|
Patch reliability is unclear. Unless you have an immediate, pressing need to install a specific patch, don't do it. |
Newsletter Archives
-
Patch Lady – seriously Gordon, Windows 10’s aren’t dropping like flies
If you read Gordon’s post you would think that I was typing up this post from my iphone because all of my Windows 10 machines were blue screening on me and were not functional. While I am an advocate of not installing updates on the first day, the reality of updating is that while SOME people will have issues the vast majority of us will be fine and see absolutely no side effects whatsoever.
I’ll even take Mayank to task in his article… https://www.windowslatest.com/2020/04/06/windows-10-update-kb4541335-is-wrecking-pcs/
“Windows Updates have a dreadful track record of late, with almost every single update causing users some serious problems.”. Again, I skip all optional updates, only install the main updates, and not right away and all of my machines are just fine. There are some people having issues, but it’s not ALL of us having issues.
Here’s my recommendation to not do a Gordon on your Windows 10 machine.
- Stick with one antivirus. I’ll even go so far as to recommend the native Defender. I often see browser brick ups, issues and oddities with any number of third party antivirus vendors (just saw one yesterday related regarding Symantec). But if you have multiple a/v, or multiple anti spyware, please, don’t.
- Don’t use cccleaner. Registry cleaners do more harm than good especially on Windows 10.
- Really really old software should be installed on really old systems. Meaning that if you install something where the drivers aren’t signed, or you have to jump through all sorts of hoops of application compatibility to get it installed, that’s not a good sign.
- The optional updates are not, nor have they ever been mandatory. If you aren’t directly impacted by that VPN connectivity issue, don’t install them.
- Know how to boot back into your machine and restore from a backup. Not just uninstall the update, but truly to reboot a pc back and restore it. Often booting from a flash drive is the most horrific experience on a pc. You often have to google up the specific instructions for a pc to figure out how to ‘catch’ it before it boots to get it to grab the flash drive. You want to make sure you KNOW that exact sequence and have tested it out. Personally I find Surface devices the most fiddly as you often have to find the specific info for that specific version and press the up down buttons a certain way to get it to grab the flash drive.
- Ensure you have bootable flash drives and external hard drives. Here at the office I even keep a spare SSD drive because so often they can just die spontaneously.
Don’t install updates right away tomorrow, but seriously Gordon, that article isn’t helpful.
-
New forum for COVID-19
I’ve posted several times about the novel coronavirus – once on a purely personal level. I should know better than that. Sorry.
I’ve been thinking about it a lot, and can’t recall any single, recent exogenous event (as in outside the tech sphere) that’s had a greater impact on our day-to-day lives. It’s doubly vexing because we not only have the obvious impact of the spreading infection — Microsoft and many other companies are basically shut down, fer heaven’s sake — but also because we have the tools at hand to help people keep going, even if they can’t drop by the water cooler to catch up on the latest gossip.
I’m also painfully aware of the many problems that surround COVID-19, the way governments and individuals have mishandled things, the way coverage in the media falls far short, the lack of information, both intentional and unintentional.
I have a bit of extraterrestrial skin in this game. I’ve been an advocate of telecommuting (er, working from home) for a long time. Co-wrote a book about it, back when dinosaurs ruled the earth. Much has changed. Surprisingly, much hasn’t. I continue to believe that telecommuting is the way of the future — and probably will be for a millennium or two.
As I said earlier this week, I’m no epidemiologist, and you aren’t either. But I was surprised to find that one of the folks here at AskWoody Central does have a great deal of experience with communicable diseases — and knows a whole lot more about the nuts-and-bolts of infections than I ever will.
All of which has led me to create a forum specifically for discussions about COVID-19. You’re most welcome to drop by and add your observations, questions, and insight. It’s an “Outside the box” forum, so the usual posting rules have been relaxed a bit. Still, I’d like to ask that you keep the political noise to a minimum.
-
Cortana officially gets thrown under the bus
An amazing Friday blog post from Cortana corporate VP Andrew Shuman:
Today, Microsoft is announcing an updated Cortana experience in Windows 10 that will deliver more help from your assistant in Microsoft 365. This next step in Cortana’s evolution will bring enhanced, seamless personal productivity assistance as a free update to the latest version of Windows 10 coming this spring…
We’re excited about how these updates to Cortana will help you stay on top of things, save time and do your best work. As we continue to innovate on Cortana in Microsoft 365, we plan to share further improvements in the coming months.
Tero Alhonen had an accurate synopsis on Twitter:
We’re excited about these updates to Cortana:
* consumer skills including music, connected home and third-party skills will no longer be available
* ending support for Cortana in older versions of Windows
* turning off the Cortana services in the Microsoft Launcher on Androidand we plan to share further improvements in the coming months.
He then turned to the demise of certain MCSE certifications, posted yesterday by Alex Payne, the GM of Global Technical Learning at MS….
We’re also excited to share that there will not be Windows Server 2019 and SQL Server 2019 certifications and basically everything that has anything to do with on-prem will be wiped out
(That’s Tero’s take, but it’s a fair representation of what’s happening.)
-
Patch Lady – are you an IT pro?
Would you be willing to fill out a survey?
I’m assisting someone getting a masters degree – she is conducting a research job on IT pros especially those that have managers. If you would be so kind – For full information in the Consent Form document and to begin the survey, please go to: https://uisits.co1.qualtrics.com/jfe/form/SV_efhaTYgFuxlVdu5
On behalf of myself and Janetta Waterhouse, thank you!
-
Citrix announces security patches for some (but not all) of its compromised products
Citrix says it’s fixed some things, and will fix the rest soon. Per the web announcement:
Permanent fixes for ADC versions 11.1 and 12.0 are available as downloads here and here.
- These fixes also apply to Citrix ADC and Citrix Gateway Virtual Appliances (VPX) hosted on any of ESX, Hyper-V, KVM, XenServer, Azure, AWS, GCP or on a Citrix ADC Service Delivery Appliance (SDX). SVM on SDX does not need to be updated.
- It is necessary to upgrade all Citrix ADC and Citrix Gateway 11.1 instances (MPX or VPX) to build 11.1.63.15 to install the security vulnerability fixes. It is necessary to upgrade all Citrix ADC and Citrix Gateway 12.0 instances (MPX or VPX) to build 12.0.63.13 to install the security vulnerability fixes.
Nope, that doesn’t cover all the bases.
We have moved forward the availability of permanent fixes for other ADC versions and for SD-WAN WANOP from our previous target dates as follows:
- ADC version 12.1, now January 24
- ADC version 13 and ADC version 10.5, now January 24
- SD-WAN WANOP fixes, now January 24
“Soon” being relative, I guess.
UPDATE: As of early Tuesday morning, Kevin Beaumont reports that GreyNoise’s honeypots are trapping lots of attempts to break into Citrix Gateway systems.
The top thirty most scanned URLs today are almost all Citrix Gateway related. If you haven’t patched or mitigated your devices, you’re likely in deep doo doo. There’s another nugget in that data, which is people are scanning for Citrix devices using other paths, e.g. font files etc – likely IDS avoidance technique.
Details in Computerworld Woody on Windows.
UPDATE: FireEye just released a tool that scans for infections. Citrix has details.
-
Microsoft says it’ll sell Win7 Extended Security Updates to Ultimate users
Sort of.
Microsoft’s Joe Lurie posted on the Tech Community forum yesterday:
- We have been communicating ESU since last May with constant blogs, announcements at events, tweets, etc. The media has been reporting on them as well; I apologize if it seems last minute. The EOL date of Windows 7 was announced long before the ESU announcements, so even without ESU the EOL of Windows 7 has been looming. That said, Microsoft announced ESU in early 2019 and have been making changes to the program as necessary ever since. One change was allowing for CSP which was not in the original plans. This is why this was announced in October – it was an add-on program based on customer request;
- Most of us at Microsoft, and specifically in the ESU PG, are not at home over the holidays, we are still working to provide ESU for the customers that need it. As I mentioned in the above point, we only announced CSP recently, and have CSP partners ready to help;
- ESU is available for Windows 7 Ultimate edition, and has been since ESU was first being sold. We may have failed in that communication, and I apologize for that. Most of our enterprise customers aren’t using Ultimate edition, so we didn’t have Ultimate documented. Once we started selling ESU via CSP channel, the CSP partners were made aware of which versions are eligible for ESU.
Wading through the alphabet soup, Lurie’s saying that normal people (and small companies) will have to get Extended Security updates through the recently-announced Cloud Service Provider companies. It appears that Microsoft forgot that there are Win7 users who want security updates, but aren’t tied to volume licenses. Those unwashed masses (like, oh, me) have to go through a CSP.
The announcement about Extended Security Update availability for Win7 Ultimate is brand new, at least to me. There’s been a lot of speculation in recent months (much of it here on AskWoody) as to whether Ultimate customers will be able to buy the patches.
Patch Lady Susan Bradley is spearheading the drive to bring Win7 Extended Security Updates to the masses. Stay tuned – much more to come.
-
Patch Lady – looking for info on extended patches for Windows 7?
Hang loose, it just went on the price list on 12/1. I’m in the process now of having Amy Babinchak (fellow author on askwoody.com and cloud service provider) to go through the process to purchase so we can see how this process works.
More to come…..
-
Win10 and Win7 market share hold steady in November
The numbers for November are out, and that mass exodus of Win7 users abandoning ship hasn’t yet occurred.According to Netmarketshare, Win10 usage share stayed stead around 54% in both October and November and Win7 hovered around 27% both months.
Of course, the usual caveats apply: Sampling methods are all over the place, you can’t rely on specific absolute numbers, large changes are significant but small changes aren’t. Still…
Plus Membership
Donations from Plus members keep this site going. You can identify the people who support AskWoody by the Plus badge on their avatars.
AskWoody Plus members not only get access to all of the contents of this site -- including Susan Bradley's frequently updated Patch Watch listing -- they also receive weekly AskWoody Plus Newsletters (formerly Windows Secrets Newsletter) and AskWoody Plus Alerts, emails when there are important breaking developments.
Get Plus!
Recent Topics
-
Latest Firefox requires Password on start up
by 3 hours, 47 minutes ago
-
Resolved : AutoCAD 2022 might not open after updating to 24H2
by 8 hours, 9 minutes ago
-
Missing api-ms-win-core-libraryloader-11-2-1.dll
by 4 hours ago
-
How Much Daylight have YOU Saved?
by 4 hours, 43 minutes ago
-
A brief history of Windows Settings
by 3 hours, 40 minutes ago
-
Thunderbolt is not just for monitors
by 4 hours, 49 minutes ago
-
Password Generators — Your first line of defense
by 4 hours, 1 minute ago
-
AskWoody at the computer museum
by 4 hours, 21 minutes ago
-
Planning for the unexpected
by 5 hours, 19 minutes ago
-
Which printer type is the better one to buy?
by 9 hours, 54 minutes ago
-
Upgrading the web server
by 8 hours, 19 minutes ago
-
New Windows 11 24H2 Setup – Initial Win Update prevention settings?
by 1 day, 3 hours ago
-
Creating a Google account
by 1 day, 2 hours ago
-
Undocumented “backdoor” found in Bluetooth chip used by a billion devices
by 1 day, 8 hours ago
-
Microsoft Considering AI Models to Replace OpenAI’s in Copilot
by 1 day, 19 hours ago
-
AI *emergent misalignment*
by 1 day, 20 hours ago
-
Windows 11 Disk Encryption/ Bitlocker/ Recovery Key
by 4 hours, 51 minutes ago
-
Trouble signing out and restarting
by 21 hours, 27 minutes ago
-
Windows 7 MSE Manual Updating
by 2 days, 5 hours ago
-
Problem running LMC 22 flash drive
by 1 day, 4 hours ago
-
Outlook Email Problem
by 1 day, 4 hours ago
-
“Microsoft 365 Office All-in-One For Dummies, 3rd Edition FREE
by 1 day, 11 hours ago
-
Cant use Office 2013 – Getting error message about Office 2013
by 2 days, 4 hours ago
-
Nearly 1 million Windows devices targeted in advanced “malvertising” spree
by 2 days, 4 hours ago
-
Windows 11 Insider Preview build 27808 released to Canary
by 3 days, 5 hours ago
-
Windows 11 Insider Preview Build 22635.5025 (23H2) released to BETA
by 3 days, 5 hours ago
-
Sysprep issue
by 3 days, 5 hours ago
-
Android Security Bulletin—March 2025
by 3 days, 7 hours ago
-
23h2: PIN TO START randomly available on right-click
by 3 days, 7 hours ago
-
Microsoft Defender
by 3 days, 13 hours ago
