RE: Microsoft XP/SP2 security
From: Thor Larholm (thor_at_pivx.com)
Date: 03/09/04
- Previous message: Steve Friedl: "Microsoft XP/SP2 security"
- Maybe in reply to: Steve Friedl: "Microsoft XP/SP2 security"
- Next in thread: Geoff Van Brunt: "RE: Microsoft XP/SP2 security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 9 Mar 2004 10:29:03 -0800 To: "Steve Friedl" <steve@unixwiz.net>, <focus-ms@securityfocus.com>
Very nice analysis, I wonder how much more you could have written with
access to XP/SP2 (nudge nudge, give the man a beta).
The IE security zone changes involve locking down the My Computer zone
(http://tinyurl.com/3atog). Together with the NX CPU flag, this will
definitely cause a lot of applications to malfunction, including:
Microsoft Management Console
Norton Internet Security / Norton Antivirus
Mcafee Antivirus
Visual Studio.NET/2003
The .NET Framework
MSDN Help
Regards
Thor Larholm
Senior Security Researcher
PivX Solutions
24 Corporate Plaza #180
Newport Beach, CA 92660
http://www.pivx.com
thor@pivx.com
Phone: +1 (949) 231-8496
PGP: 0x5A276569
6BB1 B77F CB62 0D3D 5A82 C65D E1A4 157C 5A27 6569
PivX defines "Proactive Threat Mitigation". Get a FREE Beta Version of
Qwik-Fix
<http://www.qwik-fix.net>
-----Original Message-----
From: Steve Friedl [mailto:steve@unixwiz.net]
Sent: Tuesday, March 09, 2004 7:31 AM
To: focus-ms@securityfocus.com
Subject: Microsoft XP/SP2 security
Hello listmates,
XP Service Pack 2 has been in beta test for some months, and it looks
like this is primarily about adding security features. A few are minor,
but some look quite far-reaching. I don't believe I've ever seen a
single bigger security push from Microsoft, and I'm very encouraged.
I've written an analysis of XP/SP2's security aspects:
http://www.unixwiz.net/techtips/xp-sp2.html
Corrections/feedback welcome.
Steve
-- Stephen J Friedl | Software Consultant | Tustin, CA | +1 714 544-6561 www.unixwiz.net | I speak for me only | KA8CMY | steve@unixwiz.net ------------------------------------------------------------------------ --- Free 30-day trial: firewall with virus/spam protection, URL filtering, VPN, wireless security Protect your network against hackers, viruses, spam and other risks with Astaro Security Linux, the comprehensive security solution that combines six applications in one software solution for ease of use and lower total cost of ownership. Download your free trial at http://www.securityfocus.com/sponsor/Astaro_focus-ms_040301 ------------------------------------------------------------------------ --- --------------------------------------------------------------------------- Free 30-day trial: firewall with virus/spam protection, URL filtering, VPN, wireless security Protect your network against hackers, viruses, spam and other risks with Astaro Security Linux, the comprehensive security solution that combines six applications in one software solution for ease of use and lower total cost of ownership. Download your free trial at http://www.securityfocus.com/sponsor/Astaro_focus-ms_040301 ---------------------------------------------------------------------------
- Previous message: Steve Friedl: "Microsoft XP/SP2 security"
- Maybe in reply to: Steve Friedl: "Microsoft XP/SP2 security"
- Next in thread: Geoff Van Brunt: "RE: Microsoft XP/SP2 security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
