The forthcoming Service Pack 2 for Windows XP is actually a significant upgrade for Microsoft's OS, delivering much-needed security enhancements. We highlight the key changes.
Service Pack 1 (SP1) for Windows XP, which was about 130MB (compressed) in size, fixed 324 errors in the operating system. Service Pack 2 (SP2), which will ship in mid-2004 at the latest, is nearly three times as large, at 360MB (Build 2082). The main focus, apart from the fixing of well-known problems, is on security. More and more of today's PCs have always-on Internet connections. Although business computers are relatively well protected against Internet-borne attacks by corporate firewalls, this is not generally the case with home PCs. Microsoft is partly responsible for this undesirable state of affairs: after installing Windows XP the integrated software firewall (Internet Connection Firewall) is currently switched off by default, leaving the system unprotected from hacker attacks. Last year's Blaster worm proved how important a firewall can be: even today, a newly installed Windows XP system will be infected after few seconds' connection to the Internet if the firewall is deactivated and the Blaster patch is missing. XP SP2 offers improved security in four areas:
(1) Improved network protection
(2) Protection from memory overflow
(3) Safer email handling
(4) More secure Internet browsing
The following pages describe these changes in more detail.
Service Pack 2 is designed to make Windows XP more secure.
Post your comment
In order to post a comment you need to be registered and logged in.
You can also log in with Facebook. Log in or create your ZDNet UK account below
By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy. Questions about membership? Find the answers in the Community FAQ
Talkback
There is missing things in the conclusions:
1. It need to improve the performance. by the review analize it show that the performance is worst than old versions.
2. It also still contains many old components, instead of all the latest versions.
It also did not contain all fixes. after installing RC1 I check windows update, it still showing me to update many things.
3. Firewall and other protections still not safe yet. it need password protections to protect this settings. so virus cannot change the settings.
4. The autoupdate time is wrong, by chosing at 3.00 mostly computer are off at that time.
And others.
(Look at my review at flexbeta.net/ betanews.com)
Definitelly need for Rc2
OOps I Tought the review based on Win Xp Sp2 Rc1 (2096) which is available for public download since few days ago.
But when I read it more carefully this ZDNet review based on the 2082 which is Old sp2 release.
I hope ZDNet review using the latest RC1 (Build 2096) instead of the old 2082 versions.
Note: My comments based on build 2096 version
The reviewer makes a couple of naive and potentially dangerous comments regarding the security of a Windows system.
Yes, a firewall gives extra security when correctly configured. But a badly configured firewall can be worse than no protection at all - it can lead to complacency. Saying that, for example, Blaser Worm can't get through because the firewall is automatically turned on could be misleading.
I've been using a mixture of hardware and software firewalls and anti-virus protection since the early 90's and have worked on security projects.
One of the biggest problems I've seen with the personal firewalls is that they tend to restrict traffic that should come through, especially if there is a local network running. This often frustrates the users into just turning Firewalls off because it stops them doing normal tasks. They don't have the knowledge (and are often unwilling to learn) to configure such a connection themselves. Education is at least as important, if not more so than turning the firewall on by default.
Providing SP2 on CD, along with a WMV/MPEG video on how to secure your machine against attack (and why) would be a good start - and for the large number of users who don't have high-speed Internet connections, the shere size of the update will put people off downloading it in the first place.
Also, the comment on never opening e-mail from an unknown adressee is, to a certain extent, good advice, but this can mean that important mails are missed - installing a virus checker that works with your mail client is much more important. Viruses and Worms are often delivered from people you know, who have themselves been infected. Again, user education on attachments is very important here. If someone can't say something in plain-text, it probably isn't worth hearing.
The changes to IE are just glanced at in passing (pop-up and add-in manager). Has the rendering engine been updated to comply with W3C standards? Or does it still only render accurately to MS HTML standards?
What about other changes, such as to the .NET Framework, application compatibility etc.
I agree with David comments. the firewall is too simple and need many improvements. so it can be used easily by new user meanwhile still have many advanced setting for pro user.
regarding the .net framework it is better if MS include the newest .net framework, but I think .net framework 2.0 still not ready as visual studio 2005 still not ready yet, so .net framework 1.1 is enough for a moments.
Another things need to consider is
Add options so user can customize the windows according to what user wants.
in simple ad options to maximize performance and setting for : Gaming, Office and Internet, so user can choose this options and windows can adjust the settings so the performance and setting is good for that purpose.
or how about
http://www.litepc.com/xplite.html
Microsoft also need to consider buy MyIE2 to help IE :)
While the ability to block pictures and HTML in Outlook Express is a new option, OE can already has the option to prevent saving of potentially dangerous files. That isn't something new added in SP2.
will the inclusion of xp sp2,orgment or
supersede xp sp1.will it delete sp1or overwrite existing files.
Three things need clarifying.
Firstly, will the mid summer version be smaller than the size of Build 2098?
Secondly, will it overwrite previous software of XP-SP1, as Graham Lee pointed out.
Thirdly, will it be dispalyed in the current version of Windows Update.
If all those three questions elicit the relevant answers, it looks like -baring the real headache caused by the auto activation of the Firewall- it will be a real improvement.
I for one would appreciate a prompt response to these questions, which is why I have supplied an email address.
I just uninstalled it. It killed my Panda Anti-Virus and I could not get it to work at all. Plus several other applications would come up and then crash. I hope by the time it reaches full release those things are taken care of.
I recentley installed SP2 on a laptop.
When the laptop is powered from the mains it works fine.
If I try to boot the laptop on battery power only it crashes to a BSOD with Machine_Check_Exception errors and
then reboots, and gets caught in that cycle. However if I plug the power adapter back in then it boots fine.
Even once booted if I unplug the power adapter it crashes after a few seconds with the same error.
I reckon this is a very serious problem as its causing the CPU to think there is a hardware fault and halts XP from loading.
It goes without saying that the SP2 has been removed and the machine now works fine.
Installed it on top of SP1 on a machine I just recently put together. No problems whatsoever! The popup blocker is a nice little addition (although I still have the google pop up bloker installed too, just in case) and the firewall option is also usefull but again I still have Zone Alarm installed just in case. I like to always have a backup plan when it comes to windows :-)
I have downloaded the Beta version of Windows XP Service Pack 2 and the Popup Blocker alone is worth the effort!! I have used a number of other popup blockers (e.g., Google Toolbar, NoAds, etc.) and the new Microsoft one has blocked virtually every popup. Now when I run Spybot or Ad-aware I get virtually no bugs at all, and in fact I rarely even bother running them anymore. And NO, I DON'T WORK FOR MICROSOFT! :-)
I have been running Winows xp with
service pack 2 for about a month.
Popup are gone and found when I run adware or spybot, I hardly ever see any more
spyware.
how did these people get sp2
This has happened also on my Packard Bell laptop - I have not seen any fixes or workarounds posted except obviously to keep the power lead in!
I have been using winxp sp2 and i have to say big improvement on the security side of things but would never think twice on switching my Norton Firewall off.
Improvements in compatability can be noticed i do quite a lot of software testing and some would not run and now run perfectly. Microsoft still have alot of work to do the challenge is still on and going strong.
It was getting to the point of which i was going to get rid of winxp that came with system (includes cracking the disk) but since they worked so hard i'll make an exception only for a few months.
MS Windows or Linux?
MS scrapes by again
I love linux but im willing to stick to windows on 1st impressions of sp2. MS doesnt release incomplete software. its just that its a popular OS and some people are out to exploit some of windows great features its just a risk you take when u access the www. throughout all my years ive never had any data stolen or lost or ever had a virus (No lie). i like to prevent things not wait for them to happen.
If you're a online company dealing in clothes and you get data lost or stolen or even a known virus some of your employees are slacking off.
I downloaded and installed XP SP2 and found that when I go to standby on my computer I cannot get back in. I have had to restore to pre installation - Dave
daveb3391@msn.com
I have installed the release version of SP2 and although Panda AV appears to work it will not let me use the Panda firewall (latest version as part of Platinum). It recognises it in the Security Centre but although I can ping freely my web and email software (both MS) won't work. Please MS or Panda - give us a clue!!
I am also having problems with sp2 and Panda. If anyone is logged on to my machine that does not have administrator privilges, I get a security warning that Panda anit viurs is turned off even thought it is in fact running. emails to Panda support have been next to useless,
I uninstalled Service Pack 2 due to the fact that I could not run or reinstall my DVD burning software.
Since I've uninstalled it my Internet applications do not work, programs are crashing.... it made a huge mess of my machine.
SP2 caused a major problem for me - a total crash that resulted in me being unable to start the machine - EVEN IN SAFE MODE! I was unable to uninstall SP2. Trying to reinstall windows was no better because the programme switched off the mouse and keyboard and I have had to resort to a complete disc wipe and start again. This has been worse than any virus attack that I have sustained in the past.
A MAJOR MICROSOFT COCKUP!
Here same problem, when unplugging my rom AC power Packard Bell laptop I get a blue screen. Booting on battery will start WinXP but same Blue Screen after a few secs.
On AC Power no problems
This was not the case before SP2.
If someone has a solution for this T would appreciate a little email.
I have the SAME problem.
With SP2 cant boot and work with battery, but with AC there is no problem.
(i can boot in safe mode, but i dont know how to fix this)
Without SP2 everything runs OK.
Do you know the solution?
suz
I have the same problem as you.
(acer ferrari with win xp sp2)
I boot with battery and BSoD appears.
With AC it works fine.
Does not happens without SP2..
do you know the solution?
After installing sp2 on a packardbell ipower5305 laptop, i am getting a bsod with only battery power.Once i insert AC power it works, but remove it whilst the battery is in the laptop causes a bsod with a "machine check exception error".
I have no such problems with sp1.
A number of other users with different makes of laptops are reporting the same problems.