Free Essay

Gggggg

In:

Submitted By miketaylor123456
Words 4906
Pages 20
Windows XP
OEM Preinstallation Kit
Design Notes
Microsoft( Windows( Family of Operating Systems

Using the Windows Firewall .Inf File in Microsoft® Windows® XP
Service Pack 2

MICROSOFT CONFIDENTIAL - PROVIDED UNDER NDA
DO NOT REDISTRIBUTE

July 14, 2004

Abstract:

Microsoft Windows XP Service Pack 2 (SP2) includes significant enhancements to the Windows Firewall component (formerly known as the Internet Connection Firewall). Windows Firewall is a stateful host firewall that discards unsolicited incoming traffic, providing a level of protection for computers against malicious users or programs. To provide better protection for computers connected to any kind of network (such as the Internet, a home network, or an organization network), Windows XP SP2 enables Windows Firewall on all network connections by default. Network administrators can use the Windows Firewall .inf file (Netfw.inf) to modify default settings either before installation or after installation. This article describes the usage of the Windows Firewall .inf file.

The information contained in this document represents the current view of Microsoft Corporation on the issues discussed as of the date of publication. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information presented after the date of publication.

This white paper is for informational purposes only. MICROSOFT MAKES NO WARRANTIES, EXPRESS OR IMPLIED, AS TO THE INFORMATION IN THIS DOCUMENT.

Complying with all applicable copyright laws is the responsibility of the user. Without limiting the rights under copyright, no part of this document may be reproduced, stored in or introduced into a retrieval system, or transmitted in any form or by any means (electronic, mechanical, photocopying, recording, or otherwise), or for any purpose, without the express written permission of Microsoft Corporation.

Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided in any written license agreement from Microsoft, the furnishing of this document does not give you any license to these patents, trademarks, copyrights, or other intellectual property.

Unless otherwise noted, the example companies, organizations, products, domain names, e-mail addresses, logos, people, places and events depicted herein are fictitious, and no association with any real company, organization, product, domain name, e-mail address, logo, person, place or event is intended or should be inferred.

© 2004 Microsoft Corporation. All rights reserved.

Microsoft, Win32, Windows, and Windows NT are either registered trademarks or trademarks of Microsoft Corporation in the United States or other countries or regions.

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.

Contents

Overview 4
Scenarios for Modifying Default Windows Firewall Configuration 4
Location of Windows Firewall .Inf File 5
Methods for Replacing the Default Windows Firewall Configuration 5
Default Windows Firewall .Inf File 6
Configuration Options Provided in the Windows Firewall .Inf File 7 Changing Windows Firewall’s Default Operational Mode 7 Disabling Windows Firewall’s Notifications 8 Blocking Unicast Responses to Multicast and Broadcast Packets 9 Enabling Remote Administration 9 Allowing ICMP Messages through Windows Firewall 10 Adding Static Ports to Windows Firewall’s Default Exceptions List 11 Adding Programs to Windows Firewall’s Default Exceptions List 12
Defining the Scope for an Entry in the Windows Firewall .Inf File 14
Summary 15
Related Links 15

Overview

Windows XP Service Pack 2 (SP2) includes significant enhancements to Windows Firewall, formerly known as the Internet Connection Firewall (ICF). Windows Firewall is a stateful, host-based firewall that drops all unsolicited, incoming traffic that does not correspond to either traffic sent in response to a request of the computer (solicited traffic) or unsolicited traffic that has been specified as allowed (excepted traffic). This behavior of Windows Firewall provides a level of protection from malicious users and programs that rely on unsolicited, incoming traffic to attack computers.

A new feature in Windows XP SP2 is the enabling of Windows Firewall by default during an installation of Windows XP or during an update to Windows XP SP2. Because Windows Firewall is enabled by default, network administrators need the flexibility to modify the default configuration of Windows Firewall during the installation of Windows XP SP2 and after its installation. Typical configuration modifications include adding programs to Windows Firewall’s exception list or disabling Windows Firewall, for example, if a third-party, host-based firewall is already installed and enabled.

Windows Firewall can be preconfigured by modifying the Windows Firewall .inf file, named Netfw.inf, in which Windows Firewall’s default configuration is stored. During an installation of or an update to Windows XP SP2, Windows Firewall imports its configuration from this .inf file. This means that any modifications made to the Windows Firewall .inf file before an installation of Windows will automatically be incorporated into the default configuration of Windows Firewall.

Scenarios for Modifying Default Windows Firewall Configuration

The following are common scenarios for modifying the default configuration of Windows Firewall.

Third-Party Firewall-Enabled

An original equipment manufacturer (OEM) may choose to provide its customers with a third-party, host-based firewall. If this firewall is enabled by default, then it is recommended that Windows Firewall be disabled. This can be done by modifying the Windows Firewall .inf file to disable Windows Firewall by default.

Preinstalled Programs

An OEM or enterprise may choose to install a suite of programs by default. Some of these programs may need to receive unsolicited, incoming traffic in order to function correctly. Windows Firewall can be configured to enable specific, unsolicited, incoming traffic by default by adding the programs to the Windows Firewall’s exceptions list. This can be done by adding entries for the programs to the Windows Firewall .inf file. Only programs that require unsolicited, incoming traffic should be added to the exceptions list; programs that do not require unsolicited, incoming traffic should not be added to the exceptions list.

Pre-Opened Ports

An enterprise may choose to use various network services and want to ensure that the network traffic for those services is enabled by default through Windows Firewall. For example, an enterprise may use some of the remote management functionality included in Windows XP. You can configure Windows Firewall to open the necessary ports by default by adding them to the Windows Firewall’s exceptions list. Specifically, you can add entries for the TCP or UDP ports to the Windows Firewall .inf file. Statically opening ports does potentially increase a computer’s exposure to attack, so the number of ports opened in Windows Firewall by default should be at a minimum.

Location of Windows Firewall .Inf File

On a Windows XP CD image, the location of the Windows Firewall .inf file is:

Cd_drive:\I386\Netfw.in_

Note: On a Windows XP CD image, the file’s name is Netfw.in_ (not Netfw.inf). This is for signing purposes. If an OEM modifies this file, the file must also be re-signed.

After the installation of Windows XP SP2, the location of the Windows Firewall .inf file is:

%WINDIR%\Inf\Netfw.inf

Methods for Replacing the Default Windows Firewall Configuration

Method 1: Pre-Installation
1. Copy the default Windows Firewall .inf file (Netfw.in_) from a Windows XP SP2 CD image.
2. Make the desired modifications to the .inf file. Directions for modifying the .inf file are provided in the "Configuration Options Provided in the Windows Firewall .Inf File" section of this article.
3. Save the modified .inf file as Netfw.in_.
4. Sign the modified Netfw.in_.
5. Replace the default Netfw.in_ with the modified Netfw.in_ in the Windows XP SP2 CD image.
6. Install Windows XP SP2 from the modified Windows XP SP2 CD image.

Method 2: Post-Installation
1. Copy the default Windows Firewall .inf file (Netfw.inf) from an installation of Windows XP SP2.
2. Make the desired modifications to the .inf file. Directions for modifying the .inf file are provided in the "Configuration Options Provided in the Windows Firewall .Inf File" section of this article.
3. Save the modified .inf file as Netfw.inf.
4. Replace the default Netfw.inf with the modified Netfw.inf in the installation of Windows XP SP2.
5. Run the netsh firewall reset command on the computer running Windows XP SP2. You can do this manually by typing the command at a command prompt or by including the command in a run-once script.

Default Windows Firewall .Inf File

The default contents of the Netfw.inf file are the following:

[Version] Signature = "$Windows NT$" DriverVer =07/01/2001,5.1.2600.2132

[DefaultInstall] AddReg = ICF.AddReg.DomainProfile AddReg = ICF.AddReg.StandardProfile

[ICF.AddReg.DomainProfile] HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List","%WINDIR%\system32\sessmgr.exe",0x00000000,"%WINDIR%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll.-22019"

[ICF.AddReg.StandardProfile] HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List","%WINDIR%\system32\sessmgr.exe",0x00000000,"%WINDIR%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll.-22019"

The first two sections of Netfw.inf contain versioning and configuration information, and do not need to be modified. The sections that are significant for modifying the default configuration for Windows Firewall are the following:

• [ICF.AddReg.DomainProfile] – Windows Firewall maintains two sets of configuration known as profiles. One profile is used when a computer is connected to the domain to which it is joined, while the other profile is used when the computer is not connected to its domain. This section is for defining changes to Windows Firewall’s default configuration when a computer is connected to a network that contains its domain.

• [ICF.AddReg.StandardProfile] – This section is for defining changes to Windows Firewall’s default configuration when a computer is not connected to a network that contains its domain. If a computer is not a member of a domain, then Windows Firewall will always enforce the configuration stored in the Standard Profile.

Configuration Options Provided in the Windows Firewall .Inf File

The majority of the default configurations for Windows Firewall can be defined in the Windows Firewall .inf file. This includes the following settings:

• Operational mode

• Disable notifications

• Block unicast responses to multicast and broadcast packets

• Enable Remote Administration

• Enable ICMP messages

• Open ports

• Enable programs

These settings are described in the next sections.

Notes: All of the settings made in the Windows Firewall .inf file will be applied to all of a computer’s network interfaces.

You cannot open ports nor enable ICMP messages for individual interfaces through the Windows Firewall .inf file.

Logging settings cannot be defined through the Windows Firewall .inf file.

Changing Windows Firewall’s Default Operational Mode

• Windows Firewall can be placed in one of three operational modes:

• On – This is the default operational mode for Windows Firewall. In this mode, Windows Firewall drops all unsolicited, incoming traffic, except those matching enabled entries in Windows Firewall’s exceptions lists. Because this is the default operational mode, no entries need to be included in the Windows Firewall .inf file.

• The assumed entries for the Domain Profile in the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file are:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","DoNotAllowExceptions",0x00010001,0

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","EnableFirewall",0x00010001,1

• The assumed entries for the Standard Profile in the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file are:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","DoNotAllowExceptions",0x00010001,0

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","EnableFirewall",0x00010001,0x00000001

• On with No Exceptions – In this mode, Windows Firewall blocks all unsolicited, incoming traffic, even those matching enabled entries in Windows Firewall’s exceptions lists.

• To make this the default operational mode for the Domain Profile, add the following entries to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","DoNotAllowExceptions",0x00010001,1

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","EnableFirewall",0x00010001,1

• To make this the default operational mode for the Standard Profile, add the following entries to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","DoNotAllowExceptions",0x00010001,1

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","EnableFirewall",0x00010001,1

• Off – In this mode, Windows Firewall is disabled and does not do any filtering of unsolicited, incoming traffic. All unsolicited, incoming traffic is enabled, and Windows Firewall does not help to protect the computer from network attacks.

• To make this the default operational mode for the Domain Profile, add the following entries to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","DoNotAllowExceptions",0x00010001,0

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","EnableFirewall",0x00010001,0

• To make this the default operational mode for the Standard Profile, add the following entries to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","DoNotAllowExceptions",0x00010001,0

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","EnableFirewall",0x00010001,0

Disabling Windows Firewall’s Notifications

By default, Windows Firewall displays a notification to users when a program not already included in the Windows Firewall exceptions list uses the new Windows Firewall APIs to add itself or its traffic to an exceptions list. By adding the appropriate entries to the Windows Firewall .inf file, these notifications can be disabled in either or both of Windows Firewall’s profiles.

• To disable notifications by default in the Domain Profile, add the following entry to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","DisableNotifications",0x00010001,1

• To disable notifications by default in the Standard Profile, add the following entry to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","DisableNotifications",0x00010001,1

Blocking Unicast Responses to Multicast and Broadcast Packets

By default, Windows Firewall enables incoming, unicast-response packets to a port for three seconds after a multicast or broadcast packet is sent from the port. By adding the appropriate entries to the Windows Firewall .inf file, this behavior can be disabled in either or both of Windows Firewall’s profiles.

• To block unicast responses to multicast and broadcast packets by default in the Domain Profile, add the following entry to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile","DisableUnicastResponsesToMulticastBroadcast",0x00010001,1

• To block unicast responses to multicast and broadcast packets by default in the Standard Profile, add the following entry to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile","DisableUnicastResponsesToMulticastBroadcast",0x00010001,1

Enabling Remote Administration

Windows Firewall includes a Remote Administration option that alters its configuration to enable Remote Procedure Call (RPC) and Distributed Component Object Model (DCOM) communication. Enabling this option statically opens TCP 135 and TCP 445 to unsolicited, incoming traffic. Additionally, communication over named pipes is permitted, and ports are dynamically opened as needed by Windows services using RPC. By adding the appropriate entries to the Windows Firewall .inf file, you can enable the Remote Administration option in either or both of Windows Firewall’s profiles.

• To enable Remote Administration by default in the Domain Profile, add the following entry to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\RemoteAdminSettings","Enabled",0x00010001,1

• To enable Remote Administration by default in the Standard Profile, add the following entry to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\RemoteAdminSettings","Enabled",0x00010001,1

When enabling Remote Administration, the set of IP addresses from which unsolicited, incoming traffic is accepted can also be specified through an additional entry in the appropriate section of the Windows Firewall .inf file.

To define the default scope for Remote Administration in the Domain Profile, add the following entry to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\RemoteAdminSettings","RemoteAddresses",0x00000000,scope

To define the default scope for Remote Administration in the Standard Profile, add the following entry to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\RemoteAdminSettings","RemoteAddresses",0x00000000,scope

Permitted values for scope are defined in the “Defining the Scope for an Entry in the Windows Firewall .Inf File" section of this article.

Allowing ICMP Messages through Windows Firewall

While the default configuration for Windows Firewall blocks all ICMP message types, you can modify this behavior by adding entries to the Windows Firewall .inf file that enable certain ICMP message types by default.

To enable an ICMP message type by default in the Domain Profile, add the following entry to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\IcmpSettings","ICMP Message Type",0x00010001,1

To enable an ICMP message type by default in the Standard Profile, add the following entry to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\IcmpSettings","ICMP Message Type",0x00010001,1

Both of these entries require an ICMP Message Type to be specified. The permitted values for ICMP Message Type are listed in Table 1.

Table 1. ICMP Message Types

|ICMP Message Type |Number |Description |
|AllowOutboundPacketTooBig |2 |When an Internet Protocol version 6 (IPv6) packet|
| | |is too large to be forwarded, data is dropped and|
| | |a computer replies to the sender with a Packet |
| | |Too Big message. |
|AllowOutboundDestinationUnreachable |3 |Sent data that fails to reach this computer due |
| | |to an error is discarded and reported with a |
| | |Destination Unreachable message explaining the |
| | |failure. |
|AllowOutboundSourceQuench |4 |When a computer’s ability to process incoming |
| | |data cannot keep up with the rate of a |
| | |transmission, data is dropped and the sender is |
| | |asked to transmit more slowly. |
|AllowRedirect |5 |Data sent from a computer is rerouted. |
|AllowInboundEchoRequest |8 |Messages sent to a computer are repeated back to |
| | |the sender. This is commonly used for |
| | |troubleshooting (for example, to ping a |
| | |computer). |
|AllowInboundRouterRequest |10 |A computer responds to router discovery messages.|
|AllowOutboundTimeExceeded |11 |When a computer discards a packet because its hop|
| | |count was exceeded or it ran out of time to |
| | |assemble fragments of a packet, it replies to the|
| | |sender with a Time Exceeded message. |
|AllowOutboundParameterProblem |12 |When a computer discards data that it has |
| | |received because of a problematic header, it |
| | |replies to the sender with a Parameter Problem |
| | |error message. |
|AllowInboundTimestampRequest |13 |A confirmation message is sent, indicating the |
| | |time that the data was received at a computer. |
|AllowInboundMaskRequest |17 |A computer listens for and responds to requests |
| | |for a network subnet mask. |

Adding Static Ports to Windows Firewall’s Default Exceptions List

In Windows XP SP2, Windows Firewall maintains an exceptions list for each of its two profiles. When in normal operation, Windows Firewall statically opens ports that are included in its current profile’s exceptions list. It is generally recommended that programs be added to the exceptions list, instead of statically opening ports. This enables Windows Firewall to open and close ports dynamically and to minimize the number of ports open at any one time. It is recognized, however, that there are scenarios in which ports need to be statically opened. For example, a static port may need to be opened in order for a Windows service to receive unsolicited, incoming traffic. To support such scenarios, OEMs have the ability to add static ports to either or both of Windows Firewall’s default exceptions lists through the Windows Firewall .inf file.

To add a static port to the Domain Profile’s exceptions list, an entry in the following format should be added to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List","port number:protocol",0x00000000, "port number:protocol:scope:mode:port’s friendly name"

To add a static port to the Standard Profile’s exceptions list, an entry in the following format should be added to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List","port number:protocol",0x00000000, "port number:protocol:scope:mode:port’s friendly name"

In the two entries above, the following elements must be defined, based upon the port added to Windows Firewall’s default exceptions lists and the desired behavior:

• port number – A port is specified by the combination of a protocol and a port number. The port number must be between 1 and 65535 inclusive.

• protocol – A port is specified by the combination of a protocol and a port number. The protocol must be either TCP or UDP.

• scope – Permitted values for scope are defined in the “Defining the Scope for an Entry in the Windows Firewall .Inf File” section of this article.

• mode – An entry can be added to Windows Firewall’s default exceptions lists as either enabled or disabled. The two permitted values for this element are Enabled and Disabled. If a port’s entry is enabled, the port will be statically opened in Windows Firewall. If a port’s entry is disabled, the port will not be statically opened in Windows Firewall.

• port’s friendly name – This is the description that will be used to represent the entry for Windows Firewall in Control Panel. It should provide an indication of why the port is statically opened, such as "Web Server (TCP 80)" or "Telnet Server (TCP 23)".

As an example for opening a port, two entries are required to enable the static port used by the Internet Key Exchange (IKE) protocol, which uses UDP 500, for a scope of all IP addresses in the default exceptions lists for both of Windows Firewall’s profiles.

This entry is added to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List","500:UDP",0x00000000,"500:UDP:*:enabled:IKE (UDP 500)"

This entry is added to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List","500:UDP",0x00000000, "500:UDP:*:enabled:IKE (UDP 500)"

Adding Programs to Windows Firewall’s Default Exceptions List

In Windows XP SP2, Windows Firewall maintains an exceptions list for each of its two profiles. When in normal operation, Windows Firewall dynamically opens the ports used by programs in its current profile’s exceptions list. The Windows Firewall .inf file can be used to add programs to either or both of Windows Firewall’s default exceptions lists. Only programs that actually require unsolicited, incoming traffic should be added to the exceptions lists; there is no benefit to adding programs that use only outgoing connections to the exceptions lists.

To add a program to the Domain Profile’s exceptions list, an entry in the following format should be added to the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List","program’s image path",0x00000000,"program’s image path:scope:mode:program’s friendly name"

To add a program to the Standard Profile’s Exceptions List, an entry in the following format should be added to the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List","program’s image path",0x00000000,"program’s image path:scope:mode:program’s friendly name"

In the two entries above, the following elements must be defined, based upon the program added to Windows Firewall’s default exceptions lists and the desired behavior:

• program’s image path – This is the fully qualified path for the file to be added to Windows Firewall’s default exceptions lists. It may include environmental variables, such as %ProgramFiles%.

• scope – Permitted values for scope are defined in the “Defining the Scope for an Entry in the Windows Firewall .Inf File” section of this article.

• mode – An entry can be added to Windows Firewall’s default exceptions lists as either enabled or disabled. The two permitted values for this element are Enabled and Disabled. If a program’s entry is enabled, ports are dynamically opened in Windows Firewall for the program when it opens ports. If a program’s entry is disabled, ports will not be dynamically opened in Windows Firewall for the program.

• program’s friendly name – This is the name that is used to represent the entry in the Windows Firewall user interface. It should include the product name and publisher, such as MSN Messenger v6.1 or AOL Instant Messenger v5.5.

As an example of enabling programs, two entries are included in the Windows Firewall .inf file to enable Remote Assistance with a scope of all IP addresses in the default exceptions lists for both Windows Firewall profiles.

This entry is included in the [ICF.AddReg.DomainProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List","%WINDIR%\system32\sessmgr.exe",0x00000000,"%WINDIR%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

This entry is included in the [ICF.AddReg.StandardProfile] section of the Windows Firewall .inf file:

HKLM,"SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List","%WINDIR%\system32\sessmgr.exe",0x00000000,"%WINDIR%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

Defining the Scope for an Entry in the Windows Firewall .Inf File

When enabling Remote Assistance, opening a port, or enabling a program, the set of IP addresses from which the unsolicited, incoming traffic is enabled can be defined. This set of IP addresses from which unsolicited, incoming traffic is enabled is the scope of the exception. There are three options for defining the scope for a Windows Firewall exception.

• All IP addresses – This is the default scope for a Windows Firewall exception, and it enables unsolicited, incoming traffic that matches the exception from any computer. In the Windows Firewall .inf file, making an entry’s scope element an asterisk ("*") results in a scope of all IP addresses for the entry.

• Local subnet only – This scope enables unsolicited, incoming traffic that matches the exception from any computer on the same subnet as the network connection on which the traffic was received through Windows Firewall, while dropping unsolicited, incoming traffic from all other computers. When a computer’s subnet changes, the set of enabled IP addresses dynamically changes to match the new subnet. In the Windows Firewall .inf file, making an entry’s scope element LocalSubnet results in a local subnet-only scope for the entry.

• Custom – The final option is to define a custom scope, which is a list of IPv4 addresses and address ranges that typically correspond to subnets. Unsolicited, incoming traffic that matches the exception and originates from a computer with an IPv4 address in the defined list is enabled through Windows Firewall. Unsolicited, incoming traffic from computers with IPv4 addresses that are not in the list is dropped. A custom scope can include the local subnet (using the "LocalSubnet" string), IPv4 addresses, and IPv4 address ranges, but cannot include IPv6 addresses and IPv6 address ranges. For IPv4 address ranges, you can specify the range using a dotted decimal subnet mask notation or a prefix length (w.x.y.z/n). When you use a dotted decimal subnet mask, you can specify the range as an IPv4 network ID (such as 10.47.81.0/255.255.255.0) or by using an IPv4 address within the range (such as 10.47.81.231/255.255.255.0). When you use a network prefix length, you can specify the range as an IPv4 network ID (such as 10.47.81.0/24) or by using an IPv4 address within the range (such as 10.47.81.231/24). Some examples of custom scope elements include the following:

• 192.168.0.5

• 192.168.0.0/255.255.255.0

• 192.168.0.5,LocalSubnet

• 157.54.0.1,172.16.0.0/12,10.0.0.0/255.0.0.0,LocalSubnet

• 10.91.12.56,10.7.14.9/255.255.255.0,10.116.45.0/255.255.255.0,172.16.31.11/24,172.16.111.0/24

Note: You cannot have any spaces between the entries in the list of sources, or the entire list is ignored and Windows Firewall uses the default scope of any source IPv4 address. This can create an unintended vulnerability. Please double-check your scope syntax before saving changes to the Windows Firewall .inf file.

Summary

To install Windows XP SP2 with customized default settings for the new Windows Firewall or to change settings after installation, use the Windows Firewall .inf file (Netfw.inf). The Windows Firewall .inf file contains two main sections: [ICF.AddReg.DomainProfile] for modifying Windows Firewall settings for the domain profile, [ICF.AddReg.StandardProfile] for modifying settings for the standard profile, and [Strings] for defining strings for some settings. Typical uses of the Windows Firewall .inf file include disabling the Windows Firewall (if a third-party .inf file is already installed and enabled) and adding either programs or ports to the Windows Firewall exceptions lists (one list for each profile).

Related Links

See the following resources for more information:

• Deploying Windows Firewall Settings for Microsoft Windows XP with Service Pack 2 at http://www.microsoft.com/downloads/details.aspx?familyid=4454e0e1-61fa-447a-bdcd-499f73a637d1&displaylang=en

• Manually Configuring Windows Firewall in Windows XP Service Pack 2 at http://www.microsoft.com/technet/community/columns/cableguy/cg0204.mspx

• Windows XP Service Pack 2: Resources for IT Professionals at http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/winxpsp2.mspx

For the latest information about Windows XP, see the Windows XP Web site at http://www.microsoft.com/windowsxp.

Similar Documents

Premium Essay

Gggggg

...In the August of 1945, U.S. completed an attack on Japan that left a permanent stain in their culture that will never be forgotten. Japan learned from the bombings of Hiroshima and Nagasaki that the tragedy caused by nuclear weapons must never be repeated and that humanity and nuclear weapons cannot coexist. The U.S. along with other feuding countries have missiles pointing at one another, blaming each other for their poor fortune and tragedies. They don’t think about what could possibly come to scar the minds of upcoming generations and how we view our continental neighborhoods. In Hersey’s Hiroshima, he tells the stories of six nuclear bomb survivors and what they seen on that fateful day and how they braved through the devastation that occurred. People going on about their usual daily tasks despite knowing that they could be bombed at anytime. Some moved furniture, lounged about on the veranda, took care of their children, and left to go to work like the Enola Gay wasn’t vastly approaching their homes. When you think about it you begin to question, what have these people done to have the United States destroy everything around them to the point of leveling the places they could call home? What have these children walking back home with their mother possibly done to call an air raid siren a “usual occurrence”? Hersey pointed out that despite Japanese rule the people who live there are effected the most, because they are the ones who must suffer for their governments decisions...

Words: 445 - Pages: 2

Free Essay

Gggggg

...ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ ㅎㅎㅎㅎㅎ...

Words: 295 - Pages: 2

Free Essay

Gggggg

...Petrol engine general gasoline spray into the air inlet pipe with air mixed be combustible mixture into the cylinder, spark plug combusts expansion work. People usually call it spark ignition engines. And is generally through the fuel injection pump and diesel engine fuel injection nozzle, direct injection diesel engine cylinder and the cylinder Canon of compressed air mixing, spontaneous combustion under high temperature and high pressure, forces the pistons to work. The engine is often called compression ignition engine. Petrol engine cars with high speed (cars use gasoline engine speed can be as high as 5000-5000 r/min, trucks with gasoline engine up to about 4000 RPM) light quality, working with low noise, easy starting, manufacture and maintenance cost low characteristic, therefore, in the car and, minivans and is widely used on military off-road vehicles. The deficiency is the fuel consumption is higher, and poor fuel economy. Diesel cars with high compression ratio, average about 30% less than Petrol engine car fuel consumption, so the better fuel economy. Such as the recently listed faw Volkswagen production TDI1.7 diesel cars than 1.6 litres of petrol cars 2 liter per hundred kilometers can save. General freight most used diesel engine. Diesel engine's weakness is speed was lower than those of gasoline engines (generally the highest speed in 2500-3000 revolutions per minute), quality, manufacturing and maintenance of the high cost of (because of the high fuel injection...

Words: 2738 - Pages: 11

Free Essay

Gggggg

...http://devonennight.blogspot.com/2015/08/code-roll-item-8212015.html https://www.designmaz.net/amazing-powerpoint-templates/ Centralisation ( trung ương ) 1. Decisions are made at one point and so easier to coordinate ( manage ) quyết định đc đưa ra cùng 1 quan điểm và dễ dàng để quản lý 2. Senior managers in an organisation can take a wider view of problems and results các nhà lãnh đạo cấp cao ở trong 1 tổ chức có tầm nhìn rộng về các vấn đề và hậu quả 3. Senior magement can keep a proper balance between different departments or functions . Ex : deciding on the resoures to allocate to each các nhà lãnh đạo cấp cao có thể giữ sự cân bằng thích hợp giữa các phòng ban hoặc chức năng 4. Quality of decisions is higher due to senior managers skills and experience chất lượng của quyết định cao hơn do kỹ năng và kinh nghiệm của nhà lãnh đạo cấp cao 5. Possibly cheaper , by reducing number of managers needed and so lower cost of overheads. rẻ hơn, bằng cách giảm số lượng các nhà quản lý cần thiết và chi phí để hạ chi phí chung. 6. Crisis decisions are taken more quickly at the centre, without need to refer back các quyết định quan trọng sẽ thực hiện nhanh hơn ở trung tâm mà ko cần phải tham khảo lại 7. Policies, procedures and documentation can be standardised organisation - wide Chính sách, thủ tục và tài liệu có thể được chuẩn tổ chức - rộng ...

Words: 1367 - Pages: 6

Free Essay

Gggggg

...Causes of Ecstasy Addiction Ecstasy in its purest form is not considered physically addictive in the ‘traditional’ sense. However, ecstasy does affect the brain’s neurotransmitters, which can lead to a chemical imbalance that helps fuel addiction. Ecstasy acts on brain chemicals, known as “neurotransmitters,” that control and balance mood. One important neurotransmitter that ecstasy acts upon is serotonin, responsible for feelings of happiness, calm, and relaxation. Ecstasy floods the brain with serotonin, expending the brain’s serotonin levels, and leaving the person experiencing a deficit of this important neurotransmitter once the drug exits the system. With repeated use, the brain detects the overabundance of serotonin and scales back natural production. Though this effect may only continue for a few days, users with weekly or more frequent use often experience withdrawal-induced depression. This effect, in combination with the intense “euphoric” feeling ecstasy produces and the ecstasy high’s impact on the brain’s reward centers can all combine to create a psychological addiction. Also, many ecstasy pills are not pure MDMA ecstasy’s active ingredient contain cheaper substances, such as speed (amphetamines). Chemical filler drugs may have their own physical addictiveness and can add to ecstasy addiction when used in high doses (often due to heightened tolerance) and high frequency use. Physical signs of ecstasy addiction are dilated pupils, high body temperatures, excessive...

Words: 479 - Pages: 2

Free Essay

Health

...XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is ijijijijijijim XXXXX jjjjj gggggg gggggg gg bb gg gg ggg gg gg gg gg gg gg gg gg gg uuu u I is...

Words: 276 - Pages: 2

Free Essay

Paper

...Gggg ggg gggg ggg ggggg gggg ggg ggg gggg ggggg ggggg ggg ggg gggg gg gg ggggg gggg ggggggg gg ggggg gggg gg gggggg gggg ggg ggg gg ggggggggg gg gggggggg gggggg ggg ggggggggg gggggg gg ggg gggg gggg gggg gggg ggggggg gggg ggg ggggg g gggg gggggg ggg ggg gggggg ggggggg ggggg ggg gg gg gg gggg ggggg ggg ggg ggg gg ggggg gggg gggg ggg gg ggggg ggg ggggg ggggg gggg ggg ggggg gggg gggg ggg ggg ggggggg gggg ggg gggg gggg ggggg uuu uuu uuu u uuu uu uuuu uuu u uuuu uuuu u uuu uuuu uuuu uu uuuu uu uuu uuuuu uuu uuu uuuu uuuu u uuuuu uuuu uuu uu uuuu uu uuuu uuu uuuu uuu uu uuuu uu uuuu uuu uu uuu uuuuuo iii iiiiiiii iiii iiiiii ii iiiiiii iiiiiii iiiiiii iiiiiiiii iii iiiiiii iiiiii iiiiiiiiiii iiiii iiiiiiiii iiiiii iiiiiiiii8hy8888888 8888888888 88888 88 888888 8888 888 888 88888 8888 8888 88888 88u55 5555 5555 55555 5 55555 55 5 555 55 555 55 555 55 55 5555 55555 555555 555 5555 5555555 555 55555555555 5555555555555555 555 5555 5555 5555 5555 55555 555 55555 55 5555 555 uuuuuu uuu uu uu uu uuu uuuu uuu uuuu uu uuuu uuu uuuuuu uuuu uuuuuu uu iuu uuuu uuuu uu uuuuuu I I iii iiiiiiiii I ii iiiiiii iiiii iiiii iiiii iiii I jk sj dlkjas aodj kladj a sakao dj ajd kle alajd ajoe akj ksa ado jsa asj d kiai ajdkl k kd fjka djk fa ajfkfdjka jd saj da f dj kadj sdj ksjd afjk...

Words: 260 - Pages: 2

Free Essay

Term Poaper

...Term paper Ggggggggg ggggggg gggg ggg ggg gggg ggg gggg ggggg gggggg gggg gg gggggg gggg ggggggg ggggg ggg ggggggg ggggggg gggggg gggggg gggg ggggg gggg ggggg gggg ggggg ggg gggg ggg gg ggg ggg ggg ggg ggg ggg gg ggg ggg gg ggg ggg ggg ggg ggg gg gg gg ggg gg ggg gg g gggg gg g gggg g ggg ggg ggg ggg ggg ggg ggg gg gg ggg ggg ggg ggg gg ggg gg g ggg gggg gggg ggg gg ggg gg g ggg gg gggg gggg gggg gggg ggg ggg ggggg ggv hggg gggg gggg gggg ggg ggg ggg ggg ggg ggg ggg gg gggg ggg g gg Nn nn n h h h hdefedfe f f fef ew r ewr ew re rwe e rwe r we rer rer rere red red rred rred rt re e d t t ted ted fed gre ee ttt ewed h h hhh sd skkskkskk slkslslld llslslls kslkdldld lddpdo ddppd dlld kd ld loododod ldldl dlldld dlldld ldldl dldldld ldldldn ddlld dldlld djdjd dkdkdkd dkdkd dkdkdk dkdkdkd dkdjdkd dkdod dododo doddi dod doodod odod dododo dood d dodododod ododod dododo dododod od ddlld odldld ldldld ldld dldld dldkdkdf [f[f[f [f[f fggf ff dd e r r ryyy yyuy fr smis s smsk siswkiwi ideuryr dytyrud iufuue iuirire dkdkjkd dkdkd dkdkdk dkdjkdd dopdk dod dodod ododod odododnod dpdodn do dood do d dododo dpodpd dodod dodod d odod dood dododpod pdpdppd od dpdppd odpd pdpdpd dpdpd dppdpd dpdpd pdpd dp dpdpdpd pdpdp dpd pd p d dppdpdp dpdpdpd dpdpdpd dpd dppd dpd pddd dpdpd pd pdpdpdpdp dpdpdpddpp d...

Words: 273 - Pages: 2

Premium Essay

Life Is Funny

...Justin Merriweather September 25, 2013 Reader Response Journal Life is Funny by E.R Frank 1. There were parts of the book that made me laugh, sad, and have much sympathy for the characters. One encounter is when PPPPPP parents were fighting and PPPPPP dad would beat on his mother. She didn’t any one to know that her husband was beating her. PPPPPP is always around when she is getting beaten by his dad. He tells his dad to stop, but he doesn’t listen until PPPPP calls the police one day to get rid of his dad. Another incident is when QQQQQ is raped by her dad as a little girl. On weekends she would go over her dads and she would come home crying and sick, because of what he did to her. Her mother never really listened to her, instead she was to busy counting her marbles and working, so her older sister had to tend to her needs and watch over her when she could, and keep up with chores. QQQQQQQ ends up getting pregant at 16 and WWWWW, her sister who is in college, tries to help take care of her along with QQQ new boyfriend, EEEEEE. One more time was with a young Indian girl who had trouble following the rules of her religion. She had made friends with the next door neighbor, GGGGG, who was 22221 years old and she being 33333. She isn’t supposed to be talking to him because he is not a boy in the family. He eventually commits suicide and she thinks it’s all her fault when it isn’t. She can’t talk to anyone about it because she wasn’t suppose to talk to him in the first...

Words: 1033 - Pages: 5

Free Essay

Liquid Crystal Display

...Introduction to graphics and LCD technologies NXP Product Line Microcontrollers Business Line Standard ICs Agenda Passive and active LCD technologies – How LCDs work, STN and TFT differences – How data is converted to colors on the LCD LCD signal interface and timing parameters – LCD signals and timing – Controlling the backlight Introduction to frame buffers with the LPC32x0 MCU – How graphics data is stored in memory – Color depth and lookup tables System considerations for LCD based systems – Mapping LCD data signals to the LCD controller signals – LCD data bandwidth Examples Passive and active LCD technologies How an LCD works An array of Liquid Crystal segments – When not in an electrical field, crystals are organized in a random pattern – When an electric field is applied, the crystals align to the field – The crystals themselves do not emit light, but ‘gate’ the amount of light that can pass through them • Crystals aligned perpendicular to a light source will prevent light from passing through them Each LCD segment is aligned with an electric field A light source (backlight) is needed to drive light through the aligned crystal field Courtesy of Sharp Passive displays Passive LCD panels – Consists of a grid of row and columns electrical signals – Columns and rows connect perpendicularly to every segment in the LCD • Columns and rows are multiplexed to many different segments – An IC controls which column and row are selected...

Words: 2211 - Pages: 9

Premium Essay

Asdad

...REQUEST FOR PROPOSAL Design, Development and Implementation of an online workflow application for MGNREGS++ in Orissa 17-NREG-11-1016/11787 JUNE 02, 2011 PANCHAYATI RAJ DEPARTMENT (PRD), GOVERNMENT OF ORISSA Table of Contents 1 A) B) C) 2 2.1 2.2 2.3 2.4 2.5 3 4 5 5.1 5.2 5.3 5.4 5.5 5.6 5.7 5.8 5.9 5.10 5.11 5.12 5.13 5.14 5.15 5.16 6 6.1 6.2 6.3 6.4 6.5 6.6 6.7 6.8 6.9 7 7.1 7.2 7.3 7.4 8 8.1 8.2 8.3 8.4 8.5 8.6 8.7 8.8 8.9 8.10 8.11 8.12 8.13 9 9.1 9.2 Checklist ........................................................................................................................................................................3 General Bid ....................................................................................................................................................................3 Technical Bid .................................................................................................................................................................4 Commercial Bid .............................................................................................................................................................5 Invitation for Bids ..........................................................................................................................................................7 Introduction .....................................................................................................................................

Words: 20278 - Pages: 82

Premium Essay

Cat Practice Paper

...THE PRINCETON REVIEW CAT SAMPLE PAPER 1 INSTRUCTIONS – Please read these carefully before attempting the test 1. 2. This test is based on pattern of previous years’ CAT papers. There are three sections. Section 1- English & Reading Comprehension (50 questions) Section 2- Quantitative Ability & Data Interpretation (50 questions) Section 3- Data Interpretation & Data Sufficiency (50 questions) The total time allotted is 2 hours exactly. Please note your start time and end time on the answer sheet. Do not take more than 2 hours, or you will get a wrong assessment. Please fill all the details, as asked on top of the answer sheet. Please try to maximize your attempt overall, but you need to do well in all sections. There is 1 mark for every right answer and 0.25 negative mark for every wrong one. There is no sectional time limit. Since it is a time constrained test and you have 2 hours, and all questions carry equal marks, please do not get stuck on any question, move fast to try and do easier ones. Please do all scratch work on paper only, no extra sheets to be used. Put all your answers on the answer sheet. Relax. You are competing against yourself. 3. 4. 5. 6. 7. 8. 9. 10. The Princeton Review CAT sample paper 1 SECTION I Number of Questions: 50 DIRECTIONS for Questions 1 to 5: In each of the questions, four different ways of presenting an idea are given. Choose the one that conforms most closely to standard English usage. 1. A. We are forced to fall...

Words: 21584 - Pages: 87

Free Essay

Thinking Fast and Slow

...In memory of Amos Tversky Contents Introduction Part I. Two Systems 1. The Characters of the Story 2. Attention and Effort 3. The Lazy Controller 4. The Associative Machine 5. Cognitive Ease 6. Norms, Surprises, and Causes 7. A Machine for Jumping to Conclusions 8. How Judgments Happen 9. Answering an Easier Question Part II. Heuristics and Biases 10. The Law of Small Numbers 11. Anchors 12. The Science of Availability 13. Availability, Emotion, and Risk 14. Tom W’s Specialty 15. Linda: Less is More 16. Causes Trump Statistics 17. Regression to the Mean 18. Taming Intuitive Predictions Part III. Overconfidence 19. The Illusion of Understanding 20. The Illusion of Validity 21. Intuitions Vs. Formulas 22. Expert Intuition: When Can We Trust It? 23. The Outside View 24. The Engine of Capitalism Part IV. Choices 25. Bernoulli’s Errors 26. Prospect Theory 27. The Endowment Effect 28. Bad Events 29. The Fourfold Pattern 30. Rare Events 31. Risk Policies 32. Keeping Score 33. Reversals 34. Frames and Reality Part V. Two Selves 35. Two Selves 36. Life as a Story 37. Experienced Well-Being 38. Thinking About Life Conclusions Appendix Uncertainty A: Judgment Under Appendix B: Choices, Values, and Frames Acknowledgments Notes Index Introduction Every author, I suppose, has in mind a setting in which readers of his or her work could benefit from having read it. Mine is the proverbial office watercooler, where opinions are shared and gossip is exchanged. I...

Words: 189666 - Pages: 759

Premium Essay

Accounting

...Accounting for non-accounting students eighth edition John R. Dyson ACCOUNTING FOR NON-ACCOUNTING STUDENTS Visit the Accounting for Non-Accounting Students, eighth edition Companion Website at www.pearsoned.co.uk/dyson to find valuable student learning material including: G G G G Multiple choice questions to help test your learning Extra question material Links to relevant sites on the web Glossary explaining key terms mentioned in the book We work with leading authors to develop the strongest educational materials in Accounting, bringing cutting-edge thinking and best learning practice to a global market. Under a range of well-known imprints, including Financial Times Prentice Hall, we craft high quality print and electronic publications which help readers to understand and apply their content, whether studying or at work. To find out more about the complete range of our publishing please visit us on the World Wide Web at: www.pearsoned.co.uk ACCOUNTING FOR NON-ACCOUNTING STUDENTS Eighth Edition John R. Dyson Pearson Education Limited Edinburgh Gate Harlow Essex CM20 2JE England and Associated Companies throughout the world Visit us on the World Wide Web at: www.pearsoned.co.uk First edition published in Great Britain under the Pitman Publishing imprint in 1987 Second edition 1991 Third edition 1994 Fourth edition published under the Financial Times Pitman Publishing imprint in 1997 Fifth edition 2001 Sixth edition 2004 Seventh edition 2007 Eighth...

Words: 200572 - Pages: 803