WLAN enhancements in XP SP2
by Lisa Phifer, Core Competence
08.18.2004
Rating: -4.38- (out of 5)
|
[TABLE]This month, Microsoft finally released its long-awaited Service Pack 2 (SP2) for Windows XP. Well, sort of... Currently, SP2 is only available to those who go looking for it on Microsoft's SP2 Resources for IT Professionals Web page. Companies are expected to download SP2 for testing before deciding when and how to push it to corporate desktops. Individual Windows XP users are being advised to turn on Windows Update and let Microsoft install SP2 automatically when it's ready for prime time.
Personally, I'm going to reserve the right to decide when to deploy SP2 on my own PCs. In the meantime, I'm going to learn as much as I can about SP2, starting with how it will affect wireless LAN connectivity.
SP2 in a nutshell
Many WLAN users installed some of the features associated with SP2 last summer, when WPA upgrades first became available as a standalone patch. But SP2 enhancements extend well beyond wireless. The biggest changes include an entirely new version of Microsoft's desktop firewall; security additions to Internet Explorer, like a new pop-up ad blocker; and security-related improvements to Outlook, like Web content blocking and text message viewing. To learn more about these enhancements, visit Microsoft's What's New In SP2 Web page.
Of these changes, the new Windows Firewall is likely to have the greatest impact on network connectivity and associated drivers. Earlier versions of Windows XP included an Internet Connection Firewall (ICF), disabled by default and buried beneath the "Advanced" properties panel. Many don't use ICF at all, opting to use third-party desktop firewalls instead. Those who do use ICF typically enable it only on untrusted connections, like dial-up, DSL, and WLAN adapters.
In SP2, the revamped (and renamed) Windows Firewall is turned on by default, for all connections, and launched at system boot. This proactive approach affords better protection, but will require fine-tuning by most users. For example,
To continue reading for free, register below or login
To read more you must become a member of SearchMobileComputing.com
if you're accustomed to sharing files or printers on your WLAN, you'll need to add exceptions to the default Windows Firewall. Exceptions can be made by application or port, allowing access by any computer, only those on the local subnet, or specified addresses. To learn more, visit this Microsoft Windows Firewall Web page. If you use a third-party desktop firewall like Zone Alarm or Norton, visit your vendor's Web site for SP2 compatibility details.
Wireless wizardry
Drill deeper into SP2, and you'll find a lengthy list of OS and application tweaks, including several that apply specifically to 802.11 wireless networks.
Further information about these and other wireless-related SP2 changes can be found in this Microsoft TechNet article, including screen snapshots that illustrate the new setup wizard, wireless network connection properties, and status messages.
Wait and see
If you're a network administrator, you've probably already downloaded the SP2 installer and started experimenting with it. If you're an end user, my advice is to sit tight and resist the temptation to install SP2 immediately. You can install the WPA patch without jumping headfirst into SP2, and still get the most significant wireless enhancements.
In the long run, SP2 security improvements to the Windows Firewall and Internet Explorer are likely to have a much bigger impact. Unless you have a compelling reason to leapfrog the crowd, let organizations with large IT departments take the lead on debugging SP2 deployment. Wait for the dust to settle, and then take the jump to SP2.
About the author: Lisa Phifer is vice president of Core Competence, Inc., a consulting firm specializing in network security and management technology. Phifer has been involved in the design, implementation, and evaluation of data communications, internetworking, security, and network management products for nearly 20 years. She teaches about wireless LANs and virtual private networking at industry conferences and has written extensively about network infrastructure and security technologies for numerous publications. She is also a site expert to SearchMobileComputing.com and SearchNetworking.com.
Do you have comments about this article, or suggestions for Lisa to write about in future columns? Let us know!
|
|
|
|
|
|
