June 14, 2004 09:14 PM

Second Windows XP SP2 Release Candidate Is Imminent

Rating: (0)
Paul Thurrott
Windows IT Pro
InstantDoc ID #42968

 Expect the release of Windows XP Service Pack 2 (SP2) Release Candidate 2 (RC2) this week, unless yet another security-oriented emergency sets back the oft-delayed release. Sources tell me that Microsoft is already deploying XP SP2 RC2 internally and that the company gave beta testers the code late last week. However, a recent spate of "extremely critical" flaws in Microsoft Internet Explorer (IE) 6--which also affect the supposedly ultra-secure IE version in XP SP2--might ultimately push back XP SP2 RC2 yet again. If that happens, the delay would be the third major postponement of this product.
  
XP SP2 has followed a winding, seemingly never-ending path since its inception more than a year ago, when Microsoft designed the product to be a simple collection of bug and security fixes. But after the MyDoom and Sasser electronic attacks late last summer, Microsoft Group Vice President Jim Allchin, in a story that's quickly becoming as apocryphal as Chairman and Chief Software Architect Bill Gates's supposedly instant conversion to the Internet in 1995, announced to the troops that he had had enough. Microsoft subsequently pulled back SP2 from its humble origins and infused the product with a bevy of security-oriented technologies originally slated for Longhorn, the next major Windows release.
  
These technologies include a new always-on Windows Firewall; a Security Center dashboard; integration with third-party firewall and antivirus tools; more secure versions of IE, Microsoft Office Outlook Express, and MSN Messenger; and several under-the-hood enhancements. Such a major change to SP2 necessitated delays, and Microsoft backpedaled the release to the first half of 2004 so that developers could make the changes. However, last month, after releasing XP SP2 RC1, Microsoft revealed that it would delay SP2 until sometime this summer, closer to the company's XP Reloaded midlife XP marketing campaign.
  
Whether the company can hit even that date is unclear. XP SP2 RC2, originally due in June, has slipped several times, and last week's reports about four dangerous new IE vulnerabilities had Microsoft security watchdogs scrambling. Adware companies are already exploiting some of those flaws to launch unwanted pop-up ads on user systems, and some people worry that the vulnerabilities can be used to deliver far more dangerous payloads. Microsoft is reportedly working on an emergency fix for these problems that the company will release outside its usual monthly security releases. 
  
In the meantime, Microsoft recommends that users practice so-called "safe browsing," and the company has posted instructions for doing so on its Web site (see the URL below). Among other suggestions, the site advises users to set IE's security level to High. However, my advice is to skip IE altogether and look for an alternative. I personally use the Mozilla Foundation's Mozilla Firefox (which is free and under constant development); Opera Software's Opera 7.51 is also quite good. Both browsers are safer than and offer much more functionality than IE.

Increase Your Browsing and E-Mail Safety 

Mozilla Firefox 0.8

Opera 7.5.1

ARTICLE TOOLS

Want to use this article? Click here for options!

Add a Comment

SP-2 is the biggest disaster I have ever seen in a software release. It totally screwed up my local network to the point that one of my computers couldn't even ping itself. It cost me an enormous loss of time and money to get it uninstalled, and then re-install and reconfigure most of my applications. I'd like to see Bill Gates go on CBS 60 Minutes and try to upgrade someone's system without technical support.

Anonymous User 10/12/2004 11:18:35 PM

So Opera, Mozilla, and others may not be "safer" due to their own security flaws... They are only safer because they don't have the huge following of users IE has. If I was going to write code to attack a vulnerability I'd want to do it for the most desktops I could infect at once!


Editor's note: This sounds suspiciously like the rationale for Mac OS X and Linux being safer than Windows. But the real reason to support Firefox or Opera is that they're still being actively supported with new features and upgrades, and are improving all the time: Microsoft hasn't done anything major to IE since IE 4.0 came out in 1998. --Paul

Paul6/16/2004 5:08:54 AM

Funny how when you are top dog everyone takes a shot at you. Microsoft drives the computer market end of story. Mozilla just tries to emulate the same things IE does. Great browser it may be...but what is the point? Opera isnt even worth mentioning since its support of ActiveX is terrible. If it make you feel better to make fun of Microsoft then by all means do it...just realize if you are in the computer industry you would be unemployed without them.

Kevin6/15/2004 9:03:12 PM

Mozill Firefox 0.9 has just been released. http://www.mozilla.org/products/firefox/

--Asa

Asa Dotzler 6/15/2004 4:09:33 PM

Go to Secunia. Search for Opera. Then come back and claim it is "safer". It isn't. The security holes just get less press.

Bruce6/14/2004 7:51:30 PM

safe browsing?! you realize that involves ditching windows, right?

uhh no one was impressed by the humble goals of SP2.. but apparently that was.. too much innovation for one quarter... what the hell is this?! millions of PC users are in agony and microsoft can't even get a SP out the door!??!

Mike6/14/2004 6:44:36 PM

You must log on before posting a comment.

Are you a new visitor? Register Here
Free Power Tools Brochure
Get Mark Minasi's 17-page guide today!



      

advertisement

GOOGLE LINKS
SPONSORED LINKS
FEATURED LINKS

White Papers

Your remote offices contain valuable electronic data – are they adequately protected? Learn how proven technologies can reliably and cost-effectively back up a branch office from a central location, in real time, to disk or tape, and even utilize existing backup solutions.

Downloads

PacketTrap IT is a comprehensive and affordable network management and application monitoring solution that solves problems associated with bandwidth, network and application performance, and connectivity. Gain insight into your network - try PacketTrapIT free for 21 days!

Web Seminars

IT administrators have to solve a myriad of problems. This web seminar outlines the ten most common systems management pains - including managing highly distributed systems and dealing with data theft/loss – and the best practices to address each.

eLearning Series

We bring the experts direct to you to share their real-world perspective and expertise. During each event, three sessions stream in real time, so you can learn, ask questions, and get solutions.
Upcoming event: Getting the Most with Exchange 2010 with Paul Robichaux

Subscribe to Windows IT Pro!

DevProConnections ITTV Left-Brain SharePointPro Connections SQL Server Magazine SuperSite for Windows Windows IT Pro

© Penton Media, Inc.

Home About Us Advertise Customer Service Privacy Statement Subscribe/Renew Terms Of Use

Windows is a trademark of the Microsoft group of companies. Windows IT Pro is used by Penton Media Inc. under license from owner.