I was at an account troubleshooting a ftp on one of the member
Servers. I did a speed test at toast.net and was only getting 200k. I
was not happy. I looked in ISA and saw who had session’s running. I
went to all the machines and asked them to stop. One of the users had
nothing open on her machine. She was reading a book or something. I
went back to the server and she was still showing up. I went back to
her machine, from add/remove I yanked out all non-work related stuff.
I went in to the registry and yanked out all bad run lines and all
software keys that were known junk. I ran process explorer and killed
the malware/spyware processes so I could delete the folders for
save/searchbar and junk like that. I reboooted the workstation and she
said that was the fastest she ever saw that machine go. The server was
able to do a 1 meg download. All that just because I could read some
logs in ISA.
In ISA I can ban certain types of downloads and access to certain
websites. I can give users internet bandwidth priority. Users that do
real research get high priority will people known to goof off get real
low bandwidth priority.
I hate installing SBS basic with no ISA because ISA is such a great
tool for troubleshooting problems and preventing them.
For more info on ISA go to www.isaserver.org One of the best sites to
see how people do stuff with ISA. There is a great article by Tom
about what ISA is versus other firewalls.
Note that ISA can run for years with no touching. If you want to touch
it to see what is happening then it is a great tool to have. I really
miss it at the few accounts I have that do not have it.
SP2 fixes lots of thing in XP. Just having a popup blocker reduces the
opportunity for malware to get on a machine. But SP has more.
Microsoft has more info on their website about what SP2 is about.