Re: SBS2003 and XP SP2 (again!)

From: MLJ (m_l_j_at_hotmail.com)
Date: 09/11/04 

Date: Sat, 11 Sep 2004 15:48:30 GMT

In case anybody wants the quick'n'easy version:

Install the two SBS updates as below
Install XP SP2 on clients
The Security Centre will be on, but the firewall can't be manually switched
off at the client end

If you want to do this (for whatever reason):
On the SBS server open Server Management, Group Policy Management, Forest
(name of your domain), Domains, Your Domain, Group Policy Objects
Right click Small Business Server Windows Firewall and Edit
Computer Config, Admin templates, Network, Network Connections, Windows
Firewall, Domain Profile
Change Windows Firewall: Protect all Network Connections to Enable/Disable -
note this affects all computers in the domain

Had to reboot the client in question, but this effectively disabled the
firewall in SP2...

"Gavin" <gavin@interNOpromSPAM.com> wrote in message
news:%23yQSfn%23lEHA.3452@TK2MSFTNGP15.phx.gbl...
> Hi Mike,
>
> To quote Susan Bradley:
>
> Remember as you roll out XP sp2 you need
>
> Download details: Update for Windows Small Business Server 2003: KB
> 872769:
> http://www.microsoft.com/downloads/details.aspx?FamilyId=D70097C2-4317-40E0-B7DA-FEB52C6B6386&displaylang=en
> [which comes down on Windows Update]
> AND THIS
> 842933 - "The following entry in the [strings] section is too long and
> has been truncated" error message when you try to modify or to view GPOs
> in Windows Server 2003, Windows XP Professional, or Windows 2000:
> http://support.microsoft.com/?kbid=842933
>
> And read this document
> http://go.microsoft.com/fwlink/?linkid=33331
>
> Let us know if you have any more questions.
>
> Gavin
>
> "MLJ" <m_l_j@hotmail.com> wrote in message
> news:XTy0d.1173$xK3.423@newsfe5-gui.ntli.net...
>> Apologies if this has already been covered !
>>
>> We have an SBS2003 Premium network with three XP client PCs
>> We have installed SP2 on all 3
>> By default the Security Centre is switched off, so we applied 872769 to
>> the server and started the security centre, again on all 3
>> This is fine, except that the firewall included with SP2 cannot now be
>> switched off. (the option is greyed out) ..this is obviously dictated by
>> a policy setting, but can someone tell me where ? The closest I've found
>> is "Turn On Security Centre" in Small Business Server Windows
>> Firewall/Windows/Components/Security Centre..I don't want to disable the
>> whole security centre, just the firewall temporarily
>>
>> TIA
>> Mike
>>
>
>

Relevant Pages

  • [REVS] Bypassing Client Application Protection Techniques
    ... Get your security news from a reliable source. ... protection programs. ... * Kerio Personal Firewall 4.0 ... And we got actually nothing in the field of client application ...
    (Securiteam)
  • Re: Service pack 2 (XP)
    ... I have a 'theory' that SP2 has a LOT to do with firewall and new browser ... besides those security features. ... The operative word is SPYWARE. ...
    (microsoft.public.windowsupdate)
  • Re: Software vendor clueless
    ... done regarding the firewall settings. ... the client could be held legally liable. ... >7) Explain to both that a security 'incident' has ...
    (Incidents)
  • Re: SBS 2008 - Firewall Appliance?
    ... Cisco ASA 5510 Appliance Content Security Edition Bundle ... 250 IPsec VPN peers, ... But "firewall services" are simply listed as included. ... If you don't need AV or VPN then this is overkill....and I recommend running client AV on a server that can handle monitoring anyways....not using an edge device as the client AV manager...but that's another conversation. ...
    (microsoft.public.windows.server.sbs)
  • Re: No Wireless Connectivity after SP2, Hardwire OK
    ... So I don't think its a security issue. ... it is not only the firewall. ... >>SP2, but with SP2 it will fall on its nose. ... If you enable DEP and a driver falls foul ...
    (microsoft.public.windowsxp.network_web)