Certs after Jan 2014 have to be 2048. If you buy a 1 year cert at 1024 you cant buy after Jan 2013 On Oct 31, 2012 9:04 AM, "David Lum" <[email protected]> wrote:
> I thought it might be related to the recent cert update where it has to be > 1024 bits or longer, but I didn't look into it. > > -----Original Message----- > From: Ziots, Edward [mailto:[email protected]] > Sent: Wednesday, October 31, 2012 8:55 AM > To: NT System Admin Issues > Subject: RE: 1100+ "revised" updates on WSUS? > > Yep saw that one, very interesting, is M$ telling us that they have had a > certificate signing breach without coming out and saying it? > > Z > > Edward E. Ziots, CISSP, Security +, Network + Security Engineer Lifespan > Organization [email protected] > > > -----Original Message----- > From: David Lum [mailto:[email protected]] > Sent: Wednesday, October 31, 2012 11:48 AM > To: NT System Admin Issues > Subject: FW: 1100+ "revised" updates on WSUS? > > From the patch management list. > > -----Original Message----- > From: Doug Neal [mailto:****] > Sent: Tuesday, October 30, 2012 11:17 AM > To: Patch Management Mailing List > Subject: RE: 1100+ "revised" updates on WSUS? > > As part of an overarching strategy to improve the security of > Windows/Microsoft Update, many updates were revised in October - and likely > more will be revised in November and December. > > While this is mostly an improvement in the security code signing of these > updates, because of the way CBS-based packages are built (Windows-based > updates used in Vista/Win7/Win8 platforms), the actual binaries had to > change to meet the new signing requirements and improvements. So while > many XP and below updates will be revised (since they are not CBS-based) > and will not require you to reinstall them, updates for the Vista and > higher platforms will more likely require you to reinstall them (since they > are re-releases, not MU logic revisions due to the binary changes). With > auto-approval set, you may not even notice the XP based revisions, but are > more likely to notice the Vista (and higher) re-releases. > > For these revised/re-released updates, there are no functional > differences. Just signing improvements that ensure the security and trust > in these updates. > > MSRC bulletins that are revised will have the normal bulletin revision to > describe the changes in this updated release in the actual bulletin. > > doug neal > Microsoft Update (MU) > > > -----Original Message----- > From: Surpuriya, Vinay [mailto:*****] > Sent: Tuesday, October 30, 2012 7:48 AM > To: Patch Management Mailing List > Subject: 1100+ "revised" updates on WSUS? > > Hi Colleagues, > > Anyone else seeing a gigantic number of "revised" updates on their WSUS > servers today!? We got 1143 revised updates, to be precise, on last night's > WSUS sync. What is the exact behavior of revised updates? Are they going to > restart computers tonight? > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ < > http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ < > http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
