[NTSysADM] MS14-066 Round Two

2014-11-23 Thread geoff taylor
I am trying to determine if v 2.0 of MS14-066 is necessary to stem the vulnerability for Win2K8R2 and Win2012. We just got the first version with KB2992611 installed and now MS says that to have the install completed I must also install KB3018238. Fair enough. MS screwed up and now I need to

RE: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread John Matteson
this is Microsoft crying wolf, but a tech bitching about having to do his job. From: listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] On Behalf Of geoff taylor Sent: Sunday, November 23, 2014 10:17 AM To: ntsysadm@lists.myitforum.com Subject: [NTSysADM] MS14-066 Round Two

Re: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread Susan Bradley
Of *geoff taylor *Sent:* Sunday, November 23, 2014 10:17 AM *To:* ntsysadm@lists.myitforum.com *Subject:* [NTSysADM] MS14-066 Round Two I am trying to determine if v 2.0 of MS14-066 is necessary to stem the vulnerability for Win2K8R2 and Win2012. We just got the first version with KB2992611 installed

Re: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread Susan Bradley
, but a tech bitching about having to do his job.* ** *From:*listsad...@lists.myitforum.com [mailto:listsad...@lists.myitforum.com] *On Behalf Of *geoff taylor *Sent:* Sunday, November 23, 2014 10:17 AM *To:* ntsysadm@lists.myitforum.com *Subject:* [NTSysADM] MS14-066 Round Two I am trying to determine

RE: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread geoff taylor
Agreed. So your take is like mine that KB3018238 is a bug fix, and is not required to patch the vulnerability? gt Date: Sun, 23 Nov 2014 08:11:44 -0800 From: sbrad...@pacbell.net To: ntsysadm@lists.myitforum.com Subject: Re: [NTSysADM] MS14-066 Round Two P.S. Microsoft should

Re: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread Andrew S. Baker
Subject: Re: [NTSysADM] MS14-066 Round Two P.S. Microsoft should not be ADDING new cipher deployments in a security patch. That should have been included as an optional update. Don't be thowing too much into a patch. This isn't the time to be adding new stuff when you clearly

Re: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread Susan Bradley
, and is not required to patch the vulnerability? gt Date: Sun, 23 Nov 2014 08:11:44 -0800 From: sbrad...@pacbell.net mailto:sbrad...@pacbell.net To: ntsysadm@lists.myitforum.com mailto:ntsysadm@lists.myitforum.com Subject: Re: [NTSysADM] MS14-066 Round Two P.S

RE: [NTSysADM] MS14-066 Round Two

2014-11-23 Thread geoff taylor
, 23 Nov 2014 13:19:51 -0800 From: sbrad...@pacbell.net To: ntsysadm@lists.myitforum.com Subject: Re: [NTSysADM] MS14-066 Round Two The original patch patches the schannel vulnerability. The second patch fixes the bug in the cipher additions. Honestly, both will keep you patched up