[access-uk] SP2 and should you install it
- From: "Colin @ New Vision" <cph.newvision@xxxxxxxxxx>
- To: <access-uk@xxxxxxxxxxxxx>
- Date: Sun, 29 Aug 2004 15:49:17 +0100
The flaw reports are causing companies to hesitate even more before installing
Microsoft's latest step to secure Windows. Many companies have said they will
hold off on the update until it has been thoroughly vetted.
SP2 is designed to add better security to the operating system's handling of
network data, program memory, browsing activity and e-mail messages by changing
the system's code and configuration. For example, a revamped firewall is
intended to keep attackers out and attempts to prevent malicious applications
from connecting to the Internet by requiring that the user give specific
permission to each application.
The major software update, which took almost a year to create, came to life
after the MSBlast worm hit the Internet on Aug. 11. Almost 26 days before,
Microsoft had issued a patch for the security hole the worm exploited, but many
people did not install the fix even though there was widespread expectation
that a virus would be created to take advantage of the flaw.
Microsoft have never claimed that SP2 would close all the security holes.
Microsoft firewall protects only against inbound threats, not outbound threats,
such as keystroke-logging Trojans that report your passwords and credit card
information to others. Also, the lack of outbound protection means your
infected PC could still participate in distributed denial-of-service attacks.
In short keep your third-party firewall enabled alongside Microsoft's. Two
firewalls are better than one.
Since we're talking about Microsoft software, it's entirely possible that virus
writers will soon write code that turns off the Windows Security Centre or at
least leads it to falsify its status reports (saying, for instance, that a
security measure is enabled when it's really not). So don't just rely on the
Security Centre's status messages. Periodically check your antivirus and
firewall applications independently of the centre.
Bottom line: Microsoft made significant progress toward remedying its past
problems, but it still falls far short of putting Microsoft on the leading edge
in PC security. Install Windows XP SP2 when you get the opportunity but don't
expect this one update to solve all your Internet security issues. To be safe,
keep and maintain third-party antivirus and firewall programs.
Regards
Colin
** Going on holiday and want to halt messages? Send a message to:-
** access-uk-request@xxxxxxxxxxxxx
** and in the Subject line type
** vacation ## d
** where ## is the number of days followed by d for days.
** For other things like digest mode, send a message, to
** access-uk-request@xxxxxxxxxxxxx with the Subject:- faq
Other related posts:
