|
|
|
POPULAR XP NEWSLETTER |
|
POPULAR ARTICLES |
|
COMMON ERRORS |
|
DIGITAL |
|
|
Windows Service Pack 2Published By Marc Liron - Microsoft MVP Why do we need a new service pack? You might want to take a look at my FAQ article on the Windows XP Service Pack 2: Windows XP Service Pack 2 FAQ 's
As one commentator put it: "...Microsoft have closed the barn door!" Windows XP Service Pack 2 is born... An
overview of Windows XP Service Pack 2 "In Service Pack 2 for Microsoft Windows XP, Microsoft is introducing a set of security technologies that will help to improve the ability of Windows XP-based computers to withstand malicious attacks from viruses and worms. The technologies include: • Network
protection Together, these
security technologies will help to make it more difficult to attack
Windows XP, even if the latest updates are not applied. These
security technologies together are particularly useful in mitigation
against worms and viruses." What I will do now is explore these FIVE technologies and THREE additional parts of the XP SP2, not fully addressed in the above list - Windows Media Player 9, Windows Installer 3.0 & Policy Settings... Please remember that this article is NOT an in-depth technical discussion, merely a review and is aimed at the "average" user of Windows XP Home and Professional editions. If you are new to computers then reading the following article FIRST, may help your understanding of some of the concepts discussed here on this page.
http://www.updatexp.com/internet-security.html
#1 - Network Protection:The security technologies in this section help to provide better protection against network based attacks. A real life example is the MSBlaster worm (see http://www.updatexp.com/msblast-exe.html) that hit so many Windows XP users worldwide... Through a number of innovations, including enhancements to Windows Firewall (previously called Internet Connection Firewall or ICF), Microsoft are now seeking to improve the security of Windows XP. The XP SP2 "Network Protection" enhancements include: # Turning on Windows Firewall by default. (Currently users have to turn it on themselves, and many do not even know it exists!) AOL users: What is NOT clear at the moment is the situation with AOL and Windows Firewall... America Online (AOL) installs its own connection settings that override the ones that come with Windows XP. America Online's connection settings don't include a way to turn on Windows XP's built-in firewall! # Closing ports except when they are in use. (Leaving some ports open on your PC, when not in use, can give an entry/exit for viruses and Trojans.) # Improving the user interface for configuration. (Microsoft have improved the way you can change some key settings on your computer.) # Improving application compatibility when Windows Firewall is on. (Microsoft have made it harder for other software to run into problems when the firewall is on.) # Enhancing enterprise administration of Windows Firewall through Group Policy. (this one is for "techies" like me - NOT home users!) (In earlier versions of Windows, Windows Firewall had a single Group Policy object (GPO): Prohibit Use of Internet Connection Firewall on your DNS domain... With Windows XP Service Pack 2, now every configuration option can be set through Group Policy.) # The attack surface of the Remote Procedure Call (RPC) service is reduced. (In English this means that the RPC service that runs on your PC has been improved in such a way that it will be much harder for a virus/Trojan to exploit it and cause your PC harm.) # The Distributed Component Object Model (DCOM) has additional access control restrictions. ( Again this is a part of Windows XP that has caused many security concerns over the last 12 months. Microsoft have addressed these concerns, but have stopped short of disabling or even removing DCOM from Windows XP. Personally I, and many others, believe there is NO need for DCOM in windows XP - read: http://www.updatexp.com/dcom-windows-xp.html.) # Disabling the Windows Messenger Service by default. (This is not referring to the Instant Messenger client but to a service that runs in the background on your Windows XP PC. I have been arguing that this should be turned off by default for the 12 months! Now it seems Microsoft agree... You can read my article here: http://www.updatexp.com/messenger_service_spam.html.) # Boot time security. (On PC's running Windows XP Service pack 1, there is a window of time between when your PC can "see" the network and when Windows Firewall provides protection. This results in the ability for a "packet(s)" of data to be received and delivered to a service without Windows Firewall performing ANY filtering. This potentially exposes YOUR computer to vulnerabilities. In Windows XP Service Pack 2, this vulnerability has been stopped using a new "policy" that works during boot up. However, there is no boot-time security if Windows Firewall is disabled.) # Enhanced
multicast and broadcast support. (In
previous versions of Windows, Windows Firewall did not perform any
multicast or broadcast filtering. In Windows XP Service Pack 1,
Windows Firewall statefully filtered multicast and broadcast
traffic, requiring the user to
manually open the port to receive the response. In Windows
XP Service Pack 2, the response to the multicast/broadcast traffic
will be allowed in.) The Windows
Firewall is now easily accessible via the Control Panel: Screen Shot of the
new Windows Firewall: The new look Windows Firewall 2
#2 - Memory Protection:Windows XP Service Pack 2 includes a new technology called: Execution Protection (NX) Execution Protection (also known as NX, or "no execute") marks all memory locations in a process as non-executable unless the location explicitly contains executable code. For non-techies this means that ANY "virus" attack on your PC, that attempts to insert and run malicious code into memory, will FAIL!. Execution Protection
will intercept these attempts and BLOCK them... #3 - Safer Email Handling:Plain Text Mode The plain text mode feature of Outlook Express provides users with the option to render incoming mail messages in plain text instead of HTML. The setting "Read all messages in Plain text" will be turned on by default. (It can be found by navigating to the Tools menu, selecting Options, and then clicking the Read tab.) When you open an HTML email it is possible for a virus to be added to it and set to "run" the moment you open the email..! This is because there a special part of an HTML email called the "Header". It is possible to run scripts in this header, and that is what many virus writers like to do... By working in Plain Text mode these header scripts can NOT be run... Now if you TRUST the sender of the email and want to view the email as intended, Microsoft have included a NEW menu option in Outlook Express: On the View menu, click Message in HTML. This new menu item switches the current message view to HTML if it is currently in plain text view, both in the preview display as well as in the full message display.
Don’t Download External HTML Content Spammers send their emails to millions of addresses at the same time. They usually have no idea if your email address is valid or not. However if you are using Outlook Express to view your email as HTML. The spammer will instantly know if your email address is valid when you open it. You see spammers include a small graphic in the email that is "pulled" down from their servers to your computer. When this happens they KNOW your email address is real and active! So you get MORE SPAM!!! Microsoft have included a NEW option to BLOCK all external content in an HTML e-mail, this option is turned ON by default in Windows XP Service Pack 2 It can be found by navigating to the Tools menu, selecting Options, and then clicking the Security tab. You will now see the NEW "Block images and other external content in HTML e-mail" check box. Now to those of you that like to receive your HTML emails, this may seem a bit restrictive. BUT please DO NOT go and uncheck the "Block images and other external content in HTML e-mail" check box. To download external content for an individual e-mail message, and so view the HTML e-mail as it was intended to view it, click the *External Message Information Bar to download the external content that was included with the message. (*External Message Information Bar - this is the yellow bar at the top of the email) If you have ever used Microsoft Outlook 2003, then these new features of the Windows XP Service pack 2 will be very familiar to you. Screen Shot of the
Do Not Download External Content:
#4 - More Secure Browsing:# Add On
Management Tool... Screen Shots of the
new feature: & Add-ons have been used by Internet Explorer
# Pop Up Blocker... We now have a popup blocker that will prevent most pop-ups from happening when you visit a website! You have the ability to block ALL pop-ups, allow pop-ups for certain sites or you can turn the pop-up blocker off. Screen Shots of
the new IE pop up blocker:
|
I do have some concerns about this new release:
After installing XP Service Pack 2 the Windows Firewall is enabled by default...
1) This might "break" application compatibility, if the application does not work with "stateful filtering" by default. (Windows firewall uses a process called stateful packet filtering.)
2) It may also conflict with other active software and hardware firewalls... now more folks are using routers with built-in firewalls on their Broadband connections, there is room for conflicts to happen here!
Having said all this, by enabling as default will offer more protection than was offered before! Most home users have never installed a firewall so this is welcome.
With Windows Media Player 9...
1) If you uninstall Service Pack 2 for Windows XP, you might need to reacquire some licenses in order to play the content that you have previously licensed. This applies if you have upgraded your computer from Windows 2000 to or Windows XP to Service Pack 2 for Windows XP, because Windows Media Player 9 handles digital content licenses differently than earlier versions.
With Execution Protection (NX)...
1) Applications that perform just-in-time (JIT) code generation or execute memory from the default process stack or heap MAY lead to problems in the Windows XP Service pack 2 "Execution Protection" environment. In some rare circumstances an application may cease to function.
These are not serious concerns, but may lead to more support for users getting used to Service Pack 2
The goal for Service Pack 2 is to build on the "Trustworthy Computing" efforts of Microsoft, that have previously been applied to Windows Server 2003.
For an overview of the Microsoft Trustworthy Computing initiative, see “Trustworthy Computing Defined,” on the Microsoft website at: http://go.microsoft.com/fwlink/?LinkId=20970
The Windows XP Service Pack 2 is a WELCOME addition.
It is something that ALL users of Windows XP should install as soon as it is released. Having said that I hope Microsoft make this software available on a CD-ROM.
On installing the XP SP2 edition you will be asked to help Microsoft by providing some information about your system... This is optional! View the screenshot here.
NB -
This article discusses some of the primary changes that will be made in Service Pack 2 for Windows XP, to help increase the protection and security of Windows XP. Most of these features are designed to mitigate against malicious attacks on systems even when they do NOT have the latest patches installed.
You may find the following screen videos informative:
The new "Pop Up" blocker in IE 6
NB - You will require the Flash player to watch these videos AND have your screen set to: 1024 x 768 to have the best viewing experience.
------------------------------
The How To Play Your DVD's
In Windows Media Player!
The DVD XPack instantly adds DVD playback to
Windows Media Player 9, 10 and 11. It Installs the
same theatre-quality video and audio decoders
proven by over 45 million users of WinDVD -
the world's leading software DVD player!
Why Use It? BECAUSE:
It's FAST, low-cost, easy to use AND Microsoft approved!
The
InterVideo DVD XPack
Plugin
(The
above link not working?
Click Here)
NOW works with Windows Vista too!
|
If you have found this article useful, then why not sign up for my FREE Windows XP Newsletter service? Enjoy the rest of site and remember if you have a query about this site or a comment to make then drop me a line at the Contact Page |
Kind Regards
Marc Liron -
Bio
Microsoft MVP
Your Guide to using Windows XP
A Unique Windows XP Newsletter?
Sign Up Now!
- Make sure you get your
FREE tips and advice...
Other Websites By Marc Liron - Microsoft MVP
News and Articles on Windows Vista:
My Techie Blog:
My Windows Technology Newsletter
|
The views on this website are my own and
NOT that of Microsoft! This page was last updated 3rd August 2004Home Page | Privacy Policy | About Me | Contact MeThe Windows XP Service Pack 2 review |