Subhashini [Mod] (Moderator):
Hello
Subhashini [Mod] (Moderator):
We will start with the chat at 5 pm
Subhashini (Moderator):
Hi Friends ,M Rajesh is going to lead the chat today
Subhashini (Moderator):
Chat expert : M Rajesh (MVP)
Subhashini (Moderator):
What Windows XP SP2 is all about and how does it enhance security?
Did you know that Windows XP Service Pack 2 with Advanced Security
Technologies helps you protect your PC against viruses, hackers,
and worms?
Come and discuss what XP SP2 has to offer and learn about how the
enhanced security features in Windows XP SP2, including improvements
for Internet Explorer and Outlook Express, help users like you take
a proactive approach to protecting your computer, information, and
privacy while you browse or use e-mail and makes your working more
secure than before.
Subhashini (Moderator):
1. This chat will last for one hour. During this hour, our Expert
will respond to as many questions as they can. Please understand
that there may be some questions we cannot respond to due to lack
of information or because the information is not yet public.
2. We encourage you to submit questions for our Expert. To do so,
type your questions in the send box, select the Submit a Question
radio button and click SEND. Questions sent directly to the Guest
Chat room will not be answered by the Experts, but we encourage
other community members to assist.
3. We ask that you stay on topic for the duration of the chat. This
helps the Guests and Experts follow the conversation more easily.
We invite you to ask off topic questions after this chat is over,
but not during.
4. Please only submit your question once. Submitting your question
more than once is against the Chat Code of Conduct.
We are pleased to welcome our Expert M Rajesh , an MVP .
Subhashini (Moderator):
M Rajesh is a Master of Science in Mathematics. He is currently
a Senior Developer at ICICI Infotech Services Ltd, the software
arm of the giant financial group ICICI, having behind him a total
of 8 years of experience in IT. He started his career programming
in MS-Dos, FoxPro, Power Builder, Oracle both on the Unix as well
as the NT platform. When Visual Basic 4.0 was released he totally
focused on Microsoft technology and the NT platform. He has worked
on several technologies like COM, MTS, COM+, VBA, etc. Having always
been a hardcore admirer of Microsoft, he is thrilled to be included
as the latest member of the MVP team.
Subhashini (Moderator):
The agenda : During the first 20 mins , Rajesh is going to take
us through the topic
Subhashini (Moderator):
The rest 40 mins is open for your questions and an open chat
Subhashini (Moderator):
hello everybody , thanks for joining in the chat. We will begin
with the chat at 5 pm IST
Subhashini (Moderator):
Okay , So please go ahead and shoot your questions to Rajesh ;-)
Subhashini (Moderator):
Okay we Have the last 8 mins left. So guys please feel free to ask
the last few questions
Subhashini (Moderator):
And Rajesh could give you his email id in case you have any additional
questions
Subhashini (Moderator):
Okay we Have the last 8 mins left. So guys please feel free to ask
the last few questions
And Rajesh could give you his email id in case you have any additional
questions
Subhashini (Moderator):
Thank you Rajesh for your precious time and the insights given.I
thank you all for your participation and the interest shown in the
Webchat. The next Webchat is scheduled on Nov 17'th Excel Object
Model - Q & A by Naresh Nichani
Subhashini (Moderator):
Please feel free to go ahead with the questions by mailing Rajesh
Subhashini (Moderator):
Please feel free to go ahead with the questions by mailing Rajesh
Connecting to chat service...
Subhashini [Mod] connected.
Welcome to the India Community Chat Room. The chat room will be
used for both peer-to-peer, as well as, event chats. Please abide
by the Chat Code of Conduct, located in the Help file. If you would
like to volunteer to be a chat expert, please register here: http://www.microsoft.com/india/communities/chat/register.aspx.
To view a list of our upcoming chats, please visit: http://www.microsoft.com/india/communities/chat.
Chat Room Status:
Open Peer-to-Peer Technical Chat in Progres
Chat Room Status:
Scheduled Chat in Progress
Sai Ashok:
Windows XP SP2 Has a Dangerous Hole - reference - http://www.eweek.com/article2/0,1759,1639465,00.asp
- kindly clarify me in this issue
M_Rajesh_[Expert]:
Hello
MVP_mayank:
hi
Sai Ashok: hello everybody
M_Rajesh_[Expert]:
Hello,good evening to you, I am a Senior Software engineer in ICICI
Infotech Ltd.
M_Rajesh_[Expert]:
I am a MVP in Windows Shell and today i am going to talk about Windows
XP SP2 - Advanced Technologies and how it improves the security overall
Subhashini (Moderator):
Please welcome Rajesh and thanks to all you guys who took time today
to join this chat
M_Rajesh_[Expert]:
I will talk about some of the core features in Windows XP SP2 which
are essential for your day to day activities and also brief you how
these features really help safe guard your privacy and your computer
from the perils of the Internet
M_Rajesh_[Expert]:
Some of the important features in Windows XP SP2 are :-
Soumitra:
Thanks
M_Rajesh_[Expert]:
1. SP2 integrates technlogies that directly reduce and protect computers
rom threats known as buffer overruns.
M_Rajesh_[Expert]:
2. Outlook Express has been re-designed to be more secure and protect
computers against spams, worms and virus that are normally transmitted
to users through email messages and attachments
M_Rajesh_[Expert]:
3. Internet Explorer has been made more secure with SP2. Now users
will have greater control and flexibility over features that improve
online experience.
M_Rajesh_[Expert]:
4. SP2 has added new features that will improve the overall management
and security of the computer.
M_Rajesh_[Expert]:
5. New enhancements have been done for wireless Networking and is
new in XP SP2.
M_Rajesh_[Expert]:
we will discuss these points briefly.
M_Rajesh_[Expert]:
1. On CPUs that support execution protection (NX) technology, SP2
leverages NX to prevent attackers from running code in memory regions
that are marked as non-executable.
M_Rajesh_[Expert]:
Data Execution Prevention (DEP) helps prevent damage from viruses
and other security threats that attack by running (executing) malicious
code from memory locations that only Windows and other programs should
use. As of now most computer processors
M_Rajesh_[Expert]:
(32-bit) do not support hardware-based DEP and will make use of DEP
software to prevent attacks. In future all processors will have build
in DEP support.
M_Rajesh_[Expert]:
2. Outlook Express makes use of the Attachment Manager to identify
the type of attachment and then block the unsafe attachments like
binary executables but allow safe attachments.
M_Rajesh_[Expert]:
OE also has been enhanced with HTML Content blocking. This blocks
external images and external contents when viewing emails in HTML
mode. OE also uses the rich edit control instead of HTML browser control
to read messages in plain text.
M_Rajesh_[Expert]:
3. Internet Explorer MIME handling enforcement. Internet Explorer
uses Multipurpose Internet Mail Extensions (MIME) type information
to decide how to handle files that have been sent by a Web server.
Based on the MIME type,
M_Rajesh_[Expert]:
IE will process the HTTP file requests differently based on the type
of response. For example, an HTTP request for .JPEG when received
will be displayed, but an .EXE file will result in the user being
prompted for a decision on how to handle the file.
M_Rajesh_[Expert]:
The Pop-Up Manager is turned on by default and this effectively blocks
automatic and background pop-up windows. This can also be configured
by the user.
M_Rajesh_[Expert]:
the Internet Explorer window Restriction Controls pop-up windows and
windows from appearing in such a way that appears to deceive users.
All windows will appear in such a way that there is no over lapping
or there is no
M_Rajesh_[Expert]:
placement outside of the parent's window visibility.
M_Rajesh_[Expert]:
4. Overall management:- The firewall is now on by default and the
Security Center (which is new in SP2) monitors 3 important features
such as "Firewall", "Automatic Updates" and "Virus
Protection". The firewall has been enhanced to differentiate
M_Rajesh_[Expert]: between
the Internet and "Local Area Network". Extra features like
adding exceptions, opening particular ports, allowing certain programs
to bypass the firewall have all been included.
M_Rajesh_[Expert]:
Windows Update: SP2 now comes with Windows Update version 5.0 and
is greatly enhanced and improved over earlier versions. Windows Update
now supports multiple downloading i.e. it is able to pick up where
the download was suspended at an earlier time
M_Rajesh_[Expert]:
and then resume the downloads. Also Windows Update gives a much improved
interface for the progress of the updates and gives more flexibility
to the users to select the updates for download and then update their
computers.
M_Rajesh_[Expert]:
Windows Update also categorizes the updates into 2 categories (Strongly
recommended Critical Updates) and (Optional Updates). This enables
the user to identify the updates which are critical and essential
for his computer.
M_Rajesh_[Expert]:
Also an important feature is that downloading of files can be done
only on user initiation and is not automatic. This enables the user
to have more control over the files that are being downloaded and
also prevents from downloading additional software
M_Rajesh_[Expert]:
unknown to him.
M_Rajesh_[Expert]:
Well these are the core features of Windows XP SP2.
M_Rajesh_[Expert]:
now you can post your questions??
MVP_mayank asked the experts: well said Rajesh..my Q:Looks Like That
..if I am Not Connected to Internet ..I don't need SP2 Right ???
Soumitra: Thanks Rajesh
Subhashini (Moderator):
Okay , So please go ahead and shoot your questions to Rajesh ;-)
MVP_mayank asked the experts: well said Rajesh..my Q:Looks Like That
..if I am Not Connected to Internet ..I don't need SP2 Right ???
Sai Ashok asked the experts: Mr.Rajesh, I read an article which describes
as follows "2) reference- http://www.theregister.co.uk/2004/08/25/xpsp2_security_crater/
Windows XP Service Pack 2 has a flaw that gives users a false sense
of security"
Sai Ashok:
I thought Windows XP sp2 will protect my system..but???? this article
rises a doubt...
Soumitra:
Still the users are getting lots of spywares /ad wares in spite of
XP SP2's high level security. Why so?
M_Rajesh_[Expert]:
Mayank, Well XP SP2 wasn’t designed with only protection from
the Internet but also from the network and for example, Active X Controls
can be instantiated from applications that run from CDs. Hence SP2
helps you in this case.
M_Rajesh_[Expert]:
and now a days, it is hard not to be isolated from a workgroup or
a local area network or the Internet. People are always in touch with
others through the Internet for communications.
MVP_mayank asked the experts: OK ..Let Me Say In This Way .. my Younger
Sister is Working on XP Home Edition and She is no way connected to
internet or network ..should I suggest her to install SP2 ???
Soumitra: If your sister's
motherboard supports drivers
Soumitra:
Driver compatibility is a major issue.
M_Rajesh_[Expert]:
Answer to Sai: Windows XP SP2 has a new feature that is the computer
is protected from outside attacks and this process starts much before
the operating system loads and ends only after the operating system
unloads. And when the firewall is turned off, the
M_Rajesh_[Expert]:
user is completely warned and is forewarned that his computer is at
peril if the firewall is not turned on.
M_Rajesh_[Expert]:
Answer to Mayank: Well if the computer is never going to be connected
to the Internet or to the network, then SP2 isn’t required,
but you will lose the benefits of SP2 which prevents buffer overflows
for applications running on the computer.
Sai Ashok asked the experts: WMI database - Microsoft's implementation
of WBEM - is set to read/write, not read-only. Simple script to generate
false firewall status information can be written. Kindly refer to
the web link which I have specified. http://www.theregister.co.uk/2004/08/25/x
Sai Ashok: http://www.theregister.co.uk/2004/08/25/xpsp2_security_crater/
- exact link
Soumitra:
Rajesh I ASKED YOU A Q
M_Rajesh_[Expert]: Answer
to Soumitra: Spyware/adware
will still be an issue because there is no fool proof method to detect
spyware / adware . There are third party software to assist in detection/removal
of spyware.
Soumitra:
yes,but how can you asses the percentage of infection
Soumitra:
if it's compared to xpsp1
Sai Ashok asked the experts: windows XP SP2 is to over come all the
security issues and loopholes. But , in this case also, many loopholes
and security problems are detected after the release of SP2. Why is
it so????
Soumitra:
In SP2 firewall is enabled from booting stage
Soumitra:
still there is so much infection
M_Rajesh_[Expert]: Answer
to Soumitra: Well the percentage of infection by spyware after SP2
is marginally reduced because of the protection in Internet Explorer
and the user is advised to use the default settings of the firewall
and to avoid .
MVP_mayank asked the experts: can we Expect SP3 In Near Future ?????????????????
M_Rajesh_[Expert]: visiting
websites that cannot be trusted.
Soumitra:
don't u think that Office is exposing vulnerabilities?
M_Rajesh_[Expert]:
Answer to Sai: There are certain procedures to be followed when installing
XP SP2 and performing all of them in the right way will ensure that
the security problems will not arise. However if the user hasn’t
followed the right procedures
Sai
Ashok: "Visiting websites that cannot be trusted"-
It is difficult to find which website is dangerous or not
M_Rajesh_[Expert]:
then he might find difficulties.
Sai
Ashok: I love Windows XP. But linux users challenge
windows users in one case "SECURITY". why is it. When Linux
can offer full security , why not windows..
M_Rajesh_[Expert]:
Answer to Mayank regarding SP3: Regarding SP3, there is no official
announcement from Microsoft and you will have to wait for the future
to see if Microsoft makes any announcement.
M_Rajesh_[Expert]: Answer
to Soumitra: can u explain what do u mean by "dont u think that
Office is exposing vulnerabilities"
Sai
Ashok: If SP2 solves all the security problems, I
guess no need of SP3.
MVP_mayank:
check this out :http://www.wown.com/articles_tutorials/Dark-Side-Windows-XP-SP2.html
Soumitra: An example
of a recent vulnerability exploit is Exploit/MS04-028, which affects
the process of viewing JPEG files. This problem has been detected
in many of Microsoft's products, including Office XP, Office 2003
and Windows XP. When a user opens a JPEG ima
Sai
Ashok: Mayank- you mean to say we should take precautions
before installing the SP2.is it.
MVP_mayank asked the experts: yes
MVP_mayank asked the experts: my Q : what precautions need to be taken
attempting the upgrade ??
M_Rajesh_[Expert]:
Answer to Mayank: Well SP2 is very important in one aspect i.e. warn
the user before hand what is happening and then let him make a decision
on what is happening and leave the decision to him to do.
Sai
Ashok: Nearly 200 applications does not work if SP2
is installed in a machine....in this case, we have to take care what
applications we have installed.
Soumitra:
http://searchsmallbizit.techtarget.com/originalContent/0,289142,sid44_gci993425,00.html
M_Rajesh_[Expert]: Answer
to Mayank : there are some precautions to be taken. they are : 1.
Check if your computer's hardware meets all the requirements for XP
. 2. Check if your hardware has all the updated drivers.
Soumitra:
Rajesh one more question
Sai Ashok:
Reference link :- http://www.theregister.co.uk/2004/08/17/xp_sp2_glitches/
200 applications clash with win XP SP2
M_Rajesh_[Expert]:
3. Clean your computer with the antivirus scanner (latest updates)
and adware removal tools (latest updates) and 4. Always perform a
backup of your data before attempting the update.
Subhashini
(Moderator): Okay we Have the last 8 mins left. So
guys please feel free to ask the last few questions
And Rajesh could give you his email id in case you have any additional
questions
Soumitra:
Which firewall you advice to use to the users?
Sai Ashok asked the experts: I am using Windows XP in my office. Can
I update my OS with SP2. In what way, does SP2 WILL help me and what
are the problems it may cause to me.
M_Rajesh_[Expert]:
Answer to Sai Ashok regarding Program Compatibility : Please refer
to this KB Article http://support.microsoft.com/default.aspx?kbid=884130
for details. And if the problem persist please contact your vendor
if there are any known issues and whether a fix
M_Rajesh_[Expert]:
will be issued in the near future. Let me give an example.
Soumitra:
Why there is no inbound traffic control in firewall?
M_Rajesh_[Expert]:
Windows XP provides with the Antivirus Alert to notify if the computer
has the antivirus software upto date. But that depended on a feature
to be updated by the antivirus firms and this wasn’t in place
for the first few weeks. And recently Norton has
M_Rajesh_[Expert]:
released the Norton WMI for this and this now provides real time monitoring.
Refer to my blog http://weblogs.asp.net/mrajesh
for more details on this.
M_Rajesh_[Expert]: Answer
to Soumitra: Regarding the issues with Office, this is outside of
the scope of this chat topic.
Soumitra:
I don't think so,as the product comes from MS
Soumitra:
And MS is making XP better n better
Soumitra:
but office is also our daily life part
Soumitra:
What I wanted to say that mere enhancing XPSP2 won't solve the security
problem
M_Rajesh_[Expert]: Answer
to Sai Ashok: The answer is similar to what I answered about whether
to go for XP SP2 whether connected to the Internet or not. And please
refer to this KB Article as mentioned earlier to see if your programs
are listed there.
Sai Ashok asked the experts: Norton has updated WMI. but how about
other Antivirus software like Mcafee, AVG antivirus..etc.
MVP_mayank:
bye
Subhashini (Moderator):
Thank you Rajesh for your precious time and the insights given. I
thank you all for your participation and the interest shown in the
Webchat. The next Webchat is scheduled on Nov 17'th Excel Object Model
- Q & A by Naresh Nichani
Sai
Ashok: Thank you Rajesh
Soumitra:
Thanks guys
Soumitra:
Thank you Rajesh
M_Rajesh_[Expert]:
Please keep looking for updates from other antivirus providers for
updates for SP2.
Sai Ashok:
Happy to have a nice Lively Discussion
M_Rajesh_[Expert]:
Thank you guys for attending the chat. Please feel free to contact
me through email mrajesh@mvps.org
Subhashini (Moderator):
Please feel free to go ahead with the questions by mailing Rajesh.
Subhashini (Moderator):
Thanks guys and hope to see you again next week with more questions
and more vigor
Subhashini (Moderator):
Happy Diwali to al of you . Be safe :-)
M_Rajesh_[Expert]:
Wish you all a very Happy Diwali. 
Sai Ashok: Wish u all
Safer and Happy Diwali  |
