Service Pack 1 for Windows Server 2003

mithridate writes "Microsoft has posted the Windows 2003 Service Pack 1 Release Candidate. eWeek has a short review of the service pack. My favorite quote from the article is, 'The company argues that the improvements are important enough that applications should be changed to accommodate them.' I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers..."

Win2k & Server 2k3

[mr.henry]

I am no MS fanboy -- and I will be the first to admit that Windows 95, 98, ME, and XP are unstable and crappy -- but Windows 2000 and Windows 2003 Server are both solid operating systems.

Re:Win2k & Server 2k3

[NotoriousQ]

I would not call XP unstable, but it is now suffering from what linux users have suffered for too long: bad hardware / drivers.

If I put cheap memory into the machine - I should expect it to crash. If I run bad drivers - I should expect it to crash.

I do not believe that 2000 is that much more stable than XP. 2003 I do not know, but I guess all of these have the same level of stability, however XP goes on to more computers made out of crap, and therefore it craps out more.

Windows9x was crappy because it did not implement correct separation of processes from each other and from the kernel.

Re:Win2k & Server 2k3

[ad0gg]

Bad drivers are cause of lot of problems. I know with the old version of the ATI drivers would blue screen my win2k workstation box on a weekly basis. Called up ATI and they told me they didnt' support win2k workstation, ended up buying an nvidia card and my problem was solved. I won't even talk about XP and my soundblaster card, i don't know how much hair i tore out of my head dealing with that crap.

Now with our server, I still haven't seen a blue screen almost two years now. Of course they are all Del

Re:Win2k & Server 2k3

[Ianoo]

Although I don't run Windows as my desktop operating system, I've seen machines at work with XP go for weeks without restarting or bluescreening. I don't think XP is more or less stable than 2K, they're about the same. After all, the kernel is practically identical.

Re:Win2k & Server 2k3

[Malc]

Don't try to use a SoundBlaster Live on a dual CPU machine with Win2K - mine's been crashing regularly for years (BSOD) whenever I try to play music. I can only listen to CDs, not WAV, MP3, etc. Then there's the issue the machine has with hibernate: 50% of the time it comes back up and locks up immediately with a black screen. WinXP on my laptop has proven to be far more stable. I hibernate it several times a day and go weeks between real reboots. I've only seen in BSOD once - after installing pcAnywhe

Re:Win2k & Server 2k3

[dankney]

I don't think it's a driver problem here -- I ran a dual-PIII machine for a couple of years under Win2k with a Soundblaster Live! and had no problems with audio.

There are a lot of variables here as far as drivers and configuration are concerned, but if I had to guess, it would be a hardware issue.

This is one of my big issues with Windows -- it's heinously complex when it comes time to troubleshoot. /etc/ is far more elegant (and easier to decipher) than the registry.

Re:Win2k & Server 2k3

[freakmn]

I haven't seen actual statistics on XP, but I'd say it's at least as stable as W2k with SP6.

Perhaps that has something to do with the fact that Windows 2000 only has service pack 4. This "Service Pack 6" may be some ill-meaning program, sounding like it is helpful, like an internet speeder or something.

I know you just mistyped, and I'm being a real jerk. I understand why that mistake may be made. First, NT, which 2000 is upgraded from, is on version 6a. Internet Explorer, the default browser on

Re:Win2k & Server 2k3

[Shippy]

No. Windows 3.1 was a GUI on top of DOS. The real reason why you saw so many crashes and blue screens on the Win9x line is what the grandparent post said. This is why there were "familiar" places the OS would crash. It's because another app or driver would consistently write to that location and, since the separation wasn't there, blue screen the box.

Re:Win2k & Server 2k3

[flosofl]

All the consumer-level (read: home user) products up to XP were DOS based. In other words, DOS was the framework and the GUI's were slapped on top(95 beta actually used 7.0 as a version on boot disks made with it). This includes 3.x, 95, 98, and (shudder) ME. XP Home is the first consumer-level OS from Microsoft that is NOT based on DOS - it uses the NT kernel. IIRC, MS made a BIG deal about the fact that XP home was the first non DOS-based OS for home users they've released (a goal for a LONG time).

Re:Win2k & Server 2k3

[MyHair]

By that logic Linux as loaded by loadlin.exe could be considered DOS based. From Win95 up I don't believe any system calls made it back to the DOS boot system (save perhaps DOS TSR programs/drivers if loaded?), but it was in memory lying dormant somewhere.

Maybe I'm being pedantic. Even if what I say is all true the Win9x line was a hybrid of 32-bit and 16-bit and switched from protected mode to real mode and back as it saw fit. (thunk compiling)

Re:Win2k & Server 2k3

[drsmithy]

No, it was much simpler than that. Windows 95,98,ME sucked because they were all just GUIs on top of DOS.

Ah, it was a touch more than that. Windows 9x took over memory management, I/O, CPU scheduling, etc. It was *far* more than "just a GUI on top of DOS".

Re:Win2k & Server 2k3

[fireman sam]

Windows 3.1 (extended mode) took over memory management as well as DOS was real mode and Windows (ext) was Protected Mode.

Re:Win2k & Server 2k3

[XopherMV]

Win2003 was forked from the WinXP code base. They are basically the same OS with some minor tweakages. WinXP is made for single users who usually run just a few programs at a time. Win2003 is a server OS, made for running tons of programs all at once.

That's why you often don't see drivers for Win2003. Companies mostly just write one driver for both WinXP and Win2003. That saves them time and money.

To say WinXP or Win2003 is better than the other is kind of ridiculous since they're about the sam

Looks like they are starting to understand?

[Anonymous Coward]

...Security. Oh god, that -1 for me!

damned if you do...

[SoupGuru]

... and damned if you don't.

Flame Microsoft

[Anonymous Coward]

You guys flame them for not caring about security, then they take an proactive stance on security which causes a few inconviences and then you bitch about that.

Catch-22

[rackhamh]

So a bunch of people wrote applications that take advantage of lax security in Windows server environments.

Now Microsoft is saying they won't be so lax anymore, so the applications need to change.

Microsoft is basically damned-if-they-do, damned-if-they-don't. If they don't patch the flaws, they're bad for providing an unsecured environment. If they do patch the flaws, they're bad for breaking existing applications.

I for one fail to see how this is a bad thing... OSes evolve, and applications have to keep up. That's why manufacturers provide separate drivers and software versions for different OS versions, isn't it?

Re:Catch-22

[Spad]

Take a look at the list on the MS website of apps that are broken by SP2.

Microsoft have more applications on there than any other single vendor.

Re:Catch-22

[rackhamh]

Well, duh. Can you name a vendor that produces more individual software packages for the Microsoft platform than Microsoft itself?

Re:Catch-22

[damiam]

Right, but you'd think they could fix their own software to work with their own OS.

Re:Catch-22

[Matje]

Take a look at the list on the MS website of apps that are broken by SP2.

Microsoft have more applications on there than any other single vendor.

do you think this might be because no one else bothered to have their app tested by microsoft?

Re:Catch-22

[obeythefist]

Ugh, if you actually read the background material, you would notice that SP2 doesn't break anything. It's a list of apps that don't work when you run an unconfigured firewall, for the most part.

Why on earth is it Microsoft's fault that they're telling their users which applications may be affected because in SP2 they're activating a firewall in an attempt to remedy some of the poor security practices they've used in the past?

I think some recognition for a company moving in the right direction wouldn't go astray every now and then, instead of jumping down MS's throat every time they make a move.

Re:Catch-22

[obeythefist]

I don't believe I mentioned BSD or Linux or Jaguar or any other OS or company apart from Microsoft.

I'm not sure what you mean however with regards to "fixing and breaking things more often". Microsoft patches are quite strenuously tested, so they are very slow to arrive (not more often, less often) Very few if any MS patches break third party software. Compare this to the complexity of handling Linux dependencies. I am sure if you upgrade some components of Linux and replace dependencies, you might find a lot of things suddenly stop working. Microsoft isn't really responsible for making third party software work on their OS... are you holding MS accountable for the work of Adobe? Or for the work of nameless shareware developers? Is it not their responsibility to fix the software if they write applications that work outside of Microsoft's preferred APIs?

My experience with Linux dependencies on a couple of different distros have been nothing like your example. Many different applications just don't work on Linux without downloading and installing very specific packages to handle dependencies... so much so that people need to write software purely to handle dependencies. For some reason.. when I install software on a windows box, I double-click an exe file and it works. I don't even need to see the word "dependency". I'm not trying to say one method is better than the other. But what I am saying is that Microsoft have decided to take this path and as a result they have to be very precise with the fixes and patches they apply to their OS.

The unified patching for debian and redhat really makes it easy on the user when you can run a single command to update EVERYTHING in your system.

Shame that isn't available on every Linux distro. With every current version of Windows, I can go to a website called "Windowsupdate.com" and click a single button to update EVERYTHING in my system. And you know what? I don't have to go looking anywhere but microsoft.com for fixes for Windows.

Windows XP SP2 hasn't broken any drivers that I know of, unless they are drivers that for some reason need a hole in the firewall and I suddenly forget how to configure a firewall. Of course I can simply uninstall the service pack if that does ever happen (it doesn't, RTFA please).

So basicly the windows way is bad and painful to use. and the linux was is nice and easy for once

You haven't demonstrated this. Please explain with consise examples of what you mean. Providing a questionable statement without decent supporting arguments is hardly compelling, although on Slashdot people will believe you because "Linux good, Windows baaaaaad".

Microsoft have made the best business decision possible in terms of advancing the security of their platform at the minor cost of a few applications that (again, RTFA because you don't seem to have noticed this) don't work when a firewall blocks them. This is applicable to Linux. Firefox on Linux is *broken* when you install a firewall and block port 80. By your arguments, Linux is therefore "fucked if they do and fucked if they don't" because if you install a firewall the "API is so hacked together to keep everything working" and this somehow has something to do with applying a default-on firewall to the OS. Linux users are purportedly more open minded and understanding of basic OS principles. Why am I constantly meeting Linux advocates who are so more closed minded than the average AOL toting Windows user?

People are bitching at microsoft for no real reason in this case. An unconfigured firewall breaks a few applications that need ports opened, and for some reason, as my parent post said, Linux advocates believe this is a flaw in Windows XP and put the blame squarely on Microsoft.

Explain yourself clearly, concisely, or put your PC back in the box and send it to your OEM. Computer license revoked by the Darwin Internet Preservation Act.

Re:Noth Catch-22 but CASH-22

[Feyr]

i still have a customer with windows 3.1 on a 386 and 14.4k modem... he's happy with it, why change?

Re:Catch-22

[Monkelectric]

Microsoft is basically damned-if-they-do, damned-if-they-don't

No, theyre damned because they didn't do it right in the first place.

Re:Catch-22

[sconeu]

That's not what he's pointing out. He's pointing out that MS's apps the among the ones that apparently rely on lax security in XP, because SP2 broke them. Not that MS is the only one with security problems.

Nice troll, though.

Re:Catch-22

[Monkelectric]

I dont know why you made that reply seeing as I didnt comment about linux at al -- but since you've provided the bait... I dont see linux patching structural vulnerabilities that often.

Re:Catch-22

[erhudy]

It's not a bad thing at all, and I just observed the exact same thing privately. Microsoft is finally doing what they should be doing, yet all the Linux zealots here and elsewhere still see fit to excoriate them. Blame Microsoft for having prioritized features over security for far too long, fine. Don't blame them for trying to fix it.

Running Win Server 2k3 as a Workstation

[mr.henry]

Love Windows 2000 and don't want to bother with XP? You can always run Windows Server 2003 as a workstation with this guide. [msfn.org]

Re:Running Win Server 2k3 as a Workstation

[Shippy]

What's the point if on the second page, you tell them to make an administrator user? Win2k3 has amazing security enhancements and that step effectively drops them on the floor.

Re:Running Win Server 2k3 as a Workstation

[Foolhardy]

Er, you know that XP is closer to 2003 than 2000 is. Server 2003 is based on XP; they took the XP code base, re-added the 2000 server stuff and made some updates.
2000 is NT 5.0
XP is NT 5.1
2003 is NT 5.2

Re:Running Win Server 2k3 as a Workstation

[Blakey Rat]

There's this wide belief that Windows 2000 is better than Windows XP because it's more simple... i.e. less background services, less eye candy, runs faster.

The fact is that XP, once configured close to Windows 2000's defaults, is actually quite a bit faster than Windows 2000, uses the same amount of memory, and still has all the features built-into XP. (Like Remote Desktop, System Restore, more advanced IE.)

In my opinion, there is absolutely no reason to still be using Windows 2000 with Windows XP available. Grab XP, spend an hour customizing it, and you can make it basically a clone of 2000 but with more features.

Silly question

[mav[LAG]]

Can you disable the "phone home" feature?

Re:HOOLD THE PRESSES!

[Foolhardy]

Never heard of slipstreaming [microsoft.com], eh? Install the patches before you install the OS.

You can also export registry hives and user profiles so you don't have to input those customizations manually for every install.

Re:Running Win Server 2k3 as a Workstation

[nordicfrost]

Talk about crazy... My GF's best friend has a PC running Windows Server 2003, as her home computer. Her main applications are... ...MSN Messenger and Internet Explorer. Mind you, this was when WS2k3 was still in beta.

All this is running quite unhappily on a Pentium II, 266 with 64 MBs of RAM. When I saw this snail / turtle-like behemoth of a computer I was baffled that it ran a 2003 install with absolutely everything installed and turned on! Except for anything resembling a firewall.

I asked her where she

Re:Running Win Server 2k3 as a Workstation

[Shippy]

It turns out, her brother's GF is a market droid at Microsoft here. She had given a computer that was in private use by some developer or something and meant that (actual quote): "2003 is just so much better, just look: it's three years more advanced."

So, a marketing droid said a marketing sentence. Whoa, big news! Admittedly, it wasn't the best thing to say in order to sell the OS on someone, but neither was the hacked up machine running it. It's hard to validate the "seller of the year award or some cra

Re:Running Win Server 2k3 as a Workstation

[nordicfrost]

Well, she must have been seen as an asset, as she apparently was offered a 25% raise over two years time for not leaving MS sales. She now has a job for a local company in another own, her home town. They moved after not enjoying the capital too much. But she apparently misses MS and they want her back, says the GF's friend (talked to her on MSN...)

Also, it seems that the MS sales persons are truly out of it some chatting with others in the development business now revealed another story about a lame MS attempt to sell in solutions. They were offered lunch to hear out the offer from the sales person. They listened politely to the sales chat and then confronted the guy with such questions as mean uptime, compability with older equipment etc. He couldn't answer it, and was finally asked: Why should we replace the Linux domain servers, firewall and file servers with your products? The reply was "Well, the TCO of Windows Server is lower" at which point F burst out in laughter at the restaurant. He replied "You want us to pay XXX money for replacing the software, which by the way requires XXX in hardware upgrades. All this to replace free software legacy systems that had 0 downtime over two years?" at that point they said 'thanks for the lunch, you're paying.' and left.

The sales droid got a bit upset and tried to mention something about Linux being more expensive to maintain, and he replied that they could easily afford the two days of onsite tech for maintanence a year and how many times a year would they require someone to look at the Windows systems?

Re:Running Win Server 2k3 as a Workstation

[Malc]

Unless you're on old hardware. I found severe problems with the optical drives on my system. Even with a recent DVD+/-RW drive, accessing DVDs quickly resulted in IDE bus errors and loss of access to the drive and anything else on the bus, and often even a complete lock up of the OS. This is on a five year old dual P3-850 with 440BX(GX?) chipset.

Mind you, the cost of Windows Server 2003 is enough of a reason not to use it on the desktop. Not everybody has a Universal MSDN subscription to make it worthw

Paid for that copy of WS2003, did you?

[holden caufield]

I can't see any reason to spend several thousand dollars to make an OS run like one available for $200 or less.

Be sure to complain how much the built-in firewall sucks when you didn't spend the extra $40 on a hardware solution.

Re:Running Win Server 2k3 as a Workstation

[ForestGrump]

2k3 server will be like w2k, but is locked down by default- giving you a more secure install than a straight w2k.

Not that I would know anything though, I run XP Pro at work (with sp1 b/c sp2 breaks excel) and xp home with sp2 at home.

Grump.

Re:Running Win Server 2k3 as a Workstation

[Blakey Rat]

Service Pack 2 breaks Excel? Do you know how much of a looney saying something like that makes you sound? Don't you think that the Microsoft Office applications would be the FIRST thing they check for compatibility when putting out a service pack?

Re:Running Win Server 2k3 as a Workstation

[ForestGrump]

i dunno, its what i heard through the corporate grapevine. don't install xp2. so i haven't done so yet. Do I want to try sp2 and find out what chaos it actually causes? no.

Re:

[account_deleted]

Comment removed based on user account deletion

Service Pack vs Version

[ferreth]

Is it just me or are others pissed off that M$ has taken the term "Service Pack" and stretched it way beyond it's intended meaning?

A Service Pack should fix bugs, provide MINOR enhancements, and performance tweaks. Anything more is a version change.

Hell, I would be perfectly happy to see the term "Service Pack" disapear entirely to be replaced by 0.01 releases and 0.1 for bigger changes, like most of the rest of the world does. At least that terminology has meaning to me.

Here's the poop...

[Saeed al-Sahaf]

A Service Pack should fix bugs, provide MINOR enhancements, and performance tweaks. Anything more is a version change.

This is more or less an indication that the initial release was premature and is what the *nix community might call a "Release Candidate", or even a beta that has few enough (!) bugs to be marginally usable.

Re:Service Pack vs Version

[Schnapple]

Would you prefer to have Windows Server 2004 or 2005 come out and be charged for this?

Re:Service Pack vs Version

[E-Rock]

Exactly, Apple releases a new version that fixes the things they half-assed in the prior version of X and they expect you to pay $129.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:Service Pack vs Version

[mottie]

Microsoft already does this, they just mask it from the stupid "end user"

Winver will show you exactly what version you are running, and what the build number is.

Let me get this straight.. you're pissed off because they threw "extra" into the service pack instead of releasing a new version and charging you for it? I think your wallet is too fat, and is affecting the bloodflow to your brain..

Re:Service Pack vs Version

[RupW]

Is it just me or are others pissed off that M$ has taken the term "Service Pack" and stretched it way beyond it's intended meaning?

They pioneered this years ago, way back with NT4 SP3. That was basically NT 4.5.

But *it was a free upgrade*. That's the distintion here: new version number, you pay for it.

Re:Service Pack vs Version

[sconeu]

No, you mean SP3. SP4 was a sack of shit. The only good post-SP3 service pack was SP6a.

SP3 introduced some major changes into the NT kernel. The ones I'm most familiar with are in the NDIS stack -- they used SP3 to introduce deserialize d NDIS drivers.

Windows 2003, Lewis Carrol Edition

[jd]

"When I use a word," Humpty Dumpty said, in rather a scornful tone, "it means just what I choose it to mean--neither more nor less."

"The question is, " said Alice, "whether you can make words mean so many different things."

"The question is," said Humpty Dumpty. "which is to be master--that's all."

I think that answers your qestion.

(Doctor Who fans, though, may find additional meaning in Microsoft being The Master...)

Re:Service Pack vs Version

[phallstrom]

Perhaps they should ditch the whole XP thing and stick to dates (W95, W2000, W2003) taking into consideration your suggestion.

Then the current version would be 2004.12.07 and tomorrow when the next nasty virus comes out it would be 2004.12.08 and later that afternoon when they realize their patch opens up two other holes for the one it closed they can release 2004.12.08.14.15. :-)

A cheaper solution...

[TWX]

...would be to just firewall every Windows machine behind a Linux box or BSD box and use port forwarding or some other restrictive routing scheme. Even if the hardware to isolate a gigabit's worth of bandwidth ran $1,000, it'd probably still save the company money compared to the man hours required to fix custom software, test it, and install it.

Re:A cheaper solution...

[Malc]

Why would I use a Linux or BSD box for that? Get off your hobby horse. That was cool amongst nerds five years ago - now it's so passé.

A cheap, low power (10W), low maintenance, consumer grade router will do this job for much less effort. Admittedly, some of them like my Linksys WRT54G run Linux and can hacked for more functionality...

Feeding the trolls despite my better judgement

[TWX]

First off, I was doing this think called joking . Secondly, this technique isn't uncommon anyway, with things called "demilitarized zones" in network management. You build a three-segment network, one segment being the world at large (entirely untrusted from the server perspective) the next segment being the userland machines on your network (semi-trusted from the server perspective), and the third being the servers (entirely trusted). You configure which set of machines get which access privileges through the routing device (any router is a computer, just a specialized one) so that only certain things get through in certain ways. One might port forward or proxy all connections from the world but allow direct routing on a limited number of ports from the userland segment.

At work we route three MUX rings' worth of sites, about 120 sites total, 30,000 machines across the entire WAN on the scale of a city, and the traffic is being handled at the concentration point for all major servers and the outbound internet connection by... drum roll please... a Linux box. That's right, a Linux box. An Intel-based 64bit PCI machine with six gigabit cards and an extensive routing table. It's probably the most stable thing on the network, and hasn't burned out like so many of the switches and routers out in the field due to poor quality fans. It'll probably handle a bunch more traffic than we are throwing at it, too.

So, we could have spent a shitload on a switch like you so advocate, or we could have spent the $3,000 to build this computer. We chose the computer. It's definitely not 'hobbyist'.

Microsoft Pre-judged?

[Staplerh]

I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers...

This is a little predjudicial. You may have some historical examples to draw upon, but we should cut Microsoft some slack. If they didn't release this, people would complain, and when they do, people complain. If Microsoft is willing to admit that the "the improvements are important enough that applications should be changed to accommodate them", then perhaps they are right. It's doubtful that Microsoft is going to cause this much of a hassle unless it was for a good reason - ultimately, it would be easier for them to forgo this. Perhaps it is initial flaws, but how could they get it all right on the very first release?

I know I sound like some sort of Microsoft 'fanboy', but I'm just trying to present a devil's advocate view against the Slashdot bias against Microsoft.

Does this mean

[Trogre]

that windows server 2003 will actually be able to use up to date hardware?

Will I finally be able to plug my DVD writer into my PDC and back up the AD tree?

Didn't think so. That's it, I'm going back to Debian.

Re:Does this mean

[0racle]

Ya I know. Its so hard to have a system thats used to back things up.

Re:Does this mean

[Trogre]

Not quite:

Don't forget that 2003 is 5.1, XP is 5. Same core OS, same drivers, same services (for the most part).

2000 is Windows NT 5
XP is Windows NT 5.1

What Windows 2003 server is, lord knows, but it sure isn't XP. Perhaps 5.1 Server minus drivers? I know they have their whole hardware certification program to reduce problems with cheap hardware, but it does defeat the purpose of an off-the-shelf-OS advertised as running with off-the-shelf hardware.

If you can't use a device in 2003, chances are you

Re:Does this mean

[Trogre]

Really? Even if Windows 2003 Server doesn't see the drive as a DVD drive?

How does it do it?

</sarcastic_sod_mode>

Windows Firewall

[Ghostgate]

TFA says they have added the same Windows Firewall as XPSP2. However, this is one issue that I can't see being NEARLY as big of a deal as it was for XP. XP has a much bigger percentage of novice users, many of whom had never even heard of a firewall until SP2. Win 2003 is, in general, used by people who would be aware of how to deal with such things and how to troubleshoot any problems that might occur.

Windows Firewall defaults to off

[Jacco de Leeuw]

In the docs they write that a server should be able to accept unsollicited connections so the new Windows Firewall defaults to off, unlike the one in XP SP2.

Hm. I'm not sure about that.

Sql Server and SP2?

[ad0gg]

I know I still have not installed SP2 because of the problems it causes with SQL Server

And your running Sql server on XP? Only developers edition runs on XP. And it isn't meant to do production stuff.

Re:Sql Server and SP2?

[figleaf]

Don't you realize this is Slashdot.
He had to make an idiotic comment like that to get his story in.

Anyways SQL Server runs fine on XP.

Re:Sql Server and SP2?

[njan]

Some (enterprise-grade) applications require the use of SQL Server Desktop Engine (the anti-virus vendor Sophos, for one, use this - Veritas would be an example of another).

In many instances, this doesn't react well with software on Windows server builds (again, as examples, SQL Server proper and Terminal Services both are broken by and break these two products in particular).

Especially in the ranks of middle-sized organisations which don't feel like splashing out hundreds of dollars (or more) for copies of windows server simply to run veritas and sophos, there are plenty of organisations which run 'server' software and SQL desktop engine / SQL Server on workstation builds of windows.

Re:Sql Server and SP2?

[Aphrika]

For others - and the story poster - there's some very useful information about how XP SP2 affects SQL Server here [microsoft.com].

To write something as stupid as "I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers..." is just down to ignorance, incompetence and probably a lack of understanding about both products. Yes it might sound harsh, but to write something as daft as that in a story for nothing more than an anti-MS

Re:Sql Server and SP2?

[RupW]

Thanks for the link - so default firewall settings break SQL server's TCP/IP interface: I didn't know that.

That said, you *shouldn't* be using the TCP/IP interface pretty much ever. If your client is on the same PC you should use "(local)" which will use either named pipes or shared memory IPC; if you're accessing another PC on the same network you should use named pipes and if you *really* need remote enterprise manager across the NET you should remote desktop into the PC and run it locally. Then there's

About SP2

[chaffed]

Interesting comment by the author about SP2. It made me think about my upgrade practices. On my Win2k servers I wait nearly 6 months before I upgrade or apply any patches. I just need to know all the bugs are out before I put it into production.

However on my linux server I love installing the latest stable builds. Maybe that is because the software tends to be of better quality?... Possibly masochism... maybe... Then again I do run Win2k server.

Re:About SP2

[DogDude]

Maybe the W2K server(s) are production, and the Linux server_ is a toy? Personally, I don't install a single thing that I don't need to, including service packs. If there's a specific problem or security issue that I'm aware of, then fine. Otherwise, I don't touch 'em. Life has worked like that for old school Unix admins for 20+ years. Why does everybody feel the sudden need to update their core OS software on almost a daily basis now? I don't get it. It's like switching out the compressor in your re

Re:About SP2

[Em Adespoton]

I think the point is that it *is* broke. The reason MS doesn't charge for service packs is that they are the software vendor's version of a product recall -- Microsoft has realised that the original product is broken, and they are recalling the product to fix it. The benefit is that in the software world, you get to keep your product and the internet allows the company to make a house call and repair it on-site.

Of course, most people don't do a bi-annual check for recalls on their hardware, so they live

Windows 2003 popularity?

[DogDude]

Are that many people even using Windows Server 2003? Other than the .NET Framework that can also be bolted onto W2K, I don't know what the advantages are to running Win 2003. W2K both Pro and Server are very, very stable for us, and as far as I can tell, we have zero incentive to upgrade (if it's even a real upgrade). I personally don't know of a single person or company running Server 2003 for the same reason. W2K works just fine.

Re:Windows 2003 popularity?

[Ogrez]

Volume shadow copy restore... Web services edition..

2 reasons for you.

Re:Windows 2003 popularity?

[ad0gg]

If your running asp.net under win2k it runs as an ISAPI process. With server2003 its runs natively in IIS, makes it a little bit more robust. Also like the security settings, especially being able to control TCP/IP down to the port level. Not sure if this also on win2k, if it is, it must be buried.

Re:Windows 2003 popularity?

[RupW]

A few more reasons:

• IIS 6.0: performance and compartmentalisation for security / stability
• Remote desktop improvements: full colour, can debug across a remote desktop connection
• Nice tweaks like network usage and remote desktop management on task manager
• You need it to run Exchange 2003. Which is great. The web interface alone is worth the upgrade.

Re:Windows 2003 popularity?

[XopherMV]

Sounds like your company hasn't moved to Win2003, so your knowledge is limited.

Most companies I know don't like to be on the bleeding edge and don't want to switch until the first service pack is released. Once SP1 comes out, you can bet a lot more companies will look at Win2003 seriously.

Re:Windows 2003 popularity?

[Malc]

If you're buying or leasing new systems, it's probably a better idea to go with Windows Server 2003 than an OS that's five years old. Sure there's good reason not to jump on the new OS bandwagon, but I think it has proven its stability. Think about it: in three years time (which could be well within the lifetime of those servers), Win2K is going to be getting very long in the tooth. Almost as long in the tooth as NT4 is now.

Anyway, all our new servers use the new OS. Obviously tested it first. It's a lot nicer to work with remotely, and is just generally better all round (shock! horror! Microsoft's marketing turned out to be true!).

sorry, but what's the point of the computer?

[jxyama]

>'The company argues that the improvements are important enough that applications should be changed to accommodate them.'

so, does the PC exist to run the OS or the application? i thought the point of PC and the OS was to run the application that's useful. why does running of the application, which actually accomlishes something, must be compromise to enable the OS to run better?

i'm not arguing that OS is an important/integral part of using a PC to accomplish a task. but i feel that their philosophy is backwards. even if it's the truth, they shouldn't say it. PCs do not exist to run the OS. PCs exist to run the applications. no one cares about a PC that can run the OS perfectly if it can't run useful apps.

Re:sorry, but what's the point of the computer?

[Elwood P Dowd]

why does running of the application, which actually accomlishes something, must be compromise to enable the OS to run better?

Because those applications depend on poor security. Break them. They shouldn't work.

This is pretty important

[jaxon6]

I am of the mindset that I don't touch anything Windows until Service Pack 1. At least on the server side, it's very possible. For our domain controllers at a large university on 77 Massachusetts Ave. in Cambridge, I specifically am holding off upgrading the domain to Win2k3 until SP1. I am sure many others out there are doing the same.

As for Win2k3 in general, I think it's the best Windows yet, which is still not saying much. I won't touch IIS ever, in fact we have Win2k3 systems running apache becaus

Re:This is pretty important

[YU Nicks NE Way]

I won't touch IIS ever, in fact we have Win2k3 systems running apache because of vendor mandates.

You do realize that IIS 6 has yet to have a remote access vulnerability reported, even though it's 2+ years old, but that Apache has had many in the last year? (Apache 2.0.x [secunia.com], Apache 1.3.x [secunia.com], IIS 6 [secunia.com].)

Release candidates available for a few months

[RupW]

on MSDN subscriber downloads. They're marked build 1214 which ties up with the last-but-one build of Windows XP 64-bit available. They've now just release Windows XP 64-bit build 1247 so chances are this is build 1247 of the 2003 SP1 code.

But we haven't tried it here yet: no obvious victim 2003 machine, and no problems with our web app on WinXP SP2 code.

bullsh*t

[flight666]

I'm sorry, but all of the posts mentioning catch-22 or "damned if you do, ..." are full of it.

Basically, Microsoft is breaking a whole crapload of things that don't need to be broken. Several of these changes impact me, and I can tell you that they are not improving security by turning these features off. Actually, they are reducing security by turning these off because now every Tom, Dick, and Harry out there need to go and write their own kernel mode driver to re-implement the missing functions.

For exam

Automatic Updates Forced?

[BisonHoof]

To further tighten security on new installations, the Post-setup Security Update Wizard blocks all incoming traffic until the latest updates are applied and Automatic Updates are configured.

We have our own tools to perform updates.

I don't get it...

[DaFallus]

Why do so many people continue to use Windows when all they do is complain about it? I have installed SP2 on numerous machines and have had absolutely no problems. I like Windows for what I use it for, and for purposes where I feel that Windows is not the best choice I also run multiple linux machines.

If you don't like Windows or are just anti-microsoft, then just stop using their products. Maybe this doesn't happen because if everyone who had problems with Microsoft switched to linux or some other open so

MS breaks applications after only a year or so?

[Mainframes ROCK!]

Last year I loaded a 1976 version of the PL/C (Programming Language / Cornell) compiler onto a modern IBM System 390 running zVM. And it worked, perfectly, the first time. After 27 years. Take that Microsoft ;-)

Why is this a problem?

[Flower]

You may not be able to install immediately if the SP breaks a production app but nowadays with all the regulatory compliance issues companies face this becomes a nice club to use in forcing the vendor to clean up their broken crap.

It's also a good time to look into your SLAs and get them in order. Make sure to provide a provision that the vendor has to start taking security into consideration. Have them justify why their app needs administrator privs because *I* have to justify it to my auditor. Don't let them off the hook if you can't patch. If viable, withhold payments. Communicate with peers about the level of service the vendor provides (I don't know about small businesses but in medium to large organizations it is surprising how much weight decision makers put into these informal discussions.)

This is an opprotunity not a setback folks.

...applications should be changed....

[mwood]

I have to agree with Microsoft on this one. It is long past time for MS to bite the bullet and stop worrying about breaking shoddy software from the dawn of time -- stuff that never should have worked, but did because earlier OSes allowed unforgiveable sloppiness. There are a lot of app.s out there that deserve to die and be replaced by correct code.

I'm very much in favor of preserving backward compatibility for decent software, but many PeeCee products are great examples of how not to design and build software, and they should go. Now.

(Can you tell how many hundreds of hours I've lost trying to get antiproductivity software running for someone who simply *must* have it?)

Re:damn.

[NotoriousQ]

I hope that you mean this for a corporate production environment.

As for home use, you can simply upgrade, and turn off the firewall. That will allow most programs to work as before.

There are a couple of things that I believe have changed in SP2 that can affect you but are not firewall related: No more raw sockets, and a limit to how many connection can be created per second.

No reason to not install, especially if you are an IE user.

Re:damn.

[Foolhardy]

The connection limit is done directly in the TCP/IP protocol driver, tcpip.sys which makes it much harder to remove; you have to patch the binary.
Search for "Event ID 4226".

Re:damn.

[NotoriousQ]

I have heard that the setting is in the registry.
Probably in the same place where the MTU is hiding.

Re:damn.

[radish]

It's not in the registry. It's hardcoded in the tcp stack, as the previous poster said.

Re:damn.

[Anonymous Coward]

"The company argues that the improvements are important enough that applications should be changed to accommodate them.' I know I still have not installed SP2 because of the problems it causes with SQL Server, I can't wait to see what kind of havoc it causes on the servers...""

You know for an editor of slashdot, you should really do some research.

If you use the latest service pack for SQL server, XP service pack 2 works fine. The same thing goes for running SQL 2k on Windows 2003. Maybe if you kept up with the current application service releases you would not have problems with the OS ones. :)

I could bitch and whine about vi, gnome, or anything else and I would told to upgrade to the latest revision. Why should you not do so on SQL?

Come on.

[BoldAC]

I am much of an anti-Microsoft person as anybody...

But, guys... this is a release candidate. It designed to test out in your test environment... Even the evil overlords say:

We advise against installing and evaluating beta software on any production computers.

When they don't fix the problems we find before they release the final version... that's when we should start the griping. :)

Re:damn.

[jacksonj04]

If programs are written properly and use all the calls and procedures they're meant to then they should work with XPSP2. SP2 did not break anything, it merely patched holes that shouldn't have been there and put an extra layer between the average user and the bits they can take out their PC with. If you use an app which utilises security holes to function, it's your lookout.

Re:Time travel corrupts builds!

[RupW]

Well duh, the code got corrupted in the time machine you used to get the Windows Server 2003 SP2.

He means XP SP2. (As you probably knew.)

FWIW, the XP SP2 release candidates broke SQLXML 3 which broke our web application but we've have *no problems* with SQL server on the final SP2 code.

Re:Scoff all you want

[Frogbert]

This is only too true. If I were to install a newbie distro like Mandrake 10, when it goes to update from an initial install I need to download over 200meg of patches for security issues. I'm sorry mandrake but go screw yourself if I'm expected to download that much on a modem connection. Ubuntu also gives you the option of downloading the pakages when you are installing it, with no indication of just how big the download will be. In Australia dirt cheap adsl pakages get you a 200meg download limit, with a

Re:Please enlighten me...

[RupW]

Could you please explain what are the "problems it causes with SQL Server"?

As someone else pointed out above, there's a KB [microsoft.com] about it: default firewall settings break SQL Server's TCP/IP interface. Which, IMO, you shouldn't use ever [slashdot.org].

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[account_deleted]

Comment removed based on user account deletion