Slashdot Mirror

← Back to Stories (view on slashdot.org)

Last Words On Service Pack 2

Posted by michael on from the we-can-only-hope dept.

thejoelpatrol writes "So did Slashdotters call this one? Windows XP SP2 seems not to be so secure after all. A Register reporter goes in depth to find out just how safe a fresh install is. He provides a list of which dangerous ports are left open and which services are left on by default. I guess now we know why Microsoft's security timetable is 10 years." Reader ack154 writes "ZDNet is reporting that many Dell Inspiron users are reporting an extreme performance decrease since installing Windows XP SP2 - decreases as much as from 2.6ghz down to 300mhz. Dell claims no responsibility, claiming it is 'externally loaded software' and they don't support it. In the mean time there has been a fix posted on Dell's forums, which rolls back the processor driver." Finally, Marxist Hacker 42 writes "Amid complaints of too much XP Service Pack 2 coverage on ZD Net, David Berlind writes that Service Pack 2 deserved the scrutiny it got- and charges that it failed to live up to Gates' Trusted Computing Initiative." Finally, Microsoft warns that installing SP2 on a spyware-infested PC is a bad idea.

13 of 542 comments (clear)

  1. CPU Driver Problem? by kevlar · · Score: 5, Informative

    ZDNet is reporting that many Dell Inspiron users are reporting an extreme performance decrease since installing Windows XP SP2 - decreases as much as from 2.6ghz down to 300mhz. Dell claims no responsibility, claiming it is 'externally loaded software' and they don't support it. In the mean time there has been a fix posted on Dell's forums, which rolls back the processor driver."

    Aren't 99% of drivers 3rd party software? The only thing MS does is bundle them together, but I believe that AMD or Intel et al are the ones who actually WRITE the device drivers. And if the performance of a new driver sucks, I'd chock that up to being a shitty driver, versus a shitty Service Pack...

    1. Re:CPU Driver Problem? by Kenja · · Score: 5, Informative

      A CPU driver in this case referes to a system driver that enables the OS to set the clock speed of the CPU for power saving modes.

      --

      "Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"
    2. Re:CPU Driver Problem? by Kenja · · Score: 4, Informative
      Granted this is from AMD but its the same stuff.

      "AMD Athlon(tm) 64 Processor Driver for Windows XP, Version (exe) 1.1.0.14 - AMD Athlon(tm) 64 Processor Driver for Windows XP allows the system to automatically adjust the CPU speed, voltage and power combination that match the instantaneous user performance need. Download this Setup Installation program (EXE) to automatically update all the files necessary for installation. This package is recommended for users whom desire a graphical user interface for installation. This .EXE driver is a user friendly localized software installation of the driver designed for end-users."

      This is followed by a link to a file called CPUDRIVER.EXE, so as strange as it sounds ,there are actual drivers for Windows XP to make use of advanced power features on CPUs.

      --

      "Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"
  2. Spyware infestation by ogewo · · Score: 5, Informative

    If for some reason you DID load SP2 on a spyware infested computer and it is no longer booting just boot with the "Last known good configuration" option in the F8 boot menu. Uninstall SP2 (you may have to use XP system restore before doing this), remove spyware, reinstall SP2.

  3. Spy ware and SP1 by Solidblu · · Score: 5, Informative

    "Microsoft warns that installing SP2 on a spyware-infested PC is a bad idea."

    One word. DUH. If you even install sP1 on a spyware infested computer it can render it unbootable. I've run into atleast 10 machines this week that have had this same problem. I work at a university which is forcing students to install service pack 1. there are a lot of machines that can't even take the service pack because of the spyware the installs just hang or destroy the install on the computer. I feel bad for the students because they have to either format or pay to get thier comptuer fixed. It not thier fault or the universities fault. who would have thought forcing college students to update thier microsoft patches would be a bad idea.

  4. Interesting... by pc486 · · Score: 4, Informative

    "DHCP Client, automatic. Unnecessary on most home machines. Should be disabled by default."

    Now, I'm no fan of Microsoft (Windows free for over 5 years now), but this is insane. Evey home user I have ever helped needs a DHCP client so that their computer can get an IP off the university LAN or off their brand-spankin'-new broadband router. To disable the DHCP client means to turn off the interweb for the majority of users. Greene went a little over the top it seems.

  5. Opinion Represented as Fact with a \. Slant... by mythosaz · · Score: 5, Informative

    This is normal. This is another in a long line of articles that does little more than say:

    L0LZ@Micro$0ft!111!!11oneeleven1!! because your firewall choices and services defaults aren't what I would have picked.

    There's still service bloat in XP. There's little doubt about that, but suggesting that you turn off DHCP when 51% of us use broadband? I mean, DHCP only has an effect for people that actually, you know - HAVE A FRICKIN NETWORK CABLE PLUGGED INTO THEM! Can we make an assumption that a pretty fair percentage of people who have network cables plugged into their computer use DHCP? Good lord almighty.

    Also, he complains because the service type on most services is set to... ...get this... ...MANUAL. Manual is another word for "not on unless I need it," which is a nice long way of saying "OFF" -- you damned chowderheads.

    Sure, XPSP2 isn't perfect, but articles like this, these "If I had made it, I'd have made it stupid!" articles - they're just drivel.

  6. Reverse FUD by Nintendork · · Score: 4, Informative
    Not to mention that the author completely overlooked the default configuration of the open ports. A lot of them are only open to the local subnet, which for 99.9% of the people is a home or small business LAN. Anything coming in from beyond the router is dropped. Smart move. A LOT of people would have been pissed off if their home file sharing stopped working after installing SP2 and they would have just disabled the firewall. In a corporate environment, administrators can lock down all the clients froma central point using group policy. The default configuration combined with powerful administration tools is probably the most secure way they could have done it.

    -Lucas

  7. New PC + SP2 =Broken Pgm (ECDC5) - Dell shines it. by jwold · · Score: 3, Informative

    If you still use Roxio Easy CD Creator 5.x, you will not get to use DirectCD for UDF Packet writing to save directly to CD after SP2 is installed. This program comes with every new Dell Optiplex we bought this year. These Computers are supposed to be Supported with SP2. But 2 calls into Dell T.S. resulted in a "Sorry, too bad" response. They recommend Windows native CD burning, but that ain't UDF.
    (We have a need to make saving to CD as simple as a floppy for some elderly folks.)
    This one isn't listed on Microsoft's list of SP2 incompatible programs.
    Nor is anything mentioned on Roxio's site except people complaining. Roxio is up to version 7 now so you know they say to upgrade, but Dell still ships old v.5 out with new PCs. Go figure

  8. Re:any time now... by Tony-A · · Score: 4, Informative

    Well, just wait 'til Longhorn.

    Meanwhile, back in the Short term.

    Microsoft disclaims responsibility for OEM software and:
    "Dell does not validate any externally loaded software and can therefore make no representations as to their effectiveness, stability, appropriateness, or safety. Any problems encountered with this kind of software should be addressed to the respective manufacturer."

    It appears that the actual support that can be relied on is maybe a hair less than what you get from Fedora Core release candidates.

  9. Re:Slowed Down? by Anonymous Coward · · Score: 4, Informative
    I don't see how SP2 could be faster. Microsoft added new bloat compared to SP1. Two new kernel drivers that I can tell, fltmgr.sys and http.sys. Both of those stay in memory. There were also new/existing services enabled, like Windows Security Center, Network Provisioning Service, Application Layer Gateway, Dcom server, Network Provisioning Service, among others. I'm still investigating hidden features that were stolen by Gates and his gang. Here's two: command line ftp no longer has a pipe feature. Before you could type
    dir . |more
    for long directory output. Or you could type
    get filename |more
    to read text files. Now its gone. Also about:mozilla no longer works in IE.
  10. Re:I don't get it by Cthefuture · · Score: 3, Informative

    I agree. I don't think he knows what he is talking about. He said services are "listening" and that may be true but the firewall is blocking everything by default.

    Today I built a fresh XP machine with SP2. I just scanned that machine with nmap and it showed absolutely nothing open except the VNC port that I specifically configured. The machine doesn't even return pings. I'd say that's a pretty tight default setup.

    --
    The ratio of people to cake is too big
  11. Re:Why I didn't bother... by drinkypoo · · Score: 3, Informative

    Actually, that's not an accurate representation of the situation. The real problem with Win98 is that it has no system-level security. It only has network-level security (including, mind you, PPTP VPNs.) Thus no matter who you log in as, you are root. There are two purposes for the two windows logons. The basic "Windows Logon" has the purpose of setting your name for basic programs which care. The Windows Networking Logon also sets your user context and after validating your password, will use it for network services.

    --
    "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"