Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


Windows XP SP2: Trouble Ahead for Developers, Users



 By: Larry Seltzer
2004-06-15
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


  Table of Contents:
  1. Windows XP SP2: Trouble Ahead for Developers, Users
  2. ' Security Wizard '
  3. ' Third Parties '

Rate This Article:
Poor Best
Windows XP SP2: Trouble Ahead for Developers, Users
( Page 1 of 3 )

Opinion: It sounds like a small milestone, but the second release candidate of Service Pack 2 is a big deal—it's the last rehearsal for the pack's significant turns in security.The major security changes in Windows XP Service Pack 2 mean big trouble for developers and users, a fact highlighted by Microsofts introduction this week of the packs second release candidate—the last major test before it hits the streets.

Microsoft has a history of major releases with understated names, and Windows XP Service Pack 2 (SP2) is no exception. Windows for Workgroups 3.11 was a major technical upgrade over Windows for Workgroups 3.10 or Windows 3.11. Windows NT 3.51 had huge changes compared with Windows NT 3.50—a version you didnt want to run.

So it is with Windows XP SP2 and the parallel Service Pack 1 to Windows Server 2003. Like those earlier .01 Windows updates, it implements large changes in the internals of Windows.

But SP2 also adds major new user features. SP2 changes are largely but not exclusively related to security enhancements, with a few nonsecurity touches thrown in, such as a new Bluetooth stack (golly gee, just what I was waiting for).

Release Candidate 2 (RC2) of SP2, released this week, should be the last extensive trial run before SP2 hits the streets in late July, or so the plans go now.

Will XP SP2 cause problems for users and developers? You can bet your last dollar it will. If the security changes in Service Pack 2 were not going to cause problems, they would have been done long ago. Most of them, anyway.

Applications will break. Network connections will fail, or appear to fail. Users will be forced to upgrade programs and devices that may not be under active support. This is something Microsoft tries not to do.

Resource Library:

But even in forums reflexively hostile to Microsoft, there is a general recognition that SP2 will make Windows XP a more secure product. Microsoft has done some things that are basically invisible but will make a difference, such as recompiling large amounts of the operating system with compiler options that prevent most buffer overflows.

(Actually, the options the company uses should prevent most stack overflows. Heap overflows are generally more difficult to exploit but wouldnt generally be fixed by this option.)

Next Page: A security wizard will greet users with a freshly installed SP2.





  Reader Comments: Windows XP SP2: Trouble Ahead for Developers, Users
>>> Be the FIRST to comment on this article!
 


 
 
>>> More Network Security & Hardware Articles          >>> More By Larry Seltzer
 


x}kw89v2EmGʑm9Ķ<wzwEB!)Je[/=hɏ8'DTP( ?y$3G3L{LcfQ;uOuޚ%w6;&R(%GgP+N-w5 E]0eFNv@\}@^sFwD%x_'Щѩ&€wɄIPؕͩ6}^~lv .hѶ ⌲Il/G5tyK`nFN<>)u)p}sP {O|2ַ(>r@ͯT| pTƦ;=aR!k4ًϣш(qG/wɀYǝgF {.Q^Z| -GZUX'[vx1B#"FτwCՠ匝8Gd`jI:@"4ԘC2R!p5`p*)ZHtGL#fK>P:x =3~bA2xFaIHo*! lpq#J9y'C]tQV_սkYo@סߌ=gfdYo&A.wQMv T6'>6O( |@ɠi!ZdQ#}ٗe f42MYnT\BX-UR~/^ߙiM7;7z}YjP?]tN/s$(p mI5M-uU=铋;yؼ} g dm#5UE`R$_::fN{#x[^ KZPb٥v'Y̮gfV҈ gE)ԑY;dni_WW^GW wf٘Y JdTY1oMU5u{#'+r9j83tfAZ|[ko~;c!~j[ dP[w8LwZ\{dG/m2 Og#dx$ci47Q[h,/r$brJGX ,>JAͼ94o o SNE ;- ujfP:o43@_x0Fucf6rG@kFkPYD`k6R\ 9lbsv!fByP&,)|YB* bԤrݠPP3>̧˅B!"xV3ˌE !\J!=! g|8Jn.b?uKZᇰfuٜ҅%]WeN oQ#LK\zc'VU..~:ozmxX18,]evb`\67j_)CR/JG'-dj`qaeJݠ#mfywς@ tiSM|>96m'!|Аd mxZ.S3IXn`NthWX(<cOgv/|\aPn#D5h-DCw 0Ieg&S yK ΝdrkoM~(wEPj>X^0 vjq.HpyY?Df>o  ޜj M L<ģL޻x?ɜ+) Xtj7uΙ/ܑ-ӾZ2߄T 9uC \D r}͚X 4ؐ|&Bw7Cn^ʚtɕ \=PS U_IVT$V3Q2h-ӧL)Eۋ)I :SX-8G/4- {e]Zr{A^ӛA']օVP=@xC dlK/,:(+c:K_jihH*6@\\1,# %Σ?0Z'm;@=pl=5G0_ܰ큡rQ  )KbՂZ^Ϛa+ L 4`*+[0P.m^Ά'Vޑu<|>'==r=6; 8yy4%2N?1&[BUjJb35-F   _ǂK e*8t55{qq?[ZN®tђgohM擫vpv=9Je!6#{jiWHLZ`!?r(1Iҏ5 &^PGe d^s`M[`R9#Dzl lF9 CQZ>-LM{ ipbZERiI~~i~R`T;(l]x|uVV0\}єa˘34|q֓-*IRP$x.5 dj>Ǿ$o+:|#HE~HQ7Ϗ9(gd%d)>GHZ+k՘P+Rjf~~{ ߥ:8pF#}y6w'~~L2/|)қAk>sn}G>N&-h'^+0v +B?B2By^ ihw^@@)% ӣzppg敃 vră4t]#@$7zl]rA XQV0q9G&b)&GJtlʂu! 2tXݘ `1}j$a!L`wf0!+ #mqJk8ԿAuNԴ)Z+::>j9gKӥ ,ć{n#f >Lk}]P z֬sbo^ چHB&GdH#`PT<^w\܁c:P=H(T\g7cMEH]ac6U{z@n)Zڭ/GGvhTJD噛>67=ϼd[̌<9yn2$8z0JL;O%95$_ۂ3JuItLe``l/$,RAv+ր +i+TTV ?3pa-X,ԔʁH)+(Gܱ?^nȕڽv?fIG|)@U$uXJP?ITAtECEZ`ЯxLl5AKfl!/`.P(c/zfDmR/)3nQ/ ~egm S?PG te[,Dif\{e">QXk= WkݷP@/I6S.:;b~g]ItuO*ۧ>^y>1`g}3^^fr|8GyZٽRiiԹ8nOV-?\u?]Kև6?eB*;fB, 8oHŸڐ9}dvlw.>HWm}#8-dD4|wՇ΅Q{ŏE[J:^9 !:.YF^9:kM1k0fhRdQfJ}X#s#fDH]h!q3 N/Ns>V\zB_kɾ,8Aϐa6Z4ZkΊG Bf/3bB!|F<؇A(1 +JGwzg/ё{mE& bcAHFrI'zRG>egU3_f~3Rt4zQr:Po)MJ!}K_cOߗf4~ P=8,rh%縵vq3a~:)}A/gmN9˙~@Ҽ"_{w jEp>ASB9kթ-pOӆO|BY~TwJd$-zbeafIl?eRJ锐']'C؏ z>RB'T5˓$/+IYO)Eqhd*꒐~*~(i&'ءXҡԛ].6'8 $O krisq/3qvbϓ;~\[("Ξke氎CԆl+ҿ̳Rpi#r%>iWu ja~%XDRoBGH4|9zÿ§  [s\3g伉q+ћ^(,dk.}_?I+I턟yc]!OKSϑ$٘NBEW5vln(rYpJEO.vȔWN HXd1Ws0d&'a=Kf==4zoo=إ%? 6Ptjښ[-'.kr/c<6+9: G] u9¼7: wg>ũ6dާ^[Ҏ|sQS4:3xpibI|:v,z9ZxdiE"wPVfe4=Ix?X\3HDnoaD]GNJl<>:a1d(΀,F S6D\}mT'1)c:Äq ]Yef61|I}gؚjB}s̓@- rF-6|p4uYDx`?;ˌRF-f>QOb߱` {7 a;<%/Y2H,IlvR{?A9r #qmR*qj&c08_VS ڜlm[M8Eb+7Xz%}4_CI_cҗ5zͻ8NX,`0I䪅hrbXRȸ>y=Giky@v{j1ұ(߈])_4Q) Lb&5@-~L2RbO ye.mT-Iƀ/)š7u3tLo9}铏!9_/ޥJ#᭐ zL`fXǀ )䅼(F@`*)TP!G^[`wULn EI*T$6y.b S4JA¼e0aNs0HRkۓRTTf@%xa:,Gb2nʚ̮1uptjILĩtJ=. kJшE77EHMnnXQe&#R}NKjaz2?8V1[pQ"Hv]\Nnz U"lzs寪KlX))a e]EV/<݅maAt 3\T*0Jeax~DT̞9Wޯ=m,MN;F>\?wRRI-z@5摄gޠMʹt,ӟHzTO>-l` $lg [ Q lF9i9|(rb81} "7,j !,UzV/hR =L (2 #83e^`EiONZ fUoM[MI-CpZCAk6Cb8$89Zi=ͭ_ِA-؉3ܓHRVt◇?Z^!"@`/v/ܮ:I! >>>>|E*f h x)^mDkNLm zb!~CH(vr#,U֎^'WmxbE"Hu`#H!\!7ޛ)MkO7]Fl0cG fv>B>Ha\Wgx$1>SLnC\Ӑ=456Yfb, 1~C5iU<̴)yPt \7k o; ^{5cC\lfk;K˰ԖzK5?ux~T+p."w^͐nkfneIYG-vY%Z sӁRx"*Dg0mn0z͇%sYu;_:Υ ́x4`gTj9 qnX φwC\/q)u\Ͳ^Hjev:\얎Y~L6!WA(Bm`d;6LHJ~P7}Aͽ=V4Y nX[`8NËK;Os]@VE]6bԹKifP?gi![M|-؃[yG¡YKj|ubM$486 S&e<,~g"=2b9_"O<@1:.Sjέco P'>k~ ~/u~alG}+탻X̸e-'I4b'ʹX,hILÑ@uœ3Tay`S5];j-2Ҟ HNVFʼn߱yxȸܨ^o.,7>kE_A-ɴjgϡ?fKll>&&OC g !n1| з:9 PAgt~D)RQfSx[c f0Q :&M컍FΟגG~¢p?~܉ ?S;0&_绣"w[<7fDž=@=j ߡ.O,d>ꕂvךQN|lڏ bJmos? D*X\˹#)U|5X>9R]ĆWVc3cYx]CYDwi.حDe9LYkbbPHB!h @? ,q'DsA"?Ñ2. VAXz-[wDVjDNE0V!7"vya`8(ĒAucһ/h#8XiLʃxSZB=̦sj4 b4BM;`)5}L1KZ+%>% Zk^Yr+ȈZnb\!1cŮTA9-Qj5!]RUBIe|Ũt 6 yZŠx!Vi <l+=q,vX5.ozu3}Si<1E7ZzZ<hfU'J"jn04f{=rTh pK$:r/Z'72dZƒM)RӰp-|ri?NRUzB9wIf@ZZX(+J]?3|M-TZIy):c>=SP="Z}4֑:RZ**)ۚgIp\ K5,}sJyi,kG Ř&_OvC'O>^kQ ' 17 w-k\Q4} $0rև54 E{^JL7"|͑SOgvxpөHۡ[57A\N{5YJMh>#Ծ5=F #1/6W)Wq4-^`9eE&d[h ilwAQg)q8 @T5L3@$=ꦆ/HHuT{+sR1oiF$|ɈVs%./<OeBѾxAnu1K= o~{@ܥr q,Ye)+փފ> rF@Yj!ui=H]U# `x9G(f꜑u﷯zaȐi3wfMd={:}GTwڜn]`ppCO 2K1;u-='`աu/ِ O6)B|1[GB(W9Ĝ#M:Ѿxu+ E3\daHp=S˱-A0Șh MQ VHxDnr}tv8!"Ls6@@P0H7oy"#ϙF$1шbc^ôukfĄ^tU;eAӽ\21Fiŷ^(l;b21#|>Oc K-D:c)(`U 7OT-,(ωB5DSJTmn$|s e6h,0A5A"\2,GAn2 :RϞL%~ 6t0Q-pV#ߛjSg0YR0غ9P:NϺx Zѷp+ts=rԽrҹh_^u.扉g1y?Kyl2/*vg(P\NQʩvoQ{̵,,^;KKvY Gcqq ~ QwgPJTٌ/!bTũ2 }Ycfu||ljŵ6Ng5^L˒7%GuԢz hQ6}#W܄qP "g>^sФo%u[ggcFoP[F_/?jό.w3ʑˏ#(?Z_~9ɠ֗vrq9(u2EF9\c/ Y_~2l<s<s{Asy} ρ?3w槤Ixϕմ] &JRW[O'ikr(%s<2g!h{U2̱h#{"Ե0{VߛQǒGЬg]#=Dz?|[2xI0?ۓ{W].6ppSn&o U` s}nExvY^]Yj7-P/C"Isgev'A:*O WX-Jcġ$Л=J܌ӃXG:/i5i_]mОMEACaGӠS7Us !QaWEjo2x s{)螡Z(J {0"q`j@L i;J*V*r;qG+B"ð{D(&0#*+P#}a`J^.U&K=# .=M^t f 5ϡ'!pA>fJC Dk(xxSm4Dw_ƴmBfp-y|y ގe@Vo9Xj,.#vR'Q!+\Vęg9mc5;tp) ?`-kD҃Yhp䓿 t^85tfi[Ìs,e܂z<[h -xq}5xx u0t Tszkn2#&23Mť{:oo\| "e*sͅB`u jϗ13n%c$Q#bU[ {w3#˹fU:h0o? 8[]^ȇ~r 9op) }/҆`:}c<oc$-K?X v;i:+Dla5spa3 Ӯo-!kf@L V8>>/޺}hd1ck+CP< _%FČ 3B=/aoA+_a#˙kf1gxp1kN϶{3]9tWuu;Lђ '/aWR5y3)L&dw6>>KGJ x&llu91`=F(%A|\k,!#1苌YMCVkͅ*q8w i:C羏>hnYx[6HaCviVSPsXO-N-Nk&|[uJd+6FՋp`ĵHzBGXOkt؝:j5ŋrȲsLALH\,D*9"[o %P)@EikA/?tI3ۉd&%}YQ v.yc*io@BW H, 7A)|F,kl`NB`t)լ`n#vo"dĴ5[Pŗ-;wnSF)f'VFp)hN<}u?ڢ uKğ?X \cwH VLt>[Oulם8C# P1қv,j_U$z l|$_Oxª~Saxr=&gsx u-IS`i<r:Y )6%O~0qGĦ2C|R2mLepvR ?93ߎ(@P W9BuzϷ[<^e/y" BCV|JrX}P/):OOgsZ%n_Hʶ"-,{ QFbV@q얢U.nDCwϏp`2uW^='8KIJ yaq1jVI;;a0&iE-㨤t`C v_Ή~ph[?҈>A wVǰYF!&7O80Ux|-h\l}[M_:9LgѸ9"@+xQwlw:g{e75w SF \L呓<AC9Xqk @c݄68 ]Ll&j1Bi6e1w1LX+0Ϯ].<'ȳ(`,Lv"VKjMΡmdpR!fƲ 7cP.X-n$B@wS .x CG,$?ˋ}P byx ŧ$NS?|T+s+ Sq|9k/]7,{їNZ睳/<|Xix ~']f(FRqO\||8(>ub34>~~8ŠҜ%!ti B"Ew:>\|HVzv C&ȕ/g2F#oUAtMz'1l5mEg,3lW'BVR۝wߺ"f/On6%c(|NVKI+n^ͦG(Gs+q>tgLp -ͱeRZ`l/Z6w?)+g=(