Microsoft's Windows XP Service Pack 2, recently released to
developers for testing, is slated to include many security-related
changes and enhancements.
The following article provides an overview:
"Windows XP Service Pack 2: A Developer's View"
<http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnwxp/html/securityinxpsp2.asp>
Two representative examples:
- Firewall
The integral host-based firewall software in Windows XP will be turned
on by default. It can be configured to block outgoing, as well as
incoming connections. It also incorporates a feature which allows
applications 'whitelisted' by an administrator to open ports for
listening only as long as the application requires, and to shut
them thereafter. If a new vulnerability is discovered, end users
can temporarily block all incoming connections via a straightforward
interface until a patch becomes available.
- Protection against buffer overruns and other memory-based exploits
"Core Windows components are being recompiled with the most recent
version of [Microsoft's] compiler technology to help mitigate against
buffer overruns."
In addition, Microsoft is introducing a feature called "no execute" (NX)
that can "mark memory so code can't be executed from that memory."
In conjunction with AMD K8 and Intel Itanium processors, as well as
future CPUs, this feature will "make it considerably harder for
malicious (or even accidental) exploitation of buffer overruns
in Windows XP SP2."
A formal list of changes is available via:
Aron Roberts
Workstation Software Support Group
------------------------------------------------------------------------
The following was automatically added to this message by the list server:
For information about Micronet, including subscribing to
or unsubscribing from its mailing list and finding out
about upcoming meetings, please visit the Micronet Web site:
<http://micronet.berkeley.edu/>.
Received on Thu Dec 18 09:34:26 2003
This archive was generated by hypermail 2.1.8 : Thu Dec 18 2003 - 09:34:26 PST