How Vista file copy has improved with sp1

February 19, 2008 — Adam Vero

Mark Russinovich is very well known within the technical community as an authority on detailed information on the inner workings of Microsoft products. Author of several books including the Windows resource kit “Windows Internals” volume, and founder of Winternals and sysinternals.com, he is now a Technical Fellow in the Platform and Services Division at Microsoft.

In a recent blog post, Mark explains in great detail the file copy process in Vista, why it changed radically from XP and how this impacted real and perceived performance of this basic function. He goes on to explain how some of this has been changed and remedied in Vista Service Pack 1. He makes it clear that some of the code design choices have to be compromises between making things faster in different situations, and that in most cases Vista <> Server 2008 filecopying will be faster using the chosen algorithms than they would be with different choices, or using XP or server 2003 for example.

Copying a file seems like a relatively straightforward operation: open the source file, create the destination, and then read from the source and write to the destination. In reality, however, the performance of copying files is measured along the dimensions of accurate progress indication, CPU usage, memory usage, and throughput. In general, optimizing one area causes degradation in others. Further, there is semantic information not available to copy engines that could help them make better tradeoffs. For example, if they knew that you weren’t planning on accessing the target of the copy operation they could avoid caching the file’s data in memory, but if it knew that the file was going to be immediately consumed by another application, or in the case of a file server, client systems sharing the files, it would aggressively cache the data on the destination system.

The article is also a useful working example of how Process Monitor can help you to see what your machine is really up to. On the same subject, Mark gave a great Tech Ed presentation in Barcelona with some real-world demonstrations of how to use a variety of Sysinternals tools and utilities to detect, find and fix all sorts of system issues. A video of that talk entitled “The Case of the Unexplained…Live!” can be viewed here (it’s just over an hour long).

Posted in Patching + hotfixes, Utilities + Tools, Windows Vista. Tags: , , , . Leave a Comment »

Internet Explorer 7 automatic installation via WSUS today

February 12, 2008 — Adam Vero

You may find that your XP and Server 2003 machines running Internet Explorer 6 are upgraded to version 7 today if you have a certain set of things in place:

  • You use WSUS to manage updates in your organization.
  • You have Windows XP Service Pack 2 (SP2)-based computers or Windows Server 2003 Service Pack 1 (SP1)-based computers that have Internet Explorer 6 installed.
  • You have configured WSUS to auto-approve Update Rollups for installation (this is not the default configuration)

If for some reason you do not want to install Internet Explorer 7 (such as it causes problems with an intranet or extranet application) then you need to take some remedial action to prevent this installation from taking place. Read on to find out how to check if this will happen and stop it if this is not what you want.

Read the rest of this entry »

Posted in Patching + hotfixes. Tags: , . Leave a Comment »

Vista Service Pack 1 gets the green light

February 5, 2008 — Adam Vero

Vista’s much-awaited service pack 1 has had the go-ahead and is “released to manufacturing” (RTM). This means they can start pressing CD’s and get things moving through distribution channels, OEM and retail so people will soon be able to buy the product with sp1 built in (“slipstreamed”).

Read more about the release of Service Pack 1 for Vista here. The short version is that it won’t be available to actually download until mid-March

One of the benefits likely to get most press will be the changes to how Microsoft enforce their licencing through the “Windows Genuine Advantage” (WGA) programme which requires the software to be activated in order to continue using the full functionality. This has been held back from all the beta versions and will only take effect in the final released version. Paul Thurrott discusses this at his SuperSite for Windows:

First, Microsoft is disabling the two most common exploits that exist today for bypassing product activation in Vista … Pirate Windows users utilizing one of these hacks will see their systems return to the intended state–typically a grace period countdown–once SP1 is installed.

The second change is more dramatic. … If the product activation period expires, for example, Vista moves into Reduced Functionality Mode (RFM), where the user can only access the IE Web browser for 60 minutes at a time before being logged out; … Non-Genuine State (NGS), occurs when an activated copy of Vista fails a Web-based validation check, such as when you attempt to download software from the Microsoft Web site. In this case, certain features–like Windows Aero and ReadyBoost–are completely disabled, while others–like Windows Update and Windows Defender–work in limited ways only.

Beginning with SP1, RFM and NGS are a thing of the past.

Improvements to the software itself generally focus on performance and stability, but it does also improve on driver support and providing better APIs for third-party products such as anti-virus and desktop search (partly due to complaints that vendors were being “locked out” and could not develop products on an equal footing with Microsoft themselves).

One area which should be much better is the slow copying of files (even within a disk) which has plagued some systems. I will run some test copies of sets of large and small files and once I have the service pack installed I’ll post some results on how much performance gain I get.

Posted in Patching + hotfixes, Windows Vista. Tags: , , , . 2 Comments »

Windows XP service pack 3 Release Candidate available

January 24, 2008 — Adam Vero

The release candidate (RC) of Service Pack 3 (sp3) for Windows XP is now available for download – well it has been for a few weeks in fact. This should represent a pretty close similarity to the final “RTM” version, but do remember this is still strictly speaking a beta version so some third-party applications may not work 100%. Don’t install on a critical machine, and ideally not even an important one unless you are sure you are confident enough to roll it back if necessary. If your line of business application won’t work, or your firewall locks up your machine you may wish you hadn’t installed it after all.

So, what’s the point of this service pack?

Read the rest of this entry »

Posted in Patching + hotfixes. Tags: , , . Leave a Comment »

Hardening Windows Systems – Roberta Bragg

January 16, 2008 — Adam Vero

Author: Roberta Bragg. CISSP, MCSE: Security, Security+Publisher: McGraw Hill / Osborne

Suggested Publisher Price: $39.99 US / $57.95 CDN / £24.99 UK

ISBN: 0-07-225354-1 Softcover, 504 pages

Hardening Windows Systems book cover

Bulletproof your systems before you are hacked!

Take a proactive approach to network security by hardening your Windows systems against attacks before they occur. Written by security evangelist Roberta Bragg, this hands-on resource provides concrete steps you can take immediately as well as ongoing actions to ensure long-term security. Whether you have one Windows server or one hundred, you’ll get complete details on how to systematically harden your network from the ground up, as well as strategies for getting company-wide support for your security plan. With coverage of Windows 95/98/NT 4.0/2000/XP and Windows Server 2003, this book is an essential security tool for on-the-job IT professionals.

Read the rest of this entry »

Posted in Patching + hotfixes, Reviews, Security and Malware. Tags: , , , . Leave a Comment »

Excel 2007 calculation bug fix released after two weeks

October 10, 2007 — Adam Vero

A fix for the Excel 2007 calculation bug affecting results around 65535 and 65536 has been released in the last few hours. The Excel team blog post says:

As of today, fixes for this issue in Excel 2007 and Excel Services 2007 are available for download…We are in the process of adding this fix to Microsoft Update so that it will get automatically pushed to users running Excel 2007 or Excel Services 2007.  Additionally, the fix will also be contained in the first service pack of Office 2007 when it is released (the release date for SP1 of Office 2007 has not been finalized).

Microsoft knowledgebase article KB943075 discusses the fix and gives the usual details for what versions and sizes the updated files should have after the fix. The version number of Excel.exe is altered from 12.0.6024.5000 to 12.0.6042.5000. Now read that again – yes, easy to miss the difference from ‘24′ to ‘42′ if you look too quickly. (NB: you may have a different version, mine is at 12.0.6024 after installing the security update as per KB936509, as far as I can tell.)

The download for the fix for Excel 2007 (33Mb exe file) is linked from the Excel team blog as well as from the KB article. The blog post also has links for Excel Services 2007, both 32 bit and 64 bit.

Posted in Office System, Patching + hotfixes. Tags: , , , , . 6 Comments »

More bad news for Vista Service pack 1

August 31, 2007 — Adam Vero

Apart from the long wait for a service pack for Vista (over a year from initial release) and the hugely bloated size of the “stand-alone” option to apply the service pack to machines without connecting them to the internet, I just learned some bad news.

David Overton posted an article about what’s coming in the first service pack for Vista. In it he links to and quotes this BetaNews article which says:

the service pack will uninstall the Group Policy Management Console (GPMC) and GPEdit.msc will edit local Group Policy by default

Read the rest of this entry »

Posted in Group Policy, Patching + hotfixes, Windows Vista. Tags: , , , . 4 Comments »

Patching XP and Vista with Service Packs and Hotfix "rollups"

August 31, 2007 — Adam Vero

In the last few days a couple of contradictory things seem to have happened:

  • Everyone and his dog seems to have blogged about the release dates for Vista service pack 1 and separately XP service pack 3 -both in 2008
  • Microsoft seem to have requested that the popular patching utility “AutoPatcher” be taken down and no longer distributed.

Ironically, I started reading an excellent post on Scott Hanselman’s Computer Zen blog about his favourite Windows tools and utilities for developers and power users, updated for 2007. He posted this on 23rd August. I started to follow and download several of the applications he linked, in some cases to do something new, in others to see how they stacked up against tools I already used. I was still downloading today, when I found that one of his links, to AutoPatcher, showed me this page

Read the rest of this entry »

Posted in Patching + hotfixes, Utilities + Tools. 1 Comment »

9 patches from MS for August Patch Tuesday

August 10, 2007 — Adam Vero

This is the August Advance Notification bulletin about the Microsoft patches which are due on the next patch Tuesday on 14th August 2007.

On the security updates list there are 6 critical updates and 3 important ones. One of the updates is for Office, and is deemed critical for Office 2000 but only important for Office 2003 (and interestingly also Excel viewer 2003).

What’s really odd is this bit:

Non-Security, High-Priority Updates on MU, WU, WSUS and SUS

For this month:

  • Microsoft is planning to release four non-security, high-priority updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).
  • Microsoft is planning to release two non-security, high-priority updates for Windows on Windows Update (WU) and Software Update Services (SUS).

Yes, that’s right, despite saying that SUS was now definitely end of life as of 10th July it looks like they are still releasing patches for it to use. Even back in January they were releasing some patches through MU and WSUS only (not WU and SUS). Maybe they found too many people were simply not getting patched properly.

Posted in Patching + hotfixes. Leave a Comment »

Vista updates available for performance and compatibility

August 9, 2007 — Adam Vero

There are a couple of updates which have been released for Vista which are outside the WSUS infrastructure (or rather they don’t seem to show up as updates at the moment). KB938194 is a compatibility and reliability update and KB938979 is supposed to improve performance and reliability. Essentially the first one fixes a variety of seemingly unrelated things to do with stability and things which fail or stop completely, while the second is more about things which just take a lot longer than they should. There are 64 bit versions available as well here and here.

Posted in Patching + hotfixes, Windows Vista. Leave a Comment »

Whitelisting applications versus Anti-virus

June 28, 2007 — Adam Vero

There was an interesting article in The Register yesterday called “the decline of antivirus and the rise of whitelisting“. It discussed the relative merits of using a whitelist to allow only known good programs to run, versus using traditional anti-virus (AV) to let everything run except things you know are bad. The comments to this article also raised a number of valid points, some academic and some based on real-world experience.

The obvious flaw in the traditional AV approach is the difficulty in keeping up with new malicious software rapidly enough to avoid infection. Whitelisting gives you a little more control but still takes substantial effort in a large environment, and is harder to delegate out to a third party without leaving so many loopholes as to render it pointless.

Read the rest of this entry »

Posted in Patching + hotfixes, Security and Malware. Tags: , , , , , , . 6 Comments »

Windows Vista more secure after six months than XP

June 21, 2007 — Adam Vero

Some readers may have seen the report which was published by Jeff Jones three months after Vista was finally released in which he showed that the number and severity of flaws in Vista were far less of a risk than XP after an equivalent period.

He has now updated this report to show the vulnerabilities in Vista after 180 days. What is key is not only the distinctly fewer known vulnerabilities overall, but the number of disclosed holes that remain unpatched at the time of writing.

Note that the blog entry is only a summary and the only graph you get to see relates to high severity vulnerabilities. Also, it only looks at those which affect the core systems, not optional components. So, Vista looks like it is doing better than XP at this point with almost no unpatched holes, and many people will go away with that impression because visuals work well in getting messages into the brain.

The full 14 page report (pdf) is also available, in which the discussion is much more detailed (even patch by patch). It is here that it becomes clearer that while it is faring better than XP did, to me it is not doing so much better given how much hype there has been about trustworthy computing and Vista (and Longhorn / 2008) being secure by design, rewritten from the ground up to be more secure, yadayada more secure.

Posted in Patching + hotfixes, Security and Malware, Windows Vista. 1 Comment »

Older software is less secure, so always use the brand new version

June 14, 2007 — Adam Vero

Myth: “Older software is less secure than the newest release, so always upgrade to the brand new version as soon as possible”

The most obvious reason this cannot always be true, is that you will hear the opposite said just as often and with as much conviction!

So where does the truth lie between these two opposing extremes? Quite apart from the cost to your business in terms of buying software and disrupting operations, retraining users and so on, you have no way of knowing that a newer product is necessarily more stable than its predecessor.

Read the rest of this entry »

Posted in IT myths debunked, Patching + hotfixes. Leave a Comment »

Windows updates for June

June 8, 2007 — Adam Vero

The advanced notification has been published for the updates which will be released on Patch Tuesday, the 12th June.

Patch Tuesday 12th June 2007 advance notification page

4 out of the 6 are critical for at least one affected system. 2 of these are critical patches for just about all operating systems. One is critical for various versions of Internet Explorer (including IE7 on Vista); the last is critical for Windows Mail (the Vista replacement for Outlook Express).

The remaining two include a moderate fix for Vista and an important fix for Visio. These would not be installed automatically with default Windows Update settings but would need the user to choose them. Of course, in a business environment the best way to roll these out is to use WSUS version 3 which is now available.

On the subject of June patches, there are some updates for SBS 2003 servers as well. These are designed to get Vista to integrate into your SBS environment as smoothly as XP does – using /connectcomputer to join the domain for example. Of course you can run Vista in an SBS 2003 environment without this, but you lose some of the rich management features by doing so.

Read the MS SBS Blog post about these updates for Vista.

Thanks to Susan Bradley, the SBS Diva for her great blog where I first spotted this (and David Overton’s follow up about half an hour after Susan!)

Posted in Patching + hotfixes, Windows Vista. Leave a Comment »

Fix Exchange 2003 to make sure OWA works for IE on Vista

April 10, 2007 — Adam Vero

Because of the way IE is implemented on Vista, you will find that the rich functionality of Outlook Web Access (OWA) no longer works as you are used to under XP.

As described in KB 911829 you may not be able to compose new or reply emails, create contacts or appointments, and other activities which are pretty essential. You can read your email, but you can do nothing else with them!

Read the rest of this entry »

Posted in Exchange, Patching + hotfixes, Windows Vista. Tags: , , , , . 2 Comments »

How Opera’s Desktop Team deal with security vulnerabilities

January 11, 2007 — Adam Vero

In an article entitled “Handling Security”, Claudio Santambrogio of the Opera Desktop Team discusses how they handle vulnerability reports, disclosure, patching and upgrades.

Recently, some of our users have asked why we chose to disclose a potential security issue only after the release of Opera 9.10. Let me try to give a short overview on how security issues get reported and disclosed – and not only at Opera, but in most applications: it might help some people to understand how this works.

Posted in Patching + hotfixes, Security and Malware. Leave a Comment »

January MS update highlights

January 9, 2007 — Adam Vero

Security updates from Microsoft from January include four for Office and one for Windows. The Windows update has a version for Vista listed, for all you folk who are already running this in live or test environments. The Windows security update is here:

KB929969

And the four for Office are: 924085 925525 921585 925257

There are the usual updates for junk mail filtering and the Malicious Software Removal Toolkit as well.

Posted in Patching + hotfixes. Leave a Comment »

January patch Tuesday slimmed down

January 8, 2007 — Adam Vero

Microsoft have announced that there will be only four updates delivered on “Patch Tuesday” this month, rather than the eight which some people were anticipating. These four security updates comprise one for Windows and three for Office – it seems likely these will all be classed as critical. It is not clear whether these will be delivered via Windows Update (as well as Microsoft Update) and SUS (in addition to WSUS). The two High Priority non-security updates for Windows will only be made available through MU and WSUS.

There will also be the usual update to the Malicious Software Removal Tool which can be directly retrieved from the download centre or via WU, MU or WSUS. All of these should be available from around 6pm GMT on Tuesday 9th January

See also: SUS is end of life, upgrade to WSUS

Read the full Microsoft Security Bulletin advance notification.

Posted in Patching + hotfixes. Leave a Comment »

SUS is end of life, upgrade to WSUS

January 1, 2007 — Adam Vero

Support for SUS v.1.0 ended on 6th December 2006

After this date it is no longer be supported, but more importantly it will no longer be able to download or distribute any new updates.

So, if you are still running “old” SUS you need to make the move to WSUS as soon as possible. While there is no ‘upgrade’ as such, you can migrate all your approvals and updates across. Read the rest of this entry »

Posted in Patching + hotfixes, Utilities + Tools. 2 Comments »