I get a lot fewer messages from readers saying how happy they are with Windows XP and a lot more messages saying how they're grappling with one or another new behaviour they hadn't expected.
The latest example of this love/hate relationship involves readers who've installed the software firewall called ZoneAlarm. It's my product of choice to protect users against zombie and Trojan horse software that gets into your PC and silently connects to the Internet for advertising or more nefarious purposes. ZoneAlarm permits only programs on a user-defined list to call home across the Net.
So far, so good. But readers are, well, alarmed that the firewall's default configuration allows components of Windows XP to silently connect with Microsoft's servers without displaying an alert. One reader installed ZoneAlarm to augment XP's weaker, built-in firewall, removed all named programs and components from ZoneAlarm's OK list, and then rebooted. But XP could still contact the mother ship.
This is a concern because Microsoft added numerous features to XP that report information about you or your activities to centralized databases. XP contains a dozen or so of these components that automatically connect to the Internet. Microsoft describes 11 of these programs in a white paper that's available here.
Windows Media Player in XP, for example, reports to a Microsoft server every DVD movie you play, including its title and a string that uniquely identifies your player ( http://online.securityfocus.com/archive/1/257283).
ZoneAlarm product manager Jordy Berson explains that the firewall's standard behavior is by design and isn't necessarily a problem. If you install ZoneAlarm using its quick-start wizard, the XP file named SvcHost.exe is recognized as a standard component of Microsoft's operating system. Because XP is considered legitimate, and not a Trojan horse, XP features that use SvcHost to connect to the Internet do not trigger warning alerts if ZoneAlarm is set up this way.
"By us preconfiguring those hosts, we're making sure that people can connect to the Internet properly," Berson said in an interview. "If people want to configure it manually, they can do that also."
Stripping down ZoneAlarm's list of permitted programs, however, isn't the best way to defeat XP applications you don't like. I recommend instead that you use Administrative Tools to disable each unwanted XP service. A step-by-step tutorial for this is at here.
There may be a lot of things we can find about XP to criticize, but we can't expect ZoneAlarm to fix them all.
