Labs report: SP3 strengthens XP security

Service Pack 3 adds support for the Network Access Protection (NAP) mechanism in Windows Server 2008

Written by Dave Bailey

IT Week, 09 May 2008

Microsoft's SP3 update is likely to be the final service pack for Windows XP, and consists largely of previously released updates and hotfixes. However, it does include some enhancements, the most significant of which is client support for the Network Access Protection (NAP) mechanism implemented in Windows Server 2008 (WS 2008) ­ our focus for this first look review. NAP is a policy enforcement mechanism to ensure systems connecting to a network comply with security requirements.

We tested SP3 by downloading it from Microsoft’s TechNet as a .ISO image, which we then burned to CD-ROM for deployment. The executable itself is 324MB in size, while deploying to systems took about 15 minutes and added about 400MB to XP’s image size. Tools and guidance for deployment have not fundamentally changed from Windows XP SP2, according to Microsoft, so system administrators are advised to follow these.

After deployment, we tested upgraded systems to see how NAP works. We set up our WS 2008 system for DHCP NAP enforcement by configuring it as a NAP health policy server and also a NAP enforcement server. Enforcement can also be applied to IPSec, 802.1X, and other VPN clients.

We then configured the Windows System Health Validator and defined a policy that determined whether or not to allow clients network access. The settings included options to disallow access if there were no firewall, anti-virus or anti-spyware tools deployed. We defined a policy blocking access to systems that did not have all updates installed. When clients failed to pass the system health check, a pop-up message informed the user their system needed remediation. This can be done manually, or automatically, if a remediation server has been set up.

Overall, we found it relatively easy to set up NAP protection with WS 2008 and XP SP3 clients, but firms with few IT staff may have difficulty deploying and maintaining the system.

Microsoft released to manufacturing (RTM) its Service Pack 3 (SP3) update for Windows XP on 22 April, and intended it to be generally available by 29 April. However, the update was delayed until last week owing to a compatibility issue reported by some early adopters between Microsoft Dynamics Retail Management System (RMS), and both Windows XP SP3 and Windows Vista SP1.

The Network Installation Package for Windows XP Service Pack 3 can be found here.

  • Have your say
  • Send to a friend
  • Print this
  • Share

Tags:

reader comments

related articles

Windows XP update may hit Vista sales

Some users may see XP SP3 as the perfect stop-gap until Windows 7 28 Apr 2008

 

XP SP3 goes RTM

Microsoft has made its latest update for Windows XP available to manufacturers, a general download is set to follow 22 Apr 2008

Crunch time for Windows Vista

Will enterprises begin migration to Microsoft’s new platform this year or hold out for a successor? 14 Jan 2008

Software

Windows 7 hits release to manufacturing

Next version of Windows is finished and being delivered to PC vendors 22 Jul 2009

Distribution

Ingram Micro hails 'solid' third quarter

Broadline giant blames seasonality for turnover drop, but is pleased with progress to ‘greater profitability’. 30 Oct 2009

Hardware

Xerox targets new printers at offices large or small

Firm promises advanced security and increased productivity 13 Oct 2009

related whitepapers

today's top stories

Communications

Telepresence: coming to a screen near you?

Telepresence systems enable organisations to hold boardroom-style meetings with far-flung participants without the hassle and expense of arranging travel and accommodation. But while the technology is impressive, it does not come cheap, as Martin Courtney discovered when he sat in on a virtual meeting with executives from Philips 10 Mar 2010

Internet

Users give their verdict on Azure

Some of the first wave of UK adopters met in London recently to air their views on Microsoft’s cloud computing platform. Dave Bailey listened in 10 Mar 2010

Communications

Protests greet new Digital Economy Bill amendment

ISPs, digital rights groups and Liberal Democrat supporters cry foul 05 Mar 2010

Management

Publishing special - Publishers innovate to survive

1) IT could hold the key to the future of publishing 2) Case Study: The Guardian harnesses social and mobile apps 3) How publishers are reacting to the iPad 02 Mar 2010

Management

IT Leaders' Forum in association with IBM

A unique opportunity to hear from expert speakers and engage in a debate about the future of the CIO job function 29 Jan 2010

> More news

Advertisement

Subscribe

Keys to successful Serviceā€Oriented Architecture implementation

This white paper explores best practices and general design patterns for service oriented architecture (SOA).

The Roadmap to IT Maturity — Matching Strategy to Infrastructure for Business Success

This paper defines a roadmap for matching infrastructure strategy to business success.

Advertisement

Keep up to date with the latest products, services and technologies from the world's leading IT companies; ITHound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

More available - click 'submit' to view

Existing User

Newsletter user login:

Jobs

Related jobs

Job of the week

> More IT vacancies

Job alerts

  • Latest jobs to your inbox
Sign up here

Find your next job

IT Salary Checker

  • Are you being paid what you are worth?
Check salary here

Advertisement

Latest poll

NHS centralised data

NHS centralised data

Do you think the NHS can be trusted to safely look after personal data electronically?

View poll results

> More polls

Latest audio and video articles

Video

HP unveils S Series notebooks

'Prosumer' line overhauled 01 Mar 2010

Web Seminar Listings

Preparing for enterprise-scale Windows 7 migration

The web seminar on 18 Feb will discuss how Windows 7 migration can increase IT efficiency in large enterprises, freeing up budgetary and personnel resources to focus on business innovation. Our panel of experts will examine the strategies, tools and services IT leaders can use to migrate successfully and reap the rewards of increased efficiency. 19 Feb 2010

> More audio and video

Latest in-depth articles

Analysis

An expert view on mainframe migration

A look at the important decisions and necessary steps required before a mainframe migration 15 Mar 2010

Martin CaveComment

Lessons to be learned from cricket's internet outing

Imagine the scene. It’s the final of one of the most popular sporting events in the Indian subcontinent and millions of people are glued to their laptops and PCs in anticipation of the four runs required off the last ball of the match. Suddenly the connection jitters and 20 seconds later you see the jubilant crowd flooding onto the field of play… 12 Mar 2010

> More in depth articles

Primary Navigation