"Br@dley" <no*****@4u.com> wrote in
news:k8*****************@news-server.bigpond.net.au:
MGFoster wrote: John wrote: I am using ms internet control in my app. It works fine form all
machines except from a new one which has win xp sp2 installed.
All machines are part of a small business server 2003 domain so
have the isa server firewall client as well. Unfortunately I
can't find a way to disable xp firewall once it is connected to
the domain. How do I get past the xp firewall for internet
control to work?
You can disconnect the MS Windows XP firewall:
Start > Settings > Control Panel
Double click on the Windows Firewall icon.
Under the General tab click the Off (Not Recommended) option
button.
You can't do this if Windows security policy is dictated by the
domain you are connected to.
I don't quite understand how this could be a default policy for
SBS2003, which was released before the new WinXP SP2 firewall even
existed.
Is it that you don't have access to the admin tools in Control
Panel? If so, then perhaps you need to log in as a domain
administrator to get access to these controls. It would make little
sense at all to disallow any control of the workstation firewall by
any user, no matter what their level of permissions.
Indeed, none of it makes any sense to me at all as a default
security policy, as disabling all user control of the firewall
settings rather defeats the purpose of a software firewall running
on a workstation. That is, if you can't decide which processes to
grant permission to a port, then it's going to get in the way far
more often than it's going to help.
Of course, that might be another one of Microsoft's "sour grapes"
strategies, as with the Draconian Outlook security patch, which in
its original version made Outlook basically unusable, but allowed MS
to say "see, we told you that you could have either security or ease
of use, but not both." MS was wrong in that case, and if they are
doing the same thing with the WinXP SP2 firewall, they are
completely wrong yet again.
--
David W. Fenton
http://www.bway.net/~dfenton
dfenton at bway dot net
http://www.bway.net/~dfassoc