Yet another bug in Win10 1803

Topic

New Reply

This was just added to the “known issues” section of this month’s cumulative update for Win10 1803: Symptom Workaround Launching Microsoft Edge using
[See the full post at: Yet another bug in Win10 1803]

3 users thanked author for this post.

Elly, Mr. Natural, geekdom

Reply | Quote

Replies

KB4343909 is a Carnac the Magnificent patch where the patch is provided first followed by the patch to correct the first patch.

On permanent hiatus {with backup and coffee}
offline▸ Win10Pro 2004.19041.572 x64 i3-3220 RAM8GB HDD Firefox83.0b3 WindowsDefender
offline▸ Acer TravelMate P215-52 RAM8GB Win11Pro 22H2.22621.1265 x64 i5-10210U SSD Firefox106.0 MicrosoftDefender
online▸ Win11Pro 22H2.22621.1992 x64 i5-9400 RAM16GB HDD Firefox116.0b3 MicrosoftDefender

Reply | Quote

Wait! I thought the CUs were cumulative. The fix is to uninstall the latest CU, install the previous CU and then re-install the latest CU. HUH?

Reply | Quote

Enterprise only?

Reply | Quote

b wrote:

Enterprise only?

Apparently not, Pro too now. But requires optional feature to be enabled and Hyper-V support:

How to Enable Windows Defender Application Guard in Windows 10

2 users thanked author for this post.

woody, Microfix

Reply | Quote

Let me get this clear…

It’s been three (3) days since Patch Tues.
Install 4343909 Aug CU for 1803
Uninstall 4343909 Aug CU for 1803
Install 4340917 July Preview CU for 1803 to correct bug in 4343909
Reinstall 4343909 Aug CU for 1803
Install 4458166 undocumented Aug patch to fix TLS 1.2 bug in 4343909

Now, did I get that straight?
Better wait for the July/August DEFCON number of 3 or more (if it ever does).

5 users thanked author for this post.

Elly, ch100, Mr. Natural, BobbyB, woody

Reply | Quote

Reap the benefits of sticking to Woody’s MS-DEFCON system!

OR

‘That’s another fine mess you’ve got me into Stanley’

Windows - commercial by definition and now function...

3 users thanked author for this post.

Elly, BobbyB, woody

Reply | Quote

Wait a minute. You mean people are actually using Edge?

Red Ruffnsore

1 user thanked author for this post.

Noel Carboni

Reply | Quote

Mr. Natural wrote:

Wait a minute. You mean people are actually using Edge?

Yes, actually. Because it’s nice, fast, stable and the dark theme looks good. In addition to already having a decent list of extensions.

It’s one of my primary browsers to use.

Reply | Quote

Edge is fast, that’s for sure.

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

Reply | Quote

PKCano wrote:

Install 4458166 undocumented Aug patch to fix TLS 1.2 bug in 4343909

Now, did I get that straight?

No, it’s documented:

Microsoft has now resolved this issue for some devices. An update is available on Microsoft’s Update Catalog as of August 16, 2018 for those customers who have Intuit QuickBooks installed.
https://support.microsoft.com/en-us/help/4458166

Reply | Quote

Check the time. It’s wasn’t documented at the time that was posted, so the statement was true.

2 users thanked author for this post.

Elly, Microfix

Reply | Quote

Yes. I long for the old days where the update wasn’t pushed if the KB wasn’t ready.

Reply | Quote

Yep, they finally documented it… and it’s weird because the fix only appears to work for QuickBooks. I wonder what other apps got hit.

1 user thanked author for this post.

Kirsty

Reply | Quote

As a favour… last week I fixed a Win10 PC (Core2Duo 6400 at least 10 years old, originally x64 Vista > Win8Pro > Win10Pro 1511 thru 1709). They thought they’d do the ‘Reset your PC’ thing to freshen it up… killed it.

‘Wipe it and make it work again’ they asked.

Downloaded 1803 from M$ on a Linux box, made DVD and installed Win10Pro 1803… Wasn’t expecting it (and I still wouldn’t want it) but it appears least unpleasant Win10 I’ve seen so far… but they’re happy and that’s what matters.

I have minimal exposure to Windows these days, but just thought sharing this outsider’s view might be better than not..?

greynad

2 users thanked author for this post.

Noel Carboni, Elly

Reply | Quote

anonymous wrote:

installed Win10Pro 1803… Wasn’t expecting it (and I still wouldn’t want it) but it appears least unpleasant Win10 I’ve seen so far…

Very well put. I agree.

Noel

Reply | Quote

The most ridiculous bug in 1803 is that the microphone (and Web cam) won’t work anymore if access has been disabled via privacy settings. Actually, these settings should only apply to held-hostage-by-Microsoft-apps from the Microsoft Store, but the smart folks at Microsoft messed up and settings block any software running on the computer. Best of all, it’s not getting fixed in the upcoming version.

Reply | Quote

Launching Microsoft Edge using the New Application Guard Window may fail

Tell me again WHY I would want to use either Microsoft Edge OR the Application Guard feature?

-Noel

Reply | Quote

Noel Carboni wrote:

Tell me again WHY I would want to use either Microsoft Edge OR the Application Guard feature?

-Noel

Because sandboxing:

“… protect your PC from malware and other attacks while browsing the web.”
…
“Once the feature is configured, you can use Microsoft Edge (or Internet Explorer) to browse untrusted sites using a separate Hyper-V container, which is a separate environment from the main installation of Windows 10. Then if the site tries to deliver malicious code, your computer and data will be protected.”
https://www.windowscentral.com/how-enable-application-guard-microsoft-edge-windows-10-april-2018-update

“If an employee goes to an untrusted site through either Microsoft Edge or Internet Explorer, Microsoft Edge opens the site in an isolated Hyper-V-enabled container, which is separate from the host operating system. This container isolation means that if the untrusted site turns out to be malicious, the host PC is protected, and the attacker can’t get to your enterprise data. For example, this approach makes the isolated container anonymous, so an attacker can’t get to your employee’s enterprise credentials.”
Windows Defender Application Guard overview

(“again”? 🤔)

Reply | Quote

Good try, but I’m already far better protected from malware while browsing than anyone using Edge out of the box “visiting untrusted sites”, even if exercising all of Microsoft’s “security” toys like UAC, SmartScreen, Application Guard, Defender, etc.

b wrote:

(“again”? )

So far, of all the lists of “features” published I haven’t heard any compelling arguments to use Microsoft’s degraded browser (even compared to Internet Explorer) or any of the “exciting new security features”, which are oriented toward a toddler using Windows. Apparently I’m not alone; few folks seem to want Edge.

Application Guard and a host of other “security features” presume that software you don’t want running has somehow made its way onto your system and is ready to wreak havoc. How did it get there? Through ads? Through downloads? Why is there a tacit presumption that people don’t have control over what they’re running? Is someone trying to take away that control? Who, exactly is that? Why is there a presumption that people visiting the web MUST become infected? Who benefits from folks running scared? Who benefits from slowing your computer down to the point where all it’s doing is second-guessing its user?

Perhaps we should question the world that’s being pulled over our eyes.

A lifetime of Threats detected: 0 seems to imply I can speak on this subject.

-Noel

P.S., What are the implications of enabling Hyper-V on a hardware system in order to enable Application Guard? Might that preclude running another company’s virtualization software?

P.P.S., Virtualizing a sandbox so as to be able to run untrusted code no longer seems to guarantee that critical data can’t be leaked. See also “Foreshadow/L1TF”. It DOES however see to it that you’ll need a new computer to do the same things you could already do with a lesser one.

Reply | Quote

Noel Carboni wrote:

Good try, but I’m already far better protected from malware while browsing than anyone using Edge out of the box “visiting untrusted sites”, even if exercising all of Microsoft’s “security” toys like UAC, SmartScreen, Application Guard, Defender, etc.

How?

Noel Carboni wrote:

So far, of all the lists of “features” published I haven’t heard any compelling arguments to use Microsoft’s degraded browser (even compared to Internet Explorer) or any of the “exciting new security features”, which are oriented toward a toddler using Windows. Apparently I’m not alone; few folks seem to want Edge.

How is Edge degraded compared to IE?

Noel Carboni wrote:

Application Guard and a host of other “security features” presume that software you don’t want running has somehow made its way onto your system and is ready to wreak havoc. How did it get there? Through ads? Through downloads? Why is there a tacit presumption that people don’t have control over what they’re running? Is someone trying to take away that control? Who, exactly is that? Why is there a presumption that people visiting the web MUST become infected? Who benefits from folks running scared? Who benefits from slowing your computer down to the point where all it’s doing is second-guessing its user?

No one says MUST. Most would agree MAY.

Noel Carboni wrote:

Perhaps we should question the world that’s being pulled over our eyes.

Wool? 🤔

Noel Carboni wrote:

A lifetime of Threats detected: 0 seems to imply I can speak on this subject.

Do you imagine that you’re unique in that respect, or even unusual?

Reply | Quote

How?

https://www.askwoody.com/forums/topic/a-description-of-my-quite-effective-security-environment-long/

How is Edge degraded compared to IE?

Quite simply, it’s less controllable. When one realizes the Microsoft preferred “out of the box” configuration is FAR too permissive, one comes to appreciate all the Internet Explorer settings – which Edge chose to eliminate (correct me if I’m wrong here).

A more permissive browser is not a better browser.

Wool?

World.

Not a big fan of The Matrix I guess? 🙂

Do you imagine…

Thanks, I DO actually have an imagination. And I imagine that with my experience and knowledge I might just occasionally see things a little more clearly than others. I’ve made a life out of applying logical thinking to practical matters. In the words of H.R. Hadden (another film reference) “I was a h***uvan engineer”. Things in high tech have not always been what they seem because Marketing people are involved. Today things are more not what they seem than ever before – yet reality is still… well… reality.

-Noel

1 user thanked author for this post.

Elly

Reply | Quote