Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Items within XP SP2 and Win2003

from [Depp, Dennis M.] Network Security [Permanent Link]
Subject: RE: Items within XP SP2 and Win2003
Date: Mon, 27 Sep 2004 07:14:49 -0400 
Interesting comment.  The arbitrary code exploits you mentioned, are
these unique to SP2 or does SP1 fall prey to them as well.  I am not
aware of any exploits that are unique to SP2.  The firewall is not
perfect I will admit, but it is a vast improvement over its
predecdessor.  The current firewall is great for a home machine.
However, when you use the wizard to poke holes in the firewall, they
seem to be much larger than needed.  I think a better analogy for the
firewall is a privacy fence, but when you use the wizard to open the
firewall, often you are removing several boards when a knot hole would
have worked just as well.  

Denny 


-----Original Message-----
From: kyle [mailto:kyle@inetconnection.com] 
Sent: Wednesday, September 22, 2004 9:53 PM
To: focus-ms@securityfocus.com
Subject: Re: Items within XP SP2 and Win2003

Well, on the grand scheme of things, XP SP2 is far from 
secure. I know of a 
good many arbitrary code exploits that are easily utilized by 
a common 
webmaster. And the "firewall" is like a chain link fence for 
a privacy fence. 
IMO you were better off not "upgrading" to SP2 and sticking 
with SP1 until 
SP2 was fixed (released, but far from done, and def. not an upgrade) 
I'm sure M$ was better with 2003 considering it was supposed 
to be a SERVER 
edition, but then again you never know with M$.

On Sunday 19 September 2004 09:11 pm, James Bowman wrote:

Is their a set of hotfixes needed for 2003 that make it comprable in
features / overall security posture to XP SP2?

Although there's probably a bevy of XP SP2 items embedded 

in 2003, I would

imagine there's a bunch that's not...

Thanks



--------------------------------------------------------------
-------------



--------------------------------------------------------------
-------------

--------------------------------------------------------------
-------------
--------------------------------------------------------------
-------------




---------------------------------------------------------------------------
---------------------------------------------------------------------------
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Are MS Powerpoint's vulnerable to this JPEG Vuln?, Jeff Fedor
Next by Date:  RE: Items within XP SP2 and Win2003, Whittlesey, Steve
Previous by Thread:  RE: Items within XP SP2 and Win2003, Laura A. Robinson
Next by Thread:  Re: Items within XP SP2 and Win2003, kyle
Indexes:  [Date] [Thread] [Top] [All Lists]