Posted on March 4th, 2017 at 06:10 Comment on the AskWoody Lounge
I used to post the details here on AskWoody, but for the past few months I’ve branched out to a wider audience, and posted the step-by-step procedure in InfoWorld.
Those of you who are in Group B – who want to avoid more Microsoft snooping – would be well advised to read ch100’s recommendations. He’s convinced that you’re much better off going with Group A – install all patches – except three specific patches (six specific patches if you don’t use something called RDP, and most of you don’t).
Microsoft established the Group B method last October. It’s still holding together, but Group A has a lot of advantages.
Posted on March 2nd, 2017 at 10:22 Comment on the AskWoody Lounge
With few outstanding patches, and all but one well-behaved, now’s an excellent time to get caught up.
InfoWorld Woody on Windows
Posted on February 21st, 2017 at 07:04 Comment on the AskWoody Lounge
Many thanks to those of you who sent me copies of the email Microsoft distributed yesterday.
This is going to be interesting.
InfoWorld Woody on Windows
Posted on February 15th, 2017 at 21:05 Comment on the AskWoody Lounge
At least, that’s what the MSRC team notification on the TechNet blog says:
UPDATE: 2/15/17: We will deliver updates as part of the planned March Update Tuesday, March 14, 2017
My previous kvetch holds true. There’s no mention about whether this only applies to Windows (Vista, 7, 8.1, 1507, 1511, 1607), or if it also includes Office, .NET, IE and so on.
There’s some concern about the SMBv3 zero-day that I mentioned on Feb. 3. It’s still out there and active. CERT has published manual steps for thwarting the vulnerability.
I have a roundup of the history and the problems on InfoWorld.
By the way, Gunter Born doesn’t think Windows Update is broken, and he offers some powerful arguments in that direction in his latest blog post.
Posted on February 14th, 2017 at 11:13 Comment on the AskWoody Lounge
As far as I know, this is unprecedented.
MSRC just posted a blog that says we won’t have Patch Tuesday today.
This month, we discovered a last minute issue that could impact some customers and was not resolved in time for our planned updates today.
After considering all options, we made the decision to delay this month’s updates.
Don’t know about you, but I think that’s great. Better to be a day or two – or even a week – late, than to send out bad patches.
It’s not clear to me if this includes Windows, Office, Internet Explorer, .NET and other patches. We’ll find out in a few hours.
— ghacksnews (@ghacksnews) February 14, 2017
Posted on February 6th, 2017 at 14:01 Comment on the AskWoody Lounge
I’m anticipating non-security Office patches tomorrow. That’s the usual drop date, anyway – first Tuesday of the month. I’m not aware of any non-security Office patches that absolutely have to be installed right away, so I’m taking the MS-DEFCON level up (er, down?) a notch, as usual.
Make sure you have Automatic Update set to “Never check for updates” or use a metered connection or “Pause updates” to keep Microsoft from forcing patches down your throat.
If you’re using Windows XP, Vista, 7, or 8.1, follow the instructions in AKB1000004: Disable Automatic Update in Vista, Win7 or 8.1
If you’re using Windows 10, follow the instructions in AKB1000005: Disable Automatic Update in Windows 10
Then watch here, or keep an eye out for problem reports on the web, before you re-enable Automatic Updates.
I’m moving us to MS-DEFCON 2: Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don’t do it.
Posted on January 17th, 2017 at 15:34 Comment on the AskWoody Lounge
The English translation is up on InfoWorld Woody on Windows, Signs point to Microsoft’s imminent release of Windows 7 “Service Pack 3”
As MrBrian notes in the comments, there’s an error in the chronology listed in the article. Office Security patches arrive on the second Tuesday. The non-security patches are on the first Tuesday.
If you’re just following along because you want to, you know, get your system patched and be done with it, you can skip this whole announcement. Look for an MS-DEFCON level change shortly.
Those of you who follow along with all the gory patching details will be happy to know that there are no Previews of Monthly Rollups today, the “C” week Third Tuesday.
The same thing happened last month – there were no Previews of the January Monthly Rollups for Win7 or 8.1. Which is good because there wasn’t any January Monthly Rollup for Win7, outside of a single security patch – and there wasn’t any January Monthly Rollup for Win 8.1, period.
Microsoft has just posted that there is no Preview of the February Monthly Rollups. That’s probably because the February Monthly Rollups will only include security updates.
I’ll try to translate all of this into English for InfoWorld, tomorrow morning.