Tuesday, April 11, 2006 - Posts

Three more Patch Tuesdays...

For those of you keeping score.....

..only three more Patch Tuesdays in the life of Windows 98.....

Call the Priest... it's time for last rites on that Operating system...

posted Tuesday, April 11, 2006 12:51 PM by bradley with 1 Comments

Security updates today

Don't forget.. 06-013 includes some active X changes.. before you uninstall it.. try testing the impact of the compatibility patch first....

 

Internet Explorer ActiveX compatibility patch for Mshtml.dll:

http://support.microsoft.com/kb/917425

 

April 11, 2006

 

Today Microsoft released the following Security Bulletin(s).

 

Note: www.microsoft.com/technet/security <http://www.microsoft.com/technet/security> and www.microsoft.com/security <http://www.microsoft.com/security> are authoritative in all matters concerning Microsoft Security Bulletins! ANY e-mail, web board or newsgroup posting (including this one) should be verified by visiting these sites for official information. Microsoft never sends security or other updates as attachments. These updates must be downloaded from the microsoft.com download center or Windows Update. See the individual bulletins for details.

 

Because some malicious messages attempt to masquerade as official Microsoft security notices, it is recommended that you physically type the URLs into your web browser and not click on the hyperlinks provided.

 

*Bulletin Summary:*

 

http://www.microsoft.com/technet/security/Bulletin/ms06-Apr.mspx

 

*Critical Bulletins:*

 

   *Cumulative Security Update for Internet Explorer (912812*)

 

http://www.microsoft.com/technet/security/Bulletin/ms06-013.mspx

 

   *Vulnerability in the Microsoft Data Access Components (MDAC)

   Function Could Allow Code Execution (911562)*

 

http://www.microsoft.com/technet/security/Bulletin/ms06-014.mspx

 

   *Vulnerability in Windows Explorer Could Allow Remote Code Execution

   (908531)*

 

http://www.microsoft.com/technet/security/Bulletin/ms06-015.mspx

 

*Important Bulletins:*

 

   *Cumulative Security Update for Outlook Express (911567)*

 

http://www.microsoft.com/technet/security/Bulletin/ms06-016.mspx

 

Moderate Bulletins:

 

   *Vulnerability in Microsoft FrontPage Server Extensions Could Allow

   Cross-Site Scripting (917627)*

 

http://www.microsoft.com/technet/security/Bulletin/ms06-017.mspx

 

*Re-Released Bulletins:*

 

   *Vulnerability in Windows Media Player Could Allow Remote Code

   Execution (911565)*

 

http://www.microsoft.com/technet/security/Bulletin/ms06-005.mspx

 

_ _

 

_This represents our regularly scheduled monthly bulletin release (second Tuesday of each month). Please note that Microsoft may release bulletins out side of this schedule if we determine the need to do so. _

 

_ _

 

_If you have any questions regarding the patch or its implementation after reading the above listed bulletin you should contact Product Support Services in the United States at 1-866-PCSafety (1-866-727-2338). International customers should contact their local subsidiary.

posted Tuesday, April 11, 2006 12:05 PM by bradley with 2 Comments

Flattening a box

If you are considering flatting a server and restarting because things "just aren't right" and you think that reinstalling will magically fix things.... guess again.  There's only two times you need to flatten a server and start over

  1. If you've installed the box and that initial install doesn't go right (we say install it three times anyway)
  2. If you've been stupid with that server, haven't protected it and gotten it nailed with a rootkit or something nasty

Then and only then should you flatten... otherwise just because someone else couldn't get a server working...and you think flattening and tearing out the active directory and Exchange in a network is somehow less disruptive than calling Customer Support and having an engineer look over that system, guess again.  Even when a system is seemingly a "sick server", it's better to get to the underlying issue causing the "sickness" than to reinstall the server, install everything back again, and possibly get yourself right back into the same position.

Just like in health care, get the proper diagnoses...and that means going to the "SBS Doctors" for your patient.  For those that are installing SBS boxes for customers, sign up at www.microsoft.com/partner for your access to support.

posted Tuesday, April 11, 2006 1:31 AM by bradley with 8 Comments

Dear Mr. Vendor:

When you install software on my system, please keep in mind that I just might decide your software doesn't work and thus may want to uninstall it.

Thus.. I should not have to load up regedit to dig into my servers innards and rip out one line item at a time... just to get out your software out so that we can get a server back in good working order.

If you are smart enough to install on my system.. I shouldn't have to go to through the registry to get you back out...

(Tonight's rant was brought to you by Panda Antivirus, we now return you to your regularly scheduled blog)

 

 

posted Tuesday, April 11, 2006 1:26 AM by bradley with 2 Comments