Ask a Question related to Windows XP/2000/ME, Design and Development.
-
JCH #1
Security fixes - at what cost?
I continue to be amazed at the never ending stream of Windows OS fixes to
remedy newly discovered "vulnerabilities." I often wonder, and I'll put
this out as a question for those who might know, what are the trade-offs for
these fixes? In other words, I'm glad that my XP is becoming more secure
(at least until a few hours later when the next potential vulnerability
surfaces), but how are these fixes affecting the performance of my OS? Am I
losing some feature(s) that I didn't know about? Is the efficiency of the
system suffering because of the endless security patching? I just wonder
what these patches do not in terms of protecting my PC, but in terms of
their effect on system performance and functionality. I don't believe I see
a noticeable difference but then I haven't run a benchmark on pre- and post-
patching. Just curious... Are these patches passsive, only coming into
play when a certain set of circumstances (a hack attempt) arise?
JCH Guest
-
Hot Fixes or Updater?
I am currently running CF 6.1 (with Updater) on a Windows 2003 server. Several times a day JRUN seems to go nuts and runs both CPUs at about 30% for... -
TIF Importing problems - any fixes?
I am currently having problems importing tif files. The strange thing is, they imported just fine when I created the files, but now I get the... -
[PHP-DEV] [PATCH] fixes crash in PHP-4.3.4
--=-rT+krSUJdtlWAY/84C1e Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 8bit Hi, One of my co-workers, Brian Fløe,... -
[PHP-DEV] [PATCH] 64-bit fixes
--------------000300000405020407030901 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit I found some... -
need to install AIX fixes
HI, need help!!! I'm trying to install AIX fixes. when I download AIX fixes from IBM site and try to install them,it gives me error message... -
Walter Clayton #2 Re: Security fixes - at what cost?
Broad question(s) with no fixed or easy answer. Typically security patches
are performance neutral although there was one a couple of months ago that
hammered some systems in some instances. However there is a possibility that
some application you have may be depending on an unpatched flaw, directly or
indirectly, and may stop working when the loop hole is patch. Word on the
street is that appears to have happened with one of Google's task bar add
ons and that rather recently. In fact a lot of the application compatibility
issues with 9x applications on XP revolve around unsafe programming
practices. Now that XP has closed down some of the loopholes in 9x registry
and directory structure handling, these apps are rendered dysfunctional.
Do you actually needed *all* the security patches being available? That's
tricky to answer. Technically no. When a patch is offered you can look to
see what's impacted, why it's being offered and then decide whether or not
you're actually personally affected. The problem is that if your usage
habits change in the future and you start using one of the features with the
exposed vulnerability then you will need to patch up if you haven't already.
Another potential issue may arise if a given patch has any dependency on
another, in which instance you'll be forced into installing the earlier
patch.
--
Walter Clayton - MS MVP(WinXP)
Associate Expert
[url]http://www.microsoft.com/windowsxp/expertzone[/url]
Any technology distinguishable from magic is insufficiently advanced.
[url]http://www.dts-l.org[/url]
[url]http://support.microsoft.com/servicedesks/fileversion/default.asp[/url]
"JCH" <jch@nospam.me> wrote in message
news:73JRa.8070$8h2.813@fe04.atl2.webusenet.com...for> I continue to be amazed at the never ending stream of Windows OS fixes to
> remedy newly discovered "vulnerabilities." I often wonder, and I'll put
> this out as a question for those who might know, what are the trade-offsI> these fixes? In other words, I'm glad that my XP is becoming more secure
> (at least until a few hours later when the next potential vulnerability
> surfaces), but how are these fixes affecting the performance of my OS? Amsee> losing some feature(s) that I didn't know about? Is the efficiency of the
> system suffering because of the endless security patching? I just wonder
> what these patches do not in terms of protecting my PC, but in terms of
> their effect on system performance and functionality. I don't believe Ipost-> a noticeable difference but then I haven't run a benchmark on pre- and> patching. Just curious... Are these patches passsive, only coming into
> play when a certain set of circumstances (a hack attempt) arise?
>
>
>Walter Clayton Guest
-
Michael Solomon \(MS-MVP-Windows Shell/User\) #3 Re: Security fixes - at what cost?
It depends somewhat on the environment you are in and your usage patterns.
If you are a home user, don't do any file sharing by which I mean you don't
use file share networks, stay out of IRC chat, then as long as you have
antivirus software that you keep up to date, a firewall and certainly a
router if you are on a broadband connection, that should be all you need.
Trade offs, probably not much in the way of performance, XP is pretty robust
but there have been issues from time to time where various patches blew out
some other part of the OS and that's always a risk.
These patches are meant to address exploits that are found as hackers
continually test the system and, for the most part, they are going after
servers though if you are on a broadband connection, they do like to try to
hijack your system for their own purposes, mostly to cover their own tracks
when it comes to sending spam or porn so they can't easily be traced.
If you are in an enterprise environment, some multi-desktop client/server
network, then regardless of firewalls and/or any hardware tools, it is plain
stupid not to patch against known exploits which is what these security
patches are designed to protect against. Any SysOp that doesn't install any
and all such patches when exploits become known and fixes available should
be fired. And that's certainly true of setups that are Internet servers or
act as such and all webmasters and SysOps who handle web sites and web
servers.
--
Michael Solomon MS-MVP
Windows Shell/User
Backup is a PC User's Best Friend
"JCH" <jch@nospam.me> wrote in message
news:73JRa.8070$8h2.813@fe04.atl2.webusenet.com...for> I continue to be amazed at the never ending stream of Windows OS fixes to
> remedy newly discovered "vulnerabilities." I often wonder, and I'll put
> this out as a question for those who might know, what are the trade-offsI> these fixes? In other words, I'm glad that my XP is becoming more secure
> (at least until a few hours later when the next potential vulnerability
> surfaces), but how are these fixes affecting the performance of my OS? Amsee> losing some feature(s) that I didn't know about? Is the efficiency of the
> system suffering because of the endless security patching? I just wonder
> what these patches do not in terms of protecting my PC, but in terms of
> their effect on system performance and functionality. I don't believe Ipost-> a noticeable difference but then I haven't run a benchmark on pre- and> patching. Just curious... Are these patches passsive, only coming into
> play when a certain set of circumstances (a hack attempt) arise?
>
>
>
Michael Solomon \(MS-MVP-Windows Shell/User\) Guest
-
Ken Blake #4 Re: Security fixes - at what cost?
In 73JRa.8070$8h2.813@fe04.atl2.webusenet.com, JCH wrote:
OS> I continue to be amazed at the never ending stream of Windowswonder,> fixes to remedy newly discovered "vulnerabilities." I oftenwhat> and I'll put this out as a question for those who might know,that my> are the trade-offs for these fixes? In other words, I'm gladwhen the> XP is becoming more secure (at least until a few hours later> next potential vulnerability surfaces), but how are these fixes
> affecting the performance of my OS?
There's never any guarantee, of course, but by and large there's
no effect on performance (or an effect small enough that it's nor
noticeable).
There are exceptions, of course. There was a so-called critical
update a few months ago that dramatically hurt performance on
many people's machines. It was withdrawn, and a replacement
issued later.
So my view is that there's normally nothing to worry about here.
It's more important to close security loopholes than to worry
about a possible rare occurrence of a performance problem.
--
Ken Blake
Please reply to the newsgroup
Ken Blake Guest
-
Joan Archer #5 Re: Security fixes - at what cost?
When I receive notice of any patches I always read everything about it
before deciding if it applies to my system or not. There have been several
that really apply to servers or net-worked machines and mine is a stand
alone machine with dial-up connection, a firewall, antivirus protection,
spyware program and I never open anything without checking it first, I don't
download all updates just ones I think apply to me <g>
Joan
"Walter Clayton" <w-claytonNO@SPmvpsAM.org> wrote in message
news:OIfNhmNTDHA.1992@TK2MSFTNGP12.phx.gbl...the>
> Do you actually needed *all* the security patches being available? That's
> tricky to answer. Technically no. When a patch is offered you can look to
> see what's impacted, why it's being offered and then decide whether or not
> you're actually personally affected. The problem is that if your usage
> habits change in the future and you start using one of the features withalready.> exposed vulnerability then you will need to patch up if you haven't> Another potential issue may arise if a given patch has any dependency on
> another, in which instance you'll be forced into installing the earlier
> patch.
>
>
> --
> Walter Clayton - MS MVP(WinXP)
> Associate Expert
Joan Archer Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
