Changed Firewall Policy in XP SP2

From: Joe Dance (dancejoe_at_MOORE.SC.EDU)
Date: 09/13/04

  • Next message: Polazzo Justin: "Re: Alert: Microsoft Security Bulletin MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)" 
    Date:         Mon, 13 Sep 2004 16:52:35 -0400
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

    One of the SP2 Firewall policies appears to have a somewhat new behavior, if
    "Not Configured". This may be old news, and if so, I apologize, but I have
    not seen it mentioned to date.

    Policy name: Reschedule Automatic Updates scheduled installation

    The explanation for this policy is:

    =======================

    "Specifies the amount of time for Automatic Updates to wait, following
    system startup, before proceeding with a scheduled installation that was
    missed previously."

    "If the status is set to Enabled, a scheduled installation that did not take
    place earlier will occur the specified number of minutes after the computer
    is next started."

    "If the status is set to Disabled, a missed scheduled installation will
    occur with the next scheduled installation."

    "If the status is set to Not Configured, a missed scheduled installation
    will occur one minute after the computer is next started."

    "Note: This policy applies only when Automatic Updates is configured to
    perform scheduled installations of updates. If the 'Configure Automatic
    Updates' policy is disabled, this policy has no effect."

    =======================

    Previously, the behavior was, "If the status is set to Disabled or Not
    Configured, a missed scheduled installation will occur with the next
    scheduled installation." Now, behavior if Disabled is different from
    behavior if Not Configured, and behavior if Not Configured is clearly
    different from what it was previously.

    Joe Dance

    University of South Carolina 

    ---
[This E-mail scanned for viruses by Declude Virus]
-----
NTBugtraq Editor's Note:
Want to reply to the person who sent this message? This list is configured such that just hitting reply is going to result in the message coming to the list, not to the individual who sent the message. This was done to help reduce the number of Out of Office messages posters received. So if you want to send a reply just to the poster, you'll have to copy their email address out of the message and place it in your TO: field.
-----
  • Next message: Polazzo Justin: "Re: Alert: Microsoft Security Bulletin MS04-028 - Buffer Overrun in JPEG Processing (GDI+) Could Allow Code Execution (833987)"

    Relevant Pages

    • Re: GPO Reg eintrag in W2k nicht relevant?
      ... If a scheduled installation is missed (because the client computer was ... turned off) and RescheduleWaitTime is not set to a value between 1 and 60, ... Automatic Updates waits until the next scheduled day and time to perform the ... If a scheduled installation is missed and RescheduleWaitTime ...
      (microsoft.public.de.german.win2000.gruppen_richtlinien)
    • Re: Updates not applied automatically (why?)
      ... A defective installation of an update, ... > question is why your scheduled installation is not working correctly. ... > first step is to determine that the updates were fully downloaded -before- ... > cycle, and the downloading of the updates, did not make it possible to ...
      (microsoft.public.win2000.windows_update)
    • Quantcast