|
|
|
|
Windows Secrets Newsletter • Issue 124 • 2007-09-27 • Circulation: over 270,000 |
 |
Fred Langa is back! Get his pics Editor-at-large Fred Langa has returned from a 5-month motorcyle tour of the U.S. and Canada. His all-new LangaList Plus column begins today in the paid version of the newsletter. Between Sept. 27 and Oct. 24, all paid subscribers are eligible for a bonus download, Wallpaper of the Journey — 25 high-quality images by Fred for use on your Windows desktop. Free subscribers can get the bonus by upgrading to the paid version. And anyone can purchase the entire set of images for U.S. $9.95. More info is in today's Introduction column. • Paid readers: download the bonus • Free readers: upgrade to get the bonus • For everyone: purchase the download |
|
Contents INTRODUCTION: Now you can Digg this after you've Reddit TOP STORY: Stealth Windows update prevents XP repair KNOWN ISSUES: Get the latest Windows updates securely WACKY WEB WEEK: IT manager risks life and limb to restore server LANGALIST PLUS: Part one: heading to the first Housecall PC TUNE-UP: Protect your privacy with simple changes PATCH WATCH: Office 2003 service pack adds security YOUR SUBSCRIPTION: How to change your address or unsubscribe |
|
For links to every topic in this issue, scroll down to the
Index |
|
ADS
|
|
INTRODUCTION Now you can Digg this after you've Reddit
Bookmarking sites let you link to your favorites 
A social-bookmarking site lets users save links to articles on the Web. Many such services show the most-popular articles at the top of the listings.We got a first-hand example of how this works when our Sept. 13, 2007, article, "Microsoft updates Windows without users' consent," rose to the No. 5 spot on the home page of Digg.com, arguably the Web's biggest bookmarking site. As of Sept. 26, our story (with 2,847 diggs) and a follow-up at ZDNet were still rated No. 2 and No. 1 among all stories about Microsoft published in the previous 30 days (image, left). And that was before we'd even added links to Digg and other bookmarking sites to our top stories. This week, associate editor Scott Dunn has an even bigger story — the fact that Microsoft's silent update is actually preventing some Windows users from getting the latest security patches. Let's all use Digg today to help others find this article on the Web, shall we? Scroll to the links Social-bookmarking sites are as different from each other as snowflakes. They all, however, allow you to register as a user (it's free) so you can see your favorite links from wherever you have Internet access. Some sites require a valid e-mail address to confirm your registration, but as far as we know, your personal information is kept private by these sites and isn't given out. The bookmarking sites that attract the most traffic include the following: • Digg, one of the 200 most-visited sites on the Web, according to Alexa, uses weighted voting to determine which stories rise to the top in eight major categories and numerous subcategories. More info, how to register • Del.icio.us (pronounced "delicious") allows you to save and tag your favorite links, which you can keep to yourself or share with your friends or the world. More info, how to register • Reddit uses terser descriptions of articles than Digg, but encourages users to vote up or down on links, training the site to adapt to your likes and dislikes. More info, how to register • StumbleUpon offers nearly 500 topics to help users narrow their queries to the most relevant articles. More info, how to register There are dozens of bookmarking sites, and it would be incredibly confusing for us to show icons and links to them all. For this reason, we've developed a link that lets you choose any bookmarking site you like: • Other takes you to a long list prepared by AddThis.com. Once you register and indicate the bookmarking service you like, you won't have to choose again. More info, how to register • Permalink shows you the permanent location of an article on the Web. This gives you a convenient way to send a link in an e-mail to a friend. Initially, we're offering links to Digg and other bookmarking services only at the end of our lead story. In the future, we hope to find a way to help you bookmark other stories and our paid content, too. Fred Langa's journey produces some great photos 
Fred Langa, our editor-at-large, has finally come back from his five-month, cross-country motorcycle tour of the U.S. and Canada. His last article for Windows Secrets was on
April 19, 2007.In one of his adventures, Fred attracted the unwanted attentions of a wild bison (photo, left), which ambled within 4 feet of him. We don't have a close-up of that moment, because Fred in his Bullfighter Red motorcycle outfit was wise not to make any sudden shutter-snapping movements. Fred's written a new series of eight columns documenting the technical support issues of Windows Secrets readers who won Housecalls, personal troubleshooting sessions with the Master. Fred's columns will appear in the paid version of the newsletter. To make our paid content even more worthwhile, all paid subscribers can download Fred's best pictures from some of the remotest places in North America. We've collected the images into a .zip file suitable for use as Windows wallpaper. The photos are sized both for widescreen displays (16x9) and ordinary displays (4x3). Yes, the photos include Fred's bison buddy. We don't require any set fee to get the paid version. Simply make a financial contribution of any amount — whatever it's worth to you — and you'll receive a full year of our best information, including Fred's new LangaList Plus columns and photographs. How to upgrade Thanks for your support! Excel 2007 displays 65,535 as 100,000 Commenters in the microsoft.public.excel discussion forum revealed on Sept. 22 that Excel 2007 incorrectly displays floating-point numbers around 65,535 and 65,536 as 100,000. A Slashdot user, however, reports that the affected cells work correctly in formulas and graphs, despite the errant display. Microsoft blogger David Gainer acknowledged the problem on Sept. 25 and said the Redmond company is working on a fix. Until then, watch out when calculating those big mortgage payments! Brian Livingston is editorial director of WindowsSecrets.com and the co-author of Windows Vista Secrets and 10 other books. |
|
ADS
|
|
TOP STORY Stealth Windows update prevents XP repair
Repaired installations of XP can't be updated Accounts of conflicts with XP's repair option came to our attention after Microsoft's "silent install" of Windows Update (WU) executable files, known as version 7.0.600.381, was reported in the Sept. 13 and 20 issues of the Windows Secrets Newsletter. The trouble occurs when users reinstall XP's system files using the repair capability found on genuine XP CD-ROMs. (The feature is not present on "Restore CDs.") The repair option, which is typically employed when XP for some reason becomes unbootable, rolls many aspects of XP back to a pristine state. It wipes out many updates and patches and sets Internet Explorer back to the version that originally shipped with the operating system. Normally, users who repair XP can easily download and install the latest patches, using the Automatic Updates control panel or navigating directly to Microsoft's Windows Update site. However, after using the repair option from an XP CD-ROM, Windows Update now downloads and installs the new 7.0.600.381 executable files. Some WU executables aren't registered with the operating system, preventing Windows Update from working as intended. This, in turn, prevents Microsoft's 80 latest patches from installing — even if the patches successfully downloaded to the PC. I was able to reproduce and confirm the problem on a test machine. When WU tries to download the most recent patches to a "repaired" XP machine, Microsoft's Web site simply states: "A problem on your computer is preventing the updates from being downloaded or installed." (See Figure 1.)  Figure 1. After a repair install of XP, which resets the operating system to its original state, Windows Update can't install the 80 most-recent patches from Microsoft.__________ Most ordinary Windows users might never attempt a repair install, but the problem will affect many administrators who must repair Windows frequently. Anyone who runs XP's repair function will find that isolating the cause of the failed updates is not a simple matter. Beginning in July, it is not possible for Windows users to install updates without first receiving the 7.0.6000.381 version of nine Windows Update support files. (See my Sept. 13 story for details.) If Automatic Updates is turned on, the .381 update will be installed automatically. If AU is not turned on, you'll be prompted to let Windows Update upgrade itself before you can installing any other updates. Consequently, users are forced to get the silent update before they can attempt to install Microsoft's latest security patches. The problem apparently arises because seven of the DLLs (dynamic link library files) used by WU fail to be registered with Windows. If files of the same name had previously been registered — as happened when Windows Update upgraded itself in the past — the new DLL files are registered, too, and no problem occurs. On a "repaired" copy of XP, however, no such registration has occurred, and failing to register the new DLLs costs Windows Update the ability to install any patches. Registering DLL files is normally the role of an installer program. Unlike previous upgrades to WU, however, Microsoft has published no link to an installer or a downloadable version of 7.0.6000.381. Strangely, there's no Knowledge Base article at all explaining the new version. The lack of a KB article (and the links that usually appear therein) makes it impossible for admins to run an installer to see if it would correct the registration problem. One possible fix is to install an older version of the Windows Update files (downloadable from Step 2 of Microsoft Knowledge Base article 927891) over the newer version. This involves launching the installer from a command line using a switch known as /wuforce. That corrects the registration problem, although even in this case you must still accept the .381 stealth update (again) before you can get any updates. The fact that the /wuforce procedure solves the problem suggests that the installer for .381 is the source of the bug. Manually registering files solves the problem If you find that Windows Update refuses to install most patches, you can register its missing DLLs yourself. This can be accomplished by manually entering seven commands (shown in Step 2, below) at a command prompt. If you need to run the fix on multiple machines, it's easiest to use a batch file, as Steps 1 through 5 explain: Step 1. Open Notepad (or any text editor). Step 2. Copy and paste the following command lines into the Notepad window (the /s switch runs the commands silently, freeing you from having to press Enter after each line): regsvr32 /s wuapi.dll regsvr32 /s wuaueng1.dll regsvr32 /s wuaueng.dll regsvr32 /s wucltui.dll regsvr32 /s wups2.dll regsvr32 /s wups.dll regsvr32 /s wuweb.dll Step 3. Save the file to your desktop, using a .bat or .cmd extension. Step 4. Double-click the icon of the .bat or .cmd file. Step 5. A command window will open, run the commands, and then close. The next time you visit the Windows Update site, you should not have any problem installing the latest patches. In my articles in the last two weeks on the silent installation of the Windows Update support files, I stated that the stealthy upgrade seemed harmless. Now that we know that version .381 prevents a repaired instance of XP from getting critical patches, "harmless" no longer describes the situation. The crippling of Windows Update illustrates why many computer professionals demand to review updates for software conflicts before widely installing upgrades. "I understand the need to update the infrastructure for Windows Update," says Gordon Pegue, systems administrator for Chavez Grieves Engineers, a structural engineering firm in Albuquerque, N.M. "But I think Microsoft dropped the ball a little bit communicating how the system works. Administrators should know these sorts of things, in case problems arise." A Microsoft spokeswoman offered to provide an official response about the situation, but I received no reply by press time. If you ever need to run the repair option on XP, first see the detailed description provided by the Michael Stevens Tech Web site. I'd like to thank Windows Secrets contributing editor Susan Bradley for her help in bringing reports of this problem to light. Have a tip about Windows? Readers receive a gift certificate for a book, CD, or DVD of their choice for sending tips we print. Send us your comments via the Windows Secrets contact page. Scott Dunn is associate editor of the Windows Secrets Newsletter. He has been a contributing editor of PC World since 1992 and currently writes for the magazine's Here's How section. |
|
KNOWN ISSUES Get the latest Windows updates securely
Add extra security to your update strategy Following our stories about Microsoft's silent updating of Windows Update, a large number of readers wrote in asking whether hackers might be able to use a similar mechanism to access their PCs. Although there is no evidence that anyone has yet compromised the Windows Update service itself, the unfortunate answer is that hackers have already been using components of Windows Update to bypass firewalls, as reported by Symantec, Computerworld, and elsewhere last May. The method involves calling on the Background Intelligent Transfer Service (BITS), which is part of Windows XP, Windows Server 2003, and Windows Vista. The good news is that reader Paul Jackson has come up with a tip that may reduce the risks posed by this service:
Step 1: Choose Start, Run (XP) or Start (Vista). Type services.msc and press Enter. Step 2: Double-click Automatic Updates (XP) or Windows Updates (Vista). For Startup type, choose Disabled and click OK. Step 3: Double-click Background Intelligent Transfer Service. If the Startup type is not already set to Manual, choose that option and click OK. Close the Services window. Step 4: Open Notepad and copy and paste these lines into its window: sc config wuauserv start= auto sc start wuauserv sc start BITS Step 5: Save the file with a name like Before_Update.bat. Be sure to include the .bat or .cmd extension. Step 6: In Notepad, choose File, New. Then copy and paste these lines into its window: sc stop BITS sc stop wuauserv sc config wuauserv start= disabled Step 7: Save the file with a name like After_Update.bat. Be sure to include the .bat or .cmd extension. Step 8: Vista only: Create shortcuts for each batch file by using the right-mouse button to drag and drop the file icons; choose Create Shortcuts Here. Right-click one shortcut and choose Properties. On the Shortcut tab, click Advanced. Check Run as administrator and click OK twice. Repeat for the other shortcut. Step 9: When you want to get updates, double-click the Before_Update batch file (XP) or shortcut (Vista). Then use Windows Update to download the patches you need. Finally, double-click the After_Updates batch file (XP) or shortcut (Vista). Firefox add-ons are workarounds, not panaceas Regarding the tips published in our Sept. 13 and 20 issues for accessing the Windows Update Web site using the Mozilla Firefox browser, reader Leland Whitlock writes:
You can, however, take steps to reduce your risks when using the IE Tab. It turns out that many of the security settings that you designate on your copy of IE are retained by the version embedded in Firefox. For example, I tested cookies, scripting of Java applets, ActiveX settings, and active scripting. For all of them, the embedded IE Tab followed the settings I had in IE. Therefore, customizing IE 7's security settings can also make Firefox safer when using the IE Tab. These tweaks were described in the Oct. 26, 2006, issue. In exception to the settings described there, you'll need to use the following three options to access Windows Update in Firefox:
Bonus tip: If you really want to get patches and updates securely while using Firefox, you can do without the IE tab entirely. Instead, manually download and install each patch you need from the Microsoft Download Center. The star-like WGA (Windows Genuine Advantage) logo by a patch lets you know which ones to avoid if you don't want to install that component. Secunia posts FAQ to answer reader questions Several readers had problems with the Online Software Inspector at Secunia.com (not to be confused with the company's Personal Software Inspector and Network Software Inspector). Some users weren't finding the answers they needed on Secunia's site or by e-mail. For example, Richard Bellin writes that he hasn't received replies to messages he'd sent. I contacted Secunia and received a response in one day. Here are the company's answers to some of the most common questions readers submitted: Q: Is Vista supported? A: As the Online Software Inspector is browser-based, Vista should be supported. Q: Which versions of Java are needed to run the Online Software Inspector? A: The Software Inspector requires version 1.5.0_12 or later. Q: Why does the Online Software Inspector keep finding nonsecure software when I've uninstalled it manually? And why are there so many versions of Flash on my computer? A: The answers to these questions depend on the specifics of your system. However, Secunia has recently posted a FAQ that should help answer these and other questions. Readers Bellin, Jackson, and Whitlock will each receive a gift certificate for a book, CD, or DVD of their choice for sending tips we printed. Send us your tips via the Windows Secrets contact page. The Known Issues column brings you readers' comments on our recent articles. Diane Korngiebel is Windows Secrets' editorial assistant. |
|
EDITOR'S BOOKSHELF
|
|
WACKY WEB WEEK IT manager risks life and limb to restore server
|
|
YOUR SUBSCRIPTION The Windows Secrets Newsletter is published weekly on the 1st through 4th Thursdays of each month, plus occasional news updates. We skip an issue on the 5th Thursday of any month, plus the week of Thanksgiving and the last two weeks of August and December. Publisher: WindowsSecrets.com LLC, Attn: #120 Editor, 1700 7th Ave., Suite 116, Seattle, WA 98101-1323 USA. Vendors, please send no unsolicited packages to this address (readers' letters are fine). Editorial Director: Brian Livingston. Editor-at-Large: Fred Langa. Associate Editor: Scott Dunn. Contributing Editors: Susan Bradley, Mark Edwards, Woody Leonhard, Ryan Russell. Research Director: Vickie Stevens. Program Director: Brent Scheffler. Managing Editor: Virginia Culler. Editorial Assistant: Diane Korngiebel. Trademarks: Microsoft and Windows are registered trademarks of Microsoft Corporation. The Windows Secrets series of books is published by Wiley Publishing Inc. The Windows Secrets Newsletter, WindowsSecrets.com, LangaList, LangaList Plus, WinFind, Security Baseline, Patch Watch, Perimeter Scan, Wacky Web Week, the Logo Design (W, S or road, and Star), and the slogan Everything Microsoft Forgot to Mention all are trademarks and service marks of WindowsSecrets.com LLC. All other marks are the trademarks or service marks of their respective owners. HOW TO SUBSCRIBE: Anyone may subscribe to this newsletter by visiting our free signup page. WE GUARANTEE YOUR PRIVACY: 1. We will never sell, rent, or give away your address to any outside party, ever. 2. We will never send you any unrequested e-mail, besides newsletter updates. 3. All unsubscribe requests are honored immediately, period. Privacy policy HOW TO UNSUBSCRIBE: To unsubscribe from the Windows Secrets Newsletter,
|
