MS-DEFCON 4: Time to get the patches applied – and by the way…Posted on July 4th, 2012 at 20:54 15 comments
It looks like the June Black Tuesday patches have stabilized. I suggest you go ahead and install all outstanding Microsoft patches.
You may have problems with the .NET patches – heaven knows, we always seem to. Susan Bradley suggests in her latest Windows Secrets column that if you have .NET 4 patching failures, go to KB 2698555 and download and run Microsoft’s latest .NET repair tool.
Just as important, if you haven’t yet updated Secunia PSI to version 3, get to their web site and install it. PSI, as you may know, is a marvelous, free-for-personal-use utility that scans all of the programs on your PC and tells you which ones need patching. In this latest version, you can tell PSI to automatically install updates as they appear, and that’s precisely what I recommend. Let PSI do the heavy lifting for everything except Microsoft patches.
Hope you all had/have/were having/will be having a great fourth – no matter where you live. You Brits have even more to be thankful about than us Yanks. You don’t have to deal with American politics any more…
15 responses to “MS-DEFCON 4: Time to get the patches applied – and by the way…”
rc primak July 4th, 2012 at 21:15
Only let Secunia automatically pdate your applications if you want all the deaults, including all toolbars, adware and spyware. Custom installations without all of that mess are not available in PSI 3.0. This program does not have user controls. I definitely do NOT recommend it.
Doug S July 5th, 2012 at 11:02
I, likewise have a problem with PSI 3.0. It no longer has the ability to ignore specific directories. This means I can not exempt the directory that I use to test beta versions of programs, so they would be reported with my normal programs by PSI 3.0.
Guenter July 5th, 2012 at 13:04
I agree with caution about using PSI for automatic updates. I have been using it in manual mode only. Still I have had problems with updates that PSI Version 2 recommended to update for me, as the updates (in their Secunia version) simply did not work and caused my computer to stumble. However, PSI is a useful tool to detect update issues, as long as the decision to do so (and to go to the original program websites for the update) is left to the user by rejecting automatic updates. I am a true believer in Woody’s advice (wrt Microsoft) not to allow automatic updating.
Guenter July 5th, 2012 at 13:20
PS: I installed PSI 3.0 coming from PSI 2.0. I felt that PSI 2.0 gave much more valuable user information. With PSI 3.0 I feel much less informed and more under control of the program. In the end I decided to reinstall PSI 2.0, at least for the time being.
I applied all the security updates to my Windows 7 x64 laptop, but was wondering if it’s advised/necessary to apply the Windows updates offered? Here they are:
Update for Windows 7 for x64-based Systems (KB2677070)
An automatic updater of revoked certificates is available for Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2
Update for Windows 7 for x64-based Systems (KB2699779)
Applications using multi-package installation on Windows 7 and Windows Server 2008 R2 may fail to install
Update for Windows 7 for x64-based Systems (KB2709630)
Delay occurs when you log on to a domain from a computer that is running Windows 7 or Windows Server 2008 R2
Since the first is an auto-updater type of thing (and we all seem to avoid that, at least when it comes to Windows Updates themselves), so I wasn’t sure if this was a good idea or not. And I don’t think the third one would ever apply to me. Thoughts?
Thanks, as always!
rc primak July 6th, 2012 at 00:40
Let me revise about PSI 3: There are user controls, but they are vastly inadequate to allow automatic updating through that program. PSI 3 can act as a guide, but it lacks the exact paths to all instances of outdated programs and components. This is not the PSI of the Version 2 heyday.
Grandma July 6th, 2012 at 01:11
I have always gone to the program’s website for updates, rather than updating from within Secunia. Is this still possible?
Midnight July 6th, 2012 at 19:42
Success on three machines. But I don’t understand why a restart is necessary on one and not the rest!!
What about this malware viras attack that is to hit the 9th of July? Says the FBI is/has been working on it? What’s up? The message says we won’t be able to get anything on the internet because 1000s will be hit! What’s the scoop, & where does that leave us?
It’s way overblown. If you’re already infected with a specific virus, you may not be able to go anywhere on the web, starting the 9th.
Go to google.com. If you don’t see a message there saying you’re going to get cut off, you’re fine.
You can go to the sites if you want to, but Secunia takes care of everything – all of your programs, all at once.
All of those should be OK.
rc primak July 10th, 2012 at 01:16
As with any automatic updating service, Secunia will install with all defaults, not custom installs. For most free software, this results in unwanted adware, spyware and toolbars being snuck in with the actual programs. This is why it’s not my recommendation to auto-update anything. Get the updates from the original web sites, and decline any offers not directly related to the software itself.
Taavi July 22nd, 2012 at 19:22
Just to say: Not a techie, but have been following AskWoody for a few months now, especially after having had problems with a Windows update. But: Inatalled Secunia PSI 3 (had not had a previous version). It almost immediately fried the motherboard on my XP machine (Dell 4700), which had not been showing any particular signs of ill-health and which had had a clean reinstall of the operating system and everything just three months before. Don’t know what happened. Writing now from a new motherboard (and congratulating myself on the first-time self-install).
Congrats! It’s highly unlikely that PSI fried your motherboard – most likely an unfortunate coincidence. But installing your own Mobo is definitely alpha geek territory…
Leave a reply