2851A_C01. Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada.

Slides:



Advertisements
Similar presentations
Desktop Value - Introducing Windows XP Service Pack 2 with Advanced Security Technologies Presenter: James K. Murray Title: Information Technologies Consultant.
Advertisements

IMS Client Installation Procedures 1. Copy the Voic Pro from the shared folder on the Voic Pro server. Go to Start, Run, and \\ or \\
Microsoft Windows XP SP2 Urs P. Küderli Strategic Security Advisor Microsoft Schweiz GmbH.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
Windows Server 2003 SP1. Windows Server™ 2003 Service Pack 1 Technical Overview Jill Steinberg: Added TM Jill Steinberg: Added TM.
AVG Internet Security 7.5 Product presentation.
A Technical Overview of Microsoft Forefront Client Security (FCS) Howard Chow Microsoft MVP.
Building Your Own Firewall Chapter 10. Learning Objectives List and define the two categories of firewalls Explain why desktop firewalls are used Explain.
Chapter 7 HARDENING SERVERS.
Windows XP Service Pack 2 Technical Update. Windows XP Service Pack 2 Technical Workshop Agenda –Security Overview –Introduce Windows XP Service Pack.
Windows XP Service Pack 2 Alex Balcanquall Senior Consultant Microsoft Services Organisation.
Changes in Windows XP Service Pack 2
Information for Developers Windows XP Service Pack 2 Information for Developers.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.
Module 6: Patches and Security Updates 1. Overview Installing Patches and Security Updates Recent patches and security updates for IIS Recent patches.
VMware vCenter Server Module 4.
Windows XP Service Pack 2 and the Microsoft Virtual Machine: Developer Implications Rudi Larno Developer & Platform Group Microsoft BeLux.
Module 16: Software Maintenance Using Windows Server Update Services.
Defense-in-Depth Against Malicious Software Rick Claus / Bruce Cowper IT Pro Advisors Microsoft Canada.
Security Flaws in Windows XP Service Pack 2 CSE /14/04 By: Saeed Abu Nimeh.
11 SUPPORTING INTERNET EXPLORER IN WINDOWS XP Chapter 11.
Microsoft Windows XP SP2 for Developers Rafal Lukawiecki Strategic Consultant Project Botticelli Ltd This session is based.
Guide to MCSE , Enhanced 1 Activity 10-1: Restarting Windows Server 2003 Objective: to restart Windows Server 2003 Start  Shut Down  Restart Configure.
Microsoft ® Official Course Module 9 Configuring Applications.
Working with Applications Lesson 7. Objectives Administer Internet Explorer Secure Internet Explorer Configure Application Compatibility Configure Application.
Hands-On Microsoft Windows Server 2008 Chapter 1 Introduction to Windows Server 2008.
Module 1: Installing Windows XP Professional. Overview Manually Installing Windows XP Professional Automating a Windows XP Professional Installation Using.
Securing Windows 7 Lesson 10. Objectives Understand authentication and authorization Configure password policies Secure Windows 7 using the Action Center.
Module 7: Configuring TCP/IP Addressing and Name Resolution.
Data Security.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 9: Implementing and Using Group Policy.
Information for Developers Windows XP Service Pack 2 Information for Developers Tony Goodhew Product manager Developer Division Microsoft Corp

Using Windows Firewall and Windows Defender
Windows Vista Security Center Chapter 5(WV): Protecting Your Computer 9/17/20151Instructor: Shilpa Phanse.
COMPREHENSIVE Windows Tutorial 5 Protecting Your Computer.
®® Microsoft Windows 7 Windows Tutorial 5 Protecting Your Computer.
Module 14: Configuring Server Security Compliance
Section 1: Introducing Group Policy What Is Group Policy? Group Policy Scenarios New Group Policy Features Introduced with Windows Server 2008 and Windows.
3-Protecting Systems Dr. John P. Abraham Professor UTPA.
CN1176 Computer Support Kemtis Kunanuraksapong MSIS with Distinction MCT, MCTS, MCDST, MCP, A+
SMS 2003 Deployment and Managing Windows Security Rafal Otto Internet Services Group Department of Information Technology CERN 26 May 2016.
C HAPTER 2 Introduction to Windows XP Professional.
Windows Vista Inside Out Ch 10: Ch 10: Security Essentials Last modified
Module 5: Configuring Internet Explorer and Supporting Applications.
Module 6: Integrating ISA Server 2004 and Microsoft Exchange Server.
Section 11: Implementing Software Restriction Policies and AppLocker What Is a Software Restriction Policy? Creating a Software Restriction Policy Using.
Module 6: Managing Client Access. Overview Implementing Client Access Servers Implementing Client Access Features Implementing Outlook Web Access Introduction.
Module 14: Securing Windows Server Overview Introduction to Securing Servers Implementing Core Server Security Hardening Servers Microsoft Baseline.
Windows XP Service Pack 2 Customer Awareness Workshop XP SP2 Technical Drilldown – Part 1 Craig Schofield Microsoft Ltd. UK September.
Microsoft ISA Server 2000 Presented by Ricardo Diaz Ryan Fansa.
NetTech Solutions Supporting Users and Troubleshooting Desktop Applications on Microsoft Windows XP Instructor Richard Fredrickson.
NetTech Solutions Protecting the Computer Lesson 10.
Module 10: Windows Firewall and Caching Fundamentals.
11 IMPLEMENTING AND MANAGING SOFTWARE UPDATE SERVICES Chapter 7.
Windows Administration How to protect your computer.
Internet Explorer 7 Updated Advice for the NHS 04 February 2008 Version 1.3.
Windows Server 2003 SP1 Technical Overview John Howard, IT Pro Evangelist, Microsoft UK
ITMT Windows 7 Configuration Chapter 7 – Working with Applications.
NETWORK SECURITY LAB 1170 REHAB ALFALLAJ CT1406. Introduction There are a number of technologies that exist for the sole purpose of ensuring that the.
Windows Vista Configuration MCTS : Internet Explorer 7.0.
Windows Vista Configuration MCTS : Network Security.
Labs. Session 1 Lab: Installing and Configuring Windows 7 Exercise 1: Migrating Settings by Using Windows Easy Transfer Exercise 2: Configuring a Reference.
TMG Client Protection 6NPS – Session 7.
Securing the Network Perimeter with ISA 2004
Lesson #8 MCTS Cert Guide Microsoft Windows 7, Configuring Chapter 8 Configuring Applications and Internet Explorer.
Designing IIS Security (IIS – Internet Information Service)
Using Software Restriction Policies
Implementing Advanced Server and Client Security
Presentation transcript:

2851A_C01

Microsoft Windows XP Service Pack 2 Security Technologies Bruce Cowper IT Pro Advisor Microsoft Canada

Session Prerequisites  Experience managing Windows XP Professional desktops  An understanding of the deployment tools that are used to deploy Windows XP and updates to the desktop  Experience using Group Policy to manage desktops Level 200

Session Prerequisites (cont.) OR The skills represented by taking: Course 2285 (covering Windows XP) Course 2297 (designing Active Directory ® and networking)

Introduction to Windows XP Service Pack 2  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 Handling Security Features  Browsing Securely by Using SP2

The Need for SP2 Security attack trends include: Increased uses of automation - tools for Scanning, Compromising and Propagation. Asymmetric threats - distributed systems to attack single targets Increased complexity - Tool signatures more complex and difficult to detect. Infrastructure attacks - denial of service and worms Faster detection of vulnerabilities and faster exploits. Firewall intrusions - harnessing ‘firewall friendly’ and ‘mobile’ code

What Is New in SP2? New and Improved Features: Enhanced Network Protection New Memory Protection More Secure Handling Enhanced Browser Security Improved Computer Maintenance Enhanced Network Protection New Memory Protection More Secure Handling Enhanced Browser Security Improved Computer Maintenance SP2 provides several built-in security technologies that reduce computer vulnerabilities.

How SP2 Minimizes the Attack Surface SP2 Features Security Technologies Network Protection Windows Firewall Remote procedure call (RPC) Distributed-component object model (DCOM) Memory Protection NX (Intel and AMD 64 bit processors currently) Sandboxing (buffer overruns) & Cookies (stack overruns) More Secure Handling Multipurpose Internet mail extension (MIME) type restrictions Attachment handling Enhanced Browser Security Pop-up management and crash detection Download prompt Improved Computer Maintenance Security Center Automatic updates & Anti Virus Monitoring

Your instructor will demonstrate how to resolve a remote connectivity issue with the netsh command-line tool. Demonstration 1: Resolving Remote Connectivity Issues by Using the Netsh Command-Line Tool You will see how to: Allow access to MMC with the firewall enabled Unblock a specific port via command line / script

SP2 Security Management Using Windows Security Center Windows Firewall Configuration Internet Options Configurations Antivirus Configuration Automatic Update Configuration Computer Running Security Center

Your instructor will demonstrate how to manage SP2 by using Security Center. Demonstration 2: Managing SP2 by Using Windows Security Center Specifically, you will learn to configure:  The Automatic Updates option  The Virus Protection option

Windows XP SP2 Network Protection Features  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 Handling Security Features  Browsing Securely by Using SP2

New Security Features in Windows Firewall Boot-time security On by default Global configuration and restore defaults On with no exceptions Command-line support Unattended setup support RPC Support for system services Multiple profiles Windows firewall exceptions list Local subnet restrictions

Windows Firewall Advanced Security Features Advanced options include: Basic configuration ICMP options Ability to enable specific network interfaces Connection and packet logging improvements

Demonstration 3: Exploring Windows Firewall New Security Features You instructor will demonstrate:  The On by Default feature  The On with No Exceptions feature  The Windows Firewall Exceptions List  The Restore Defaults feature (advanced options)

Enhanced DCOM Security Remote Client DCOM Server Specific COM Permissions Able to restrict rights that are available to users to individual COM servers Computer-wide Restrictions Restrictions that apply to DCOM call, activation and launch privileges and that differentiate between local and remote clients

More Secure Remote Procedure Calls Remote, Anonymous Client Firewall RPC Servers Processes running on Local System, Network Service, Local Service security context Open port Allowed Processes claiming to be RPC Services e.g. Trojan Horses Other acceptedrestricted Open port Blocked Local Client and/or Authenticated client Group Policy

Services Disabled by Default in Windows XP SP2 Disabled Service Before SP2 After SP2 Alerter Set to Start Manually Disabled by Default Windows Messenger Set to Start Automatically Disabled by Default Alternative options:  Recommended resolution; rewrite application to use another method to communicate with the user  Start the Alerter or Messenger service programmatically

Reducing Application Failures  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Application Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 Handling Security Features  Browsing Securely by Using SP2

Execution Protection (NX) and How It Works NX features: Memory locations tagged as nonexecutable unless location explicitly contains executable code Buffer overrun attach protection Currently available on some 64-bit CPUs CPU-aided memory protection

Exploring SP2 Handling Security Features  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 Handling Security Features  Browsing Securely by Using SP2

Attachment Manager in Outlook Express and Windows Messenger New with attachment User Running Outlook Express User Running Windows Messenger Different actions taken for: Safe attachments Unsafe attachments Suspicious attachments AES API

HTML Content Blocking in Outlook Express Content Blocking Feature: Blocks external images New “Don’t Download External HTML Content” feature Users Running Outlook Express Web Server Internet Preserves the user's privacy and prevents future attacks Web Server

Demonstration 4: Demonstrating and configuring Attachment Handling in Outlook Express You instructor will demonstrate:  How Outlook Express Handles attachements  How to configure attachment handling in Outlook Express

Browsing Securely by Using SP2  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Applications Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 Handling Security Features  Browsing Securely by Using SP2

Managing Internet Explorer Browser Security Security feature Illustrate with MIME security improvements  Consistency checks  Stricter rules Better security management  Add-on control and management features  Better prompts  New script-initiated window restrictions Local machine zone  A list of steps that make up the procedure  An interface or a GUI diagram with callout labels Feature control security zone  MIME sniffing  Security elevation  Windows restriction Group Policy settings  Administrative control for Feature Control Security Zones

Making the Local Computer More Secure  Internet Explorer information bar  Internet Explorer add-on installation prompt  Internet Explorer download prompt  New file handler icon  New security information area  Executable files are checked for publisher information  Outlook Express prompts

Blocking Annoying Pop- Up Windows FeatureDescription Pop-Up Manager Blocks unwanted pop-ups Window Restrictions Controls script-initiated repositioning Controls script-initiated resizing Window Placement Governs the placement of pop-up windows

Managing Add-Ons Add­On Management and Crash Detection: Better add-on detection New add-on management features

Demonstration 5: Popups, Scripts and Configuring Add-On Management You instructor will demonstrate:  The Information Bar with popups and scripts  How to view information about how often the add- ons have been used by Internet Explorer

Session Summary  Introduction to Windows XP Service Pack 2  Windows XP SP2 Network Protection Features  Reducing Application Failures by Using Windows XP SP2 Memory Protection Features  Exploring SP2 Handling Security Features  Browsing Securely by Using SP2

Next Steps  Microsoft Canada Technet  Find additional Technet events: events/ events/  Share information and get community- based support for SP2 s/default.asp?icp=xpsp2&slcid=us s/default.asp?icp=xpsp2&slcid=us  Get additional information about changes to functionality in SP2 ol/winxppro/maintain/winxpsp2.mspx

Questions and Answers

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.