Originally posted by: rogue1979
Originally posted by: mechBgon
Originally posted by: rogue1979I sit behind a cable modem and a router, both which have firewalls enabled. Without getting flamed, can I ask what better security SP2 could give me? I currently use WinXP Pro with SP1 no updates and it works great for me.
Service Pack 2 eliminated a lot of worm vulnerabilities and they worked to reduce the overall attackability of the OS in other ways. Among them, the ability to make use of hardware-enforced Data Execution Prevention if you have a CPU that supports that (Athlon64, some Pentium 4, all Pentium D, and some Celeron D).
Here's Microsoft's site with good info:
http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2chngs.mspx You won't have to read far to see that it's more than just turning on the firewall and adding a popup blocker.
Thank you for a very informative answer. In theory, it looks like Microsoft is trying to help XP from online/browsing problems. But in reality I don't see any difference when my customers come in with XP either SP1 or SP2 bogged down beyond belief with every critter you can imagine and more.
I'd bet the majority of the infestations are ultimately the result of the users being gullible or ill-informed (or just plain reckless), in the usual ways. That's a user problem, not a Microsoft problem. But you've probably noticed that Microsoft has struck back anyway, issuing a new Malicious Software Removal Tool every month to help bail people out of some prevalant infections after the fact. So there's one reason to get those customers' Automatic Updates turned on. If they have multiple systems at home, SP2 should help prevent worms from spreading from one to another, too.
Also, if you look at the WMF Exploit link in my signature, you'll see another instance of how Bad Stuff could come past your firewall and try to exploit your system. Patch, and you're invulnerable.
Don't patch, and it'll boil down to whether your antivirus software recognizes a particular instance of the exploit or not. If the antivirus software fails to recognize it, then here's hoping you don't use an Administrator-level account for web browsing, IM or email.
One of the other tweaks in SP2 is a damage-control feature that prevents a compromised system from spreading worms as quickly. It limits the number of half-open TCP/IP connections to ten at a time, if I remember correctly. The same worm would have a much slower time finding new vulnerable hosts to infect if it's controlling an SP2-equipped system.
Anyway, if nothing else, I believe Windows Movie Maker got some improvements with SP2
plus the scrollie bar on the bootup screen is now
blue on WinXP Home Ok, I'm reaching... but I'd certainly take the trouble to get SP2 installed and
fully enable DEP, particularly if the system's got a DEP-capable CPU.