[tain]

You should attend your local Community College and take some "computer classes" so you can learn how to use the internets safely. Failing that, we'll hold your hand through the learning process

Oh BTW, would you mind mirroring hfslip.org when you rebuild your site? I'll be taking my server down for a while for maintenance soon.

[fdv]

Not a bad idea. Can you ship me all the code? I'll do some needed revisions as well such as linking the new binary and other crucial things TommyP wanted to get done.

[tain]

Should be able to do it this weekend. Ping me on Sunday if you don't have it by then, as I am quite forgetful.

[Acheron]

Look at all the Windows security updates for August

[tommyp]

I nominate Acheron for doing XP update lists.

[Acheron]

Actually HFSLIP doesn't need it's own update lists. I personally recommend user_hidden's XPSP3 QFE list to find all updates for Windows XP SP3.

[bfc_xxx]

tommyp, on Aug 11 2009, 05:32 PM, said:

I nominate Acheron for doing XP update lists.

I second that!

[fdv]

Actually Acheron, we're ... being serious.

We know that the RyanVM has been adopted and is being worked on by a new volunteer but the dilemma is that MSFN -- and we -- are all about official MS binaries. There's nothing wrong with using an Update Pack but we do want to maintain a standard XP list.

Tom has 2000 covered. I have 2003 covered. We really do need a volunteer to maintain an XP list for us. Using Tom's XP list will help someone get up to speed very quickly -- so it won't be too hard to take the work over. I will host it at Vorck.com.

This is an open invite to whomever will have the time. We don't mean to "beat up on Acheron"

[tommyp]

Acheron - Don't mean to be mean or anything, but what's the point of posting what updates are new when you don't even use the lists on this site anyway? Why not tell ryanvm that his lists are outdated?

I'm done with XP list maintenance. I don't use xp & don't plan on ever using xp. My time is better spent on other things than that. Sometimes real life gets in the way.

[Acheron]

I only posted a screenshot for no special reason.

Just amazed how much updates are released for this month and how HFSLIP is able to handle all these updates without problems!

Thank you for all the work you put into HFSLIP.

P.S. I don't use RyanVM's pack, but show an example how to retrieve a current update list. I have no interest in maintaining a similar list myself.

[-X-]

If it will help, here's a list of August updates/changes.

XP (x86)


-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Microsoft Outlook Express 6

WindowsXP-KB973354-x86-ENU.exe
http://www.microsoft.com/downloads/details...e8-897057b7380c

KB973354
http://support.micro...om/?kbid=973354

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Windows Media Player 9

WindowsXP-WindowsMedia-KB973540-x86-ENU.exe
http://www.microsoft.com/downloads/details...80-d6e204280b2f

KB973540
http://support.micro...om/?kbid=973540

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Windows ATL Component

WindowsXP-KB973507-x86-ENU.exe
http://www.microsoft.com/downloads/details...81-e231240468f9

KB973507
http://support.micro...om/?kbid=973507

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

DHTML Editing Component ActiveX Control

WindowsXP-KB973869-x86-ENU.exe
http://www.microsoft.com/downloads/details...63-f50755a1b6ad

KB973869
http://support.micro...om/?kbid=973869

-----------------------------------------------------------

MS09-037
Vulnerabilities in Microsoft Active Template Library (ATL) Could Allow Remote Code Execution (973908)
http://www.microsoft.com/technet/security/...n/ms09-037.mspx

Microsoft MSWebDVD ActiveX Control

WindowsXP-KB973815-x86-ENU.exe
http://www.microsoft.com/downloads/details...47-0af21d7fad36

KB973815
http://support.micro...om/?kbid=973815

-----------------------------------------------------------

MS09-038
Vulnerabilities in Windows Media File Processing Could Allow Remote Code Execution (971557)
http://www.microsoft.com/technet/security/...n/ms09-038.mspx

WindowsXP-KB971557-x86-ENU.exe
http://www.microsoft.com/downloads/details...84-450636ccaeec

KB971557
http://support.micro...om/?kbid=971557

-----------------------------------------------------------

MS09-041
Vulnerability in Workstation Service Could Allow Elevation of Privilege (971657)
http://www.microsoft.com/technet/security/...n/ms09-041.mspx

WindowsXP-KB971657-x86-ENU.exe
http://www.microsoft.com/downloads/details...3b-82ba52f5299d

KB971657
http://support.micro...om/?kbid=971657

-----------------------------------------------------------

MS09-042
Vulnerability in Telnet Could Allow Remote Code Execution (960859)
http://www.microsoft.com/technet/security/...n/ms09-042.mspx

WindowsXP-KB960859-x86-ENU.exe
http://www.microsoft.com/downloads/details...12-23275a8fde84

KB960859
http://support.micro...om/?kbid=960859


-----------------------------------------------------------

MS09-044
Vulnerabilities in Remote Desktop Connection Could Allow Remote Code Execution
http://www.microsoft.com/technet/security/...n/ms09-044.mspx

WindowsXP-KB956744-x86-ENU.exe
http://www.microsoft.com/downloads/details...2c-46882f214719

KB956744
http://support.micro...om/?kbid=956744

-----------------------------------------------------------

Microsoft Security Advisory (973811)
Extended Protection for Authentication
http://www.microsoft.com/technet/security/...ory/973811.mspx

WindowsXP-KB968389-x86-ENU.exe
http://www.microsoft.com/downloads/details...02-ac5bb3442ce4

KB968389
http://support.microsoft.com/kb/968389

-----------------------------------------------------------

MS09-029
Vulnerabilities in the Embedded OpenType Font Engine Could Allow Remote Code Execution

WindowsXP-KB961371-v2-x86-ENU.exe <--- updated to v2

KB961371

-----------------------------------------------------------

This post has been edited by -X-: 12 August 2009 - 05:39 PM

[tommyp]

-X-, on Aug 12 2009, 07:38 PM, said:

If it will help, here's a list of August updates/changes.

Posting links like that doesn't help for me to maintain my lists. Besides, I refuse to maintain them. I pass over the reigns to someone else. -x- are you offering services?

[-X-]

nah, sorry. I just like to worry about a stock configuration cause it's what I use.

[bfc_xxx]

What I do not understand and sometimes I find it usefull when it is posted here with the new updates, is what updates I have to remove when new updates are released.

[tommyp]

bfc - to see what's new and what to remove, go to the first message in this thread and open the msft link. If you open each MSxx-xxx article, you'll see what the old articles are replaced by the new update. Each MSxx-xxx article is associated with a KB article, and the KB article number is part of the exe filename. Sometimes they are new where nothing is replaced, but most of the time there is an update that is replaced. In my handy dandy WU tracker spreadsheet, I track all the MS numbers and KB articles so I can quickly see what's new and what's old and place each in the appropriate row. I use the spreadsheet to automatically generate the html code for fdv to host. The reason I find it particularly annoying when people post new updates is that I still need to complete the MS article info and its associated KB # so I can update the lists in the future. Posting links to what's new is only half of the info I need.

Personally if I wasn't maintaining a WU list, I'd just visit the msft link every patch tuesday. I'd open each MS article, read it, see what's old and delete the appropriate exe from the HF folder. Then I'd put the new one in the HF folder. It probably takes 3 minutes to do tops. Then there's the various flavors of IE, WMP, and other non-essential bloatware that msft offers that somehow gets on the critical update listings. So, if you had to copy/paste/edit each hyperlink for each new hotfix and put it into the WU hotfix list spreadsheet, you can imagine the time it would take.

[-X-]

tommy, look at what I posted earlier. It has all that info

bfc, the only thing that replaced this month is WindowsXP-KB961371-x86-ENU.exe. It got replaced by a v2. WindowsXP-KB961371-v2-x86-ENU.exe

[Acheron]

To keep track of all updates and to prevent any HFSLIP source corruption I use TortoiseSVN. The link to user_hiddens list also contains a changelog for each release.

This post has been edited by Acheron: 15 August 2009 - 09:38 AM

[tommyp]

-x- thanks for the contribution, but like i said, there's other updates needed for the other flavors of wmp9. I'm sure that there's other things to test out.

Acheron - you're doing a great job plugging the efforts at ryanvm's site. From the limited reading that forum, it appears that ryanvm lost motivation too. Irregardless of that, I'm sure that his file is fine, however his pack does not support all flavors of IE/WMP, etc.

I honestly do not have time to support an OS that I don't even use. Maybe someone will devote some time to maintain them. Until then, you can consider my xp list an abandoned effort.

[fdv]

Hi folks...
I'll repeat the point. It would be ideal if someone took this now, while the changes are minimal.
Otherwise the XP list will get pulled since it's going to be a useless resource within a few months. That would be a shame... I don't imagine it would be that much effort to take this up. I don't think it kills me to update 2003, personally.
I'm going to solicit in the XP group later today.
I don't need XP fixes either, so I'm not gonna do it.

[Crash&Burn]

Man, whats with everyone going back to Win2K ?? IIRC FDV had left Win2K for one of the server flavours (or was it linux?) a year or two ago, but appears to be a Win2K'er again? I never realized tommyp didn't use WinXP until a couple posts scattered in the forum recently.

I kept meaning to upgrade to WinXP... but everything still works that I want, aside from the odd piece of software now n then that I have to replace with something else.

Maybe TommyP can donate/upload his Spreadsheet as a file to the Update List thread, for whomever might want to take over?

This post has been edited by Crash&Burn: 16 August 2009 - 09:31 PM