Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security NTBugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: XP SP2 - Statement of the NTBugtraq list

from [Doug Neal] Network Security [Permanent Link]
Subject: Re: XP SP2 - Statement of the NTBugtraq list
Date: Thu, 12 Aug 2004 23:49:07 -0700 
An updated version of MBSA will be released in the coming days that will
provide full WinXP SP2 support.  When this is released, there will be a
FAQ including details of all changes and improvements in this version.

Be sure to check www.microsoft.com/mbsa for the latest details when this
new version is released.


doug neal
Security Business & Technology Unit (MBSA)
d u g n @ m i c r o s o f t . c o m


-----Original Message-----
From: Dan Houtz [mailto:dhoutz@ADVANCEDINTERFACES.COM] 
Sent: Thursday, August 12, 2004 2:10 PM
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM
Subject: Re: XP SP2 - Statement of the NTBugtraq list

After installing SP2 to my workstation last night, I must say that I am
very pleased at this point. The installation went flawlessly - despite a
long wait for my desktop to appear after the initial reboot (had me on
the edge of my seat for a bit, but eventually every thing loaded up). 

Upon boot up, AIM loaded and I was notified by the Windows firewall that
it was attempting to bind to a port. I choose to continue blocking the
port and AIM loaded and functioned as expected. Windows, by default left
access open to File and Printer Sharing and Remote Desktop and I was
able to connect to my system remotely. Authentication to Active
Directory was also successful. All applications I have tested seem to
work properly though sometimes you are prompted when they attempt to
bind to a port (it's actually nice to know when certain programs attempt
to bind to a port). I am continuing to test different applications, but
so far so good. 

Next was to test the IE pop-blocker and other security changes. To do
this I browsed warez sites for about an hour. I'm happy to report that I
had no pop-ups and no spyware/malware installed when I was done. I had
to check to make sure I hadn't opened firefox. Also, I like Microsoft's
new Add-in manager which allows you to see what IE plug-ins are
installed and enable/disable them. It would have been nice for Microsoft
to include an option to remove/uninstall the plugins but perhaps I'm
just being nit-picky. I would say testing of IE needs more time but so
far, so good.

Despite all the talk of security improvements with SP2, I was very
pleased to find my system performing better. From what I have read some
of this can be attributed to most of the system being recompiled with
VS.Net. Today's early morning test was to install bluetooth and sync my
mobile phone. This went flawlessly which is great considering I gave up
trying to get bluetooth working correctly on SP1.

At this point I'm prepping to install SP2 on a Toshiba Centrino based
laptop. This will allow me to test the changed Microsoft made to the
Windows Wireless configuration tools. I have my fingers crossed that
everything will go well and in a week or so I can distribute SP2 to all
our workstations via SUS.

Forgot to add that I did find a problem with MSBA. When selecting to
print a report, it appears to fail. When looking closer, I found that
another window opened that wasn't viewable - I had to right click on it
on the taskbar a select "Maximize". Then, in the new windows choose to
Allow the ActiveX control. After doing this, the print dialogue box
appeared and everything worked.

Dan Houtz
Manager of Networks & Systems
Advanced Interfaces, Inc.
www.advancedinterfaces.com

-----
NTBugtraq Editor's Note:

Want to reply to the person who sent this message? This list is
configured such that just hitting reply is going to result in the
message coming to the list, not to the individual who sent the message.
This was done to help reduce the number of Out of Office messages
posters received. So if you want to send a reply just to the poster,
you'll have to copy their email address out of the message and place it
in your TO: field.
-----

-----
NTBugtraq Editor's Note:

Want to reply to the person who sent this message? This list is configured such 
that just hitting reply is going to result in the message coming to the list, 
not to the individual who sent the message. This was done to help reduce the 
number of Out of Office messages posters received. So if you want to send a 
reply just to the poster, you'll have to copy their email address out of the 
message and place it in your TO: field.
-----
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  XP SP2 via BitTorrent, Russ
Next by Date:  Further Info: Removal of Windows Messenger / Windows Media Player, Byrne Ghavalas
Previous by Thread:  Re: XP SP2 - Statement of the NTBugtraq list, Nick FitzGerald
Next by Thread:  XP SP2 experience - Day 1, David Prekel
Indexes:  [Date] [Thread] [Top] [All Lists]