[access-uk] Re: SP2 and should you install it
- From: "Barry" <bbinc@xxxxxxxxxxxxx>
- To: <access-uk@xxxxxxxxxxxxx>
- Date: Sun, 29 Aug 2004 18:34:52 +0100
Can we run a third party firewall and the SP2 firewall at the same time?
Barry H
----- Original Message -----
From: Colin @ New Vision
To: access-uk@xxxxxxxxxxxxx
Sent: Sunday, August 29, 2004 5:26 PM
Subject: [access-uk] Re: SP2 and should you install it
Hi John
That's where most of the flaw reports are now coming from, as companies test
it with their own bespoke software. We can safely assume all the Microsoft
software and the major software vendors have put it through extensive tests.
I totally agree with you when you say it has to be better for the home PC
user as they tend to use the more standard application software.
The point of more concern being users tending to rely on SP2 being the fix
to their security problems and ignoring or taking off their existing
firewalls and security measures.
I think it has already been mentioned on this list if they download SP2 can
they remove their existing firewall.
I think ZoneAlarm was the one mentioned.
I would certainly recommend not removing any backup security measures until
we can be assured that SP2 is functioning as it should.
Regards
Colin
----- Original Message -----
From: "John Farley" <john_farley@xxxxxxxxxxxxxx>
To: <access-uk@xxxxxxxxxxxxx>
Sent: Sunday, August 29, 2004 4:08 PM
Subject: [access-uk] Re: SP2 and should you install it
> It is not necessarily the flaw reports that are stopping companies from
> installing SP2. It is because they have not yet tested and proved it with
> all of their applications, many of which will be bespoke and not, by their
> very nature, tested by Microsoft.
>
>
> For the home user, not using any particularly special software, there is
no
> real reason not to install SP2. In fact the extra security in it probably
> means that the home user should install it as soon as practical.
>
> As usual there are too many scare stories going around about the odd
> potential issue where the real fact is that it will improve the situation
of
> security.
>
> Please be aware that I am not saying that SP2 will cure all ills, just
that
> it will improve the security of the home PC.
> There will, of course, be issues found in it; there will be subsequent
> fixes. Install them!
>
>
>
>
>
>
> Regards, John
>
> Contact on : (Home)
> john_farley@xxxxxxxxxxxxxx
> or : (work)
> john.farley@xxxxxxxx
>
> -----Original Message-----
> From: access-uk@xxxxxxxxxxxxx [mailto:access-uk@xxxxxxxxxxxxx] On Behalf
Of
> Colin @ New Vision
> Sent: 29 August 2004 15:49
> To: access-uk@xxxxxxxxxxxxx
> Subject: [access-uk] SP2 and should you install it
>
> The flaw reports are causing companies to hesitate even more before
> installing Microsoft's latest step to secure Windows. Many companies have
> said they will hold off on the update until it has been thoroughly vetted.
> SP2 is designed to add better security to the operating system's handling
of
> network data, program memory, browsing activity and e-mail messages by
> changing the system's code and configuration. For example, a revamped
> firewall is intended to keep attackers out and attempts to prevent
malicious
> applications from connecting to the Internet by requiring that the user
give
> specific permission to each application.
>
> The major software update, which took almost a year to create, came to
life
> after the MSBlast worm hit the Internet on Aug. 11. Almost 26 days before,
> Microsoft had issued a patch for the security hole the worm exploited, but
> many people did not install the fix even though there was widespread
> expectation that a virus would be created to take advantage of the flaw.
>
> Microsoft have never claimed that SP2 would close all the security holes.
>
> Microsoft firewall protects only against inbound threats, not outbound
> threats, such as keystroke-logging Trojans that report your passwords and
> credit card information to others. Also, the lack of outbound protection
> means your infected PC could still participate in distributed
> denial-of-service attacks. In short keep your third-party firewall
enabled
> alongside Microsoft's. Two firewalls are better than one.
>
>
> Since we're talking about Microsoft software, it's entirely possible that
> virus writers will soon write code that turns off the Windows Security
> Centre or at least leads it to falsify its status reports (saying, for
> instance, that a security measure is enabled when it's really not). So
don't
> just rely on the Security Centre's status messages. Periodically check
your
> antivirus and firewall applications independently of the centre.
>
> Bottom line: Microsoft made significant progress toward remedying its past
> problems, but it still falls far short of putting Microsoft on the leading
> edge in PC security. Install Windows XP SP2 when you get the opportunity
but
> don't expect this one update to solve all your Internet security issues.
To
> be safe, keep and maintain third-party antivirus and firewall programs.
>
> Regards
>
> Colin
>
> ** Going on holiday and want to halt messages? Send a message to:-
> ** access-uk-request@xxxxxxxxxxxxx
> ** and in the Subject line type
> ** vacation ## d
> ** where ## is the number of days followed by d for days.
> ** For other things like digest mode, send a message, to
> ** access-uk-request@xxxxxxxxxxxxx with the Subject:- faq
>
> ** Going on holiday and want to halt messages? Send a message to:-
> ** access-uk-request@xxxxxxxxxxxxx
> ** and in the Subject line type
> ** vacation ## d
> ** where ## is the number of days followed by d for days.
> ** For other things like digest mode, send a message, to
> ** access-uk-request@xxxxxxxxxxxxx with the Subject:- faq
** Going on holiday and want to halt messages? Send a message to:-
** access-uk-request@xxxxxxxxxxxxx
** and in the Subject line type
** vacation ## d
** where ## is the number of days followed by d for days.
** For other things like digest mode, send a message, to
** access-uk-request@xxxxxxxxxxxxx with the Subject:- faq
** Going on holiday and want to halt messages? Send a message to:-
** access-uk-request@xxxxxxxxxxxxx
** and in the Subject line type
** vacation ## d
** where ## is the number of days followed by d for days.
** For other things like digest mode, send a message, to
** access-uk-request@xxxxxxxxxxxxx with the Subject:- faq
Other related posts:
