Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Windows 7 Service Pack 1 out SANS ISC InfoSec Forums

Participate: Learn more about our honeypot network
https://isc.sans.edu/honeypot.html

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Windows 7 Service Pack 1 out

Microsoft made the first service pack for Windows 7 and 2008 R2 available for public download. This service pack is essentially a "roll up patch" including most security patches and hot fixes released so far.

Aside from patches, service packs typically include some improvements and new features. From a security point of view, RemoteFX may be of interest. RemoteFX extends RDP to allow a more "complete" remote desktop access including access to USB drives from example, more in line with virtual machine desktop clients that can use a local drive to load data on a remote virtual machine.

DirectAccess has been improved as well. DirectAccess requires the use of IPv6, and with SP 1, 6to4 as well as ISATAP are supported.

The RemoteFX and DirectAccess enhancements only affect Windows 2008 R2, not Windows 7.

Some twitter reports suggest that the service pack install may fail if bitlocker is used. If you experience any issues: Please let us know.

http://technet.microsoft.com/en-us/library/ff817622%28WS.10%29.aspx

------
Johannes B. Ullrich, Ph.D.
SANS Technology Institute
Twitter

I will be teaching next: Defending Web Applications Security Essentials - SANS San Francisco Spring 2020

Johannes

3699 Posts
ISC Handler
WS2008 R2 SP1 adds Dynamic Memory for Hyper-V, so more VM's can be run on a server. There is also a war of the blogs due to VMware suggesting disabling ASLR, NX and DEP for more RAM use on their products.
Anonymous
I'm curious if anyone else is having weird certificate issues since installed SP1 for Win 7 64 bit? I've heard from three different folks with odd 'certificate expired' messages since installing SP1 overnight. No one is running bitlocker.
Anonymous
For those would like to block temporarily the installation of SP1 for Windows 7 and Windows 2008 Server, this is the official solution:

http://www.microsoft.com/downloads/en/details.aspx?FamilyID=d7c9a07a-5267-4bd6-87d0-e2a72099edb7&displaylang=en
Anonymous
Not sure if this would be feasible, but I wonder if people could add their SP1 comments as they deploy as a resource for those of us who will deploy it this summer. It always helps me to learn from those who have gone before.
Anonymous

Sign Up for Free or Log In to start participating in the conversation!