Woody Leonhard's no-bull news, tips and help for Windows, Office and more… Please disable your ad blocker – our (polite!) ads help keep AskWoody going!
Home icon Home icon Home icon Email icon RSS icon
  • MS-DEFCON 2: Get auto update turned off — and watch out for SMBv1 blocking complications this month

    Posted on June 11th, 2018 at 14:58 woody Comment on the AskWoody Lounge

    Patch Tuesday’s tomorrow. You know what that means.

    I’m moving us to MS-DEFCON 2: Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don’t do it.

    Computerworld Woody on Windows

  • Is it OK to run patches on 500+ VMs?

    Posted on June 11th, 2018 at 13:40 woody Comment on the AskWoody Lounge

    Just saw this message from ME:

    I haven‘t approved updates since 12/2017 for our infrastructure with 500+ VMs.

    I‘m not new to that topic but your team recently wrote that it is not wise to approve updates when your on patch level 12/2017. I think it was in march. Since then i didn‘t found a topic if to update or not. All thoughts was about if and how to update one single machine. Is there anything related to my problems to read from you?

    Susan Bradley does a great Job but it would be interesting to have a algorithm how to patch when you’re on 12/2017 or similar. Its not something i ask you to do but in those times Microsoft does a horrible job which leads to spectacular ransom attacks in the future. I patch servers for 3 years now – i‘m definitely not a pro but why do i feel like Microsoft always tries to shoot our infrastructure into pieces. :/

    Best regards, and thank you and your team for the great work.

    Since Susan Bradley joined AskWoody several months ago, we have something of a dichotomy. On the one hand, we have people who just want to know when it’s safe to patch their individual (home or business) PCs. On the other hand, we have a widening group of admins who are in charge of hundreds — thousands — of machines.

    As you’ve seen, the expectations and needs of those two groups is related, but still quite different in many respects. More than that, there’s a spectrum of needs — from folks who’d rather be playing mahjong, to folks who have to be concerned about protecting key corporate data.

    One size doesn’t fit all. What’s evolved is kind of a dual system that’s grown out of my background helping individuals and Susan’s long background working with organizations.

    The MS-DEFCON system is geared for people who really just want to get the furshlugginer thing working. I don’t even try to differentiate between a Win7 system running Office 2010

    and a Win10 1803 system running Office 365. There are just too many variables. What I give with MS-DEFCON is a red light/green light system, with warnings about particularly irksome problems.

    The Patch Lady recommendations (and her unique, lengthy Master Patch List) are designed for people who want — or need — to take a closer look at the patches.

    The Patch Lady approach is a scalpel. The MS-DEFCON approach is a sledge hammer.

    That doesn’t answer your question. But it should help you put into perspective the comments that are bound to come from people who have experienced your exact situation.

  • If you bought a new Surface Pro 2 from Microsoft four years ago, you can’t get any official help

    Posted on June 11th, 2018 at 00:56 woody Comment on the AskWoody Lounge

    (At least, not free help on the Microsoft Answers Forum.)

    In a Saturday morning news dump, a Microsoft contractor announced the end of Answers Forum support for Win 7 and 8.1, Office 2010 and 2013, Surface Pro and Pro 2, IE 10 and earlier, Security Essentials, and much more.

    Does this mean we won’t get any official word about new bugs in Win7 and 8.1 patches?

    Computerworld Woody on Windows.