|
GreenNight posted:This is interesting. I'm the people who are terrified of Microsoft telemetry yet willing to install unvetted kernel code from some random internet person.
|
#
?
Oct 10, 2017 20:33
|
|
|
|
| # ? May 27, 2024 12:53 |
|
|
GreenNight posted:*furiously patches all my poo poo* Unfriendly reminder: update your poo poo, stupid. --- Reposting the friendly reminder for the new page for everyone else: astral posted:Friendly reminder to update your poo poo.
|
|
#
?
Oct 10, 2017 20:39
|
|
|
We wait 3 weeks for things to shake out before applying patches. Served us well.
|
|
#
?
Oct 10, 2017 20:44
|
|
|
GreenNight posted:We wait 3 weeks for things to shake out before applying patches. Served us well. do you work for Equifax?
|
|
#
?
Oct 10, 2017 20:51
|
|
|
astral posted:do you work for Equifax? Windows patches, specifically. Nothing public facing.
|
|
#
?
Oct 10, 2017 20:54
|
|
|
repiv posted:I'm the people who are terrified of Microsoft telemetry yet willing to install unvetted kernel code from some random internet person. Please reboot in unsigned kernel driver mode to install our Maximum Security Software
|
|
#
?
Oct 10, 2017 21:31
|
|
|
another great reason to update: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11771quote:A remote code execution vulnerability exists when Windows Search handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
|
|
#
?
Oct 10, 2017 21:52
|
|
|
The first one's not too bad for desktops and servers since it requires a malicious DNS server directly serving the victim machine, but certainly a real issue for laptops that connect to random wifi hotspots. The second one though... Remotely exploitable unauthenticated through SMB, that's bad. A worm using that could spread like wildfire through any network your firewalls considered "trusted".
|
|
#
?
Oct 10, 2017 22:29
|
|
|
That does sound bad, but I've got my windows open just how I like them, so I'm going to go ahead and not restart my PC, okay? 
|
|
#
?
Oct 10, 2017 23:42
|
|
|
wolrah posted:The first one's not too bad for desktops and servers since it requires a malicious DNS server directly serving the victim machine, but certainly a real issue for laptops that connect to random wifi hotspots. That's just SMB 1 though right? our sys admin shut that off on our server a few weeks back when that appeared, which screwed our ricoh scanner as it only used that protocol to save
|
|
#
?
Oct 11, 2017 00:09
|
|
|
djssniper posted:That's just SMB 1 though right? our sys admin shut that off on our server a few weeks back when that appeared, which screwed our ricoh scanner as it only used that protocol to save I think the key is being able to get files remotely on to another system where the indexer will parse them. SMB version doesn't matter here.
|
|
#
?
Oct 11, 2017 00:11
|
|
|
BangersInMyKnickers posted:I think the key is being able to get files remotely on to another system where the indexer will parse them. SMB version doesn't matter here. Ah yeah, it was a new printer, so never worked from the start, probably thinking of this https://blogs.technet.microsoft.com/filecab/2016/09/16/stop-using-smb1/ Edit: Probably this was about the time https://redmondmag.com/articles/2017/05/18/more-advice-on-disabling-windows-smb-1.aspx djssniper fucked around with this message at 00:21 on Oct 11, 2017 |
|
#
?
Oct 11, 2017 00:15
|
|
|
BangersInMyKnickers posted:I think the key is being able to get files remotely on to another system where the indexer will parse them. SMB version doesn't matter here. The Windows Search service is actually accessible through SMB to allow for searching on remote machines without having to transfer everything. The wording in the Microsoft advisory specifically stating unauthenticated makes me think this can be triggered without even needing to upload a file as long as you can send a request to the Windows Search service.
|
|
#
?
Oct 11, 2017 03:16
|
|
|
Doctor_Fruitbat posted:That does sound bad, but I've got my windows open just how I like them, so I'm going to go ahead and not restart my PC, okay? Speaking of, I wish Windows was better at telling me what it restarted FOR. I'm not a goober like half this thread, I don't mind it restarting overnight when I'm not using my computer. But it does make me worry a little bit when I go to use it in the morning and find it mysteriously restarted with no reason why. A simple "your computer was restarted to install updates" message like MacOS has would go a long way towards not making me worry about some actual issue.
|
|
#
?
Oct 11, 2017 18:51
|
|
|
Arivia posted:Speaking of, I wish Windows was better at telling me what it restarted FOR. I'm not a goober like half this thread, I don't mind it restarting overnight when I'm not using my computer. But it does make me worry a little bit when I go to use it in the morning and find it mysteriously restarted with no reason why. A simple "your computer was restarted to install updates" message like MacOS has would go a long way towards not making me worry about some actual issue. I always get a message about that after updates were installed and machine booted again, and it annoys me to no end. Yes I know the machine restarted to install updates, I clicked the Update and Restart command myself!
|
|
#
?
Oct 11, 2017 19:01
|
|
|
nielsm posted:I always get a message about that after updates were installed and machine booted again, and it annoys me to no end. Yes I know the machine restarted to install updates, I clicked the Update and Restart command myself! Huh. Where are you seeing it? It's not in the Notification panel for me. Maybe it's only if you start the install manually? edit: Oh, it looks like there was a notification setting I didn't have turned on. Why isn't that on by default?
|
|
#
?
Oct 11, 2017 19:02
|
|
|
It is, usually, so I've no idea.
|
|
#
?
Oct 11, 2017 19:27
|
|
|
Arivia posted:Huh. Where are you seeing it? It's not in the Notification panel for me. Maybe it's only if you start the install manually? Where's this? Its not in notifications.
|
|
#
?
Oct 11, 2017 19:32
|
|
|
Snuffman posted:Where's this? Its not in notifications. It's under Windows Update, in Restart options. Toggle the option "Show more notifications".
|
|
#
?
Oct 11, 2017 20:01
|
|
|
Double Punctuation posted:It's under Windows Update, in Restart options. Toggle the option "Show more notifications". Ah, gotcha! I found it, it was off, and wasn't sure if that was the option I was looking for. My PC shut off mid-evening, while I was in the other room, to install the update but I didn't realize and was worried there was something wrong with my computer. Its only this morning that I realized it was a windows update.
|
|
#
?
Oct 11, 2017 20:13
|
|
|
astral posted:Friendly reminder to update your poo poo. http://myitforum.com/myitforumwp/2017/10/11/kb4041691-can-cause-virtual-machines-to-stop-booting/ Patch all your poo poo ASAP, right?
|
|
#
?
Oct 11, 2017 20:20
|
|
|
Snuffman posted:Ah, gotcha! Yeah that was my concern too. Hopefully that toggle helps (hell of a place to put it) and that it stays on. I’ve had some weird issues with Windows not keeping my settings between reboots.
|
|
#
?
Oct 11, 2017 21:23
|
|
|
But but but... some PC's might be running hundreds of mission-critical applications all at the same time and therefore can't JUST be patched and restarted!
|
|
#
?
Oct 11, 2017 21:36
|
|
|
ratbert90 posted:But but but... some PC's might be running hundreds of mission-critical applications all at the same time and therefore can't JUST be patched and restarted! If it’s mission critical move it off Windows 10 Home for gently caress’s sake.
|
|
#
?
Oct 11, 2017 23:27
|
|
|
GreenNight posted:http://myitforum.com/myitforumwp/2017/10/11/kb4041691-can-cause-virtual-machines-to-stop-booting/ Again, wrong. Patch your dev/test environment ASAP first. If it breaks, then you have some actual justification to hold off on patching prod other than "durrr jeez, I don't know, those updates can sometimes be evil, better not do it until it's too late  "e: Clarified astral fucked around with this message at 02:08 on Oct 12, 2017 |
|
#
?
Oct 12, 2017 02:04
|
|
|
What the hell is a dev/test environment? Yeah, sure.
|
|
#
?
Oct 12, 2017 15:34
|
|
|
GreenNight posted:What the hell is a dev/test environment? Yeah, sure. You see, every business has an entire IT department complete with test rigs and a dev environment.
|
|
#
?
Oct 12, 2017 20:30
|
|
|
Computers are pretty powerful today. If I had a system at home I absolutely could not afford to lose, I'd probably be virtualizing it first of all. Second of all, virtualizing it would make it super trivial to snapshot it before a critical update. Or even clone the VM and have the clone be your "test rig". So you see folks, testing things is easier than ever to do in this day and age. However, it's not that easy, and might be overkill for protecting against a bad Windows Update.
|
|
#
?
Oct 12, 2017 20:37
|
|
|
Test rig with real employees running poo poo off it? Get the gently caress out of here, people don't have time for that. Sure let me clone my Dynamics server and then test the program against that database.
|
|
#
?
Oct 12, 2017 20:48
|
|
|
redeyes posted:You see, every business has an entire IT department complete with test rigs and a dev environment. If its important they would. If its not, then the risk is on them so: tough poo poo.
|
|
#
?
Oct 12, 2017 21:49
|
|
|
GreenNight posted:What the hell is a dev/test environment? Yeah, sure. Was that a royal 'we' then? Sounded like you were implying you were managing computers for a business. Which absolutely should have a test environment. And backups. Snapshots are pretty easy too, if it's virtualized. Personal you can (and should!) still trivially accomplish the last couple. redeyes posted:You see, every business has an entire IT department complete with test rigs and a dev environment. Oh, please. A dev/test environment in this case could be as simple as spinning up a spare VM or using a spare machine with the standard image (or just an install with the standard set of software/updates, if you lack a standard image) to test any new updates against.
|
|
#
?
Oct 13, 2017 00:47
|
|
|
you people have no loving idea how small business works
|
|
#
?
Oct 13, 2017 00:48
|
|
|
This thread has established that actual business standards for business are hard and also too much effort. 
|
|
#
?
Oct 13, 2017 00:48
|
|
|
Test upgrades against the dozens and dozens of applications? I'll get right on that. With all my free time while I fix printers, buy new computers, on board new employees, run SQL queries, and also take calls, answer emails. We have backups. Our ERP has a dev environment. Same with web. That's it.
|
|
#
?
Oct 13, 2017 00:49
|
|
|
redeyes posted:you people have no loving idea how small business works Yeah, it doesn't.
|
|
#
?
Oct 13, 2017 00:53
|
|
|
All the stuff about vetting updates is spot on but at the same time they released an update that broke VMs on their server OS. That's just sad.
|
|
#
?
Oct 13, 2017 01:01
|
|
|
redeyes posted:you people have no loving idea how small business works "[wrong thing] is just how it is" doesn't make it right. Or true. GreenNight posted:Test upgrades against the dozens and dozens of applications? I'll get right on that. With all my free time while I fix printers, buy new computers, on board new employees, run SQL queries, and also take calls, answer emails. See above. At the very least it sounds like you need an extra person working there in a similar (or perhaps more well-defined) role as you. And a printer assassin because, as the saying goes, gently caress printers. CFox posted:All the stuff about vetting updates is spot on but at the same time they released an update that broke VMs on their server OS. That's just sad. Yeah it is pretty funny in that same dark comedy way as this new Eternal September of infosec.
|
|
#
?
Oct 13, 2017 01:01
|
|
|
New update stopped my machine setting alarms via search bar.. small problem but loving annoying
|
|
#
?
Oct 13, 2017 01:29
|
|
|
djssniper posted:New update stopped my machine setting alarms via search bar.. small problem but loving annoying You don't get it. Need a dev environment and test machines. What the gently caress is wrong with you?! Never apply updates right away.
|
|
#
?
Oct 13, 2017 01:38
|
|
|
|
| # ? May 27, 2024 12:53 |
|
|
redeyes posted:You don't get it. Need a dev environment and test machines. What the gently caress is wrong with you?! Never apply updates right away. You don't get it. You can't get hurt by exploits that are announced to the world if you patch in a couple of days. What the gently caress is wrong with you?! Figure out and apply updates as soon as you can.
|
|
#
?
Oct 13, 2017 01:59
|
|
