Patch Lady – for small businesses remember your firewall is a computer too

If you are like many small businesses, in addition to the router provided by your Internet provider, you also may have a hardware firewall that goes between you and the outside world.  It provides additional filtering and protection.  In this era of cloud computing it may be getting less important, but I still like to have a bit of web filtering between me and the bad guys that come through browsing in a firm setting.

Last night at 5:05ish p.m. our Sophos firewall hardware completely died.  Good news is that is covered under warranty they are shipping out a unit overnight.

The good news is that I quickly downloaded a ISO of a trial of Sophos firewall software, stuck it in hyperV, installed it and after a few missteps in setting up firewall rules, got the server/network back online.  It pays to have a server with spare networking ports that you aren’t using that you can set up a virtual appliance firewall.  I’m using a 30 days trial version to tide me over.  I’m thinking about sticking the home license in there and keeping it on the server as a just in case of emergency.  You don’t realize how dependent you are on the firewall until it goes boom. And then you realize your ENTIRE network goes through a SINGLE box.

For those of you that are small business consultants, you may want to see if your firewall vendor has similar software appliance downloads to work as a temp firewall as long as you have two nics free.  Once you get it up it looks just like your real firewall.

Here’s the bad news:  So in googling around last night, I realized that I have a rev 1 SG125 and guess what….. there’s a known issue in these suckers

And it’s been known for at least two years.  So you may want to google on the firewall vendor forums every now and then to determine if other devices are like this unit:

“Please do not go screaming at Sophos as this one is NOT THEIR FAULT.  Intel is hampering things trying to contain the damage by not allowing the vendors to say exactly which chips are hit..but a little self-research makes it very easy to figure out whoe SOC is screwed up and which devices are a time bomb.”

Apparently I’m lucky that it hasn’t occurred before this.

More on this issue:  https://www.theregister.co.uk/2017/02/06/cisco_intel_decline_to_link_product_warning_to_faulty_chip/

And it impacts Cisco too:  https://www.reddit.com/r/networking/comments/5sbh7u/cisco_clock_issues_caused_by_faulty_intel_atom/

Microsoft posts Monthly Rollup Previews for Win7, 8.1, Server 2008 SP2, 2012 and .NET

A fascinating grab bag of fixes – with absolutely nothing that should interest most reasonably sane individuals.

Details in Computerworld Woody on Windows.

Patch Lady – Access bug will be fixed sooner versus later

The Access bug page has been updated to reflect that they intend to fix the Access bug sooner versus later.  No longer does it say “next month”…. well at least for versions other than Access 2019… and Access 2016 has a release out already.

This issue will be fixed for all versions:

Infinite reboots reported with Server 2012 (not R2) installing the Servicing Stack Update KB 4523208

We just had a report from @windowswarrior:

this issue presented to all affected Servers with the Servicing Stack Update (KB4523208)… this issue presented to all affected Servers with the Servicing Stack Update (KB4523208)

This didn’t happen on all of their systems. windowswarrior is trying to track down the problem.

I see that u/mosiac on Reddit had a similar problem:

This morning we were awoke by the sound of vcenter alarms due to high memory usage on specific VMs. Come to find out we had a boot loop scenario after our update window fro only Server 2012 boxes (not R2).

Anybody out there having similar problems?

Cortana’s footprint is shrinking

I think there may be two people reading this who will actually care, but Microsoft is pulling Cortana from Android and iOS, as Lawrence Abrams describes on Bleepingcomputer.

I think MS hasn’t gone far enough. Mehedi Hassan, over at Thurrot.com, got it right:

pic.twitter.com/VtW0vU8k6z

— mehedi (@mehedih_) November 16, 2019

UPDATE: Günter Born has the original article. Not clear if the US will be among the countries that lose Cortana on iOS and Android.

All roads lead to Win10 1909 — but you can take your time

WOODY’S WINDOWS WATCH

By Woody Leonhard

For a change, Microsoft is letting everybody decide when to upgrade to the latest release of Win10 (Version 1909) — provided they’re already running the penultimate version, Win10 1903 (and in some cases Version 1809).

That’s good news, and it represents a sea change in Microsoft’s pushiness.

Read the full story in AskWoody Plus Newsletter 16.42.0 (2019-11-18).

A time-saving shortcut for new-PC setups?

LANGALIST

By Fred Langa

What are the pros/cons of copying the entire contents of the “Users” folders to a new PC, en masse?

It’s a very fast way to move user data into a new PC, but what else might be going along for the ride?

Plus: Great resources for testing firewalls and routers, and is it safe to use a high-rated battery charger on a low-rated device?

Read the full story in AskWoody Plus Newsletter 16.42.0 (2019-11-18).

Ready or not, Win10 Version 1909 is here

PATCH WATCH

By Susan Bradley

The September Windows 10 feature release … um … no, the November feature release — well, in any case, the 1909 version is finally out.

This time around, Microsoft is apparently doing something new that just might take some of the pain out of upgrading Windows 10. As Woody notes in a Computerworld column, Version 1909 has the feel of a Windows 7–style service pack.

Read the full story in AskWoody Plus Newsletter 16.42.0 (2019-11-18).

Working outside an admin account: Safe but annoying

WINDOWS

By Lincoln Spector

You’ve probably been told to have both a standard Windows account for safety’s sake and an administrator account because Windows demands one.

But let’s face it, most of us have ignored this advice because … well, juggling two accounts isn’t much fun. It’s especially annoying when using a standard account and you’re constantly asked for the password proving you’re allowed into the administrator sanctum. It’s worse when you’re not asked for the password — and you have to figure out how to bring up the dialog box for entering it.

Read the full story in AskWoody Plus Newsletter 16.42.0 (2019-11-18).

Canadian Tech: How to rebuild a Win7 system with minimal snooping

For those of you who need (or want) to rebuild a Win7 system, but don’t want to get stuck with all of the “telemetry,” Canadian Tech has a detailed checklist that covers what you need and what you don’t. I’d appreciate your comments.

Remember that we don’t know what data Microsoft scarfs with its telemetry updates. I have a sneaky suspicion that it’s not very different from the telemetry in Win10.

From Canadian Tech:

Rebuild — Windows Update (September, 2019)

Please say goodbye to my Sainted Aunt Martha

Those of you who have been reading my stuff for a while no doubt recall my Sainted Aunt Martha. She’s the prototypical kind and gentle lady who doesn’t understand computers but wants to use them anyway, and needs to be protected in a no-interaction-required sort of way.

I’m sure everybody has a Sainted Aunt Martha in their families.

I’m very happy to announce that MY Sainted Aunt Martha just passed comps for her Ph.D. in CS. So I won’t be using her as a role model any more.

I do, however, have an uncle who uses computers but doesn’t understand (or want to understand, or need to understand) them. Have to think of a name for him…. Suggestions?

When Windows 10 Feature Updates don’t go smoothly

Last weekend, I decided to bite the bullet and update a Win10-1803 Pro machine to Win10-1809, using Windows Update. I’d taken a system image backup, and as it wasn’t my production machine, I wasn’t too worried.

This machine is under a year old, a purchase necessary when a hardware failure put paid to my trusty Win7 Pro laptop. It allows me to work more than I can manage at my desktop, and does most of the hard yards online, especially here.

Windows Update installed 1809 x64 2019-10B – this was before Woody changed MS-Defcon from 4 to 2. It took 20 minutes to Prepare to Install, and nearly 2 hours to download, and several hours to install.

Needless to say, it didn’t go to plan… The first indication of a problem was after several hours of installing, when a blue screen appeared bearing the words “Stopcode” and “Bad Pool Header”. It restarted, still on 1803, pending install. It continued installing. Eventually it restarted, and I was able to see KB 4521862 and KB 4519338 had installed – along with a bunch of drivers being updated, when the Pro settings were not to download drivers from Windows. I also noticed I hadn’t had to reset the Metered Connection settings to allow the update to download!

After it finished its update, it wasn’t working properly. It looked fairly normal, but restarting started problems – none of the visible desktop items actually worked – not the Start button, any of the TaskBar icons, or anything other than the Ctrl>Alt>Del routine.

I tried Sign Out. It took ages. It caused a loop of: Hi; We’re getting everything ready for you; This might take several minutes – don’t turn off your PC (that part remained until it got to Hi again); Leave everything to us; Windows stays up to date to help protect you in an online world; Making sure your apps are good to go; It’s taking a bit longer than expected, but we’ll get there as fast as we can. This loop took 5 minutes to restart, again, and again, and again.

It had been over 12 hours since the process started at this point. As I had to do my day job, I just left it chugging away in the background while I got on with earning an income. Over 5 hours later, it finally came up for air – a desktop, but still not functioning.

Along the way, I saw various errors:
Error 0x80072EE7
The gpsvc service failed the sign-in – access is denied
windows\system32\config\systemprofile\desktop is unavailable

To add to my woes, it wanted to restart itself again, where it re-entered the 5+ hour loop. I still had work to get done, so I just let it be. No stopcodes this time, but still it didn’t work.

I couldn’t access safe mode, even with Recovery Tool USB access. Start Up Repair “couldn’t fix [the] PC”. Using the Recovery Tool, I was able to access the Command Prompt, where SFC /SCANNOW reported “Not enough memory resources are available to process this command” the first time, and then, after it went through 100%, “Windows Resource Protection could not perform the requested operation”. Attempting to use Restore Points was another failure – they were listed, but “unavailable”.

At this time, I decided it was time to try to restore the system image. Again, the gpsvc error. Apparently there had been some issue prior to the update attempt? I had to put it aside for a few days, until I got time to address it properly. By this stage, I was heading for an ISO file on a USB stick. This laptop now needs to be reset from the ground up, going back over all the metered connection, deferred updates, Customer Experience, Start Menu apps settings etc. etc. etc. – and I’m sure there’ll be something important I forget!

Having got the ISO installed, I was able to run SFC / SCANNOW and DISM /Online /Cleanup-Image /RestoreHealth. All 100% clear, thank goodness.

There are only 5-6 programs to reinstall. If this had been a production machine, I’d have dozens of programs to have to reinstall. It’s still going to take another day or two until I get it back to normal, as I have other things I need to prioritize. If I’m a bit cranky this weekend, you now know why!

I’m really lucky I have a wealth of knowledge, support and expertise here at my disposal. A normal home user would have ended up paying for professional technical support, and if it had been my production machine, would have resulted in a loss of chargeable hours. I’m counting my blessings!