MS responds to users' Messenger worries


MS responds to users' Messenger worries

Antony Savvas
Microsoft is trying to reduce security holes in its Windows XP operating system by disabling the package's Windows Messenger Service and activating its Internet Connection Firewall by default.

The decision was announced at Microsoft's Professional Developers' Conference last week. It follows chief executive Steve Ballmer's statement last month that Microsoft was looking at ways that Windows could shield itself against attacks instead of relying on third-party solutions.

Microsoft has now deemed the Windows Messenger Service non-essential, after discovering a buffer overflow in the program that allows attackers to remotely place and run malicious code on vulnerable XP machines.

The company has already released a security patch, but has bowed to user calls for the feature to be disabled by default as a way of improving corporate security.

Amy Carroll, director of the Microsoft security business unit, said the change would be contained in the soon-to-be-released Windows XP Service Pack 2.

Carroll also said Microsoft was considering changes to the default settings of the Internet Explorer browser to make it more secure against potential attacks.

She said the size of Microsoft security patches had been reduced by 35% in the past year, in order to make them easier to manage and install. The size would be reduced by 80% by May 2004, she added.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy