May 2008 - Posts

Monday, May 26, 2008 4:56 AM

Windows XP SP3 Overview

 

I guess by now many would have head about the Microsoft Windows XP SP3 pushout. Many might ask, so what is this about? Is this another major fix that is going to break some other applications?

The answer is NO!

Before we begin describing why not, let's go ahead to look at what are the updates.

Previously Released Functionality

Functionality

Description

MMC 3.0

MMC 3.0 is a framework that unifies and simplifies day-to-day system management tasks in Windows by providing common navigation, menus, toolbars, and workflow across diverse tools. Microsoft Knowledge Base article 907265 describes this functionality in detail.

MSXML6

MSXML6 provides better reliability, security, and conformance with the XML 1.0 and XML Schema 1.0 W3C Recommendations. It also provides compatibility with System.XML 2.0.

Microsoft Windows Installer 3.1 v2 (3.1.4000.2435)

Windows Installer 3.1 is a minor update to Windows Installer 3.0, which Microsoft released in September 2004. Windows Installer 3.1 contains new and enhanced functionality. Additionally, Windows Installer 3.1 addresses some issues that Microsoft found in Windows Installer 3.0. Microsoft Knowledge Base article 893803 describes this functionality.

Background Intelligent Transfer Service (BITS) 2.5

BITS 2.5 is required by Microsoft System Center Configuration Manager 2007 and Windows Live OneCare. BITS 2.5 helps improve security. If you use BITS to transfer data, the new features also improve flexibility. Microsoft Knowledge Base article 923845 describes BITS 2.5.

IPSec Simple Policy Update for Windows Server 2003 and Windows XP

This update helps simplify the creation and maintenance of IPSec filters, reducing the number of filters that are required for a server and domain isolation deployment. The Simple Policy Update removes the requirement for explicit network infrastructure permit filters and introduces enhanced fallback to clear behavior. Microsoft Knowledge Base article 914841 describes this previously released update in more detail.

Digital Identity Management Service (DIMS)

DIMS make it possible for users who log on to any domain-joined computer to silently access all of their certificates and private keys for applications and services.

Peer Name Resolution Protocol (PNRP) 2.1

This update enables Windows XP SP3based programs that use PNRP to communicate with Windows Vista programs that use PNRP. Microsoft Knowledge Base article 920342 describes this previously released update.

Remote Desktop Protocol 6.1

Remote Desktop Protocol (RDP) used for communication between the Terminal Server and the Terminal Server Client. RDP is encapsulated and encrypted within TCP. This update better facilitates communication between machines running Windows XP and Windows Vista. Knowledge Base article 186607 describes RDP. Knowledge base article 951616 describes RDP 6.1.

Wi-Fi Protected Access 2 (WPA2)

This update to Windows XP provides support for WPA2, the latest standards-based wireless security solution derived from the IEEE 802.11i standard. Microsoft Knowledge Base article 893357 describes this update.

New and Enhanced Functionality

Functionality

Description

"Black Hole" Router Detection

Windows XP SP3 includes improvements to black hole router detection (detecting routers that are silently discarding packets), turning it on by default.

Network Access Protection (NAP)

NAP is a policy enforcement platform built into Windows Vista, Windows Server 2008, and Windows XP SP3 with which you can better protect network assets by enforcing compliance with system health requirements. Using NAP, you can create customized health policies to validate computer health before allowing access or communication; automatically update compliant computers to ensure ongoing compliance; and optionally confine noncompliant computers to a restricted network until they become compliant. For more information about NAP, see Network Access Protection: Frequently Asked Questions.

CredSSP Security Service Provider

CredSSP is a new Security Service Provider (SSP) that is available in Windows XP SP3 via Security Service Provider Interface (SSPI). CredSSP enables an application to delegate the user’s credentials from the Client (via Client side SSP) to the target Server (via Server side SSP). Windows XP SP3 involves only the Client side SSP implementation and is currently being used by RDP 6.1 (TS), though it can be used by any third party application willing to use the Client side SSP to interact with applications running Server side implementations of the same on Vista / LH Server.

There is a technical specification of this SSP available at the Microsoft Download Center.

Note that CredSSP is turned OFF by default in Windows XP SP3. To enable CredSSP, administrators can modify the following registry keys:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]

In the value “Security Packages” of type REG_MULTI_SZ, add “tspkg” in addition to SSP-specific data already present.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders]

In the value “SecurityProviders” of type REG_SZ, add “credssp.dll” in addition to SSP-specific data already present.

 

Descriptive Security Options User Interface

The Security Options control panel in Windows XP SP3 now has more descriptive text to explain settings and prevent incorrect settings configuration. Figure 1 shows an example of this new functionality.

Enhanced security for Administrator and Service policy entries

In System Center Essentials for Windows XP SP3, Administrator and Service entries will be present by default on any new instance of policy. Additionally, the user interface for the Impersonate Client After Authentication user right will not be able to remove these settings.

Microsoft Cryptographic Module

Implements and supports the SHA2 hashing algorithms (SHA256, SHA384, and SHA512) in X.509 certificate validation. This has been added to the crypto module rsaenh.dll.

XP SP2 crypto modules Rsaenh.dll/Dssenh.dll/Fips.sys had been certified according to FIPS 140-1 specifications. The Federal Information Processing Standard (FIPS) 140-1 standard has been replaced by FIPS 140-2, and these modules have been validated and certified according to this standard. For more information, see the Microsoft Kernel Mode Cryptographic Module.

Windows Product Activation

As in Windows Server 2003 SP2 and Windows Vista, users can now complete operating system installation without providing a product key during a full, integrated installation of Windows XP SP3. The operating system will prompt the user for a product key later as part of Genuine Advantage.

As with previous service packs, no product key is requested or required when installing Windows XP SP3 using the update package available through Microsoft Update.

Note   The Windows Product Activation changes in Windows XP SP3 are not related to the Windows Vista Key Management Service (KMS). This update affects only new operating system installations from integrated source media. This update affects the installation media only and is not a change to how activation works in Windows XP.

Click here to download complete overview

Basically the new features isn't particularly noteworthy, and the rest has been available already through Windows Update.

SP3 functions primarily as a collection of past fixes with a few security additions. SP3 is most certainly essential for anyone who hasn't applied SP2, and for those who haven't kept up with the Windows Update downloads, but if you've been on top of things, SP3 won't do much for you.

The most obvious new additions are the latest versions of Microsoft's browser and media player—Media Player 11 and Internet Explorer 7.0—both of which have been downloadable for quite some time. You'll also notice (if you look hard enough) new and clearer descriptions of some settings in the Control Panel Security Options applet, changes designed to help users avoid configuring system security incorrectly. The only other significant user-interface modification lies with the taskbar, which no longer has the Address Bar—a change Microsoft describes as a regulatory request.

Click here to read more from PC Mag

Posted by Technical Bits
Filed under: , ,
Saturday, May 24, 2008 1:16 PM

Windows Live Free 5gb Storage Space

Windows Live SkyDrive

Many would have been familiar with Microsoft Live offerings such as Hotmail, Messenger and etc. Recently, Microsoft have released another much anticipated service, Windows Live SkyDrive!

So what exactly is skydrive? Skydrive offers consumers 5 GB of free online storage, which equates to approximately 30,000 Microsoft Office documents of average size or 30,000 digital photos at a resolution of 1200x1200. However, there is a 50MB limit on each file uploaded.

Initially, SkyDrive was available with a 1 GB storage limit in the United States, United Kingdom and India only. Recently in the release of its final service offering, Microsoft opened up SkyDrive to 35 countries, including Argentina, Australia, Austria, Belgium, Bolivia, Brazil, Canada, Chile, Colombia, Denmark, Dominican Republic, Ecuador, El Salvador, Finland, France, Guatemala, Honduras, Italy, Japan, Korea Mexico, the Netherlands, New Zealand, Nicaragua, Norway, Panama, Paraguay, Peru, Portugal, Puerto Rico, Spain, Sweden, Switzerland, Taiwan and Turkey.

The good news to those in south east asia is "MICROSOFT SKYDRIVE IS NOT AVAILABLE IN SE-ASIA", starting last week, with a 5GB offering! What's more? There's also a SDK accompanied with it.

To register for your free account, simply go to http://skydrive.live.com and click on "Get Started", which would bring you to the following login screen.

After successfully using your Windows Live ID to sign in, you would see the following page. Basically, what SkyDrive allows you to do is to upload and share documents between public, friends and yourself.

You can upload documents that

  • only you can see (Personal Folders)
  • only friends can see (Shared Folders), however your friends would have to have a Windows Live ID
  • everyone can see (Public Folders)

If you're a developer, you might be interested in the SkyDrive Viewer in C# at http://www.codeplex.com/SkyDriveViewer.

 

Posted by Technical Bits
Filed under: , ,
Thursday, May 22, 2008 8:23 PM

Free Magazine Article on Custom Controls, Silverlight and ASP.NET 2.0 Reporting

ASP.NET PRO has just released it's PDF version of it's printed magazine for free for all to download.

March 2008  April 2008 May 2008

Some really cool articles on the following topics for your reads:

  • Ajax Enabled Services
  • WCF Services
  • ExpertPDF HTML to PDF
  • Silverlight
  • On-demand XAML
  • Extention Methods
  • GMP CMS 2.0
  • Server Viewstate
  • Visual Studio 2008 Options
  • RadControls for ASP.NET
Posted by Technical Bits
Filed under: , , ,
Thursday, May 22, 2008 4:03 AM

CBS to buy CNET Networks

CNET Networks (owner of CNET, ZDNet, GameSpot, TV.com, MP3.com, CNET News.com, UrbanBaby, CHOW, Search.com, BNET, MySimon, and TechRepublic)  will be acquired by CBS for at a dealed value of $1.8 b making CBS one of the 10 most popular Internet companies in the United States, with a combined 54 million unique users per month.

CBS Broadcasting Inc. (CBS) is one of the largest radio and television networks in the United States.

The good news is, for those who have been following blogs at TechRepublic (like myself, relying on it as a great resources to keep updated on technology news), these blogs will remain, primarily as follows,

  1. CSI: TechRepublic
  2. Everybody Loves Redhat
  3. The Late Late Late Show with Jason Hiner
  4. The New Adventures Of Old CPUs
  5. How I Met Your Motherboard
  6. 60 Megabytes
  7. The Young And The Wireless
  8. Two And A Half Network Administrators
  9. Survivor: Vista Vs. OS X
  10. Without A Tracert

Read more on the 10 new blogs at http://blogs.techrepublic.com.com/10things/?p=354&tag=nl.e112

Posted by Technical Bits
Filed under:
Monday, May 19, 2008 7:41 AM

How much are you worth?

Was just chancing across this really interesting tool/survey by ZDNetAsia, which helps IT Professionals identify their real worth with data from industry averages.

Are you underpaid/well paid?

Click here to find out!

Posted by Technical Bits
Filed under:
Monday, May 19, 2008 5:09 AM

Security Compliance Management toolkit

 

 

The Security Compliance Management toolkit provides customers with best practices from Microsoft about how to plan, set, get and remediate a security baseline, along with tools that you can use to verify the implementation of recommended security baselines from Microsoft for Windows Vista, Windows XP SP2, and Windows Server 2003 SP2.  The toolkit helps customers quickly and easily provide this compliance information to auditors to demonstrate how their organization is meeting important compliance regulations.

 

The toolkit helps customers manage the compliance process by enabling:

  • Automated security checks in their environment.
  • Verification of security baseline in their environment, and identification of baseline settings changes or “drift” from prescribed values.
  • Implement regulatory compliance through security checks.

 

The current status of this toolkit is Beta, and could be downloaded here.

Posted by Technical Bits
Filed under: ,
Monday, May 19, 2008 4:31 AM

IT Workers Among the Top of Wages Chart in Singapore

I was just randomly reading some statistics on the SingGov-MOM site and stumbled upon this interesting finding...

Information & Communications employees are earning a mean salary of SG$5018 in 2007!

 

ANNUAL AVERAGE (MEAN) MONTHLY NOMINAL EARNINGS PER EMPLOYEE BY INDUSTRY

Industry 2005 2006 2007
SSIC 2005 TOTAL 3 444 3 554 3 773
C15-36 MANUFACTURING  3 495 3 618 3 764
F45 CONSTRUCTION  2 513 2 517 2 646
G-V SERVICES 3 498 3 615 3 862
G50-51 Wholesale & Retail Trade  3 017 3 101 3 262
H52-56 Transport & Storage  3 507 3 525 3 797
J58 Hotels & Restaurants  1 360 1 381 1 442
K60-63 Information & Communications  4 553 4 745 5 018
L65-66 Financial Services  5 949 6 291 6 768
M-O Business Services 3 207 3 314 3 518
M70-71 Real Estate & Leasing Services  2 732 3 053 3 355
N73-76 Professional Services  4 231 4 383 4 633
O78 Administrative & Support Services  2 196 2 238 2 368
P80-V99 Community, Social & Personal Services  3 704 3 831 4 074

 

Posted by Technical Bits
Filed under: , ,
Thursday, May 15, 2008 5:15 AM

HP's aquisition EDS

I guess this news on the possible aquisition of EDS by HP might have came as a surprise to some while expected to some.

Well, as some would have known that the Singapore government had award EDS (and it's consortiums) a billion dollar project to streamline the technology infrastructure in most government organizations, over other vendors like HP and the likes. Is this move of aquisition in anyway impacted by that?

Eric Lundquist from ZD Enterprise has the following analysis of 5 reasons why HP customers should rejoyce or fret.

Rejoyce

1. Customers want one stop responsibility for their purchases. HP with EDS will have a longer stack going all the way from printers, through PCs, through data centers and now all the way to IT services.

2. Customers want to see how a vendor treats its customers. EDS has a lot of big customers, including General Motors, and has learned a lot about measuring and delivering on customer contracts.

3. Customers want a local contact. While HP and EDS use a substantial amount of outsourced services, but they are both still headquartered in the U.S.

4. Customers want to choose from a mix of channel, service providers, hosted services, open software and big one stop direct contracts. HP is the channel's best friend these days and is at the forefront measuring hosted services and now with EDS can be a big one stop shop.

5. Customers want to do business with a company that has a focus on their needs. Buying EDS translates into HP displaying its commitment to the business to business market with serious dollars. This is not a Microsoft/Yahoo foray into consumer markets.

Fret

1. Big acquisitions are awfully tough to get right. Remember HP's nearly disastrous purchase of Compaq? Let's hope they have learned from past mistakes.

2. Big, wide ranging companies have trouble being all things to all people. Carly Fiorina (now replaced by Mark Hurd) got into corporate trouble by trying to build a company spanning consumer to enterprise. Trying to run a company that ranges from printer ink to big corporate service contracts can tax anyone's resources.

3. IBM has services in its genes. IBM has been racing to becoming primarily a services organization for at least ten years. HP has a lot to learn about jugging business application development, channel services and hardware development.

4. Hardware companies and technology service organizations have an inherent conflict. Can Hurd keep EDS from simply becoming an organization that always recommends HP hardware as the solution to every problem?

5. HP is technology and IBM is business. The biggest issue for customers is to engage with a vendor that understands their business and then makes tech recommendations from that understanding. HP has not shown that capability while IBM is all business all the time.

 Read more at http://blogs.eweek.com/lundquist/content/five_customer_reasons_for_and_five_customer_reasons_against_the_hp_purchase_of_eds.html?kc=EWKNLNAV051408STR1

Posted by Technical Bits
Filed under:
Monday, May 12, 2008 5:21 AM

Made-in-China Jumbo Jet


(Source: Channel News Asia)

China has just announced it's own private jumbo-jet company yesterday, set to potentially rival global commercial jet leaders such as Boeing and Airbus. With recent advancement in chinese Aviation industry (space/commercial air/military air), would it have enough "fuel" for this massive embarkment?

As quoted by Xinhua news agency, Commercial Aircraft Corporation of China (CACC), will be responsible for researching, developing, manufacturing and marketing a made-in-China large passenger aircraft, where the chinese goverment with a major stake in the company which has a registered capital of USD 2.7 billion as of May 08.

However, with it's limited experience experience in the larger jet arena, would they resort to hiring chinese expats who are currently working in competitors such as Boeing, Airbus & the likes?

When the chinese company produces it's first plane, would it emerge as a mainstream aircraft for budget airlines with already great pricing pressures from surged fuel prices?

Original article at http://news.xinhuanet.com/english/2008-05/11/content_8147854.htm

Posted by Technical Bits
Filed under: , ,
Saturday, May 10, 2008 10:40 AM

BIOR 2008: Presentations made easy and guidelines to using Keynotes

Download presentations slides here... 

Hello to all! Yes, it's been a really long time since I last blogged about any content. Yes! A WHOPPING 5 months! Apologies to all for this long period of silence. Had been really distracted with other things in life.

Now I officially declare that I'm back to commited active blogging after the long silence (good/bad news?)

The above presentation is one that I'd recently done at the Bali Ophthalmology Retreat 2008, on presentations techniques as well as presentation tools such as the latest Microsoft Powerpoint 2007 and comparisons with it Apple counterpart, Keynotes.

Posted by Technical Bits
Filed under: ,