IBM Tells Employees To Hold Off WinXP SP2

robpoe writes "As reported by ZDNet, IBM's technology department has warned internal users to not install Windows XP SP2 until IBM can fix some known issues with the way IE6 is updated, and Big Blue can make a customized version of the patch - 'The company's technology department said the delay is 'due to known application problems and incompatibility with IBM workstation applications.''" However, the article also mentions that: "One IBM employee in the company's internal technology department characterized the decision as routine."

Funny

[jayminer]

It's a funny thing that I can promise that I have seen this in previous slashdot comments.
Strange.

Re:Funny

[Rura+Penthe]

Never has a first post confused me more than this one. :)

Re:Funny

Yeah me too. It's not like I read every single comment ever posted to this site.

Re:Funny

[tepp]

The really funny thing is, I don't think there's a big pressing need to install this patch. Waiting a while is the best move to make.

What does this patch do for you? Well, I've been using RC2 for awhile, and here's what it's done for me:

1) Broken Thief III such that when I load levels, my computer crashes.

2) Screams bloody murder when an app opens a port - except for loopback - but even when I explicitly wanted that port opened it still raises a dialog.

3) Messed up MSN Instant Messenger's hotmail addin so it now links to Outlook and Outlook Express even though I don't even USE Outlook.

4) Messed up my MSN Instant Messenger buddy list by trying to group them into random categories I didn't even want

5) Installed more gooblygook into Windows Media Player that asks for copyright protections etc that I don't want and makes me go through the configuration screen all over again

6) Added a popup blocker I didn't want - that I can't easily turn off - into IE - that conflicts with Google Toolbar - instead of one easy click to get a popup on a site that you were expecting to pop up (such as a separate chat window for customer support), you now need to go into the options to turn popup blocking off, then click the google toolbar... twice the hassle.

And other nice oddities.

I say, wait until this beast has been patched...there's nothing worth running out for.

Re:Funny

[Pieroxy]

The funny thing is the last sentence of the story: "One IBM employee in the company's internal technology department characterized the decision as routine".

So a routine decision makes the front page of Slashdot, clearly advertized as "IBM doesn't trust Microsoft".

The basic anti MS movement is still out there.

Re:Funny

> The basic anti MS movement is still out there.

Hmm... MS still is a despicable entity; there is no reason to stop being anti MS.

Re:Funny

can you blame people for being anti microsoft?

they are a games OS, a marketing machine.. thats it..

they continually lie about their operating systems and what they can do.. they lie about its security - they LIE.. how long can you handle someone LIEING you to??

I know 15 years is a bit long for my liking.. I dont trust Microsoft for all the years I've been supporting a whole host of operating systems..

Once you have lost the trust in someone because your a lieing cheating bastard - if you decide to become a nice guy it'll take a lot to earn that trust back.

Re:Funny

The basic anti MS movement is still out there.

Whatever made you think it went away?

Re:Funny

Get over it. Microsoft are no worse than most companies, and a hell of a lot more benign than a huge number of other companies. Does Microsoft exploit third-world labour? Does Microsoft employ gangs to keep their third world labour in order? Does Microsoft dump huge quantities of waste into the ocean? Does Microsoft knowingly pollute people's water supplies with toxic chemicals?

If you want to hate any company, hate those companies, not a bloody software company whose most wost crime was to bundle some free software with their operating system.

Re:Funny

[Chris+Mattern]

So IBM routinely decides that they won't apply Microsoft service packs until they have a chance to fix them.

Certainly sounds to me like they don't trust Microsoft.

Chris Mattern

Re:Funny

[EvilAlien]

What we fail to pay attention to is that this is common practice EVERYWHERE, hence Slammer.

Companies have a difficult balance... testing patches and updates to software to ensure compatibility for their context, while getting patches in place to address vulnerabilities.

Anyways, I need to get back to trying to fix my Windows XP desktop at work. SP2 broke it severely, and I'm not doing a repair re-install of XP for the second time to try to get the damn thing operational again. Good thing I only run Windows in VMWare with Linux as my workstation's core OS ;)

Re:Funny

`The funny thing is the last sentence of the story`

its really funny when the article summary on slashdot is now referred to as the story itself.

and since no one has said anything about this, I guess no one RTFA.

Re:Funny

[lucabrasi999]

It's not like I read every single comment ever posted to this site.

You should try to stay INSIDE more often. Why go outside to interact with humanity when there are so many things to read on /.

Re:Funny

[WaterBottle]

To "fix" Issue#6. Hold down the left-CTRL key when clicking on the link that is being blocked.

Re:Funny

What does this patch do for you?

It fixes alot of well known vulnerabilities, adds some great features to the firewall, adds a popup blocker, and the Security Center provides great support for some well-known virus scanners to make sure users are up to date on virus definitions.

Installed more gooblygook into Windows Media Player that asks for copyright protections etc that I don't want and makes me go through the configuration screen all over again

What gooblygook does it install into WMP? Or do you mean it just makes you go through the configuration screen (where you can just hit Next, Next, Finish - must be difficult). It saved all my previous settings and did not reset anything when I first loaded up WMP. You mention both, but really it doesn't appear to install anything new here - just verifies your previous settings.

Added a popup blocker I didn't want - that I can't easily turn off - into IE - that conflicts with Google Toolbar - instead of one easy click to get a popup on a site that you were expecting to pop up (such as a separate chat window for customer support), you now need to go into the options to turn popup blocking off, then click the google toolbar... twice the hassle.

You can't easily turn off the pop-up blocker? I know thats so hard to go to Tools, Internet Options, Privacy, and then uncheck the "Block Pop-Ups" box. I feel for you man!

Re:Funny

Those aren't bugs, silly... they're features

Re:Funny

[Pieroxy]

So if you deployed a Linux on 10000 machines on all your tech, marketing, IT, sales teams computers, and you had developped specific applications, drivers for some specific devices, and all the crap, you would just tell them: Sure, let's upgrate from 2.4 to 2.6 and cross your fingers?

The fact that they are cautious doesn't mean they distrust SP2. Like any major upgrage to a kernel (to any OS), it is going to break some of your specific devs, would it be only slightly.

This would be true for any OS. The fact that this one is Microsoft doesn't make it something against MS.

Re:Funny

[ehvoy]

Damn, can't wait to train everyone to do that. Lots of sites require popups--webcasts, financial sites, grrr. Can't microsoft code something like Mozilla's "block all unrequested popup windows"? Sadly, I was expecting MS to do something like this.

Re:Funny

[dremspider]

I wish that is the only problem I had, my pc wouldn't start after I installed sp2. Well at least the uninstaller in safe mode worked well.

Re:Funny

There are multiple levels. At the highest setting it blocks all popups and you have to hold ctrl. This was not the default setting.

Re:Funny

Whatever. All those nameless companies, purportedly guilty of such heinous acts, will be despicable as well, once they are named and such actions proved.

MS's "most worst" crime is by no means bundling some software with their OS, as has been proven in a court of law. The companies you neglect to mention are probably criminal organizations. MS has been proven to be a criminal organization in a court of law.

It does remain as despicable as ever.

Re:Funny

Your "points" are irrelevant, immaterial and incompetent.
This the best list of "complaints" you can come with with? Pathetic!
What? You too scared Microsoft's is going to totally clobber Linux in the security of Windows over your crap Linux?
Go play with yourself little boy!

Re:Funny

* Disclaimer: I work for Microsoft. You can either moderate at face value, or actually read what I have to say first. *

After working for the company for the past two summers as an intern, I've come to know a bunch of people who actually *gasp* work there. I'd say that 1/2 of them are Linux geeks who understand that while Linux is great and all, it will not cure AIDS, feed the poor, or save the whales/children. Neither will Windows. They're fucking OS's that you can either RUN or NOT RUN. Choose one and leave the preaching to the guys in the Vatican. The company is as evil as any other public company who is responsible to their bottom line and their shareholders (that goes for any company, not just software houses). Beyond that, its just a bunch of people who love to code, love what they do, and whether you believe it or not, are pretty fucking good at it (if you don't believe me, go through the interview/hiring process yourself and let me know how it goes).

It's come to the point where after having sat in both the "Microsoft sucks, everything they do is awful, evil, and will bring about a world dictatorship" camp and the "Eh, I'll work there for a bit and see what its like" camp, the only conclusion I can draw is that those who hate Microsoft with a passion, have some sort of underlying motivation for doing so. My whole life I had used Linux exclusively. My whole life I had coded solely in Linux. However, I decided to give it a shot, because I have a *gasp* open mind, and interviewed there. I went in almost viweing the entire experience as a joke, but I left loving the people, loving the campus, having a great time, and wondering whether or not I should consider this more seriously. So while I was being flown out to Seattle on MS's dime (hey, why not fly out to Seattle, all expenses paid for the weekend, even if I don't take the job) the rest of the kids in my CS program were bitching about how evil Microsoft is while at the same time complaining that they had nowhere to work. Unbeknownst to them, and many of the people here, there is this place called the "real world" and RMS's vision of an IP-unencumbered future is not a part of it. Rent, car payments, tuition, and food, are a _major_ part of it, however. Microsoft takes care of these things. Writing free software, for the vast majority of people, certainly does not.

Microsoft is just a software company. That is it. They are not some evil empire obsessed with world domination. They are not the fucking Third Reich. If you don't like them, don't buy their software. Is there any need to go any further than that? Do we really need to devote a front page article to the fact that IBM advised their employees not to upgrade their internal computers to XPSP2? When the newest Linux kernel comes out, do you honestly think that companies with hundreds of thousands of computers in their enterprise deployments tell all end-users to immediately upgrade? How about OS X users? How about ANY OPERATING SYSTEM ON THE PLANET? Regardless of what OS or software package we're talking about, if you have an internal user base of that many people AND you're running custom apps, you're going to advise people to hold off for a bit. Get over yourself.

I had offers from a bunch of companies, many of whom are much more highly respected by the group-think-drunk Slashdot community than Microsoft. Which full time offer did I take? Microsoft. Did they pay me more? Nope. Were their benefits better as a whole? Maybe. Is it the best company you can work for in the software industry if you can get over the "OMG!@# It's Micro$oft and that's evil" ideology that most 12 year old script kiddies hold? Yep.

I have no problem with you being a fan of Linux. I am too. In fact, I'm typing this message on a years-old IBM Thinkpad 600 running Slackware 10.0. However, I ask that just for one second, you take a step back from your own ideology. You can do one of two things. You can either admit that for all its flaws Microsoft makes a bunch of pr

Re:Funny

In related news, IBM tells employees not to look at the slashdot IT section colors, to avoid blindness.

Re:Funny

[OwlWhacker]

"One IBM employee in the company's internal technology department characterized the decision as routine."

I'd say.

Most of Microsoft's patches need fixing before you install them.

Anyway, what's wrong with pointing out how buggy even Microsoft's patches are? Especially when Microsoft is claiming to be the king of security.

Re:Funny

[Mhtsos]

Look at the bright side: People will start putting less popups in their sites (in most cases they are a Bad Thing(TM))

Re:Funny

[homesteader]

Where's that everso important and ranted about 2nd mouse button, the Mac users chuckled . . .

Re:Funny

[Grizzlysmit]

The funny thing is the last sentence of the story: "One IBM employee in the company's internal technology department characterized the decision as routine".

So a routine decision makes the front page of Slashdot, clearly advertized as "IBM doesn't trust Microsoft".

The basic anti MS movement is still out there.

nah it's not so much the anti M$ thing as the general, lets make a big fuss about nothing reflex.

Re:Funny

[Doc+Ruby]

It's "routine" inside IBM, yet counterintuitive to the public. When a contradiction like that affects people as part of a significant current event, that's "News for Nerds". That stuff matters - the "routine" nature of the decision is a story in itself. Especially because there's so much anti-MS activity out here.

Scary headline

[disc-chord]

Scary headline to read while I'm in the middle of installing it right now!

Re:Scary headline

[Stevyn]

Didn't you read the instructions to close all your applications before installing??? Sheesh! What a windows noob! Just remember to restart when your finished :)

Re:Scary headline

[Donoho]

Scary headline to read while I'm in the middle of installing it right now!

It should only really be scary if you're installing it and you work for IBM...

Re:Scary headline

[disc-chord]

It's okay I'm using FireFox. :)

Re:Scary headline

[Lumpy]

Why scary? in my company I know it will not be approved for at LEAST another 3 months. They announced 2 days ago in an internal Email that SP2 is not to be applied to any of the XP machines for any reason.

This is typical of every large company, I'm betting over 90$ of large american corperations have a hold off SP2 order in their IT departments right now.

Re:Scary headline

[jrl87]

That's great ... I already installed it, how do you think I feel. Atleast you can (or could have) stop it.

Re:Scary headline

[nacturation]

This is typical of every large company, I'm betting over 90$ of large american corperations have a hold off SP2

So if not *every* large company does this, does that mean you'll pay me $90?

Re:Scary headline

[steve.m]

Why won't it be approved - it's been in beta for *ages*. That's a clue for sysadmins to stop reading other peoples email and start integration testing in their organization.

I've tested the RC's with our product (I'm a tester), so the final release of XP SP2 isn't a shocker - we know the implications of running our product on it....

Re:Scary headline

read 90$ as 90%... it's obvious that it's a typo.

and I agree with him. I know that amost all companies have a hold order on SP2.

Re:Scary headline

no you dont.

when steve in the govt-relations department (oh you didn't realize you HAD a govt-relations department?) calls because your SP2 install push that you set up on the stupid domain caused half of his apps to stop working you'll just say ....oh?

I guarentee you did not test it on every possible configuration in your company unless it's a tiny company with 1000 employees, and then you dont count... you're a pee-wee shop at that point. call me when you have 10,000+ machines and specalized departments that create over 1000 configurations to test.

lumpy is pretty dead on on this one. SP@ needs to be kept away from production machines until it is tested.

Re:Scary headline

in my company I know it will not be approved for at LEAST another 3 months.

Cool! What company do you work for? I want to figure out what security holes SP2 fixes and use them to hack into your computers.

Re:Scary headline

[Moofie]

Because Microsoft never releases broken software from beta, right?

*snort*

What color bridge would you like, sir?

Re:Scary headline

[cms108]

"Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option."

You want me to post as if i was a thick spread made from mashed chickpeas, tahini, lemon juice and garlic? And you're making jokes about typos?

--
cHris

Re:Scary headline

[TeraCo]

Companies with 10000 machines shouldn't have 1000 configurations, unless you're a bunch of howling amateurs.

Our company has 50,000 desktops.. guess how many builds we have..

3.

Sure, you get the odd niche group who do customized dev work, they run their own build, and do their own IT, but we aren't responsible for upgrading them. So yeah. 3.

Re:Scary headline

[Innova]

This is typical of every large company...

Actually, I'd say that most large companies (like the one I work for, about 40,000 desktops), are currently testing SP4 for Win 2000. Large companies are very slow to move to a new platform.

Re:Scary headline

[Engineer+Andy]

We also had an email coming out this morning saying that SP2 isn't being rolled out immediately, as there was a belief that it would kill some existing programs.

I have no idea if this was tin-foil-hatting on the part of the IT section, or just waiting for the patch on SP2, but we were advised we coudln't connect to the network if SP2 was loaded on a box (I'm not sure why, but there you go).

Given that all the corporate boxes live behind corporate grade firewalls and stuff like that, I don't think that we're likely to be very vulnerable to attack in the month or so til the pack gets loaded up.

Re:Scary headline

Why won't it be approved? Let's play out a scenario for you, and let's see if you see a problem here:

1) Average desktop XP system has third party as well as custom application software installed on it. It's know as "this is how the average user gets their work done."
2) Install SP2 on XP systems
3) After rebooting, third party as well as custom application software is broken.

For the custom applications you can schedule some time for your development team get it to working correctly on SP2. Still not a particularly a nice thing to do since they already had enough work to do, so this either means pushing projects back (yeah, right) or asking them to work unpaid overtime.

For third party applications, WTF are you going to do? Yell at them? Yeah, that's going to be real effective. That's right, you're going to wait. Whether you want to get any work done while waiting for the update depends on whether you install SP2 or wait to install it later.

Basically it comes down to waiting until third parties update their software, third parties publish workaround for problems, testing on test systems uncovers workarounds for all known problems, or - this is the fun bit - Microsoft updates SP2 to fix problems with third parties who can't/won't/refuse to update their applications.

Re:Scary headline

[Eye+of+the+Frog]

Try this one instead: posthumously
Get it? It's funny if you know the definition.

Re:Scary headline

[Pharmboy]

Yea, but if its common at IBM to not install patches until they are made to work with Microsoft's updates, you have to start asking:

Is Microsoft intentionally making the patches not play nicely with IBM software? It wouldn't be the first time, would it? No, I don't have a tinfoil hat on, but IF IBM gets cozier with Novell (or buys it) it will be positioned to be Microsoft's competition with SuSE, which is argueably the best distro for home users and the business desktop.

Re:Scary headline

It's okay I'm using FireFox. :)

So what are you saying then, FireFox isn't an application?

Re:Scary headline

[cmacb]

Who can blame them?

My methodology has always been to watch the history of updates from a given source. After a couple of years of updates that do more good than harm you trust them enough to apply them almost immediately. I say almost because you at least try it on a few test machines first, but this can be done within hours of the updates availability.

What you do after not one, but several bad updates, those that break key components and fix problems that you don't even have, or claim to fix problems but actually don't, that is another matter. Having been burned on an update from any company, I put the company "on probation" and apply new updates only after extensive testing.

This is a simple intuitive approach, that I think most users apply to both software updates as well as new product releases, and even hardware purchases. I have my own shit-list of hardware vendors as I suspect most people do. I just don't buy from these companies until they do something to change their reputation. Most never do. It is a true rarity for a company to suddenly discover the value of quality products to their future business. Companies either get it, or they don't. Microsoft has never got it, other than the original release of Windows NT which appears to have been thoroughly tested. From more recent experience this must have been a fluke, or, since NT was such a departure from previous version of Windows they were just uncharacteristically carefull.

I'll join the chorus of people saying that big companies, governmental organizations,etc. ALWAYS do their own testing. If they did that testing during the beta phase for this update, then they are ahead of the game and may be applying it now for real. If they are not on the beta program, then they will test on their own systems starting now. I doubt there are many exceptions to this.

Re:Scary headline

[pod]

Actually, anyone notice this new wizzy installer some apps use (some MS ones too) that will prompt you when it finds locked files and which app has it opened, and allows you to close it and continue. Locked files is always a problem when installing anything on Windows, and this definitely saves a reboot or two.

Re:Scary headline

[Shirotae]

If you read the article, you will see it is not a matter of testing. The tests have been done, problems have been found.

Any company that either has non-trivial IT requirements, or has chosen not to give Microsoft total control of its IT systems will have third party or custom software installed. The more you have, the more likely it is that SP2 breaks something in a way that does not have a trivial workaround.

I expect that IBM are working with their third party software suppliers and the development teams for their internal applications to fix the known problems. I expect that IBM are not the only ones doing this right now.

Re:Scary headline

I find the corperate network to be more hostile than the open internet...

it takes 3 seconds for a unpatched XP or 2K machine to be infected on the corp net... while it takes almost 4 minutes on a cablemodem.

Re:Scary headline

[DikSeaCup]

Wouldn't *that* be "Post Hummusly?"

Re:Scary headline

[idril]

We've got over 70,000 PCs, two standard OS configurations, but we still do extensive testing before deploying stuff released by software companies.

In addition to making sure it works well with our standard OS builds, we also need to check that it doesn't break any applications. Never know if there's a 3rd party developer that did something MS wasn't expecting them to do. Sure, it may not be MS' fault if the developer didn't follow the standards... but in the end, we're still going to be the ones whose business gets disrupted if a badly-behaved app breaks.

On top of that - there are still a few non-conformists out there who manage to install personal or unauthorized software on their PCs, and that sometimes causes centralized updates to fail. Even if only 5% of users do it (low estimate if you ask me), that's still around 3,500 PCs.

So - we test as much as we can, and hold off until we can deploy smoothly. And we already know there will probably be some PCs that need to be cleaned up afterwards.

Re:Scary headline

[McCarron]

Well the scarier thing for me was when I was starting the install of SP2 my friend IMed me something to the effect of "Hmmm Doom 3 can't find the CD" right after he finished installing SP2. I was just starting the install and had finally finished the extraction phase, so it had two options available to me, Next and Cancel. Needless to say I hit Cancel and am now holding off on upgrading until I know the Doom 3 issues are resolved!

Re:Scary headline

[LittleGuy]

Didn't you read the instructions to close all your applications before installing???

Microsoft products have instructions? I thought all they had were EULAs.

Re:Scary headline

[banzai51]

Newsflash! Latest service pack breaks shoddy windows software. IBM promises again to update Lotus Notes to 32 bit in the near future! "All that 16-bit code has again bit us in the ass. But management doesn't really want us updating it. So we're looking into yet another work-around. But Sweet Jesus, you should see the chaos the Web-Sphere guys are facing!" said one IBM employee.

Re:Scary headline

[TeraCo]

Oh sure.. I wasn't meaning to imply that we're going to rush into XP2..

I suspect it will be at least 6 months before we get around to it, and until then, the windows updater is disabled on all of the machines.

Now, whether this is good security policy or not, I leave to the peanut gallery to decide! [as it could go either way, and I don't really have an opinion on it]

Re:Scary headline

[JWW]

It always used to be "DOS isn't done 'til Lotus won't run". Maybe this is still the case, since IBM is using Lotus for their email...

Maybe....

Re:Scary headline

[drinkypoo]

People are holding off on the latest MacOSX update, too. It's not just Microsoft. A beta program doesn't guarantee the problems are solved, not even the big ones. Remember Win2k SP2?

Re:Scary headline

[rfunches]

This is typical of every large company, I'm betting over 90$ of large american corperations have a hold off SP2 order in their IT departments right now. How about typical of most Windows users? About half of the computers I work on haven't been patched, and if I ask their users whether they've run Windows Update, they ask me what it is.

Re:Scary headline

[diamondsw]

No, we're a company with 400,000 machines (or more), and one build. However, many departments have special applications that others do not (not everyone needs Visio, or Project, etc). Meanwhile, there are thousands of web-based applications that changes to IE will affect.

Finally, another problem here is that SP2 duplicates a lot of functionality in our standard build - firewall, automatic updates, and "security center" in particular, and can cause some pretty bad conflicts *on initial install*. Right now we've been told that we'll get a "custom" version of SP2 soon that essentially just turns off the firewall by default, turns off automatic updates by default, and tweaks our antivirus and firewall to be properly detected by SP2.

Re:Scary headline

The problem doesn't have to do with IBM software as much as "internal" applications that IBM employees use (administration apps, pricing tools, etc). Some of these applications have been around for awhile and need to be regression tested with the new Service Pack. IBM goes through the same sort of policies when a new operating system comes out before they officially release it for employee's use.

Re:Scary headline

[l33t+gambler]

Actually, anyone notice this new wizzy installer some apps use (some MS ones too) that will prompt you when it finds locked files and which app has it opened, and allows you to close it and continue.

Yes! Please mod this up:

I've encountered it with Perfect Disk from Raxco http://www.raxco.com/products/for_the_consumer.cfm

1. During install it's clean, fast and no kode to enter
2. tells when its updated files are in use, no need for reboot (!)
3. it's small
4. yet remote-control and other "server-like" features are there without the need of a "server-version" that only works on Windows 2000 Server etc.
5. only $39,- for a consumer version
6. SmartPlacement defrag is really smart

PS: I know I'm almost like an ad! but cheap, small, solid, honest and non-bloated software like this is really rare in the day of corporate stock-must-increase must-produce-more must-save-costs business culture.

Re:Scary headline

[chitiho]

I just installed the SP2 on Thinkpad T42P and it works fine.

This is normal for an enterprise.

[rdunnell]

Hey, lots of companies install policies on their IT assets that flat out prevent installing unauthorized patches on corporate systems.

This is a pretty big patch, and people have known for a while that it's going to change the way some things work. It makes sense to show caution before allowing a mass deployment. There's not much news here.

Re:This is normal for an enterprise.

[djtripp]

Our company has issued notices not to install the patch until, well, it can be patched. Also, we will house it locally. Imagine 3000 people all trying to download this 250mb patch (hell, it will proably be around 300mb when it is released) at once... Networking will give a snail a run for it's money.

Re:This is normal for an enterprise.

[be11o]

I work for a large financial institution and we have taken the same stance. Working closely with IBM, as most large companies do, I have noticed they all use WindowsXP on their notebooks. We however, have not even made the jump to XP; Windows 2000 is still the standard.

Re:This is normal for an enterprise.

3000 people, you don't run your own SUS server, and you let people install their own software? Wow tell us where you work so we can apply for your job :)

Re:This is normal for an enterprise.

[djtripp]

3000 people, many are locked down, some are not, no SUS yet. Hypothetical situation, yes... Are we hiring, sure...

Re:This is normal for an enterprise.

[Yoda's+Mum]

It's 266MB for a complete network install package, to handle all 32bit releases of Windows XP. The actual percentage of that total needed to install on a single XP Pro system will be considerably less.

On a side note, the service pack is actually released, and totals 266MB (272,391KB).

Re:This is normal for an enterprise.

[Chester+K]

Imagine 3000 people all trying to download this 250mb patch (hell, it will proably be around 300mb when it is released) at once... Networking will give a snail a run for it's money.

You have 3000 workstations and you're not running SUS? When's the last time your administrator came into work?

Re:This is normal for an enterprise.

[djtripp]

I do belive he uses Altiris.

Re:This is normal for an enterprise.

[IZN0GUD]

I just wonder how long is it going to take for such a large company, as Microsoft is, to get this patch approved and through the IT Dept... and than installed through their custom network system updater and of course not through windows update >:]

What about Linux

I thought IBM was converting their desktop systems to Linux, so why should they care about Win XP? Perhaps it was just a PR trick.

Re:What about Linux

[trout_fish]

How long do you think it takes for an organisation with over 300 thousand employees to change its employees' desktop environment? How many much smaller organisations still use NT 4?

Re:What about Linux

Yeah but MS Windows runs on IBM PCs (and compatibles and those grey market clones).

Re:What about Linux

Possible answers:

So long that it will be 30 years before they realize any bottom-line advantage to the transition?

So long that by the time they complete transition the first installations will be obsolete?

So long that they'll lose interest in Linux long before they're done?

It is routine!

This is very much standard practice here at IBM. We aren't even supposed to use windowsupdate and instead use an internal tool that installs patches.

Re:It is routine!

[mjpaci]

Would that be SMS?

Re:It is routine!

[Mateito]

We .. use an internal tool that installs patches

Does the heldesk monkey know that your refer to him by such an unflattering term?

Re:It is routine!

they most likely do not schedule and deploy updates by cellular phone text messaging. perhaps you mean SUS?

Re:It is routine!

Microsoft Systems Management Server. Also known as SMS.

Re:It is routine!

[megaversal]

I think he meant this SMS: http://www.microsoft.com/smserver/

Re:It is routine!

No, it's an internally developed software management solution. And that's all any of us can really say.

Re:It is routine!

He was making a joke that the helpdesk guy is a 'tool'. ah Nevermind....

Re:It is routine!

[duffbeer703]

Unlikely.

http://www.ibm.com/tivoli

Re:It is routine!

[grolschie]

Installing SP2 via WindowsUpdate V5, the new WindowsUpdate changes show a heap of geek speak which roughly translates to "all your base are belong to us". Even though there is an expert option to choose which updates to apply, it's options are indeed limited.

Re:It is routine!

Yes, he knows. And he doesn't seem to mind; I just checked my disk quota and it looks like he just allotted me a whole lot more space!

(slowdown, cowboy. slow .. down .. you .. fucking .. cowboy. that's it baby .. slow .. down. yeee .. haw .. ride .. 'em .. you ... caffiene .. fueled .. cowboy. ride .. it .. slow. oh .. yeah. my bronco is bucking in slow motion. it's easy to hold on when you slow down, cowboy. slow .. the .. fuck .. down.)

Re:It is routine!

[Loligo]

No, IBM should be using Tivoli Software Deployment.

-l

Re:It is routine!

No, it's an internally developed software management solution. And that's all any of us can really say.

Well, we COULD tell you, but then we'd have to kill you.

Re:It is routine!

[nacturation]

Yes, he knows. And he doesn't seem to mind; I just checked my disk quota and it looks like he just allotted me a whole lot more space!

Yep... rm -rf * tends to give you a lot more space.

Re:It is routine!

It's all about the half-assed borken internal, pop-up rich, java-infested, IE bug-reliant apps inflicted on employees. The new security and pop-up blocking features of SP2 cause these dain bramaged crapwares to puke all over the floor. There's a reason why developers of internal apps aren't writing code for real customers...

Yes, I'm writing anonymously for good reason.

Re:It is routine!

[TedTschopp]

Interestingly enough the patch automatically blocks Tivoli when you install it.

Ted Tschopp

Re:It is routine!

[sharkey]

heldesk monkey

You left out an "L".

Re:It is routine!

Yes, that was the joke. Thank you for pointing it out for those of us who prefer our in-jokes explicitly explained.

Re:It is routine!

[duffbeer703]

Great... sounds like the microsoft of old is back. I haven't been in any screaming matches with the NT admins in awhile.

Re:It is routine!

[badmonkey]

You'd think so, but no we use some total hack of a tool that was written internally.

Re:It is routine!

Judging by the moderation, your sarcasm is sadly misplaced.

Re:It is routine!

And as we're multi-platform in here apparently:

echo y | del c:\*

(Don't actually do this Windows noobs...)

Re:It is routine!

Have you ever used tivoli?

Re:It is routine!

Actually, you'll want to try:

echo y | del /s c:\

Thank will give you a whole heap of space.

Re:It is routine!

This is very much standard practice here at IBM

So, Anonymous Coward works for IBM, eh?

Oh, wait...

Re:It is routine!

*cough* That's IBM Tivoli Configuration Manager - Software Distribution *cough*

Re:It is routine!

or, even easier:

deltree c:\ /y

Re:It is routine!

[dresgarcia]

I am in the operations department for my company, one of the guys (I guess the windows "guru") in my department told me not to update my system using patches or windows update after my linux desktop died (for some screwed up reason we bought dell workstations that can't have linux installed due to hardware conflicts? I've been meaning to try myself but I don't want to prove him right AND have to ask him to put the corporate windows version we use back on.). However, he doesn't update them for us or release patches for us to use, so around the most recent virus wave I ran windows update since my system was over a year out of date.

Nothing broke, I think its just common in a company to tell people not to update so if it does fuck something up you dont have 100 people with the same problem unable to use their apps and thus wasting money, the money you are paying them, the money that is spent daily whether you work or not.

We have had issues where half the company has gone home early due to database failures, that is extremely painful to any place of business. I think it would take longer to clean up an SP2 mess across everyones workstations costi ng 1-3 days of greatly decreased productivity instead of half a day.

Re:It is routine!

you mean the bonzai buddy?

Re:It is routine!

[Loligo]

> Have you ever used tivoli?

Well, I was in level 2 support there for a couple of years... so... yeah.

-l

What site is this?

WinXPServicePackNews.com?

Re:What site is this?

Mod Parent up, It seem EVERY story about SP2 is making it here!

Re:What site is this?

Imagine if SP2 was somehow Mac related...

Re:What site is this?

[lowe0]

People have been harping on MS for some time now to improve security.

The fact that they're doing something about it should be pretty damn important to those of us who support Windows on a daily basis.

Re:What site is this?

I haven't heard about 10.3.5 update being released today...

Re:What site is this?

[rayde]

"The fact that they're doing something about it should be pretty damn important to those of us who support Windows on a daily basis."

it's pretty important to those of us who are tired of getting emails from people on infected windows machines too.

Re:What site is this?

fuck I wish I'd though of that a few weeks ago, the domain's free and everything

Re:What site is this?

[asadsalm]

What was this site, you mean !

Re:Huh?

[damiangerous]

I think you need to read the blurb again. Particularly the part about "employees" and "internal users".

Call me Capt. Obvious...

[bigdady92]

but aren't all major corps saying "LOOOK DUMBASS' WE CONTROL THE UPDATES DO NOT TAKE THE INITIATIVE TO UPDATE OUR BOXES UNLESS WE TELL YOU TOO!!!" I can say here where I work with over 500k employees that the admins are twitching knowing that security is going apeshit saying "Nope, nope, nope, can't install that, nope nope nope." and they desperately want to fix and patch the boxes in one fell swoop but know that it will break custom built apps. Here's for making all apps run on the web instead of locally!

Re:Call me Capt. Obvious...

[tepp]

Bah, all apps run on the web? Good grief. I'd hate to run a visual C++ compiler located on a website. We've already had that solution - it was called VAX, but instead of using websites, it used dumb terminals.

Besides, the problems with SP2 involve webbed and internet apps. Anything that opens up a port causes the new SP2 firewall to throw up all sorts of alarms, unless it's local loopback only.

Re:Call me Capt. Obvious...

[baggins2002]

Yeah, we tried that or tried it and our developers made sure that the app would only work with IE6. So now we have to use one browser for internal apps and another for external web sites. Works great, until you try to explain which web-sites are internal and which are external, after we spent so much time making it transparent to the user.

Re:Call me Capt. Obvious...

Here's for making all apps run on the web instead of locally!


The biggest problem w/ SP2 for IBM is that the changes that it makes to IE breaks some of the internal Web Apps that they depend on.

Of course, once a fix is designed, implemented and tested, deployment is easier than deploying fat clients to end users, but the fix still needs to be designed, implemented and tested. (hence the "No SP2" order)

Here's for realizing that Web Apps are't a golden bullet.

Re:Call me Capt. Obvious...

[lenulus]

Actually, ironically enough the problem is all of IBM's internal java based web applications (travel, expense reporting, etc...) that are not compatible w/ SP2 (why I can't tell you, that's just what they said on our intranet). So really the headline should be IBM doesn't trust SUN to run on Windows SP2 through IE (which in this crowd I think would make a bigger conspiracy headline)

Re:Call me Capt. Obvious...

[KmArT]

It depends if your web app is written for a web browser or written for IE. We've got "web apps" that only work with IE; patch IE, break web app. Don't patch IE, open yourself up to all the known security issues. Its not quite as simple as move it to the web and solve all your patching problems (hint - web servers need patched too...)

The same as any large organisation?

[trout_fish]

Isn't this sort of decision standard in any large organisation? As with any upgrade, IBM will want to ensure that the upgrade isn't going to break any internal applications. No large organisation is going to want employees installing significant OS upgrades without central verification.

Re:The same as any large organisation?

[damiangerous]

Of course. No IT department of any size is going to allow end users to willy nilly install or not install OS patches and Service Packs as they choose. Anyone who doesn't use a system like SMS is going to distribute the SP, probably in a customized install, to their users through an official internal channel and say "run this".

Re:The same as any large organisation?

What internal applications? Lotus Notes?

Re:The same as any large organisation?

[trout_fish]

If you don't appreciate the types of internal application that a company like IBM will have then you don't appreciate the type of organisation that IBM is.

Re:The same as any large organisation?

[Mateito]

No, Lotus Notes is already broken. No need to install SP2 to achieve that. (Yes, I have dealt with the nightmare that it notes.)

Re:The same as any large organisation?

[SilentChris]

It's standard in smaller organizations as well. My company is going to take a few months to "kick the tires" so to speak. When we're satisfied, we'll roll it out. Until then, my home machine is a guinea pig. :)

Re:The same as any large organisation?

[rifter]

If you don't appreciate the types of internal application that a company like IBM will have then you don't appreciate the type of organisation that IBM is.

Although one who does might also interpret the comment you replied to as a joke. Especially since Microsoft patches have historically broken Lotus Notes...

Re:The same as any large organisation?

That's sounds reasonable, but do you have a point?

By the way, I used to know a girl named Brook Trout, any relation?

Re:The same as any large organisation?

[optimus2861]

I work for a small engineering firm and we can't deploy SP2 yet either. There are a number of Rockwell Software products that are known to break under SP2 due to the new firewall plus a number of DCOM changes, and we use those products extensively; I sent an email to everybody today reminding them not to install SP2 until Rockwell updates their applications. Any electrical or controls engineer should already be aware of this but take a gander here anyway to get the idea.

Re:The same as any large organisation?

[Tony+Hoyle]

I came in late this morning to find our admin installing it on our work machine. When it didn't bluescreen immediately he proceeded to run around the office installing it randomly on any machine he could get at.

So no all corporations are the same....

Re:The same as any large organisation?

[ConceptJunkie]

Ah, yes Lotus Notes. All the advantages of 1980's software with all of the pain. I can't imagine why anyone even uses that hopelessly archaic mishmash of crappy functionality. That stuff would have looked dated 10 years ago.

I was forced to use it back in 1996 and again in 2003, and it was just as horrible in 2003 as it was in '96. It doesn't even conform to the most fundamental Windows UI practices. Of course, the irony is that it's just like everything else IBM makes.

Microsoft at least tries to make their software easy to use, and sometimes they succeed. Notes doesn't even look nice (well, maybe it would if it were 20 years ago) and it's the epitome of user-hostile software.

Re:The same as any large organisation?

[ncaHammer]

Ditto
Every company i know having more than 20 win-users, has already the SUS installed and every user gets the windows updates when admin approves them.
The article says that IBM does the same thing.Where is the news ?
Perhaps after so many times that IBM had convert all their desktops to Linux that at least 20 of them are still running Windows ?

Re:The same as any large organisation?

[pegr]

(Lotus Notes) It doesn't even conform to the most fundamental Windows UI practices. Of course, the irony is that it's just like everything else IBM makes.

Um... It runs well under Wine?

Actually, most IBM (windows) software runs well under Wine. Me thinks it's because IBM uses published APIs for development and not MS "secret sauce"...

Re:The same as any large organisation?

[ConceptJunkie]

Well, good. Then Unix users can share the pain.

I guess Lotus remembered the old "It ain't done till Lotus don't run." It's ironic that 3rd party software is more compatible than Microsoft's. Still, I was relieved when I got laid off from that company. It was a defense contractor, so everything they did was like using Lotus Notes. I never could have imagined being criticized for being too smart and knowing too much, but it happened regularly there.

Re:The same as any large organisation?

[pegr]

Well, good. Then Unix users can share the pain.

Like UNIX users should be especially familiar with the Windows interface? The whole point is that the apps are OS agnostic. That's a feature. UNIX users are grateful, not pained...

Re:The same as any large organisation?

[ConceptJunkie]

Maybe I should be more clear. Notes lacks most GUI conventions from the last 20 years regardless of the platform.

Besides, Unix users should be real familiar with a lack of UI standards, since every X app ever written has its own standard. ;-)

Re:The same as any large organisation?

[idril]

Maybe it's just ingrained habit on my part, but I used Notes for about six years and am finding it extremely difficult looking for anything inside my Outlook mailbox - whether by sorting or searching.

I am sorely missing the All Documents view I had Notes, but due to company constraints on installing software that has not been approved (or not yet been approved, like SP2 - whew, back on topic!), I can't use third-party tools.

Anyone have suggestions?

Re:The same as any large organisation?

[idril]

If you have one admin who can manually install it on all the machines (and if all your machines are in the same office), your corporation probably isn't as large as some of the ones that do have strict software control procedures in place. =)

Re:The same as any large organisation?

[SilentChris]

Well, my company is very small, and even we have an SUS server in the back pumping out updates. It's just plain easier. System Restore and SUS are two of the best things MS has ever done.

Let's not overreact

I'm sure everyone is chomping to blame MS for some catastrophic failure of XPSP2 installations around the world, but really, nearly every IT department is doing the same thing.

This is about configuration management of a network, just like with all other software.

Re:Huh?

I'll admit, I haven't RTFA, but I'm pretty sure you haven't either from the link title.

It's for employees of IBM, not customers. They probably have some sort of intranet issue.

Caution is good

[tepp]

This isn't news.

When Service Pack 1 was released there were so many errors that Service Pack 1 A was shortly released to fix the worst of them. And the hotfixes still keep on coming.

I think I'd rather trust our own internal Q&A department over Microsoft's. Remember, they shipped Windows XP with thousands of unfixed bugs, and considered that good!

Re:Caution is good

[Tadrith]

Windows XP Service Pack 1a was merely a release that made them compliant with the Java VM lawsuit. SP1a does not include Microsoft's version of the virtual machine.

Check your facts before you post.

Re:Caution is good

[gl4ss]

**And the hotfixes still keep on coming.**

not only hotfixes but now there's this 250mb mega patch that you're supposed to install on sp1'd machines!

Companies should hold off

[GombuMstr]

We have asked all of our XP users to hold off until we can verify it. So this should be a good practice at any company

Re:Companies should hold off

[LittleLebowskiUrbanA]

Might want to check the spelling on "submittion."

Re:Companies should hold off

Your going to verify XP? Might as well give your employees the next decade off.

Sexy Man

[RudyG13]

Hehe...maybe slashdotters out there have become so overworked that they just moderate you according to your post title. Time to put that theory into practice.

In related news...

[Supp0rtLinux]

I just installed it and now my I'm getting the BSOD. Dang it! I went to Linux to get rid of the !@#$ BSOD!

Oh, nevermind... my bad. That was just my screensaver and someone unplugged my mouse.

The only thing necessary for Micro$oft to triumph is for a few good programmers to do nothing". North County Computers

Re:Huh?

Let me clue you in on something about IBM. As far as I'm concerned IBM is the ultimate "do as I say not as I do" company. I'd be willing to bet that IBM manages more NT domains then any other company out there, yet we don't have a corporate domain? IBM will urge companies to upgrade to SP2 in a very short period of time, but internally it is quite likely to be 4-6 months.

Re:Huh?

Not daft at all. Go back and read the summary,
"...warned internal users"
meaning IBM employees, not customers. This relates to internal applications used by various IBM departments.
And I suppose if IBM didn't tell its employees to hold off on SP2 and something went wrong, you'd criticize them for that, right? Sometimes you just can't win...

(and yes, I work for IBM)

Exactly my thoughts.

[hot_Karls_bad_cavern]

i'm sure the IT crew has more than a few things to do already!

Side note: just went cruising dell's site for any word on putting sp2 on the gf's new Dimension xps and didn't see much mention of it by way of "don't do this yet" or "my god people hurry and install", so i'm going to call tech support (i heard that chuckle) and see what they have to say on the matter. Prolly have it down by rote at this point after getting more than a few calls about it. If it were my pc, i'd do it just to see all the stuff and give it a shot, but the "my stupidass boyfriend fucked up my computer" doghouse is not where i want to be....ever!

Re:Exactly my thoughts.

Not much better to be a brother than a boyfriend in that case.

My sister's computer just craps out when she uses it. She brings it over to be fixed, I boot it up and everything is fine. I leave it on, I play with it... anything I can think of to trigger this catastrophic failure she keeps seeing and *nothing* happens. I call it good, she takes it home and can't even turn it on.

Somehow it's inevitably my fault but I still don't know how.

Re:Exactly my thoughts.

If someone who's supposed to love and cherish you would refer to you as a "stupidass" for trying to take care of her, I don't think SP2 is the biggest of problems you should be concerned about at the moment. You should be considering why you're within a hundred miles of such a mean crazy bitch instead of wasting your time trying to appease her attitude.

Re:Exactly my thoughts.

[drinkypoo]

Tell her to plug it in next time.

Quick!

[Mateito]

See this thread and repost all the funny, insightful and informative comments. (Nasty color scheme preserved).

It's not a big deal

[futuresheep]

We've just sent out the exact same message to our users, and we're only a company of 350 people. Now that the final release is out, we'll test it, and create an install that fits our enviroment.

Helpful Deployment Tools Here

Wow.

IBM FUD. Makes Microsoft's look pathetic.

Re:Wow.

Well, I tried to care. But then THE HIDEOUS BEIGE OF THE END TIMES consumed my soul...

Re:Wow.

"IBM FUD. Makes Microsoft's look pathetic."

• If you see through the b.s. it actually makes IBM look pathetic.

Re:Wow.

[lucabrasi999]

IBM FUD.

Ah, no. It isn't FUD. They just don't want SP2 to break any existing internal applications that run on XP. If you read just about every other posting on this article, you'd understand what I am talking about.

Re:Huh?

[tarkie101]

Agreed.

Internal IBM website

[avandesande]

Yeah, just like every company they wants to test all of the intranet sites that may take advantage of an IE security flaw.

PR

[Rosco+P.+Coltrane]

IBM's technology department has warned internal users to not install Windows XP SP2 until IBM can fix some known issues

And of course, the first thing that happens is, this internal memo somehow finds its way to ZDNet. Looks like PR FUD to me.

It's good though, at least Microsoft gets a little of its own medicine once in a while...

Re:PR

And of course, the first thing that happens is, this internal memo somehow finds its way to ZDNet. Looks like PR FUD to me.

What I find ironic (as an IBMer) is that IBM's layoff announcements make it to the Wall Street Journal long before they make it to empoyees. Other things leak unintentionally, yet one internal letter makes it to ZDNet and it's FUD?

Actually, I'm not sure I disagree (it is FUD), but don't blame IBM (it isn't PR FUD). The company is a #@&! sieve as far as news goes; I'd guess the blame belongs to an individual acting on their own accord.

Re:PR

[That's+Unpossible!]

And of course, the first thing that happens is, this internal memo somehow finds its way to ZDNet. Looks like PR FUD to me.

Yeah, I can hardly believe a company with hundreds of thousands of employees leaked a memo sent to all of its Windows-using employees.

Indeed.

[James_G]

This is routine for any organization. Even the normal hotfixes put out through Windows update can cause problems and incompatibilities for other software used through the organization. Here where I work, our IT department tests every patch with all the software we use before authorizing it for use on the desktops.

This is especially important for XP SP2, because it does break a lot of stuff. In particular, it breaks the (enterprise class) products we produce in several places (I personally am working on our own hotfixes to be sent out ASAP). This is the sort of problem companies like IBM want to avoid. So, all things considered, this is a total non story.

Since when is it the OSes responsibility....

...to make sure that it is compatible with the applications that run on it? Shouldn't it be the other way around? Since when does the tail wag the dog regarding software? This also applies to Linux, or BSD, etc. I seriously doubt Linus is gonna code Linux to specifically not break how Mozilla currently works, or any of the other Linux apps.

Re:Since when is it the OSes responsibility....

[screwedcork]

C'mon, you can't be fair by comparing closed-source software and open-software... just not the same

Re:Since when is it the OSes responsibility....

[coolfrood]

Well, you may probably not have noted, but there are lots of system calls in their old and new versions in the kernel for backward compatibility. There is lots of cruft in the 2.6 kernel, such as OSS, devfs, etc. Backward compatibility is important, even with the kernel.

Re:Since when is it the OSes responsibility....

[narrowhouse]

On planet Bizarro perhaps it would be possible to code an application to run with a service pack that isn't out yet, but here on Earth if you want applications to run on your OS it is best not to change things so drastically in a SERVICE PACK that it breaks a significant percentage of the applications that WERE written for the OS. So yes, it is the responsibility of the OS to run applications that were written for it. This goes for Linux and BSD too. If Linus wrote a patch that broke Mozilla I can guarantee you that the major Linux vendors would not push that change out to users before the conflict was corrected. A Linux distribution is what you need to compare to Windows not a custom kernel based on last night's kernel patches, and I frankly can't remember the last time the patches I got from a distribution vendor broke even 1% of the apps I have on my machine.

Don't get me wrong, this service pack would have been part of Windows XP when is was created if Microsoft weren't whipped by its own marketing department, and the security improvements in it are much needed. Microsoft is now facing the pain of having encouraged programmers to use the sloppy security of Windows to make applications "user-friendly",so they are going to spread that pain to all the developers that were unfortunate enough to listen to them.

Re:Since when is it the OSes responsibility....

[patric06]

not a problem where I work, we are still using Windows 2000. That is, those of us we are now using 98SE.

Allegedly ...

[BillsPetMonkey]

"One IBM employee in the company's internal technology department characterized the decision as routine."

One Microsoft employee in the company's unspecified division of vaguery was alleged to have characterized a response which resembled "We OWNZ you biatch!".

No really, they did.

Re:Allegedly ...

"One IBM employee in the company's internal technology department characterized the decision as routine."

Nothing to see here folks. Just keep moving along.

SP2, SP2, SP2

[Khanar]

There are currently 3 Windows XP SP2 stories on the front page, plus another one on Microsoft patches in general.

Is there really so little happening in the world?

Re:SP2, SP2, SP2

[YugtheC]

Well, there was a little girl crossing the road today, and she didn't get hit by a car. There, that's real news for ya! ciao

As an IBMer myself ...

[MarkTina]

The reason we're being told to hold off is that the new IE might not be compatible with some internal applications on the intranet (stuff like, payroll, expenses claims etc). There's no wording that SP2 breaks stuff in general, just that some critical IBM apps are effected. So stop scare mongering!

Re:As an IBMer myself ...

WTF has the world come to, that your web browser can have an effect on whether or not your payroll program still works?

If that isn't a damning testimony to the abuse of ActiveX, I don't know what is.

People, if an IE update might break something important, then you have seriously fucked up your whole approach to computers.

Re:As an IBMer myself ...

It also doesn't hurt that IBM's evil asset tracking software is flagged by SP2 as "spyware", and the new firewall won't let it communicate over the network. I gotta give props to Microsoft for that one! :)

Re:As an IBMer myself ...

I know the expense account system is a Java web app.

Re:As an IBMer myself ...

Yes, because as we all know, IBM uses radically different software to the rest of us, so their super-sekrit code will break but normal code won't, right?

Re:As an IBMer myself ...

Since you obviously (or conveniently) have no clue how software development works, let me clue you in on something.

You pick a deployment environment and you go with it. If there's no reason to support other environments, you don't. You test in the deployment environment and nothing else that you don't need to test on.

In the world of intranets, you get to make the rules completely. That's a nice situation to be in.

It's really that simple. They decided a while back that they'd use IE for their intranet client. It might have nothing to do with ActiveX at all. Maybe they wrote JavaScript that used IE DOM stuff (that was slightly diff than the then Netscape version). Whatever...it doesn't matter. They know it works on IE, so they know they have to use IE to run it currently.

Now if someone wants to port it later (which might be a completely trivial job, in other words it might just work on Mozilla, etc.), then they add that to the list of clients they support. This is after they've tested it, which costs money and time...

In a perfect world, it wouldn't matter, but here we are.

Re:As an IBMer myself ...

[bjschrock]

It is? I'm still using the old TOTALS program on the VM mainframe stuff... It doesn't use a browser at all, it's some old telnet-like (maybe actually telnet?) thing. Nice text-only interface. Maybe they just stick us interns on that relic...

(IBMer for the summer...)

Re:As an IBMer myself ...

[tartanblue]

Only no-ops use TOTALS.

Now go get me some coffee!

Re:As an IBMer myself ...

I know the expense account system is a Java web app.

MSJava WebApp hence the reason it doesn't work in anything except IE. Remember the Sun vs Microsoft Lawsuit?

Re:As an IBMer myself ...

[pix]

Actually the latest version of the expense system works very nicely in Mozilla too...

Every BIG COMPANY works like this!

[callipygian-showsyst]

They'd rather that the IT dep't decide when its time to do an update than individual users.

using IE6

[theirishhombre]

After investing billions in linux and Lotus Notes, it seems silly that they still are allowing their people to use buggy software from a 3rd party. Heh...not my company anyway. Also, I must wonder if IBM is decompiling the service pack and checking for patent violations. Kinda illegal....but nevertheless a theory.

Re:using IE6

"After investing billions in linux and Lotus Notes, it seems silly that they still are allowing their people to use buggy software from a 3rd party."

Why use buggy software from a 3rd party when you have plenty of bugs from the 1st party?

This is Standard Practice for IBM

I used to work desktop support for IBM and can tell you that IBM has its own web-based software distribution and installation service that it uses internally. The same thing was done for SP1 - users were told not to install from Windowsupdate.com and were instead told to install from the internal servers after the patches were changed to work better with the IBM internal machines - this is because there are modifications made to the Windows image used in system builds resulting in a custom IBM build of Windows so to speak. No real shocking news here.

Re:This is Standard Practice for IBM

[NeoCode]

I agree. And this made the frontpage news?

Seriously, ALL big companies (IBM, HP et all) do this. I mean c'mon, if there are hundreds and thousands of computers running on the company network and all of them install the untested patch... well you know. Thats what I call a real life Doom 3.

Any half decent system admin will not let anyone install the SP unless it has been tested against essential software like their email client, VPN, payroll and other critical apps.

Re:This is Standard Practice for IBM

[TheOtherChimeraTwin]

Exactly, I don't know why this got any news coverage. It isn't as if IBM sent a letter to customers telling them not to install SP2; they just want to control configuration problems internally. They don't need Lotus Notes to go belly-up in half the corporation because folks didn't wait for the patch to be tested on their intranet.

Re:This is Standard Practice for IBM

[eean]

And probably more so with IBM since I'm sure they still have NT and OS/2 developers.

Re:This is Standard Practice for IBM

[bwalling]

And they shouldn't go installing it yet, either. I'm 1 for 2 on installs of it. I had no problems with one of my work desktops, but my home PC won't boot past the loading of the AGP440.sys driver with SP2.

Re:This is Standard Practice for IBM

I can confirm that HP employees were instructed to not install SP2 as well. Though HP has never had custom OSes or SP's (that I am aware of).

This sure is unheard of.

[Yaos]

A company testing new software before installing it on every system they have? Why I never! Next thing you know they'll be telling us that we should not run every attachment we get in our email.

Re:Huh?

[Marxist+Hacker+42]

1. Internal 2. Employees 3. Corporate firewall should already be protecting them.

SCARY!

[telstar]

So IBM spends gagillions on Linux commercials ... then "leaks" a story about how work needs to be done on their (most-likely) customized internal build of WindowsXP so that SP2 will run smoothly? Why is this news? If IBM is anything like ANY big corporation ... their users aren't supposed to just install things whenever they want on corporate resources. That's not to say that they don't ... it's just that they are probably told not to.

This isn't news. It's Slashdot being used as a puppet for IBM's marketing department. Sadly, I fear many Slashdot readers would be okay with that since it benefits Linux.

Re:SCARY!

[MarkTina]

Actually we can install stuff on our destop and laptop machines, just so long as it isn't illegal ... they rely on our commonsense. If we do stuff up our machines they'll just blank them off and re-image them, after all our work docs should be on the network drives.

Re:SCARY!

It's Slashdot being used as a puppet for IBM's marketing department.

Huh? A puppet for the marketing department that still sells almost 100% of its x86 machines with Windows preinstalled?

Dude, you're reading way too much into this. Slashdot isn't a puppet of anyone. Slashdot is just being stupid and getting confused about what "news for nerds, stuff that matters" is.

Re:SCARY!

[tartanblue]

Tinfoil hat much?

One IBMer opens up the intranet web page, sees the top story about SP2, and posts the info to Slashdot.

No puppetry... just normal IBMers who post to Slashdot.

Re:SCARY!

[diamondsw]

Marketing my ass. It's called one IBMer among 400,000 (last count I saw) decided to submit an Intranet article to Slashdot. It was posted so that we wouldn't go and install SP2 and complain about internal apps not working - not so you could get your panties in a bunch.

Re:SCARY!

[telstar]

"It was posted so that we wouldn't go and install SP2 and complain about internal apps not working - not so you could get your panties in a bunch."

• You're serious? IBM employees should be using Slashdot as their directions for installing software now?

Re:SCARY!

[diamondsw]

Ahem. let me rephrase.

It was posted on the IBM Intranet so that we wouldn't go and install SP2 and complain about internal apps not working.

Not that getting our directions from Slashdot would be a bad thing...

I bet they're just sucking up

[n9mdh]

I bet they're just sucking up to the Linux crowd. First the public display of affection for open source, then the We-won't-sue-Linux french kiss. Now they drop the big one: "we don't trust MS either." Maybe they finally got a real marketing department. :)

Isn't this routine for every company?

[tkrotchko]

Generally, companies don't allow employees to start patching on their own, it goes through an internal Q&A process, and then is pushed out from internal sites, not direct from MS.

Just the bandwidth alone would force companies to use internal update sites!

So I'm not sure what the story is here.

Re:Huh?

[thpr]

How can IBM tell Microsoft customers...

Specifically it was NOT addressed to clients (note Sam doens't call them customers anymore).

It was a letter on the IBM Intranet addressed to the 300,000+ IBMers (for reference, I am one. I've read the letter. Of course, I do NOT speak for IBM). The letter does not mention specifics, but IBM develops a TON of software for use internally. These applications have to be tested with SP2 before they release SP2 internally.

This is completely routine, and has been done on many patches before this one. It is IBM being cautious and testing a new component with the thousands of other pieces of software that keep IBM moving. I for one, am glad our IT staff takes the time to do this.

how do you stop users from d/l SP2?

[stonebeat.org]

any idas on how one would stop users, in a large corporation, from d/l this server pack? apart from blocking the www.microsoft.com/downloads and msdn.microsoft.com ??? asking the user to NOT d/l doesn't help much.

Re:how do you stop users from d/l SP2?

[MarkTina]

Not give local administrator rights to the users machine would be a good start ... can't install it then can they :-) Or you could ban internet access entirely, most users don't need it anyway.

Re:how do you stop users from d/l SP2?

[ncaHammer]

asking the user to NOT d/l doesn't help much

Then perhaps you dont ask the right way.
Use the Pharaoh's curse or voodoo symbols at the end of e-mail.

Re:how do you stop users from d/l SP2?

Well first off you really answered your own question - why NOT block microsoft at the router?

Secondly, no one should have admin on these boxes but an actual admin in most cases anyway. Of course, that breaks dozens of applications, which is why no one does it, which is why bringing Unixish account security concepts to MS Windows has been such a flop... doesn't work if you don't use it.

The best way, of course, would simply be to get a real OS on those computers.

Re:how do you stop users from d/l SP2?

Resources
For customers with a population of unmanaged PCs for which the above solutions will not suffice, Microsoft is providing additional methods of
managing the update process. These alternatives enable customers to temporarily disable delivery of Windows XP SP2 via AU and WU, while still
allowing critical security updates to be delivered via AU and WU, thus providing more time to plan for deployment.

Options to temporarily disable and then re-enable delivery of Windows XP SP2
via AU and WU

1. For organizations that have implemented Active Directory based Group
Policy, we will provide an ADM template to allow these customers to
centrally and easily disable and re-enable delivery of SP2 to targeted
groups of Windows XP systems using Group Policy
2. For organizations that have not implemented Group Policy, we are
providing Microsoft signed executable software that can be run on systems to
disable and re-enable Windows XP SP2 delivery. The disable and re-enable
actions are specified as command-line parameters when running the
executable.

Microsoft is also providing a sample script that will accept a machine name
as a command-line parameter to enable execution of the executable software
on a specific machine. The script can be used to run the executable on a
remote machine or on a group of remote systems, using a mechanism that works
best for the customer (run as logon script, via a remote script execution
mechanism such as SMS, etc.).
3. For organizations that have machines that are not easily managed via
scripting or Group Policy, but are accessible via e-mail, we are providing
sample e-mail text that includes a URL link that users can click on to
disable delivery of Windows XP SP2. This URL will point to an executable
script hosted on www.microsoft.com/technet/winxpsp2. This option requires
users to have administrator rights on their machines.

We are also providing sample e-mail text with a similar included URL link
that can be clicked on to re-enable delivery of Windows XP SP2. IT
administrators can send this e-mail to their users when they are ready to
deploy Windows XP SP2 to these users' systems

Note 1: All of the above options rely on the presence of a registry key to
disable delivery of SP2. This is a new registry key that is used only for
the purpose of disabling and re-enabling delivery of SP2. Consequently,
there is no additional impact or side effect on the system, and customers
will be able to use these options immediately without need for any testing.

Note 2: Running the executable software requires administrative privileges.
Users who are not administrators on their systems will not be able to run
the executable. This is not an issue, since these users would not be able to
install XP2 anyway, and disabling delivery of XP2 would not be a concern for
these users.
Delivery
Customers will have access to these tools via the Windows XP SP2 section of
Microsoft TechNet (www.microsoft.com/technet/winxpsp2) that provides

1. Information on options for temporarily disabling delivery of Windows
XP SP2 via AU and Windows Update
2. Content to disable and re-enable delivery of Windows XP SP2
a. URL link to download a self-extracting zip file containing the ADM
template, signed executable, and sample script
b. Sample email text with included link that can be clicked on to
disable delivery of Windows XP SP2
c. Sample email text with included link that can be clicked on to
re-enable delivery of Windows XP SP2
3. Link to a frequently asked questions (FAQ) page
Note: The main Windows XP SP2 page on TechNet will have an announcement
about the availability of the Windows XP SP2 delivery-disabling options and
will provide a link to the above Web page.

Re:how do you stop users from d/l SP2?

Or you could ban internet access entirely, most users don't need it anyway.

You are a total cunt.

Understanble

[rf0]

Its better to have a system with known quirks than an system with unknown quirks

Rus

But of course...

[jamesdood]

It could be the "updated" IBM version of SP2 is a nice clean Linux install...

Re:But of course...

[ceeam]

Hah! Thanks for a laugh ;)
I'd take a Unix for a server any time, but I do not see anything "nice clean" about, EG, /usr/lib, or even /etc, or... And installing/uninstalling apps is no more clean on Linux than on Win. And there are still roughly the same security issues in "user land". And I bet 99.99% of Linux "power users" won't be able to tell what every particular file on their system is for...
But still - having no registry and files (dead)locking is a bless.

Informative

[arose]

"Sexy Man" is not an moderation option.

Re:Informative

[MicktheMech]

Well it wouldn't get much use, would it? This is /. after all.

Re:Informative

[Eye+of+the+Frog]

Thanks! I now have a new sig... :)

Re:Informative

[gcaseye6677]

If it were an option, would we give it a +1 or a -1?

The Real Question:

Who really cares? When did this bilge become news?

More importantly...

... Forget IBM, I wonder what Apple's position is on SP2.

SP2 - Admin Rights Required?

[Chordonblue]

I thought you had to have Admin rights to install the thing in the first place. In the second, I would think that most mega-corps would have their users classified as 'users' or 'guests'.

So is this message really for IT then?

Isn't MS supposed to...

[Neo's+Nemesis]

...have installed SP2 on all their XP machines, and then ran it, longer than anyone has done since its release? If MS can go trouble-free for the past week on the PCs with SP2, then why are smaller (only slightly) companies like IBM feeling danger in insatlling it?

I'm sure IBM's business is run same as MS. Its not a hospital where great specialization is reqd in software and single error turns you in jail. If MS has released it after much confusion, I think it'd be good.

Re:Isn't MS supposed to...

[Shirotae]

The article says it causes problems with some IBM internal applications. Microsoft probably does not run those applications.

If SP2 breaks third party software that is installed on business critical machines (e.g. laptop of person working on 8 figure deal), a sensible company will not install it. IBM is not the only company working on known problems with SP2, and issuing "do not install" memos internally.

Re:Isn't MS supposed to...

[Gallech]

The statement "why are smaller companies like IBM feeling danger..." expresses an incorrect piece of data as fact. IBM is significantly larger than Microsoft ($80 billion in revenue versus $36 billion; 330,000 employees versus 55,000) and significantly older (100 years versus 20).

And as for why IBM would feel danger...I'm an employee and actually *read* the internal release. I didn't sense fear, just common sense. SP2 will break some stuff for users: not by being "bad", but just by being more strict. That alone is reason to hold off a bit so that appropriate changes can be applied to insure that key business apps aren't unintentionally firewalled (for example). I really don't consider this newsworthy.

Re:Isn't MS supposed to...

Don't forget to mention IBM's market cap is significantly larger at around $150 billion compared to Microsoft's almost $300 billion. Hang on...

No Wonder. WinXP SP2 installation woes.

[osho_gg]

I have WinXP Home SP1 with all the latest updates applied. I downloaded the SP2 .EXE file from microsoft.com's download and attempted to install it.

The installation went fine except that somewhere in the middle of the installation I got "Access is denied." error. The installation program then went and de-installed what was partially installed and restored it to SP1 (Thank Goodness!). This was while logged in (as the only user in the system) with administrative privileges. Windows was rebooted and it booted fine in SP1.

I rebooted SP1 in Safe mode and logged in as the Administrator. I repeated the installation process with exact same error "Access is denied.". Again, reverted to SP1 successfully

I am thankful that it was possible to change back to SP1 and WinXP booted. But, I just can't seem to be able to install SP2. Now, I am scared than earlier about trying it for the third time.

Osho

Re:No Wonder. WinXP SP2 installation woes.

[JeffBean]

Me too. I got the same error message. I checked the svcpack.log file that it leaves behind in the \windows directory and it indicated that the problem occurred while doing something to the registry, but it provided no clue as what section.

I posted a query on a MS newsgroup and got a response from an MVP that indicated that it was a rights issue, that I didn't have rights to modify some section of my registry.

My suspicion is that this problem resulted from my machine having being a member of two different active directory domains during its life.

Anyhow, I threw in the towel and reformatted the disk and did a clean install of the original XP release followed by SP2. That worked just fine, but it was quite a chore to reinstall all the software I had accumulated in the two years since I last did a clean install.

Re:No Wonder. WinXP SP2 installation woes.

Have had same problem while trying to compute md5 checksum on that download... access denied whether I try from a command line or gui. In addition, if you check the certificate on that file, it comes up as invalid, despite being downloaded directly from Microsoft. Any ideas?

Re:No Wonder. WinXP SP2 installation woes.

[osho_gg]

I have so much data and programs installed, reinstaling XP is not an option. Could you point me to the threat in the MS newsgroup? I will have to find out a work around. Osho

Re:No Wonder. WinXP SP2 installation woes.

[themassiah]

Double check and make sure you have a legit serial number. Word on the street is that you can't install it if you have certain installation IDs, which are a result of heavily pirated registration information.

Re:No Wonder. WinXP SP2 installation woes.

[JeffBean]

Here's the link. A subsequent poster indicated he was able to locate another log file which pointed to the section of the registry whose permissions needed to be fixed. Jeff

Re:No Wonder. WinXP SP2 installation woes.

[figleaf]

Do have Daemon tools or 120% Alchol installed.
Or any appplication which emulates CDs.

These applications are notorious in locking system files.

You should uninstall the application and then install SP2.

You can reinstall the emulation program

Re:No Wonder. WinXP SP2 installation woes.

[osho_gg]

Thanks much. Someone in that thread seems to have some ideas about how to find which registry entries needed to be changed.

Osho

Re:No Wonder. WinXP SP2 installation woes.

Works fine with Alcohol 120% installed... no trouble at all here.

Re:No Wonder. WinXP SP2 installation woes.

[tarsi210]

I posted a query on a MS newsgroup and got a response from an MVP that indicated that it was a rights issue, that I didn't have rights to modify some section of my registry.

<rant>
Who in fuck at Microsoft thought it was a good idea to have such a screwed-up permissions scheme? I ask you, honestly, WHY don't I have full permissions to do ANYTHING to ANYTHING I want when I'm Administrator? Every time I get an "Access denied" error, I'm this close to going spare and hacking something to bits.
</rant>

I've found the easiest way is to select the C: drive, right-click, Properties, Security, and give everyone every permission, apply to all, propogate to children. Voila! Instant access.

As many as I could get

[zaxios]

Well duh, they want to make sure it works with all their software. I'm sure they are mostly talking about their close customers who rely on IBM for their business, and IBM can't be sure everythig will be smooth. But seriously this is the same as me telling all my office not to download and install it personally to wait untill I have tested it and I will deploy it for them
How does this get modded as informative? I'll be the first to burn MS as the stake, but IBM isn't rolling out because they failed to udpate thier OWN INTERNAL APPS, not becaue there is something wrong with SP2.> they failed to udpate thier OWN INTERNAL APPS.
You choose your operating system to work with your apps, not the other way around.
You don't run a corperation on bleeding edge, which is why RedHat Advanced server,seen as lowly by slashdot, is really a lot more appropriate for the corperate server room.
IBM hasn't updated their apps. This is normal. Unless there is something in the new version that Justifies it, or that version is EOLed by the vender, nor should they.
In spite of that, a "Service Pack" shouldn't break applications. To Sun, IBM, HP, Linux users, a "Service Pack" is a cluster of patches. To Microsoft, a "Service Pack" is whole lot of shit to foister on the clients without given them the option to install only what they need.

This is one reason why MS truly isn't ready for the datacenter.

what is this malarkey ?

[zootman]

IBM is just following standard change management/control procedures. Of course, they want to ensure that their own internal application still work after the apply of SP2. Whats wrong with that ? I hope most organisations will test SP2 out in test environments before rolling out to production PC's. This is just common sense. I pity some people who cant understand normal change control procedures. This is a mind set that unfortunately appears to be being lost - these are lessons learned nearly 30 years ago on mainframes. The same principles still apply today whether it be mainframe, nid-range or PC's. This has nothing to do with IBM's clients - this is for their own internal systems. Some people are implying that this is a plot to undermine Microsoft and promote Linux - IBM is a conundrum of ideas and directions - there are people pushing Windows and some people pushing Linux. I am not biased towards one or the other - just use the right OS for the right job. And further to what some people have expressed in this story that this is somehow a plot by IBM to undermine Microsoft - whoo ! what vivid imaginations some people have !

Re:what is this malarkey ?

[Tony-A]

IBM is just following standard change management/control procedures. Of course, they want to ensure that their own internal application still work after the apply of SP2. Whats wrong with that?

Nothing wrong with that. That's the way it has to be.
It does however impact the window during which Microsoft Windows systems will remain unpatched and vulnerable. It doesn't matter how fast Microsoft reacts. The relevant timing is when the patches can be safely applied.

This is where Open Source has essentially an unfair advantage. It is almost trivial to know exactly what the patches do, what they might affect, and to be extremely selective in which parts of which patches are applied, even to the point of changing patches to work around problems where you cannot or don't want to patch.

color

[minus_273]

here is a link with proper color

Re:color

[tmbg37]

shit.slashdot.org? I know that a lot of regular stories on slashdot are BS, but an entire section devoted to it?

Re:color

[Peyna]

basically any name that doesn't have a specified color defaults to the regular green.

While you're at it...

[Chordonblue]

...Why not ban the use of mouse? GUI OS's can be so irritating anyway... :)

Re:While you're at it...

[wed128]

three words

"lynx for windows"

Re:While you're at it...

[MarkTina]

Well there are some people I wouldn't even trust with pen and paper .... ;-)

This is not news

How is this news? all large companies have locked down distributions. Amazingly you CAN actually strip down windows and customise it. (oh and my home network is all gentoo built boxes so I'm not a windows fanboy).

I did some work for a very large distribution company. Very large. Think large, then multiply that by 100, you're nearly there.

So our app was rolled out accross the globe. THEN it got sent to IT to be merged into the standard build.

To date, I dont think it ever did get merged because IT couldn't get off their arse and authenticate all the sources we'd used.

However the company HAD to use it, or they couldnt do their work, so regularly after automated updates were installed, we had to go in and delete a load of DLLs and install our own.

and regularly the IT authenticated build overwrote this.

Prudent of IBM

[pyrrhonist]

I've been seeing a couple of complaints here that IBM had plenty of time to evaluate this with the release candidates and beta versions. I'm pretty sure that's exactly what they did, and are still holding off because they did identify some issues (as the article said). I can't imagine that it will take IBM too long to roll this into their next set of XP disk images, and get SP2 out on their corporate update servers.

IBM is being prudent in this case, because of the issues they identified with well known applications and their internal applications. I wouldn't be surprised if the are also holding off on the update until some of their internal applications are updated. A large portion of the company probably relys on these applications, and updating would cause too much downtime. They probably identifed the issues with these applications during the SP2 beta cycle, have updated them, and are beginning the process of updating images and rolling them out.

That being said, I'm wondering if we'll start seeing announcements from other companies that are doing the same thing. I'm thinking that HP probably has as many PCs if not more than IBM.

Re:Prudent of IBM

[Lord+Cyric]

HP's internal IT group told all employees early last week that they should NOT install WinXP SP2. They are already testing a "customised version".

Re:Prudent of IBM

Pre-released and beta's don't cut it. We've had them at out 600 person company as well.

Until you have time to test the final product with all your companies apps it's ludicrous to blindly roll it out. Unless of course you're trying to build a campaign for switching to Linux. Go right ahead then...

These problems are beyond a simple firewall...

[Chordonblue]

There are security issues like people bringing in their worm-infested laptops. AS the admin of a small boarding school, I can tell you that that's the only way we managed to get hit last year. The policy here is that all machines get scanned and patched before they get connected to the network - period.

Nasty worms like this don't care about Internet access so much as they like to flood local LANS filled with unpatched computers. That's why, when I see companies or hospitals who don't patch before extensive, lengthy testing; I don't see this as a 'great' solution.

For a lot of these organizations (particularly those without extensive Layer 3 switching), the day may again come where a massive attack worm will wheedle it's way to every machine. It's happened before and will undoubtedly happen again.

Re:These problems are beyond a simple firewall...

[Marxist+Hacker+42]

Most larger networks already have policies in place for that sort of thing- IBM ain't no bording school.

And nobody's saying it is a great solution- but when we're talking about a patch that just a few days ago caused 3 out of 5 computers it was applied to to fail to reboot- and given Microsoft's reputation for bugs- it can be more expensive to apply the patch without testing than it can be to delay a bit.

Re:These problems are beyond a simple firewall...

[Chordonblue]

Yep, I fear it also. The girls return on the 7th and I just know the level of spyware and crap on those machines will be at an all-time high. I base this assumption on what my relatives computers have been looking like lately. Sheesh!

Re:These problems are beyond a simple firewall...

[Marxist+Hacker+42]

Absolutely- so why not require all students to have ZoneAlarm installed? It's not like the firewall technology in XP SP2 is new....

We're all reloading Slashdot for problems

[swb]

Every large company has a hold off on SP2 order so their IT staff can hit reload on Slashdot for a week or so to see if any "SP2 sux0rs!!11" stories get posted. If we go 2 weeks without one, expect it to get rolled out.

Another site to check are some of the gaming forums. If it doesn't trash Doom3 and the Slashbots pretending to work don't report problems, it must be OK.

Re:Huh?

[boudie]

message to IBM from linux-2.6.7 in my T40 laptop: exfldio-0179: ***Warning: The ACPI AML in your computer contains errors, please nag the manufacturer to correct it.

Wow. Right on top of things IBM!

[TheAncientHacker]

Microsoft only published guidelines, whitepapers and training on how SP2 would impact existing apps, what, six maybe eight months ago? Shame nobody in your corporation could be bothered to actually read them and check the apps. What did you think? That if you ignored it, Microsoft wouldn't ship SP2?

Of course, this IS from the company that brought us Y2K.

Re:Wow. Right on top of things IBM!

[petabyte]

Umm yeah, because we all know that how a patch or program effects the system is always outlined exactly in the white paper. There are never any other issues that pop-up or unforseen consequences.

Most home users know better (the ones that actually know to apply a service pack that is) then to not jump into service packs. Why would a company be any different?

The Truth

[Mud_Monster]

1. IBM has many intranet applications that must be tested to ensure compatibility with IE and SP2.

2. IBM does not have a worldwide policy addressing the installation of patches and service packs.

3. IBM has never contacted employees instructing us not to install XP SP2 (a news article was posted on the internal website; in the past, we have received emails instructing us to use Windows Update to install patches).

4. IBM does not test every patch and service pack for compatibility.

5. IBM managers instruct us to us Windows Update to patch our computers.

6. IBM installs spyware on all our computers and validates the reports semi-monthly.

I'll let the reader determine which points are so important that IBM does not want us to install SP2.

If anybody remembers, WinNT SP6 caused Lotus Notes not to work, and many at IBM had trouble until MS released SP6a.

Re:The Truth

Funny, I've been with IBM for only a few months, and even I realize that Points 2,3,4, and 5 are false. Do you even work for IBM? Or are you just posting like you do?

(2)IBM has an internal worldwide policy for relasing patches. As with many corps, they use an internal deployment app to control what patches are sent out, only after testing.

(3)IBM has clearly stated to its employees not to use Windows Update as it causes issues with the custom builds of Windows not to mention the apps they run. Once again, internal deployment of patches like any other major corp. reduces the chances of issues.

(4)Internal Deployment, any patch that shows up on windows update is tested for compatability issues, hell even the virus removal tools they use are checked before being allowed in the internal environment.

(5)Internal Deployment, Management knows this, the helpdesk knows this, most employees know this...why don't you? The helpdesk gives hell to any user caught using windows update too. (which normally ends up in a re-image if complications arrise.)

Now, go back, re-read your training manual, re-do your homework, and try again tomorrow. Nice try though.

Re:The Truth

As a long time IBMer, you are probably BOTH right.

I've been with the company long enough to know that there is NO global IT policy whatsoever. Although there have been many MANY attempts to consolidate it over the years, the reality of the situation is that IBM is, in fact, about 500 small companies, each with their own poliicies and procedures -- which vary from country to country, state to state, and office to office.

Its very possible that Grandparent was told to use WindowsUpdate while Parent was told to NEVER do that. Happens all the time.

Welcome to IBM.

Re:The Truth

So true. I work there too and saw the article on w3... there are some good details under the technical info for developers link. It explains the main concerns.

For the rest of you, it isn't a big deal like people are acting like. They didn't send a warning to everyone... it is just some useful info posted on the intranet news site, along with a recommendation to not install it just yet. Nothing unusual at all.

The only people who are making this out to be a big thing are the ones who have never even seen it. Gotta love the abundance of misinformation on the Internet. Are we going to see a Slashdot story every time a major corporation makes a statement based on common sense?

Lynx!

[Chordonblue]

Ahahaha! I couldn't remember the name of it but, yeah... Lynx... Had to use that last month on a SuSE installation. It reminded me of a simpler time - back when my Atari 800 burned up the lines at 1200 baud... :)

This isn't anything new.

[Pensacola+Tiger]

I work for the Department of Defense, in an almost exclusively Microsoft environment, and the rollout of every Microsoft service pack, from NT 4.0 on, was delayed by the support group until it was tested with every application to make sure it didn't break it. The same is done for Oracle version upgrades, and any other upgrade or patch that has the possibility of adversly affecting the operation of the organization. So the fact that IBM has chosen not to roll it out immediately isn't anything more than ordinary prudence. Move along, nothing to see here.

OH NO! Will Slashdot hold off too?

[scruffy]

Does this mean /. will hold off on changing this horrid color scheme until it's determined that nothing bad will happen? Like being able to read titles and links?

How could anyone...

[DJAthens]

...trust a link on a web page that said:

let us do it for you. ?!

When "it" means accessing your computer over the net and changing settings in your OS.

regular IBM practice? May be not ...

[porky_pig_jr]

I've used to work for IBM. Remember recieving my laptop (T21), don't recall any special notes on 'not downloading any patches'. OTOH, this patch changes so many things, that I understand why IBM is so paranoid about it. They don't want to deal with all the broken apps.

Personally, I'm going to hold on with this patch as well. Why do I need it anyway? When I ru Windows (and I have a dual boot), I only use Mozilla as a browser, have firewall, Active-X tracker, always up to date virus scanner, and several spybot scanners/detectors. So I would rather hold on till, say, the end of this year -- when dust settles down ... Or may be never.

News?

How is this considered news? IBM has it's own way of doing everything.

Interesting

[FuzzyBad-Mofo]

This seems to be a valid theory!

SP2, WTF?

[genesplicer]

I'm a little confused as to the seemingly excessive level of news coverage that XP SP2 is getting. As I type this, there's 3 stories involving XP SP2 on /.'s front page, all of which are linked to different sources. Why all the chatter for this particular release?
I don't recall XP SP1 or SP's for Win2K getting nearly this much media attention ...
Just a thought ...

Re:SP2, WTF?

SP2 is a big change to XP. It adds all sorts of stuff that should have been in XP orginally. Perhapes it should be called XP Reloaded, as that is basically what it is.

Lots of new features (firewall that works?, tabbed browsing?), bug fixes, and apparently it runs faster too.

Re:SP2, WTF?

[smash]

Unlike previous service packs from microsoft, Win2k SP2 makes several changes that *will* break things. No "maybes" or unintentional incompatability issues here - these are core design changes that will likely require configuration changes to work in most environments.

This is why its getting so much hype - it marks a change in direction from Microsoft from "works by default" to "secure by default".

Personally, I think SP2 is a good move by Microsoft on the whole.

Sure, there will be a short term amount of pain getting it installed everywhere (currently working on a strategy here myself), but it will definately help prevent worms getting onto corporate networks via road warrior notebooks with the built in firewall...

Given the abysmal state of security in an unpatched Windows XP installation, I reckon they should be sending it out AOL-CD style so that it actually gets deployed by everyone though - 270megs is a bit steep to download... even 1/4 of that is too big for a casual dialup user really... and those are the people who don't care about security enough...

smash.

DRM "upgrades" in SP2

5) Installed more gooblygook into Windows Media Player that asks for copyright protections etc

Ah... the true motivation for SP2 becomes clear...

What a pointless story..

[d_jedi]

OF COURSE you don't have your users install a service pack without sufficent testing!!

GEEZ!! This is news??!

Re:What a pointless story..

but what are users for. The only way you can get sufficient testing is to immediatly install it on every machine available. You will immediatly become aware of all problems!

Underrated

[kooshvt]

Doesn't look like the theory is applicable to all cases. You need to create a special exception for Trolls.

FedEx SP2 Issues

[TerminalEcho]

Here @ FedEx we tested some SP2 installs and it broke a bunch of our apps. We are also holding out on deploying this service pack to our machines so we can make a custom SP2. I think alot of companies are doing the same. TE

Flamebait

[satans_advocate]

blah blah Windows rulz linux is the suxors

(just continuing the experiment)

Same story on the otherside

[randomErr]

I posted the same story around 10:00 am on technocrat.net. Wonder why it took so long to filter through here?

Karma Whore....

[vwjeff]

I guess that's not an option.

Better update your BIOSes

I happened to download the XP SP2 ISO from MSDN the day it was released...my HP/Compaq laptops took it ok, it killed my Intel mobo 865/P4 machine. I nuked my drive and installed from scratch, same thing..worked fine until I installed SP2. Turned out, I had to update the BIOS on my all of 6-month-old P4 motherboard to get XP SP2 to run. As soon as I did this, the "dead" installations of XP SP2 started up right away. My inner conspiracy theorist tells me SP2 must interface with hardware in some new way (probably for that lovely DRM crap) that certain BIOSes don't like. So, any bets on how many of those "100 million machines soon to be updated by automatic updates" get killed by SP2? (just from this problem now, we all know the first half will get killed by something else)

Re:Karma Gigolo

[tomhudson]

Just got tired of seeing all these karma whores floating around :-)

coulndt say it better myself

http://www.dialcollect.org/dontdoit.html

$90!

[Atmchicago]

Quick! Slashdot his bank account! Everyone should post here to get his fair share.

Size matters

[gad_zuki!]

Actually, windows update be it automatic or by visiting the site will read your registry and decide on what components you need. The 250mb file is *everything* for all configurations. Its the administrators version, not the end users version. The real size could be anywhere from 20-90 mb depending. Perhaps smaller, perhaps a bit larger.

Normal IBM anti-Microsoft FUD

Nothing new in that.
IBM is full of angst and jealousy that Microsoft is continuing to totally clobber Linux on the world's desktops, in spite of IBM's best efforts.
Microsoft will easily beat IBM yet again, like they have always done (remember when IBM initially "declined" to install Windows 95 back in 1995? Windows 95 went on to become the biggest selling software in history, by far, up to that time ). LMAO!

By 12 month's time, SP2 will be installed in over 300 million OC's worldwide, over 100 times more than the total installed base of Linux, and Microsoft will continue laughing all the way to the bank, while IBM continues to gnashe their teeth as usual. :)

whining

[Ragica]

Who cares about IBM, anyone installed this thing on WINE yet?

Full text

[HungSquirrel]

I found this somewhere.

Re:also

[martissimo]

wont complete an errorless install with any virtual drive programs installed, "atapi.sys" troubles for me (alcohol 120% here, but apparently daemon tools does the same), can't even disable a process from task manager to stop the error, either uninstall the program or tell it to continue installing while ignoring the error... i am a bit adventurous and all but i just have to say no when it comes to a brand new sp that is erroring during the install for now.

probably something that will get fixed and become interoperable before too long anyways, but for now I wouldn't rush into grabbing the couple hundred megs if you run any virtual drives

Managed Desktops - It happens out there

[derfla8]

Many "server" orientated techies out there are oblivious to the fact that large organizations require the discipline of running a managed desktop. This means as much as possible desktops should be in a managed state through a consistent desktop image deployment followed by managed updates. This misconception that desktop users have more "freedom" is demonstrated by the confusion that this "internal" note within IBM has caused so many, when in fact it is a simple policy that prevents headaches. You think managing a server farm of 1000 servers is difficult? Try managing 100,000 desktops where globally you need to ensure you can deploy the same suite applications and support various country customizations like language support.

More than most Fortune 500s, IBM has a lot of different applications from developer tools to web applications used by their backoffice and sales staff. Nobody managing such a large desktop infrastructure would not do all they could to mitigate the headache having to fix desktops where the user thought through all the hype that it would be smart for them to download and install SP2. You may even laugh to know that in my experience (not at IBM of course) the techies are the worst of the lot. Thinking, hey I'll just install this because the IT guys will come install it sooner or later anyway...and I want a more secure desktop as the people on Slashdot keep telling me how insecure my XP box is. And then boom, there come the support calls:

"Half of all my applications don't work anymore"-Mr Smarty
"Did you install anything before this happend"-Support
"Nope. I was minding my own business and now half of my applications don't work, and I get this new icon in my system tray. Now I can't do my work."-Mr Smarty
"Are you sure you didn't install anything?"-Support
"Well, there was this update...uhm, XP SP2"-Mr Smarty
Click... -Support

Re:Managed Desktops - It happens out there

...click BOOM!

That's why they released RC1

[kc_cyrus]

It's very strange to see that big corporations like IBM are acting so amateurism.

MS released RC1 so that companies can test their internal applications and get themselves ready for the final showdown of SP2. But what they did instead? I guess they were just walking around in IT Dept. and drinking their coffee and browsing slashdot, in the hope that MS gets bankrupted before they release SP2 so IBM guys don't need to patch and fix their internal applications.

In our company of 300 employees, we tested SP2 way back to RC1 and from almost 14 days before , we were totally ready for the final release of SP2.

You should do the same

Re:That's why they released RC1

Cobblers. No company can afford to trust M$ or anyone else with something that will make major changes to their computers without detailed checking of the final release version. To do otherwise would be to act without due diligence and should anyting go wrong, the company may well be liable for any consequential losses experienced by its clients and could potentially be in serious legal trouble.

Re:That's why they released RC1

[hookah_fan]

"It's very strange to see that big corporations like IBM are acting so amateurism."

It's you guys making a big deal about it... Come on all they did was post an internal note on a website saying don't install sp2, wait for our customized sp2 install. They did this because the 10 o'clock news is running stories about xp sp2. So they don't want a bunch of people going out and trying to patch it themselves. Every singe large corportation feels this way!!!

"In our company of 300 employees, we tested SP2 way back to RC1 and from almost 14 days before , we were totally ready for the final release of SP2."

your comparing 300 employees to over 300,000 spread out over the entire globe...It's just a tad bit more complicated.

Big Blue?

[Barumpus]

OK. I read the first part of this and just had to ask.. when they refer to IE6 and "Big Blue", do they mean the computer or are they using a monitor around the size of 35 inch when they crash?

Motorola as well...

[Asten]

Motorola's outsourced IT monkeys have also deemed SP2 not ready for rollout, and have warned employees not to install it on machines as well..

Changes to Functionality in Windows XP SP2

[kc_cyrus]

Changes to Functionality in Microsoft Windows XP Service Pack 2

MS posted this article yesterday in Technet website, It's good to read it for more technical details.

Re:Huh?

[0x0d0a]

Even if it wasn't routine, it's *stupid*.

I don't like Microsoft. Microsoft has happily screwed me in all kinds of ways, just as it has most people on this site.

People tend to flame Microsoft as much as possible to get back at them for the things that they *don't* have any influence over, like the "integration" of MSIE and Windows.

However, this particular issue has reached the ridiculous. I don't care how badly Microsoft has screwed you over in the past, you're starting to sound ridiculous. At this point:

* Microsoft has been bashed on Slashdot for delaying SP2.

* Microsoft has been bashed on Slashdot for releasing SP2 with bugs still in it (based on, I must point out, a *prerelease* copy).

* Microsoft has been bashed on Slashdot for releasing SP2 to pirates (and encouraging piracy, and thus "beating Linux" by putting out Windows for free).

* Microsoft has been bashed on Slashdot for *not* releasing SP2 to pirates, and thus hurting everyone else from zombie boxes.

* Microsoft has been bashed for adding compatibility-breaking security fixes (most notably, no execute on stack) to SP2.

* Microsoft has been bashed for not having no execute on stack.

* Red Hat has been lauded for adding no-execute on stack support to their own systems.

* Many major Linux distros have not been bashed for not adding no-execute-on-stack support.

At this point, Slashdotters should just drop the subject.

Re:Huh?

[0x0d0a]

Just to make it clear, "you" refers to those Slashdotters bashing Microsoft over SP2 right and left, not the parent poster.

Doesn't make sense

[PingPongBoy]

I thought a big company like IBM, who started the IBM PC revolution for goodness sake, would have been working closely with Microsoft to keep their customers as happy as possible. Now I see very very few IBM machines on desktops. It all adds up. IBM may be wonderful for inventing new technology but they don't offer anything competitive in terms of price and service to the little guy, especially people with limited computer experience.

Re:also

[ManxStef]

If you're having troubles stopping a process through the Task Manager, try the amazingly useful (and free!) Process Explorer from SysInternals. Be careful though, killing SMSS for instance is not a good idea!

Check out their other tools too, they rock e.g. TCPView is a nice graphical netstat, and FileMon & RegMon allow you to see what files/registry entries are being accessed. Very cool.

Same story here at disc drive city

[mnemotronic]

I work for a rotating magnetic media (i.e. disk drive) company, and our I.T. folks say almost the same thing - SP2 will break internal apps & settings, and we should all wait until the I.T. department can do a customized S.P.

Personally, I doubt if I'll install it. I installed SP1 on 3 machines, and it made all of them noticibly slower. In addition, it made my home machine disable the kbd & mouse during (I think) the shutdown cycle, requiring a hard reset every other time I restart it. I'm also pretty sure I don't need DRM rammed down my throat.

Re:The REAL Truth

[hookah_fan]

1. yes your right their are alot of internal web apps. Didn't Microsoft just release a patch for one of their web apps that sp2 kills late last week. 2. Uhh yeah they pretty much do...All corporate loads at least in N.A. are corporate loads which have ISSI installed. which does all the updates they want you to do. 3. Your right no email, but I have never ever got one email saying to use windowsupdate. At least not from any legitimate source. In fact I'm pretty sure I've gotten ones saying don't use it and let ISSI update for you. 4. Are you serious! Come on, what kind of company doesn't test patches. Esp. when they're pushing them out to 150,000 + machines. 5. I dunno about this. Unless your're not using company hardware, or not hooked up to internal network. 6. Yes they run security checks against all systems monthly. Which really doesn't do all that much, just checks your policy settings (open accounts/screensavers/etc..)and check for notes database encryption. Sounds to me like your just not very happy with your job...I will be the 1st to admit that yes there's alot of corporate crap at IBM, but not any more then any other huge corp. This is standard prcatice. They just want to make sure people don't install it before they release it. With all the hype surrounding it, can you blame them. This story is a complete non issue...The fact that it was even slashdotted is a joke.

I call BS!

Tell you what, buddy. You should not advertise yourself as an IBM employee on the net and then indirectly endorse Windows as a component that "keeps IBM moving".

It's simply not true and in no way reflects the reality on our servers. In fact, ever since 2000 getting out of Windows is policy and your desktop will mirror this development in future.

Apply XP SP2 Right Now

So far there are no problem.s

Evertihng is nomral and giong aonlg fnie.

Wiat, my mnoiotr semes fzzuy a dn kdf ...

Dave, what are doing Dave? [LOST CARRIER]

Re:The REAL Truth

[hookah_fan]

1. yes your right their are alot of internal web apps. Didn't Microsoft just release a patch for one of their web apps that sp2 kills late last week.

2. Uhh yeah they pretty much do...All corporate loads at least in N.A. are corporate loads which have ISSI installed. which does all the updates they want you to do.

3. Your right no email, but I have never ever got one email saying to use windowsupdate. At least not from any legitimate source. In fact I'm pretty sure I've gotten ones saying don't use it and let ISSI update for you.

4. Are you serious! Come on, what kind of company doesn't test patches. Esp. when they're pushing them out to 150,000 + machines.

5. I dunno about this. Unless your're not using company hardware, or not hooked up to internal network.

6. Yes they run security checks against all systems monthly. Which really doesn't do all that much, just checks your policy settings (open accounts/screensavers/etc..)and check for notes database encryption.

Sounds to me like your just not very happy with your job...I will be the 1st to admit that yes there's alot of corporate crap at IBM, but not any more then any other huge corp. This is standard prcatice. They just want to make sure people don't install it before they release it. With all the hype surrounding it, can you blame them.

This story is a complete non issue...The fact that it was even slashdotted is a joke.

IBM and the Pentium

[bjb]

Reminds me of when the first Pentium chips came out, and it was discovered that it had the FPU bug. IBM said that they would not produce a Pentium based machine until Intel fixed the problem, and they held to that.

If anything, you can somewhat trust IBM for things like this; if they decide that they're not going to do something because they're suspicious about quality, then I'm glad they let everyone else know.

Redundant

This seems to be a valid theory!

XP SP2? What's XP?

No worries for my company. Most boxes are still on NT4......