Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Microsoft Kills Public Patch Tuesday Advance Notifications; Now for Paid Members


  • Please log in to reply
13 replies to this topic

#1 NickAu

NickAu

    Bleepin' Fish Doctor


  • Moderator
  • 12,859 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:127.0.0.1 Australia
  • Local time:09:04 AM

Posted 10 January 2015 - 04:15 PM

 

Our Advance Notification Service (ANS) was created more than a decade ago as part of Update Tuesday to broadly communicate in advance, about the security updates being released for Microsoft products and services each month. Over the years, technology environments and customer needs have evolved, prompting us to evaluate our existing information and distribution channels. This desire to improve is why customers may have seen us introduce myBulletins to provide bulletin reports tailored to customer preferences, discontinue the Deployment Priority matrix in favor of the Exploitability Index, modify the Exploitability Index to account for more threat scenarios, simplify security bulletin content to help customer understanding, and create a centralized glossary for bulletin definitions. The change being announced today fits within that context.

We are making changes to how we distribute ANS to customers. Moving forward, we will provide ANS information directly to Premier customers and current organizations involved in our security programs, and will no longer make this information broadly available through a blog post and web page.

 

http://blogs.technet.com/b/msrc/archive/2015/01/08/evolving-advance-notification-service-ans-in-2015.aspx

 

Arch Linux .
Bleeping Computer Forum Rules and Posting Guidelines link 
Important Information For All Who Help/Post In Linux & Unix
Simple and easy ways to keep your computer safe and secure on the Internet <- Everyone must read this!
How to Protect and Harden a Computer against Ransomware <- Everyone must read this!

""Three out of four voices in my head want to sleep. The fourth voice wants to know if penguins have knees."


BC AdBot (Login to Remove)

 


#2 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:04 PM

Posted 10 January 2015 - 07:18 PM

 

...customer feedback indicates that many of our large customers no longer use ANS in the same way they did in the past due to optimized testing and deployment methodologies. While some customers still rely on ANS, the vast majority wait for Update Tuesday, or take no action, allowing updates to occur automatically. More and more customers today are seeking to cut through the clutter and obtain security information tailored to their organizations.

 

What feedback did they get from their little customers?


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#3 Winterland

Winterland

  • Members
  • 980 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Land of Enchantment
  • Local time:05:04 PM

Posted 11 January 2015 - 07:54 AM

 

What feedback did they get from their little customers?

 

 

                                  :lol:


Photobucket removed my cool flag - idiots!

 

Every calculation based on experience elsewhere fails in New Mexico.


#4 Angoid

Angoid

  • Security Colleague
  • 299 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:East Midlands UK
  • Local time:12:04 AM

Posted 12 January 2015 - 10:51 AM

 

 

What feedback did they get from their little customers?

 

 

                                  :lol:

 

 

two words:

 

Second word.  Three letters.  Means "Everything."

First word.  Three letters.  Rhymes with "odd" and means "a piece of grass-covered earth." 


Helping a loved one through a mental health issue?  Remember ALGEE...

Assess the risk | Listen nonjudgementally | Give reassurance and info | Encourage professional help | Encourage self-help and support network

#5 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:04 AM

Posted 12 January 2015 - 02:55 PM


What feedback did they get from their little customers?

 

 

Certainly not that they would want to pay for this info.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#6 rp88

rp88

  • Members
  • 2,980 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:04 PM

Posted 13 January 2015 - 01:29 PM

Is this connected to the fact that all the following pages (the kb pages for updates released today)load up to give that "oops" message which occured on the kb pages for an update a few months back? Does this mean ms won't even be saying what updates do once they have been released?


http://support.microsoft.com/kb/3022777

http://support.microsoft.com/kb/3021674

http://support.microsoft.com/kb/3019978

http://support.microsoft.com/kb/3019215

http://support.microsoft.com/kb/3004365

http://support.microsoft.com/kb/3024663

These names, such as "kb3022777", return only 1 result on google, a site, a german site which just seems to have a list of the numbers. Is ms going to release publicly what these do at any time or are they going to in future be releasing updates without even saying what they do after the update is released?

Edited by rp88, 13 January 2015 - 01:46 PM.

Back on this site, for a while anyway, been so busy the last year.

My systems:2 laptops, intel i3 processors, windows 8.1 installed on the hard-drive and linux mint 17.3 MATE installed to USB

#7 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:04 AM

Posted 13 January 2015 - 02:11 PM

No. For me, these pages load.

Please explain your error message beter. oops is too vague.

Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#8 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:04 PM

Posted 13 January 2015 - 02:14 PM

Oops!

The page you are looking for may have a new location, or is no longer available.


A lot of folks are reporting the above.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#9 rp88

rp88

  • Members
  • 2,980 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:04 PM

Posted 13 January 2015 - 03:11 PM

That, quietman, is the error i see. I called it an "oops" error because that is the first word of the error message. If i can ask, like i did last time this happened (it was kb3018943 last time) what country are the people who can see a page in, and what nations are those of us who get the "oops" error message in, also what OS and browser are used in each case.
I get "oops" in the UK running firefox in windows 8.


EDIT:I checked again just now http://support.microsoft.com/kb/3024663 and http://support.microsoft.com/kb/2901982 are the only ones on which i still get the "oops" messages. the rest all load properly now.

Edited by rp88, 13 January 2015 - 03:17 PM.

Back on this site, for a while anyway, been so busy the last year.

My systems:2 laptops, intel i3 processors, windows 8.1 installed on the hard-drive and linux mint 17.3 MATE installed to USB

#10 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:04 PM

Posted 13 January 2015 - 03:21 PM

...what country are the people who can see a page in, and what nations are those of us who get the "oops" error message in, also what OS and browser are used in each case.

There is no list for that information.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#11 rp88

rp88

  • Members
  • 2,980 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:04 PM

Posted 13 January 2015 - 03:29 PM

"There is no list for that information. " That's why i was asking people to say where they were and with what OS and browser, so that it could be worked out. Sorry if that sentence wasn't as clear as it could have been.
Back on this site, for a while anyway, been so busy the last year.

My systems:2 laptops, intel i3 processors, windows 8.1 installed on the hard-drive and linux mint 17.3 MATE installed to USB

#12 Didier Stevens

Didier Stevens

  • BC Advisor
  • 2,672 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:04 AM

Posted 13 January 2015 - 04:08 PM

I see now. This is because Microsoft is doing a sloppy job and not posting KBs at the same time as the Security Bulletins.


Didier Stevens
http://blog.DidierStevens.com
http://DidierStevensLabs.com

SANS ISC Handler
Microsoft MVP 2011-2016 Consumer Security, Windows Insider MVP 2016-2018
MVP_Horizontal_BlueOnly.png

 

If you send me messages, per Bleeping Computer's Forum policy, I will not engage in a conversation, but try to answer your question in the relevant forum post. If you don't want this, don't send me messages.

 

Stevens' law: "As an online security discussion grows longer, the probability of a reference to BadUSB approaches 1.0"


#13 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 51,262 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:07:04 PM

Posted 13 January 2015 - 04:13 PM

This looks like a new link....http://technet.microsoft.com/en-us/library/dn903782.aspx
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#14 x64

x64

  • Members
  • 352 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London UK
  • Local time:12:04 AM

Posted 13 January 2015 - 04:28 PM

Is this connected to the fact that all the following pages (the kb pages for updates released today)load up to give that "oops" message which occured on the kb pages for an update a few months back? Does this mean ms won't even be saying what updates do once they have been released?

No, but judging by the number of problematic updates that have been released in the past few months, maybe they are just giving an honest view of the likely effect of applying the patch :hysterical:

 

But seriously folks.. I see this publishing delay every month. I expect that once they publish an article (which has to be embargoed until the updates are released), it probably takes a while for the pages to replicate around their content delivery system. Pretty poor really, because it means that early adopters either need to apply the updates blindly, or stay vulnerable until they can assess the updates in their circumstances.

 

I'd really rather see a brief synopsis if an updates function and any other critical information about it in the WU control panel app, without having to view a web page.

 

x64






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users