Ok, so I feel like I need to do this, hopefully its understandable.
1. XP SP2 is the most significant security effort Microsoft has ever produced.
Granted, it may not be a "silver bullet", or solve all problems, but it is
significant in so many ways that we as a security community cannot fail to
acknowledge it. I admire "discoverers" as much as the next, but before XP SP2
can be written off it will take many, many, vulnerability announcements.
a) IMO, this is the first time that Microsoft has put security over existing,
and frequently used, features.
b) IMO, this is the first time that Microsoft has accepted the fact that their
choice is going to lead to "some" incompatibilities.
c) IMO, this is the first time that Microsoft has taken a stand against ISV who
are definitely making money out of some features they (MS) made available to
them.
2. I, at least, as NTBugtraq Editor, believe we, as the NTBugtraq community,
need to stand behind Microsoft's efforts. That means we need to continue to
endorse XP SP2 despite what problems have arisen or may arise (within obvious
reason.) The media is only going to state the problems. They cannot appreciate,
nor do they believe their customers are willing to pay for, stories about XP
SP2 successes.
So, I want to hear from you, every one of you, regarding XP SP2 success or
failure. Obviously, I want those stories in as much detail as you can provide.
There are, no doubt, some (many?) applications which will not be compatible
with XP SP2. I say they represent Vendors who are not prepared to accept the
responsibilities we've always felt they should have as reasonably
security-minded Vendors. They've had lots of time to figure out how to make
their apps compatible, and have *chosen* not to.
I offer any Vendor who feels Microsoft left them "in the lurch", regarding
their problems with XP SP2. a forum to express their problems.
Equally, I offer all NTBugtraq subscribers a place to state the problems they
are encountering with an ISV application.
It is extremely important for corporate environments to get XP SP2 deployed to
all home systems running XP. Let's make sure the media has the right
information.
Cheers,
Russ - NTBugtraq Editor
-----Original Message-----
From: Windows NTBugtraq Mailing List [mailto:NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM]
On Behalf Of Russ
Sent: Monday, August 09, 2004 6:07 PM
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: XPSP2 for Corp/Dev released today
The full download of XP SP2 final was made available today via;
http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/winxpsp2.
mspx
This is the full 272MB download. Windows Update version will be "coming
soon".
Enjoy.
Cheers,
Russ - NTBugtraq Editor
-----
NTBugtraq Editor's Note:
Want to reply to the person who sent this message? This list is configured such
that just hitting reply is going to result in the message coming to the list,
not to the individual who sent the message. This was done to help reduce the
number of Out of Office messages posters received. So if you want to send a
reply just to the poster, you'll have to copy their email address out of the
message and place it in your TO: field.
-----
-----
NTBugtraq Editor's Note:
Want to reply to the person who sent this message? This list is configured such
that just hitting reply is going to result in the message coming to the list,
not to the individual who sent the message. This was done to help reduce the
number of Out of Office messages posters received. So if you want to send a
reply just to the poster, you'll have to copy their email address out of the
message and place it in your TO: field.
-----
