People have Bill Gates all wrong. He doesn't want to rule the world (or at least the computerised portion of it). And although he may secretly hope that all Linux source code spontaneously combusts, that isn't his biggest wish.
No, the man just wants a return to the old days. Think back to the early 1990s, when Microsoft would introduce a new version of, say, Excel. The only things that mattered were what kinds of charts people could draw and how many formulas they could embed in spreadsheets. Customers -- lots of them -- willingly shelled out $300 or $400 a copy for the new software. The notion of security was left to the folks in uniform who kept reporters like me away from the customer briefing rooms, where good food and strong drinks were served.
How things change. For the past nine months, Gates has spent hundreds of millions of dollars to have his best programmers build a free update to an operating system that many people still don't want.
For the last few years, the world's largest software company has been held hostage by tireless security assaults aimed at Windows and its Internet Explorer browser. Finally, last year, Gates and Microsoft chief executive Steve Ballmer had had enough: the result was Windows XP Service Pack 2, which, Microsoft said, would patch many of Windows' most gaping security holes.
Well, SP2 is finally here, and it's been one rough week for Microsoft. After telling big companies that SP2 was ready to go, one of the first things Microsoft did was make it harder to get.
Microsoft said that SP2 doesn't play well with 50 or so existing programs. Par for the course as far as Windows updates go, you might say. But unfortunately, the list includes one of Microsoft's own systems management tools that big companies could use to install SP2 to their internal PCs.
So in order to keep employees within big companies from getting SP2 -- and immediately crashing some of those 50 programs -- Microsoft temporarily put the brakes on automated distribution, which was supposed to be one of SP2's best side benefits. Users of Windows XP Home Edition are just starting to get the update, and the remainder of XP users will be able to get it before month's end. But businesses are in no hurry. Many said this week that they'll wait for the SP2 kinks to be worked out before taking the plunge.
Then, on Wednesday, security researchers said they'd found some gaping holes in SP2 that -- at least theoretically -- could let malicious users gain access to SP2-protected PCs.
Did Microsoft bungle SP2's debut? With my columnist hat on, I can give you an unqualified yes. That's a shame, because by all accounts, SP2 is a fine update to Windows XP, which was already the best ever version of Windows. And rest assured that Microsoft will work out the kinks -- it has to.
For Microsoft, SP2 could finally take some of the heat off of the company and its historically cavalier attitude toward security. Even though SP2 is a free download, it could eventually boost Microsoft's bottom line by convincing the many companies still running Windows 2000 that it's all right to move up to Windows XP -- and by extension, Office XP and other programs.
And let's not forget that SP2 also fine-tunes Windows XP's internals, making it less susceptible to malicious attacks (as long as you're using the latest hardware). It also delivers in one rather pudgy download many other updates, such as Service Pack 1 and the latest security patches and bug fixes.
Perhaps SP2's greatest accomplishment will be to increase the number of Windows users who actually install bug fixes. For years, Microsoft has been saying the problem with Windows security isn't necessarily with Windows but rather with users. If they'd just take the time to install the available patches, most of their PC security problems would go away.
Easier said than done. Asking system administrators to keep their company's Windows systems up-to-date is one thing. After all, that's what they get paid to do. Still, in our IT budget-constrained world, there are fewer administrators, and those who are around are responsible for more PCs than in years past.
But expecting consumers at large to keep up with the blizzard of confusing and sometimes contradictory software patches is ludicrous. Remember, computing is mainstream. Senior citizens shop on eBay. Teenagers chat on instant messaging. Do you think any of these people understand why they should apply an "Update for Background Intelligent Transfer Service (BITS) 2.0 and WinHTTP 5.1 (KB842773)"? You'd have better luck asking them to split an atom. There's got to be a better way.
And there is, Microsoft says: It's called automatic patching. By default, SP2 turns on Microsoft's automatic updating service, which funnels the latest bug fixes directly to your PC. Well, here's the true test: If Microsoft's theory holds, there should be fewer trashed Windows PCs the next time an MSBlast-size worm slithers through town.
Since most security professionals think that the next big virus will hit sooner rather than later, we shouldn't have to wait too long for an answer.
Talkback
I downloaded and installed SP2 for Windows XP Pro last week and have no apparent problems. All my programs still work. Installation was flawless. The popup blocker works great.
I don't understand why so many people are having difficulties. SP2's arrival was later than planned, so everyone should have been ready.
I've installed SP2 on four machines so far, and two of them refused to boot up afterwards.
One of them bluescreened reporting an error with WINSVR.DLL.
Safe Mode also failed - and just did a hard reset - so did all of the other options on the F8 screen. (even the DOS prompt option!)
Eventually - I managed to recover it with a CD boot to the recovery console, and then running an uninstall of SP2 from the C prompt.
A quick search on Google suggested I wasn't the only one to encounter this.
It appears many people have imagined Windows XP SP2 to be the magical silver bullet that will solve all security problems with Microsoft Windows. This belief is wrong. What is does do, however, is make it withstand attacks better. The two areas Microsoft have done well in with SP2 is enabling Automatic Updates and Windows Firewall. These two items alone, if enabled, would have prevented the problems caused by the Blaster et al worms. I also like the new dialogs which will hopefully make sures more aware of security issues with their computers. However there is only so much a technological solution can provide in way of security. The rest is down to the users. People need to be educated into not adding exceptions to the firewall willy-nilly, not blindly opening email attachments and not clicking 'Yes' to every dialog that appears with security information. I suppose the only real measure of SP2's success will be how many security threats are thwarted by new functionality in SP2 that wasn't present in previous versions of Windows XP.
But expecting consumers at large to keep up with the blizzard of confusing and sometimes contradictory software patches is ludicrous. Remember, computing is mainstream. Senior citizens shop on eBay. Teenagers chat on instant messaging. Do you think any of these people understand why they should apply an "Update for Background Intelligent Transfer Service (BITS) 2.0 and WinHTTP 5.1 (KB842773)"? You'd have better luck asking them to split an atom. There's got to be a better way.
In reply to that, I am 13 and i understand that, not sure if i could split and atom though. Please do not call people stupid when you don't know them. The new version of Automatic Updates (V5) sucks because i can't pause downloads. And i don't use use that gay M$IE piece of shit called internet explorer, and i keep my pc/software up to date with all patches (and i am on dialup too). I have 2 antivirus, 2 firewalls and 1 antispyware program. So i think my computer is pretty safe, and if it does get infected i just boot into linux and fix it up.
I have also just installed it now for some reason XP now runs a lot faster although the boot time is a lot slower, I don't like the new loading screen though, I used to like to see the word professional on boot up.
You want to know something. I am sick and tired of cleaning up PCs, some of them my own, that have had IE jacked up so bad with BHOs and little applets and crap that grind the machine to a halt. SP2 may or may not resolve these kinds of problems, but one thing it will NOT do is wash out existing programs that have paritally taken over the OS. I can speak to that firsthand.
So make sure the OS is sanitary (with HIJACKTHIS.EXE or whatever) BEFORE landing the new service pack.
It is a sad state of affairs for Microsoft when Firefox is a safer way to read my Hotmail. IE is such a sieve that is useless and dangerous as a browser and will ultimately compromise the performance and integrity of the entire OS.
It is inconceivable that Microsoft is only now addressing SOME of these security problems.
Downloaded SP2 and when I went to reboot nothing, tried to reboot using saf mode etc, and still nothing ended up having to reinstall XP Home and then downloaded SP ( no other choice) and it worked but I spend all day installing software and drives
I guess the same happened to me. Then I got an SP2 version of Windows XP and guess what? The Windows Update program wanted to download the SP2 again. I canceled the operation and disabled the application!
Had to re-build my pc from scratch altough it had been working ok with SP2 for ages. Of course i had to start with fist release of XP Home, then re-install SP2.
Problem - although SP2 worked on my original build, as soon as I load SP2 now, the machine re-boots after the XP logo appears!
Help any one, is this a feaure?