Slashdot Mirror
Microsoft Delays Windows XP Service Pack 2
Rinisari writes "DesignTechnica, among some others
, explains that Microsoft has once again delayed its release of Service Pack 2 for Windows XP, though only until August. Microsoft has declined to comment on the reason for the delay. Windows Update v5, however, is online and operational (and works with Service Pack 1!), although not officially so. I know many smaller education institutions are chomping at the bit with the looming release, as they are worried about compatibility with some of the new features in Service Pack 2."
Speculation that warez'd copies would still be allowed to update via Windows update were at least partly wrong. You may still be able to manually update Windows with an "invalid" product key but you cannot do it via the v5 Windows Update interface.
[Error number: 0x80244028]
Cannot validate the product key
The product key used to install Microsoft Windows may not be valid. For more information about why you have received this error message, and steps you can take to resolve this issue, please visit How to Tell.
Doesn't seem to work too well with Firefox, but I could just be an idiot. Can anyone cornfirm that it's still IE-Only?
If nothing else, at least Microsoft is trying much, much harder at security nowadays.
Hmmm, I guess MS has decided to take a little (read: tiny) more aggressive stance towards piracy, no more automagic updates for you. Although we do have an Action Pack subscription (XP Pro), so we do have more then enough licenses, we use XP Corp CD/Keys to ignore that stupid activation, but it looks like it came back to bite us in the ass.
Your hair look like poop, Bob! - Wanker.
It's probably better that they delay it, rather than come out with something that's not 100%. We are talking Microsoft though...by the time they got it to 100% we'd all be playing duke nukem forever =)
Just an opinion on the V5 Windows Update. Yes it does detect invalid products (my friends = owned). Does this mean Microsoft are getting more serious since they haven't done this before? I mean, if they could of stopped more users from using a product illegally, why not do it before cause from what I heard, rumors say crackers found a way to bypass this.
they cannot be stopped.
ActiveX is only supported by Microsoft Internet Explorer.
Hope this helps.
As I understood, it means that a bulk of IE users (the ones that don't download small "security updates", but only full SPs) will be vulnerable to well-known bug till (hopefully) August?
Well, now that just shouldn't even be compared to Mozilla's bugfixes.
(because who would be able to compare 24 hours with 24 days and not laugh to death?)
Does anybody know whether these new changes/features (in IE and elsewhere) will ever make it into Windows 2000 (which at the moment seems to be the most preferred Windows at least in corporate environments). Win2k SP4 pretty much covered everything in XP SP1, but not much has been mentioned since then.
It's fairly ridiculous that this SP is delayed.. again... however, IMHO its a good move on their part, because (hopefully) it means that they are including more useful security fixes etc. in it. And its silly that those even need to be release this much after the fact, but they might as well get them all (well, most of them) in there now, so there's not SP2a, SP2b, SP2security patch 229q etc.
I recall an operating system that was fairly rushed to get out, called Windows 95, that really sucked. Hopefully, though this is only an SP, the delay will prevent rush-to-get-it-out-crappiness.
sigSEGV - doy!
sigSEGV - doy!
Hey, this means that Longhorn would likely get pushed back as well (if it ships at all). This gives us an extra month to make Linux a mainstream desktop OS before the NGSCB DRM (the RIAA's wet dream) ensures Microsoft forevermore. Hurry people!!
Unknown host pong.
to BobXP forced the delay...
"chomping at the bit with the looming release, as they are worried about compatibility with some of the new features in Service Pack 2."
I'm sure they're all worried about compatibility issues. Everyone is. But with school starting in August...and the release date in August...there's going to be zero time to work out the kinks before students start hitting the labs full force.
Wise men say, "Forgiveness is divine, but never pay full price for late pizza."
"I'm afraid now, I have somehow missed this message," says a Windows developer who asked not to be named. "Was it buried in too many marketing messages? Was it dependent on me searching it out?"
Was it SO OBVIOUS that you even had to be specifically told to test your apps on a new version of their target platform?
No news here. Next hot tip, some stuff may not work with the latest kernel image from linus and the gang.
I don't need no instructions to know how to rock!!!!
Heads up to you admins out there, the update to WindowsUpdate is more than trivial. Ability to (more easily) view patch install history, Admin options for downloading patches for multiple OS's, not-so-obvious new method of showing you exactly what you're installing...If you've taught techs/users to do this, they're going to have to be re-taught when it goes live.
Personally, since Microsoft doesn't seem to be releasing any more updates for NT4, I'd sure like to see them put out a Service Pack 7 so I don't have to go thru the steps SP6a - Post 6a SRP - Windows Updates every time I have to install a new component on an old NT4 system.
Give me my freedom, and I'll take care of my own security, thank you.
Virutal PC 7 is not coming until SP2 is out according to Microsoft so us Mac users can be assured the latest in security.
Or Microsoft is stalling because they're not finished with VPC7. One of the two.
Why don't they just release an XP interim security service pack? Surely they have enough already working in SP2 that they can get at least SOME of the fixes out the door sooner?
Cripes, even something that just defaults a user's firewall to "on" and obscure ports to "off" would be a head start.
Normally I'd say fine, the longer the better - lets me get Firefox into wider distribution
Alright, a few weeks ago i walked my parents through setting up firefox over the phone. I don't want them touching IE with a 10 foot pole. I have heard there is an app from MS for running Windows Update without a web browser. anyone have any more details? any experience using it?
hfc.
All the fixes for known worms/vulnerabilities are out the door on windows update. Go get 'em.
I don't need no instructions to know how to rock!!!!
Universal joke ID cataloging system info...
Currently assigned universal joke IDs are as follows:
SLDT02004070900001 - "no yuo"
SLDT02004071000001 - "vlad farted"
SLDT02004071000002(x) - "YOU FAIL IT (it is x)"
SLDT02004071000003 - "omg ror"
SLDT02004071000004(x, y) - "In Soviet Russia, x y YOU!"
SLDT02004071000005 - "Imagine a Beowulf Cluster of these!"
SLDT02004071000006(x) - "x is dying."
SLDT02004071000007(x) - "Have you ever seen x? That's the kind of martial arts I practice, and you're about to get one free lesson!"
SLDT02004071000008(x) - "x. What's it all about? Is it good, or is it whack?"
SLDT02004071000009[x] - "wtf is this some kinda x talk?"; default x="nigger"
If you wish to tell these jokes in the future, you can simple refer to it by these UJID numbers and we'll all know what joke you're referring to.
The number system can be broken down like this:
AAAABBBBBCCDDEEEEE(x, y, ...)[z, ...]
Where AAAA is four character string assigned by me to uniquely identify a joke's source. For example "no yuo" was first cataloged into this joke library when it was spotted on slashdot, so its UJID begins with SLDT If you'd like to apply for a unique identifier string for your web site, please contact me.
BBBBB is a 5 digit value which specifies the year that the joke was originally cataloged. This joke cataloging system is designed to be y10k compatible.
CC is the 2 digit value which specifies the month that the joke was originally cataloged.
DD is the 2 digit value which specifies the day that the joke was originally cataloged.
EEEEE is the 5 digit value which is assigned sequentially per day. So the first funny thing that's said on any given day will be assigned 00001. etc. You may ask why this is only 5 digits. Well, its my theory that human civilization can only produce a certain amount of original comedy per day. I haven't established a precise upper bounds to this value, but all simulations appear to indicate that this value is well below 99999, so 5 digits should suffice.
(x, y, ...) is a parameter list for variable punch line jokes. For example when someone posts joke "SLDT02004071000002(life)" This should be interpreted as "YOU FAIL IT (it is life)".
[(z, ...] shall specify optional parameters; the default parameter shall be noted in the UJID definition. Example: SLDT02004071000009 with no parameters will resolve to "wtf is this some kinda nigger talk?"
Microsoft has found out that SP2 contains a huge security hole which may allow your OS to run completely trouble free and secure. They are working hard to patch this bug, which has been termed GOOB.ASAP (Going out of business), with faulty code as to require monthly updates, service contracts, partnerships with virus software detection companies and eventual update of hardware.
SP2 will also include a new feature which will bring back an old friend of ours. Ever since the demise of the blue screen of death, customer calls and upgrades have been down. They are working around the clock on a newly branded moire of death which they feel will be just as impactful as the origional blue screen but with a friendlier look and feel.
They are appologising for the delay in delaying your delayed computer experience.
flinging poop since 1969
In my eyes, IANAL, it's perfectly legal, we paid for the (insert num of licenses here, 5-10 iirc), so we should be able to install XP Pro that many times. To me we pay for a license to use XP, not for a specific CD Key, so to me, it shouldn't matter that we're using the Corp version of XP Pro, it's still XP Pro just w/o the pointless activation. Again, IANAL.
Your hair look like poop, Bob! - Wanker.
Then, go to http://v5.windowsupdate.microsoft.com/ (not v4). Just remember to make backup before you upgrade in case anything goes wrong!
Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
There were enough problems with SP2 RC2 that they are going for another test release. Whether that will be called RC3 or just RC2 with a different build number was unknown as of late last week. I personally am of two minds, one the one hand I want to see them do it right since there won't be another SP for quite some time if at all, on the other hand it would be REALLY nice if this were out in time for the college rush so that it could be made a requirement of getting on the network.
There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
There are a couple of pieces that I'd like (e.g. the pop-up blocker), but for the most part, I really don't care and it's a problem that's best suited till later. I don't feel like piecing my way through the gpo that you'll need to setup to configure the "firewall" the right way.
I'm much more looking forward to Mcafee's next release which will include a buffer overrun protector and its own spyware killer(which I bet will work a bit better).
--pete
This just in -- WinXP SP2, currently known by its codename "Longhorn" will be released in 2008. However, Microsoft is firing up anticipation for the product by incrementally sliding the release date from Summer 2004 over to its actual 2008 release.
I've been testing SP2 since RC1 and it's still pretty buggy... the new wireless features have issues with certain products from some major manufacturers, the added browser security has (in my case) created more problems than it solves, but the new firewall features and interface are VERY nice. I just hope they work the bugs out before release, as it stands now, it's no where near ready for release to the general public IMHO.
"...online and operational (and works with Service Pack 1!).."
One would think this should be a requirement, it reads like more of a bonus.
boycott slashdot February 10th - 17th check out: altSlashdot.org
How can we continue to believe in a just universe and freedom to eat crackers if we have no ale?
See http://communities.microsoft.com/newsgroups/defaul t.asp?icp=xpsp2&slcid=us.
Ant(Dude) @ Quality Foraged Links (AQFL.net) & The Ant Farm (antfarm.ma.cx / antfarm.home.dhs.org).
Runs fine on my system. Has an awesome popup blocker and extra security tools. Not one POP Up gas gotten through.. Yet.
Last I checked, the problem wasn't whether I had permission to use RPC, it was a buffer overflow in the service that caused the exploit. It didn't matter whether or not I had permission to use RPC -- the mere act of sending a (malformed) packet to the service resulted in an crashed (or compromised) operating system.
All of the patches only serve to hide the RPC port unless it is in use. In fact, it makes any remote RPC applications much harder to deploy.
Maybe they're hoping that the NX extensions will imit to vulnerability of the buffer overflow exploit -- if you're using a processor which supports NX extensions...
I'll still install it, just for the popup and ActiveX blocking capabilities. But I have no illusions it will fix any of the other problems.
Uh-oh
...
*snip*
Windows Update cannot continue because a required service application is disabled. Windows Update requires the following services:
Automatic Updates enables detection, downloading, and installation of critical updates for your computer.
Background Intelligent Transfer Service (BITS) enables faster, restartable downloading of updates.
Event Log logs Windows Update events for troubleshooting. To ensure that these services are enabled:
*snap*
so much for turning off services that you dont want and running things manually
This couldn't have worked out better if the Linux community had planned it. 1) Numerous recent IE exploits convinced thousands of people to try different browsers. These people (and likely a lot of their friends) have now realized that IE != The Internet. 2) Now, MS cuts off security updates to some of those users and other users who either got XP from a friend or bought a "bargain" PC from a fly-by-night outfit that used corporate keys. 3) The type of people mentioned in #2 don't like paying a lot for stuff. What are they going to do now as an upgrade path?: Try Linux for free, and/or pay several hundred dollars for an XP license? Now, ever Linux user out there, here's your mission: Burn a dozen copies of Knoppix and hand them out to everyone that has issues with SP2. I see converts in them thar hills.
If the CIO is going to do a company-wide roll out of beta software and call it a "test", the CIO is already breaking the company.
The idea is, you build a small test lab, see what has changed and what won't work, then you create new group policy objects to handle it. You then disable the GPO until you create a new GPO that deploys SP2 to the machines. Both GPO's go live automatically, and you've covered your ass. Geez, maybe I should be CIO.
-Ryan
AUWYHSTOT (Acronyms are Useless When You Have to Spell Them Out Too)
I'm leaving my tech support job at the end of July. Thank you, Microsoft, for delaying the SP2 release until August!
Woo-hoo!
1. Click on "Edit"
2. Go down to "Preferences"
3. When "Preferences" come up click on "Advanced and scroll down to "Software Update"
By default they should be set. Note that Firefox 0.9.2 is a change in the default configuration, and all you had to do was install the small XPI for it.
Can I get an eye poke?
Dog House Forum
I haven't booted my legal Longhorn machine in a while. Does anyone know if it can access Windows Update now? It had been giving messages in the past about Update 5 still being in Beta.
Thanks!
-Patrick
"They never stop thinking about new ways to harm our country and our people, and neither do we."
On the server side, it took about 5 minutes to configure the firewall to allow the web and/ or database server to listen for incoming connections. Again, not really a big deal.
I think the only place there will be compatibility problems is on the "install this great free adware/ dialer" pages. But then again, social engineering and uninformed users are the source of most of the problems anyway. I mean, don't get me wrong, I don't really like MS either, but I think the compatibility fears with SP2 are somewhat overblown.
As far as problems with Windows Update due to "bad keys", there is a program available that will correct this. I will not be posting a link to it for obvious reasons. I believe it's available via a torrent. I have one version called "winxp-keygenpack.rar" and another one called "xp sp1 keychanger sp2 keygen and product key viewer.rar". There are problem a dozen different file names you can find if you search a little.
Btw, I've tested it on many machines and have had no problems so far.
My system: HP pavilion ze4200, Laptop, XP-home, 1.7ghz celuron, 192mb ram.
I did a fresh rebuild, the system seemed to be very snappy. I loaded XP SP2 RC2, system seems to run noticable worse.
It seems to take longer to boot to the point where it is usable. After I long on, it seems to several minutes before I can do anything. It froze up on me to where I had to yank the battery - which is something it never used to do. Everything feels more sluggish. Maybe it would be different with a higher end system.
Also, I don't see how to turn off new features, such as firewall, or virus checker.
I have it if anyone needs a copy. email me and I'll hook you guys up =)
Yeah, because there is nothing better than patching a critical vulnerability on your computer and not having it take effect for 2 weeks because you didn't reboot your computer ...
from InformationWeek
Need I say that's pretty beefy!
I followed the link to step up to v5 of windows update on my girlfriends system.
A few minutes ago the system informed me about a new update. It's installing "Windows XP Service Pack 2" as I type. This is the earliest August release Microsoft has ever had.
Marques Johansson