that doesn't have Bill's seal of approval. But when my boss saw how much more efficiently I could research something on the web using tabbed browsing, and the built-in (customizable) search bar, he did a double-take. He installed it and started using it about 25% of the time. After the CERT warning came out, he dumped IE and issued a warning to the building that they need to be using Opera, Firefox or similar non-MS browser.

  12. Re:New features, yes. by Tobias+Luetke · · Score: 5, Interesting

    Unfortuantly you are totally wrong about poor ui design.

    When a unasked for popup comes up the first reaction of the average user is to get rid of it. There are statistics which proove that 75% of all users will hit enter to any dialog box without reading it in your average run the mill office.

    Don't take this lightly. This is the very reason for most of the problems we have in the internet today. Norton antivirus used to default to "read anyways" when it detected a email virus.

    This was realized by microsoft a while ago and now all dialog boxes default to the secure option instead of the least intrusive. Since windows only wants you to restart if it couldn't apply the patch to the machine during installation ( e.g. applications which were to be patched were running / files were in use ) it makes perfect sense to default to reboot. If there is a big exploit in IE it needs to be fixed as fast as possible. Who really tourns off their pc nowadays ? Even after receiving the patch you might run your unpatched ie for a week.

  13. Re:Will this kill ZoneAlarm? by Zone-MR · · Score: 4, Interesting

    "Out of curiousity, what stops the malware/spyware from clicking the "Yes, let this program access the Internet." button when it pops up?"

    Nothing whatsoever. It's a security problem inherent to ANY software firewall.

    I wrote a little trojan a while back, and I knew that the guy I wanted to send it to was using zonealarm. I just grabbed that version of ZA, used Spy++ to find the right hWnds for the "Accept" and "Always repeat this choice" buttons, sent it a WM_CLICK event, and ZA was worthless.

  14. Just flat out... by maximilln · · Score: 4, Interesting

    From a design standpoint this is just flat-out stupid:

    It's designed to check whether an antivirus program is installed, whether that program is running, and whether it's updated with the latest antivirus definitions. When any of the security checks for antivirus, firewall, or critical Windows updates aren't met, Windows Security Center alerts you with system tray pop-up notifications that open the large WSC Control Panel

    How long before proper functionality with a core OS component is leveraged against vendors? From a business standpoint it's pretty shrewd. But from the OS design standpoint it's flat out stupid. The OS provides a platform for userspace apps. The OS is not supposed to wrap around userspace apps.

    "You don't have MS approved anti-virus checker installed. Please enter a credit card number for the $129.95 fee, the #39.95 yearly maintenance agreement, or we will disable your Windows update key within 2 days."

    --
    +++ATHZ 99:5:80
  15. Increased DVD playback restrictions? by StonyUK · · Score: 4, Interesting

    I've not seen it mentioned anywhere, so maybe it's just a drive incompatibility issue, but when I installed SP2 RC1, I could no longer play DVDs - I would receive an error telling me that the TV OUT on my card must be disabled first.

    I rolled back to SP1 and bingo, everything would play fine again.

  16. Re:Cisco VPN Client by Barlo_Mung_42 · · Score: 4, Interesting

    You might try RC2. I had the same problem with my Intel VPN client. Works fine under RC2 though.