XP SP2: Nothing more than security best practices?

In part one of this series below, you'll get a primer on Windows XP Service Pack 2 (SP2) security enhancements. Part two discusses Microsoft's isolation and resiliency initiatives and what benefits they can offer you in securing Windows.

[IMAGE] Earlier this year, Microsoft made some waves in the security pool by announcing it would put significant research and development resources into security enhancements for its software, and most recently for its long-awaited Windows XP Service Pack 2 (SP2) -- also referred to as Security Pack 2 given its focus. Should this hoopla be on your radar?

One new feature of XP SP2 is that much of the code has been recompiled to protect against buffer overflows. SP2 also supports the NX (no-execute) flag supported by the AMD K8 and Intel Itanium processors, which prevents code from being executed in areas of memory that are reserved for data. In addition, various DCOM and RPC components have been reworked helping to reduce the "attack surface" of Windows, referring to the system openings that a hacker or malware can exploit.

Other security enhancements include:

Other planned security enhancements are in the works for Exchange Server, Windows Server 2003, ISA Server and more.

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Windows XP security issues, updates and alerts How Windows 7 stands up to security tests The state of enterprise security and emerging threats in 2009 A first look at Windows 7 security enhancements How to strike a balance between Windows security and business needs How to recognize and repair Blue Screen of Death stop error messages Ten ways to sell security to management Improve Windows security with our top 10 tips Strategies for troubleshooting Windows XP errors Managing single sign-on security burdens in Windows A Windows security checklist for IT managers

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary drive-by download  (SearchEnterpriseDesktop.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary

So nothing is that new here. Microsoft has simply taken some security best practices -- things that should be done to keep operating systems secure in the first place -- and built them into its software to force network managers and users to secure Windows correctly.

I never thought I'd say this, but I actually feel a little sorry for Bill Gates and company. They're releasing software with gobs of features demanded by their customers -- the same customers who often fail to make the slightest effort to correctly secure their systems. What's a software vendor to do?

Don't get me wrong. I'm not completely on Bill's side. I don't like the fact that Microsoft is preventing the installatioon of SP2 on pirated copies of Windows XP. Imagine how much more secure the Internet could be if they did.