XP SP2... new holes found

Slashdot reports that there are security holes in Microsoft Windows XP SP2.

Granted, this isn't really surprising coming from a huge update to the OS (250MB).

Do note that nearly all problems that one has using Windows on the net results from using Outlook (or Outlook Express) and/or IE. Microsoft has already said in court that you can't really get rid of those from your system (even though it has been shown on the web by multiple people that it is possible, it isn't easy).

That said, you can in fact replace them with FireFox (web browser) and Thunderbird (e-mail and news). Or just the whole Mozilla package if you like.
But if you go that route, do note that you will have to change them over to being your default programs for various files and processes, and even then there are still things in Windows that will use IE (I think Windows Update is one).

This isn't 100% foolproof since there are still holes that are out there that exist simply by your computer being on and connected to the net (although the bulk of those, if not all, are in older unpatched versions of XP), but this is a big improvement.
Also note that there are web applications that need IE, whether through poor website design that only works with one browser (IE), or due to using ActiveX plug-ins.
While it is easy to just ignore those sites at home, it is not so easy when it is in the workplace. At work, we have several banking clients that we have to interface with via IE due to their Active X security setup, and I must say that it is a bit unnerving, but also something we have to do since they are our clients.

Posted by Eric at November 14, 2004 01:38 AM | TrackBack