Microsoft Windows XP Service Pack 2 Release Candidate 2 - PowerPoint PPT Presentation

1 / 37
About This Presentation
Title:

Microsoft Windows XP Service Pack 2 Release Candidate 2

Description:

Provide all post SP1 updates and patches. More regression testing ... FTP and GOPHER is no longer supported. Installer service is no longer interactive ... – PowerPoint PPT presentation

Number of Views:23
Avg rating:3.0/5.0
Slides: 38
Provided by: davidagr
Category:

less

Transcript and Presenter's Notes

Title: Microsoft Windows XP Service Pack 2 Release Candidate 2


1
Microsoft Windows XPService Pack 2Release
Candidate 2
  • David A. Greenberg
  • Lead Security Engineer
  • IT Security Office
  • Office of the Vice President for Information
    Technology
  • Indiana University

2
Service Pack 2 Goals
  • Provide all post SP1 updates and patches
  • More regression testing
  • Fixing known vulnerabilities not enough
  • New and enhanced technology added
  • Network and Memory Protection
  • Safer e-mail handling
  • More secure browsing
  • Additional enhancements

3
Installation
  • Two distribution channels
  • Windows Update
  • http//v5.windowsupdate.microsoft.com/
  • Full Network package
  • Can be extracted using
  • Xpsp2.exe /U /Xc\xpsp2
  • update.msi can be used for a group policy
    deployment of SP2
  • Update\update.exe /S can be used for slipstream

4
Network Protection
  • Alerter and Messenger Service Disabled
  • Distributed Component Object Model (DCOM) ACLs
    expanded

5
Network Protection
  • Remote Procedure Call (RPC) interface eliminates
    remote anonymous connections
  • WebDAV Redirector
  • Windows Media Player 9 Series
  • Windows Messenger
  • Windows Network Setup Wizard

6
Windows Installer 3.0
  • Smaller and more reliable patches
  • Not prompted for install media as often
  • Improved patch removal ability
  • Sequencing
  • FTP and GOPHER is no longer supported
  • Installer service is no longer interactive

7
Windows Firewall
  • On by default
  • Boot time security
  • Global configuration
  • Local subnet restriction
  • Command line support
  • Netsh
  • Exceptions List
  • No exceptions mode
  • Multiple Profiles
  • Domain and non-domain
  • Unattended Setup Support
  • Group Policy Support

8
Remote Administration Tools
  • Blocked by default from remote locations
  • Computer Management
  • Device Manager
  • Event Viewer
  • Group Policy Management
  • Local Users and Groups
  • Services
  • Shared Folders
  • WMI Control

9
Internet Connection Firewall
10
Windows Firewall
11
Windows Firewall
12
Windows Firewall
13
Windows Firewall
14
Windows Firewall
15
Memory ProtectionData Execution Prevention
  • Memory protection technology
  • Memory locations are marked as non-executable and
    executable.
  • Should help prevent or even eliminate buffer
    overruns.

16
Safer e-mail handlingOutlook Express
  • Plain text mode for reading e-mail
  • Behind the scenes security enhancement
  • Dont download external HTML option
  • Developer changes to the way attachments are
    opened

17
Pre SP2 Post SP2
18
Safer Web BrowsingInternet Explorer
  • Download and attachment enhancements
  • MIME file type agreement enforcement

19
Download and attachment enhancements
  • Users will see a redesigned pop up box when
    downloading and installing programs
  • Simple and Advanced view

20
(No Transcript)
21
Internet Explorer Information Bar
  • Replaces many balloon text and pop up boxes
  • Designed to be unobtrusive and less confusing

22
Pop up blocker
  • Enabled by default
  • Regardless of settings, pop ups can not open
    outside of visible desktop
  • Trusted sites and Local Intranet Zones never
    block pop ups

23
(No Transcript)
24
Pop-Up Blocker
25
Pop-Up Blocker Settings
26
Download Example
27
(No Transcript)
28
(No Transcript)
29
Automatic Updates
  • More choices, prioritized, consolidated
  • Critical updates (same as pre SP2)
  • Security updates
  • Update roll-ups
  • Service Packs
  • Future - Products including
  • Microsoft Office, Microsoft SQL Server

30
Automatic Updates
  • Background Intelligent Transfer Service (BITS)
    2.0
  • Less bandwidth needed
  • More configurable than version 1
  • Automatic Updates configurable through group
    policy
  • Improved Update Applicability Rules

31
Automatic Updates
32
Windows Update
  • Windows Update
  • For components that shipped with the Operating
    System
  • Microsoft Update (planned)
  • Not currently available
  • For all other Microsoft products.
  • SQL, Exchange, Office

33
Security Center
  • Firewall
  • Virus Protection
  • Automatic Updates
  • Controlled through Group Policy in a domain
    environment

34
Security Center
35
Security Center
36
Windows XP SP2
  • http//www.microsoft.com/SP2Preview
  • Changes in Functionality in Microsoft Windows XP
    Service Pack 2
  • http//www.microsoft.com/technet/prodtechnol/winxp
    pro/maintain/sp2chngs.mspx
  • Network and Memory Protection
  • Safer e-mail handling
  • More secure browsing
  • Additional enhancements

37
Microsoft Windows XPService Pack 2Release
Candidate 2
  • David Greenberg
  • Lead Security Engineer
  • IT Security Office
  • Office of the Vice President for Information
    Technology
  • Indiana University
Write a Comment
User Comments (0)
About PowerShow.com