Slashdot Mirror
Service Pack 1 for Windows Server 2003
mithridate writes "Microsoft has posted the Windows 2003 Service Pack 1 Release Candidate. eWeek has a short review of the service pack. My favorite quote from the article is, 'The company argues that the improvements are important enough that applications should be changed to accommodate them.' I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers..."
I am no MS fanboy -- and I will be the first to admit that Windows 95, 98, ME, and XP are unstable and crappy -- but Windows 2000 and Windows 2003 Server are both solid operating systems.
... and damned if you don't.
What doesn't kill you only delays the inevitable
You guys flame them for not caring about security, then they take an proactive stance on security which causes a few inconviences and then you bitch about that.
So a bunch of people wrote applications that take advantage of lax security in Windows server environments.
Now Microsoft is saying they won't be so lax anymore, so the applications need to change.
Microsoft is basically damned-if-they-do, damned-if-they-don't. If they don't patch the flaws, they're bad for providing an unsecured environment. If they do patch the flaws, they're bad for breaking existing applications.
I for one fail to see how this is a bad thing... OSes evolve, and applications have to keep up. That's why manufacturers provide separate drivers and software versions for different OS versions, isn't it?
...would be to just firewall every Windows machine behind a Linux box or BSD box and use port forwarding or some other restrictive routing scheme. Even if the hardware to isolate a gigabit's worth of bandwidth ran $1,000, it'd probably still save the company money compared to the man hours required to fix custom software, test it, and install it.
Do not look into laser with remaining eye.
I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers...
This is a little predjudicial. You may have some historical examples to draw upon, but we should cut Microsoft some slack. If they didn't release this, people would complain, and when they do, people complain. If Microsoft is willing to admit that the "the improvements are important enough that applications should be changed to accommodate them", then perhaps they are right. It's doubtful that Microsoft is going to cause this much of a hassle unless it was for a good reason - ultimately, it would be easier for them to forgo this. Perhaps it is initial flaws, but how could they get it all right on the very first release?
I know I sound like some sort of Microsoft 'fanboy', but I'm just trying to present a devil's advocate view against the Slashdot bias against Microsoft.
"There's no success like failure, and failure's no success at all."
- Bob Dylan
TFA says they have added the same Windows Firewall as XPSP2. However, this is one issue that I can't see being NEARLY as big of a deal as it was for XP. XP has a much bigger percentage of novice users, many of whom had never even heard of a firewall until SP2. Win 2003 is, in general, used by people who would be aware of how to deal with such things and how to troubleshoot any problems that might occur.
is microsoft just shooting themselves in the foot again? I'm scared shitless of XP SP2, I can't imagine this being much better.
.m
Scared of what? If you install it and something actually doesn't work then you can simply uninstall it.
By now there are workarounds or updates available for most of the apps that didn't work with SP2.
"The company argues that the improvements are important enough that applications should be changed to accommodate them.' I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers...""
:)
You know for an editor of slashdot, you should really do some research.
If you use the latest service pack for SQL server, XP service pack 2 works fine. The same thing goes for running SQL 2k on Windows 2003. Maybe if you kept up with the current application service releases you would not have problems with the OS ones.
I could bitch and whine about vi, gnome, or anything else and I would told to upgrade to the latest revision. Why should you not do so on SQL?
Are that many people even using Windows Server 2003? Other than the .NET Framework that can also be bolted onto W2K, I don't know what the advantages are to running Win 2003. W2K both Pro and Server are very, very stable for us, and as far as I can tell, we have zero incentive to upgrade (if it's even a real upgrade). I personally don't know of a single person or company running Server 2003 for the same reason. W2K works just fine.
I don't respond to AC's.
Would you prefer to have Windows Server 2004 or 2005 come out and be charged for this?
Schnapple
Exactly, Apple releases a new version that fixes the things they half-assed in the prior version of X and they expect you to pay $129.
so, does the PC exist to run the OS or the application? i thought the point of PC and the OS was to run the application that's useful. why does running of the application, which actually accomlishes something, must be compromise to enable the OS to run better?
i'm not arguing that OS is an important/integral part of using a PC to accomplish a task. but i feel that their philosophy is backwards. even if it's the truth, they shouldn't say it. PCs do not exist to run the OS. PCs exist to run the applications. no one cares about a PC that can run the OS perfectly if it can't run useful apps.
I think you're missing the point.
What the grandparent means is that bug-fixing Service Packs and feature-adding upgrades should be kept separate so you can grab the bug fixes without worrying about the new features breaking shit. Both would ideally be free.
Hell, look at Apache; they're still updating the 1.3.x line just for security and using the 2.0.x branch for adding new features (which break a fair number of old things). If your site is already running 1.3.x reliably, you don't want to shake it up for no reason--servers are supposed to be reliable, not flashy--but you want the latest security patches. So you can keep grabbing the 1.3.x updates.
With Windows, you don't have the choice; you pick the devil you know or the devil you don't. Everyone says Microsoft is damned if they do or damned if they don't with the Service Packs, and it seems like their customers are in the same position.
Why do so many people continue to use Windows when all they do is complain about it? I have installed SP2 on numerous machines and have had absolutely no problems. I like Windows for what I use it for, and for purposes where I feel that Windows is not the best choice I also run multiple linux machines.
If you don't like Windows or are just anti-microsoft, then just stop using their products. Maybe this doesn't happen because if everyone who had problems with Microsoft switched to linux or some other open source OS then they'd have nothing left to bitch about.
No one cares what your captcha was
Houston TX, USA
Of course, most people don't do a bi-annual check for recalls on their hardware, so they live in ignorant bliss untill that reported and supported issue rears its ugly head and creates a real problem... why should it be any different in the software world?
It's also a good time to look into your SLAs and get them in order. Make sure to provide a provision that the vendor has to start taking security into consideration. Have them justify why their app needs administrator privs because *I* have to justify it to my auditor. Don't let them off the hook if you can't patch. If viable, withhold payments. Communicate with peers about the level of service the vendor provides (I don't know about small businesses but in medium to large organizations it is surprising how much weight decision makers put into these informal discussions.)
This is an opprotunity not a setback folks.
I don't want knowledge. I want certainty. - Law, David Bowie
Can you disable the "phone home" feature?
--- Hot Shot City is particularly good.
Well if you are running a server you can assumedly be trusted with the simple task of configuring a proper firewall by yourself, if you do indeed need it. Besides, the Win2003 "way" is to not to run any network services at all until you tell it to.
Most .NET developers run SQLServer (along with IIS if they do ASP.net) on their local boxes. It's nice to have your own "private world" in which to work.
Not quite sure if you have ever worked on SqlServer, but it is really no big deal to port something built locally on XP to something on Windows Server 2000/2003.
The only pain in the ass is keeping the dB up-to-date - we have gotten around this by building an asp.net engine to compare the local database schema with the SQL scripts located in a SVN-controlled directory.
Linux or no Linux, the poster of the article states that (s)he still hasn't installed SP2 (which I take to mean Windows XP Service Pack 2) because of the things it messes up with SQL server. This begs the question, why are they running SQL server on a workstation? Windows XP is not an OS meant to run a server.
Just then the floating disembodied head of Colonel Sanders started yelling Everything You Know Is Wrong!-Weird Al
Development. A systems designer I know uses IIS on his Windows XP laptop to design the web-based systems for his clients, then deploys it to production web servers.
There's no place like localhost
So lets see the list of changes that you feel are so horrible. You say there are multiple changes and that they are not improving security.
You list one example with a pretty weak explanation on why exactly it was an 'idiotic' change - try some more.