Extending that lifecycle -again

Topic

New Reply

Patch Lady here:  In today’s Microsoft 365 blog, Microsoft is announcing a lifecycle extension for Enterprise customers.  For those with Enterprise li
[See the full post at: Extending that lifecycle -again]

Susan Bradley Patch Lady/Prudent patcher

8 users thanked author for this post.

Microfix, Noel Carboni, ve2mrx, AlexEiffel, ch100, Steve S., abbodi86, woody

Reply | Quote

Replies

Only september releases of Windows 10 Enterprise / Education will have 30 months of support. March releases will be limited to 18 months of support just like Pro editions. Home editions can’t defer updates so they are upgraded as new version are released.

So for example soon the be released Windows 10 Enterprise 1809 will be supported for 30 months while Windows 10 Enterprise 1903 will be supported only 18 months.

How long before Microsoft changes it’s mind, again?

Francis

Reply | Quote

Microsoft sure is blurring Home and Pro versions of Windows. If they keep taking features away from Pro and only focus on features for Enterprise that is going to leave businesses with few options. I wouldn’t be surprised to see Windows Pro discontinued in the not so distant future. Sigh…..

Group A | Windows 7 Pro 64-bit | Windows 10 Pro 1809 64-bit

Reply | Quote

I doubt they’ll phase out Pro, unless they want to alienate small/med biz who is not willing or can’t pay per seat license agreements.

If not for the domain join and more granular control over updates and postponing them, Pro would be worthless since they do keep removing GPO from it in favor of the Ent/Edu skus.

1 user thanked author for this post.

JSTechGeek

Reply | Quote

I don’t think they will either. I wouldn’t be surprised though. They sure are trying to nudge companies to Enterprise…

Group A | Windows 7 Pro 64-bit | Windows 10 Pro 1809 64-bit

1 user thanked author for this post.

zero2dash

Reply | Quote

So we will see about 8 serviced versions of Windows 10 together

Reply | Quote

Remember, there is just ONE Windows now :).

Fractal Design Pop Air * Thermaltake Toughpower GF3 750W * ASUS TUF GAMING B560M-PLUS * Intel Core i9-11900K * 4 x 8 GB G.Skill Aegis DDR4 3600 MHz CL16 * ASRock RX 6800 XT Phantom Gaming 16GB OC * XPG GAMMIX S70 BLADE 1TB * SanDisk Ultra 3D 1TB * Samsung EVO 840 250GB * DVD RW Lite-ON iHAS 124 * Windows 10 Pro 22H2 64-bit Insider * Windows 11 Pro Beta Insider

1 user thanked author for this post.

Cybertooth

Reply | Quote

Peter Bright over at Arstechnica had the same info but also had this tid-bit as well:

“This 30-month window is also being retroactively applied to the Enterprise and Education editions of all prior Windows 10 feature releases that are currently supported: 1607, 1703, 1709, and 1803.”

Wow 30 months of Satya not slathering more useless layers of lipstick on the Windows 10 pig!!!

Have already D/L’e the 1709 Education Edition Iso for the multi-boot on my upcoming i9-9900K build next month. Windows 7 will be the primary 24/7 OS on it though.

Also in the same artcle from Peter:

Windows 7 lumbers on:
“And for those customers still on Windows 7 and planning to stay that way beyond the January 2020 end of extended support, Microsoft has a new scheme for receiving paid updates. Windows 7 Extended Security Updates (ESU) will offer an additional three years of security fixes, through January 2023. Paid security fixes aren’t a new thing for Microsoft, but what’s different here is that this extended support will be offered uniformly to all volume license customers of Windows 7 Professional and Enterprise. It’ll be offered on a per-device basis, with the cost increasing each year.”

Gee now who didn’t see this coming considering about 35% of PC’s worldwide will still be running Win7 come the support end date.  It’s going to be WinXP all over again only with twice the installed base that XP had at free support end (after that end was extended twice). Remember we still get WinXP updates every month and it’s free extended support ended in 2014.  XP monthly updates are readily available in the Update Catalog for anyone to grab.

2 users thanked author for this post.

Microfix, AlexEiffel

Reply | Quote

ViperJohn wrote:

Remember we still get WinXP updates every month and it’s free extended support ended in 2014. XP monthly updates are readily available in the Update Catalog for anyone to grab.

I don’t think that’s true. The most recent update I can find in Microsoft Update Catalog for Windows XP is four-and-a-half years old.

Reply | Quote

I believe there was an XP update issued last May, during the Wannacry crisis:
https://www.catalog.update.microsoft.com/Search.aspx?q=KB4012598
MS17-010: How to install security update (WannaCry)

1 user thanked author for this post.

satrow

Reply | Quote

OK, one in 4.5 years. Monthly?

Reply | Quote

Even antivirus updates for MSE has stopped.  There is a extended support patches for XP, there is point of sale support for POS XP 2009 (if I’ve got my naming right) but no one in consumerland is getting XP updates these days.

Susan Bradley Patch Lady/Prudent patcher

2 users thanked author for this post.

AlexEiffel, satrow

Reply | Quote

I’m pretty sure most know the trick that makes XP POSReady 2009 gets offered and applied to regular XP

2 users thanked author for this post.

Microfix, AlexEiffel

Reply | Quote

Some sites recommended quite strongly against the registry hack:

Yes, you still can trick Microsoft into giving you security updates for Windows XP. No, it’s not a good idea. You are not protected.
Hacked Windows XP still updates, still a bad idea

I didn’t know that XP Embedded updates were available from Microsoft Update Catalog.

3 users thanked author for this post.

Elly, Jan K., AlexEiffel

Reply | Quote

b, the XP embedded POSReady 2009 updates had been available from MS Update Catalog for several years since normal XP was EOL in April 2014. perhaps you did not pay attention or was unaware.

Reply | Quote

I just said I was unaware. Why should I pay attention to XP Embedded?

2 users thanked author for this post.

Elly, satrow

Reply | Quote

I think med/small business may try to eek it out on W7/Pro way past January 2020 because Microsoft is currently not meeting their expectations and business needs with WaaS There are no penalties for them (from Microsoft) if they do. Obviously, they will need to lock their systems down in 2020 if they intend to do so, but it can be done. It will at least send a message to Microsoft. Of course, how it is received is another matter.

Med/small business use Microsoft more than any other OS because of the fact that their applications were written (ages ago) to run under Windows and nothing but Windows. Also Office is pretty much essential – primarily Word and Excel.

Many non-business people have already dumped Windows for other platforms and most schools have a preference for Chromebooks, so it stands to reason that the majority of W7/Pro users today are probably med/small businesses. Microsoft is not hauling in a steady stream of revenue from them right now and that is going to change starting in 2020. The ‘carrot dangling in front of the donkey’ trick may be implemented sometime late in 2019 with non-enterprise W7 users.

Disclaimer: I use W7/Pro. I am no donkey, but I like carrots.

2 users thanked author for this post.

Noel Carboni, AlexEiffel

Reply | Quote

anonymous wrote:

Also Office is pretty much essential – primarily Word and Excel.

They could run the web version of Office 365 under any OS. I run it in Linux Mint, using Opera as the browser. It works very well, although there are a few differences between the web version and the installed version, which take a bit of getting used to.

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

Reply | Quote

They rolled out a second XP security patch on June 13 of last year as well:

Security Update for Windows XP Service Pack 3 (KB4012583)

Details
Version:
4012583

File Name:
WindowsXP-KB4012583-x86-Custom-ENU.exe

Date Published:
6/13/2017

File Size:
1.5 MB

Obviously not a resumption of regular patching for XP, but it does signify a response to the world as it is, and not as Microsoft desperately wishes it to be.

1 user thanked author for this post.

Microfix

Reply | Quote

you will have to manually download the XP KB4012583 update as it will not be offered thru windows update

1 user thanked author for this post.

Microfix

Reply | Quote

See details above of May 2017 update.

Reply | Quote

Kirsty wrote:

See details above

Looks completely different.

(He said second, so he’d seen your first.)

Reply | Quote

My apologies – I should have mentioned the “first” update (I will fix it now).

It is interesting that KB4012583 was issued in March, and shows as updated in June in the catalog, yet the KB support article was last updated in March:

MS17-011 and MS17-013: Description of the security update for Microsoft Graphics Component: March 14, 2017
Last Updated: Mar 15, 2017

1 user thanked author for this post.

Elly

Reply | Quote

I work for a medium business. We’d like to be fully switched over to Linux by 2020 for desktops.  Servers might be more dicey, not certain yet.  I’d like to see as many as we can run on Linux, and we’re somewhere near 20% as-is.

We’re lucky that we’ve been replacing most of our old tech as we go along, and the few Windows-specific software packages (except Office) are only used by a handful of users.  Office is the big one, but Libre might be enough?  We’ve got a year to find that out.

3 users thanked author for this post.

Elly, Jan K., radosuaf

Reply | Quote

Anonymous #215727 : ” The ‘carrot dangling in front of the donkey’ trick may be implemented sometime late in 2019 with non-enterprise W7 users. ”

Right now, it looks more like sticks than carrots. Or sticks shaped like outsized — and iron-hard — carrots.

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

The sad (?) thing here is, has there really been anything in Win10 since launch that anyone went gaga over? IMHO, the best part of 10 is that it has the Explorer enhancements of 8/8.1, with the added benefits of Task View. As a gamer I would say “DX12” but I’ve seen none of my games use it.

Since then, every feature update…I cannot honestly think of anything added that wet my whistle. They cleaned up Notifications and Settings a bit, but those are all to be expected. Yes, it’s more stable, 1703 arguably the most stable, but I’m looking for feature update “new stuff” here.

I’m struggling to find anything, I really am. Edge is better… Can you edit bookmark URL’s in it yet? Last I checked, you couldn’t, and that’s something that’s been in browsers since the 90’s.

The idea of even once yearly updates where people have to go through the hassle, without any real benefits…well, color me surprised that “people don’t want that”.

2 users thanked author for this post.

JSTechGeek, Noel Carboni

Reply | Quote

zero2dash wrote:

Edge is better… Can you edit bookmark URL’s in it yet? Last I checked, you couldn’t, and that’s something that’s been in browsers since the 90’s.

Yes, since 1709:

Windows 10 Tip: Edit any URL in your Microsoft Edge Favorites

2 users thanked author for this post.

Elly, zero2dash

Reply | Quote

Multiple Desktops feature finally native to the OS. Linux has had this feature for years and there are third party utilities to accomplish this in Windows (Sysinternals suite,  Desktops). I personally hate the apps that are built in to Windows 10, they suck. Apps are meant for tablets and mobile devices, not a desktop!

Group A | Windows 7 Pro 64-bit | Windows 10 Pro 1809 64-bit

2 users thanked author for this post.

David F, radosuaf

Reply | Quote

MS Edge is still overrated, zero2dash. a few sites don’t work correctly with it.

in the 1803 version of Win10, the MicrosoftEdge.exe & MicrosoftEdgeCP.exe files always load at startup as I looked in Task Manager on the Details tab. sure MS Edge loads faster in v1803 because those files are pre-loaded after the desktop loads, which is sort of a “cheat” by MS to think their browser is faster than Google Chrome & Mozilla Firefox.

2 users thanked author for this post.

Microfix, AlexEiffel

Reply | Quote

EP wrote:

MS Edge is still overrated…a few sites don’t work correctly with it.

This is not just a problem with Edge – you will find this with all browsers. There will always be a site or two which won’t work with your preferred browser; you should have a second browser available for those cases.

Group "L" (Linux Mint)
with Windows 10 running in a remote session on my file server

1 user thanked author for this post.

columbia2011

Reply | Quote

@EP, If you don’t use Edge as your browser in W10 v1803, there are steps you can take to disable Edge from starting up at boot over at Ghacks: block-windows-10-from-preloading-microsoft-edge-on-start
Works for W10 Pro onward due to needing access to GP settings which W10 Home does not have.

If debian is good enough for NASA...

Reply | Quote

One more post to vent about Win10 for the day. Their Printers and Scanners system settings are garbage. I get a permissions issue on the rundll32.exe file when trying to remove printers or open the print queue. I am in an Administrator account, permissions shouldn’t be an issue.

I have to go into the control panel and manage and remove printers that way. No issues going this normal route like in Win 7.

Microsoft has a long way to go to get these system settings menus actually useful.

Group A | Windows 7 Pro 64-bit | Windows 10 Pro 1809 64-bit

Reply | Quote

I agree with you Susan.  This does seem to indicate MS has ears to listen with and have offered Enterprise a meaningful update cadence. Sadly us non-Enterprise users continue to be dissed.  After three and a half decades of being a MS user, I’m now just cannon fodder? 🙁

Win10 Pro x64 22H2, Win10 Home 22H2, Linux Mint + a cat with 'tortitude'.

Reply | Quote

Microsoft has stated that they release updates for Enterprise only when those updates are stable.

Given that Home and Pro users get the updates earlier, that’s tacit admission that those users get unstable updates.

Insiders are alpha testers.

Home/Pro users are beta testers.

Enterprise users get the (real) quality updates.

Hanlon's Razor: Never attribute to malice that which can be adequately explained by stupidity.

3 users thanked author for this post.

AlexEiffel, Steve S., Noel Carboni

Reply | Quote

I pray that Microsoft comes to its sense and realize they are only losing costumers by reducing the time to test the feature updates.

Just someone who don't want Windows to mess with its computer.

Reply | Quote

b wrote:

ViperJohn wrote:

Remember we still get WinXP updates every month and it’s free extended support ended in 2014. XP monthly updates are readily available in the Update Catalog for anyone to grab.

I don’t think that’s true. The most recent update I can find in Microsoft Update Catalog for Windows XP is four-and-a-half years old.

It’s all in your search terms. Search “Windows XP Embedded” in the catalog.  They are exactly same updates that I get with paid XP updates.  In fact I always D/L and install the monthly Internet Explorer update from the Catalog first cause that reduces the time to find and pull XP security updates from 30 to 90 minutes to 1 or 2 minutes

https://www.catalog.update.microsoft.com/Search.aspx?q=Windows+XP+Embedded

1 user thanked author for this post.

satrow

Reply | Quote

Why do you pay for XP updates?

Reply | Quote

ask Microsoft yourself, b

Reply | Quote

I don’t think you understood the question. ViperJohn pays for updates and uses free ones.

Reply | Quote

Viper John #215807  : So “embedded” xp updates can really be used to do regular user PC updates and are not just for patching the version of xp embedded in ATM controllers and such? That seems strange to me, but if this is the way it is, and is for free to boot, one could use them to patch, and most economically, one’s old xp PC and that way bring it back to active duty from the shelf where it has been lying sidelined for a while now…

Just asking.

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

b wrote:

Why do you pay for XP updates?

I do not personally pay for XP Updates.  A company I used to work for does. I am still part of team of 6 people for that company that use propriatary SCADA like program(s) to monitor and control small remote (some you can only get to on horseback or helo) power generating stations scattered around the mountains for Northern California and Southern Oregon.  The program(s) won’t run on anything over WinXP.  It’s all ancient cob-web stuff having started out using OSR2 and full T1 lines in the beginning, but it still works surprisingly well.

b wrote:

I don’t think you understood the question. ViperJohn pays for updates and uses free ones.

No I get the Internet Explorer update from the catalog and install it 1st and then pull the rest of the updates from MS XP Update.  In WinXP the Internet Explorer update contains the XP servicing stack update (which seem to change every month with XP).  I could get it all from MS XP Update but that could take up to 2 hours, instead of a couple of minutes, (and the update might even fail) if I don’t manually install the IE update first.  It’s just a quirk in the XP Update system now that will never be corrected these days.

2 users thanked author for this post.

Jan K., Kirsty

Reply | Quote

OscarCP wrote:

Viper John #215807 : So “embedded” xp updates can really be used to do regular user PC updates and are not just for patching the version of xp embedded in ATM controllers and such? That seems strange to me, but if this is the way it is, and is for free to boot, one could use them to patch, and most economically, one’s old xp PC and that way bring it back to active duty from the shelf where it has been lying sidelined for a while now… Just asking.

The updates I get have the same KB numbers as the”WES09 and POSReady” XP updates in the Catalog (and have since 2014).  I am pretty sure that what MS XP Update is sending me is straight out of the Catalog.

If you think about it listing the product as “Windows XP Embedded” keeps most people from ever finding them as the people here using “Windows XP” as there catalog search term found out.

1 user thanked author for this post.

OscarCP

Reply | Quote

If the xp updates are listed in the catalog in the same way as those for Win 7, then all the updates for all the different xp kinds of system (xp x32, server, embedded, etc.) will have the same KB number. The kind of system a given patch with that group KB number is for will be mentioned in the middle of the corresponding Catalog list entry. So if it says there “embedded”, usually I would understand that the patch is for updating xp in ATM controllers and such that still run “xp embedded”. And that is why I found the possibility of it also being OK to use on a regular PC a bit strange.

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

OscarCP wrote:

So if it says there “embedded”, usually I would understand that the patch is for updating xp in ATM controllers and such that still run “xp embedded”. And that is why I found the possibility of it also being OK to use on a regular PC a bit strange.

In XP’s case it’s probably a bit different.  Why on earth would MS spend the money to produce separate updates for a full XP install and a different one for a cut down Embedded install (ATM type units) and/or PoS (Point of Sale) install which were, more often than not, full XP installs.

While a true update for an Embedded only install might not be usable for a full install due to missing update pieces a full install would need the opposite (full install update in embedded) would almost certainly work as you would just have more update pieces than needed.  Also the core components of XP like the kernal and “basic guts” of XP exist in all XP versions and that’s all that gets security updated now.

Naming a full install update “Security Update for WES09 and POSReady” and using “Windows XP Embedded” as the target product would be a easy way to obfuscate the update and put the blood hounds off the scent of a free-be.

All I know is I update (4) Win7, (1) Win10 and (2) WinXP systems every month and THE ONLY ONES that have not had any issues with updates at all in the last 4 years are the WinXP systems!!!  Win7 comes in 2nd with Win10 coming in dead last.

3 users thanked author for this post.

Jan K., OscarCP, Cybertooth

Reply | Quote

ViperJohn #216015 :

Interesting and something for those who own xp machines still in working order to keep in mind. I wonder if MS might be really playing some kind of shell game using the names of the xp updates’ target systems as “cups”, or if there could be a more respectable reason for this?

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

Does an XP machine need to have the POSReady hack performed on it, in order to install the patches that show up from searching for “Windows XP Embedded” in the MS Update Catalog?

Mind you, I’m not asking if a non-POSReady XP system will download these patches on its own via Windows Update, but rather if these patches can be downloaded manually and then installed on such a system without the POSReady hack.

Keep Running Windows 7 Safely for Years to Come  
Make Windows 10 look and work like Windows 7

Reply | Quote

Yes, adding the POSReady hack will get the updates offered through WU for regular XP

1 user thanked author for this post.

Cybertooth

Reply | Quote

Thanks @abbodi86, but what I’m curious about is whether one could manually download and install these “XP Embedded” updates on an XP machine that has not had the POSReady hack.

 

Keep Running Windows 7 Safely for Years to Come  
Make Windows 10 look and work like Windows 7

Reply | Quote

You can certainly download the updates from the catalog. I download from Win8.1 and save the updates. For example, look up KB4343205 (Aug IE update) in the Catalog and you will find the one for IE8 listed for XP Embeded.

They install manually with the hack. But whether they will install without the POSReady hack is another question I do not have the answer to.

1 user thanked author for this post.

Cybertooth

Reply | Quote

It looks like I have some experimenting to do!  🙂

 

Keep Running Windows 7 Safely for Years to Come  
Make Windows 10 look and work like Windows 7

Reply | Quote

OK, I tried it. Downloaded an “XP Embedded” patch manually and tried to install it on an XP system that hasn’t had the POSReady hack applied to it. The installation failed with a “Setup Error” that read:

The version of Windows you have installed does not match the update you are trying to install.

Makes sense, but it was worth a try to confirm it.  🙂 Bottom line: if you want the newer (post-April 2014) patches on XP, you need to use the POSReady hack no matter which way you get your Windows updates.

 

Keep Running Windows 7 Safely for Years to Come  
Make Windows 10 look and work like Windows 7

Reply | Quote

Cybertooth  #216127

What is this hack and how does one go about performing it?

Maybe you could just provide a link to somewhere it is explained — preferably in writing not too loaded with cryptic jargon.

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

@oscarcp, here are a couple of links about the hack. The first one is an informative piece by one of Woody’s colleagues at CW: https://www.computerworld.com/article/2489870/microsoft-windows/windows-xp-hack-resurrects-patches-for-retired-os.html

And here’s one from a reputable website, often quoted here at Woody’s, describing how to go about modifying XP: https://www.ghacks.net/2014/05/24/get-security-updates-windows-xp-april-2019/

Good luck!

 

Keep Running Windows 7 Safely for Years to Come  
Make Windows 10 look and work like Windows 7

1 user thanked author for this post.

OscarCP

Reply | Quote

Cybertooth #216193 :  Thanks for those two links to information on the hack I was suggesting would be good to have available. Too bad that even that will no longer be possible after April next year, when MS stops delivering patches for xp embedded. Also, clearly, the worst vulnerability to malware exposure is Internet Explorer, as it is unlikely to receive suitable patches, or any patches at all for the old versions that can still run under xp. So, one should use, instead (as recommended in the CW article), one of several other browsers that are still compatible with xp and are updated regularly by their creators (e.g. Firefox).

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

The following statement is in https://www.mozilla.org/en-US/firefox/53.0/releasenotes/ :
“Windows XP and Vista are no longer supported. XP and Vista users running Firefox 52 will continue to receive security updates on Firefox ESR 52.”

ESR 52 can be selected from https://archive.mozilla.org/pub/firefox/releases/52.0.2esr/ .

All Firefoxes: https://archive.mozilla.org/pub/firefox/releases/ .

Reply | Quote

Your link for Firefox 52 ESR leads to an outdated, insecure version. To access the last version of FF-52 ESR, click here.

Version 52 ESR was last updated in June, and has had several security updates since the earlier version you mentioned. It is no longer being updated.

Reply | Quote

Kirsty: You are absolutely right! I didn’t scroll down far enough. Thank you.

It appears to be the ‘latest’ release that is XP (and Vista) compatible.

Reply | Quote

Susan Bradley wrote:

Even antivirus updates for MSE has stopped. There is a extended support patches for XP, there is point of sale support for POS XP 2009 (if I’ve got my naming right) but no one in consumerland is getting XP updates these days.

Thats a negative on the AV Susan.  Both my XP installs use MSE and D/L the current virus definition updates everytime a while after I boot to the OS.

Reply | Quote

OscarCP wrote:

If the xp updates are listed in the catalog in the same way as those for Win 7, then all the updates for all the different xp kinds of system (xp x32, server, embedded, etc.) will have the same KB number. The kind of system a given patch with that group KB number is for will be mentioned in the middle of the corresponding Catalog list entry. So if it says there “embedded”, usually I would understand that the patch is for updating xp in ATM controllers and such that still run “xp embedded”. And that is why I found the possibility of it also being OK to use on a regular PC a bit strange.

Reading between the lines of this post I believe there is an assumption that a difference exists in the updates for “Windows 7” and “Windows Embedded Standard 7” just because they are listed separately in the catalog even though they carry the same KB number and have the same size (respective of 32 or 64 bit).  I know that “I did not know” cause I never checked …. until now.

Wanting to find out I DL’ed the Security Only Update, KB4343899, for both Windows 7 x64 and Windows Embedded Standard 7 x64.  First thing I noticed was the .msu filenames were  identical.  I next popped open a Command Prompt Window and ran a file compare (FC and FC /B) on the two .msu files and the magic “no differences encountered” were the results on both file compares. That could bode very well post January 2020.  Since I am Group B and do not do rollups I did not compare them.  Will leave that for someone else to play with.

I must admit I half expected at least a Meta-Data difference so the Embedded Update would fail to install on regular Windows 7.  Am going to roll back to my Pre-August update disk image and give the Windows Embedded Standard 7 updates a whirl.

Reply | Quote

ViperJohn  #216183 : Perhaps you might check also the updates of a few more months, to make sure you did not just happen to find something that rarely occurs?

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

ViperJohn,

open that MSU file in 7zip, extract its PkgProperties.txt file, open that TXT file in Notepad and view the “ApplicabilityInfo” section. It should say “Windows 7.0 Client SP1;Windows 7.0 Embedded SP1;Windows 7.0 WinPE 3.1;” – meaning that patch can be installed on both embedded and non-embedded versions of Win7 as long as Microsoft does not change the ApplicabilityInfo on future MSU patches for Win7

1 user thanked author for this post.

ViperJohn

Reply | Quote

OscarCP wrote:

ViperJohn #216183 : Perhaps you might check also the updates of a few more months, to make sure you did not just happen to find something that rarely occurs?

Well as I expected KB4343899 Sec Only KB4343205 IE11 Cumm for Windows Embedded Standard 7 installed just fine in Windows 7.  July checked out as well.  Will check each month going forward from here.

I do not think this is rare at all now but probably the norm.  After all Satya, in his infinite wisdom, absolutely gutted and has darn near killed the Window Update dept and teams.  I doubt they even remotely have the manpower to do differentiated updates for the different versions now.  If the update quality lately is any indication they do not really have the manpower or the moral to put out good, vetted updates at all most of the time.

I would bet that if you went back to the individual update days, before all this rollup and cummulative update garbage, the updates were version differentiated because (1) they had the manpower to do it and (2) the top brass actually cared about putting out a reasonable quality product where unfortunately today Satya just doesn’t … be it software or hardware.

Reply | Quote

OscarCP wrote:

Cybertooth #216193 : Thanks for those two links to information on the hack I was suggesting would be good to have available. Too bad that even that will no longer be possible after April next year, when MS stops delivering patches for xp embedded. Also, clearly, the worst vulnerability to malware exposure is Internet Explorer, as it is unlikely to receive suitable patches, or any patches at all for the old versions that can still run under xp. So, one should use, instead (as recommended in the CW article), one of several other browsers that are still compatible with xp and are updated regularly by their creators (e.g. Firefox).

@oscarcp, following are two (relatively) recent links to pages listing browsers that were still supporting XP as of the time of their writing: here and here. (Be sure to read the “Best Answer” in the Tom’s Hardware page for valuable advice on browsing securely.) Obviously the choices for XP are getting narrower and narrower, and will continue to do so over time.

Keep Running Windows 7 Safely for Years to Come  
Make Windows 10 look and work like Windows 7

1 user thanked author for this post.

OscarCP

Reply | Quote

note to Susan Bradley (Patch Lady)

can you post that PINOCCHIO scale for this blog?

that new extended lifecycle for Win10 enterprise users is pretty much “NOT simple” and consumer/home users don’t get the extension

Reply | Quote

? says:

this link from 2014 is what i used to enable POSReady on XP PRO:

https://www.zdnet.com/article/registry-hack-enables-continued-updates-for-windows-xp/

and this link is on troubleshooting the hack:

https://msfn.org/board/topic/176482-posready-2009-hack-not-working/

anyway, as it stands only 7 more months (give or take) remaining until the final XP plug pulling…

Reply | Quote

EP wrote:

ViperJohn, open that MSU file in 7zip, extract its PkgProperties.txt file, open that TXT file in Notepad and view the “ApplicabilityInfo” section. It should say “Windows 7.0 Client SP1;Windows 7.0 Embedded SP1;Windows 7.0 WinPE 3.1;” – meaning that patch can be installed on both embedded and non-embedded versions of Win7 as long as Microsoft does not change the ApplicabilityInfo on future MSU patches for Win7

Good Info.  Applies to Server as well.

ApplicabilityInfo=”Windows 7.0 Client SP1;Windows 7.0 Server Core SP1;Windows 7.0 Embedded SP1;Windows 7.0 Server

I wonder if that file is just pure informational or if it is used to control what windows version family the update engine is allowed to apply the update to.  If the latter it could possibly be of interest in 2020. Guess I could edit the file by deleting the “Windows 7.0 Client SP1” reference and see if the update fails to install to find out.

1 user thanked author for this post.

OscarCP

Reply | Quote

ViperJohn #216387 :

Hmmm… If your test is successful, wouldn’t it then be time to move this conversation to the Dark Web, agree on funny handshakes, secret mail drops, ring decoders, etc., so not to give MS any pointers? Just a thought. But, regardless of all that: please, go ahead.

Also abbody86 #216338  is a relevant entry in a thread started today by Woody. And that thread itself is quite relevant, I think.

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

OscarCP wrote:

ViperJohn #216387 : Hmmm… If your test is successful, wouldn’t it then be time to move this conversation to the Dark Web, agree on funny handshakes, secret mail drops, ring decoders, etc., so not to give MS any pointers?

Well the ApplicabilityInfo in the PkgProperties.txt was just that … info.  Deleting the
Windows 7.0 Client SP1 reference made no difference and the update engine installed the package no problem.

1 user thanked author for this post.

OscarCP

Reply | Quote

PkgProperties.txt is just for information

msu takes applicability from WSUSSCAN.cab, which in return take applicability from inner *.cab file and update.mum
servicing stack is not that simple

Reply | Quote

Three questions:

Can Win 7 embedded patches be used, at present, also for Win 7 (x32 & x64)?

Can MS change that easily, making this “cross-patching” impossible, any time they want?

Can the history of the patches available for xp embedded being used for xp not embedded past its EOL by making a known hack, be used as a guide to what might happen with those for Win 7 after EOL?

Thanks.

Ex-Windows user (Win. 98, XP, 7); since mid-2017 using also macOS. Presently on Monterey 12.15 & sometimes running also Linux (Mint).

MacBook Pro circa mid-2015, 15" display, with 16GB 1600 GHz DDR3 RAM, 1 TB SSD, a Haswell architecture Intel CPU with 4 Cores and 8 Threads model i7-4870HQ @ 2.50GHz.
Intel Iris Pro GPU with Built-in Bus, VRAM 1.5 GB, Display 2880 x 1800 Retina, 24-Bit color.
macOS Monterey; browsers: Waterfox "Current", Vivaldi and (now and then) Chrome; security apps. Intego AV

Reply | Quote

It’s the same files, regardless separate entries in Update Catalog
you may notice that .NET Rollups are gathered for both in one entry

Yes, like Windows 10 ver 1507 updates for example, can be only applied to Enterprise LTSB 2015

i’m not sure, but i don’t think they will do it instantly for Windows 7 Embedded

1 user thanked author for this post.

OscarCP

Reply | Quote

The Linux hackers’  are lining up for W7 end  of life support and switching to Linux.

Reply | Quote