Over 1 million tech questions and answers.

OpenSSH feature - distribution of security updates

Q: OpenSSH feature - distribution of security updates

Hi all
I have one question regarding the distribution of updates for open SSH server feature.
How the Microsoft is distributing the update for this feature ? In the microsoft windows there is still older version when I'm compare the current distributed open SSH server version.
Thank you for any info.

Read other answers
RELEVANCY SCORE 200
Preferred Solution: OpenSSH feature - distribution of security updates

I recommend downloading and running Reimage. It's a computer repair tool that has been proven to identify and fix many Windows problems with a high level of success.

I've used it in the past to identify and fix everything from blue screens (BSOD's), ActiveX errors, corrupt files and processes, dll/exe/sys errors, recover lost memory, Windows update problems, defragging, malware removal etc.

You can download it direct from this link http://downloadreimage.com/download.php. (This link will automatically start a download of Reimage that you can save to your computer.)

RELEVANCY SCORE 82.4

Hiya

The CERT/CC has received confirmation that some copies of the source code for the OpenSSH package were modified by an intruder and contain a Trojan horse.

We strongly encourage sites which employ, redistribute, or mirror the OpenSSH package to immediately verify the integrity of their distribution.

An intruder operating from (or able to impersonate) the remote address specified in the malicious code can gain unauthorized remote access to any host which compiled a version of OpenSSH from this Trojan horse version of the source code. The level of access would be that of the user who compiled the source code.

http://www.cert.org/advisories/CA-2002-24.html

Regards

eddie
 

Read other answers
RELEVANCY SCORE 62

A security vulnerability found in a widely-used open-source software has been described as "the most serious bug."
A major vulnerability has been found and fixed in OpenSSH, an open-source remote connectivity tool using the Secure Shell protocol. The flaw was the result of an "experimental" feature that allows users to resume connections
According to a mailing list disclosing the flaw, a malicious server can trick an affected client to leak client memory, including a client's private user keys.
The affected code is enabled by default in OpenSSH client versions 5.4 to 7.1. The matching server code was never shipped, the mailing list said.
The flaw doesn't have a catchy name like some other previous flaws, but disabling client-side roaming support fixes the issue.
The flaw, which is said to be years old, was found by Qualys' security advisory team.
 
Wolfgang Kandek, chief technology officer at Qualys, confirmed in an email that the company disclosed the bugs to the OpenSSH team on January 11, and commended the team for working "incredibly fast" to get a patch out three days later.

"Developers and admins are advised to regenerate and rotate keys to systems they touch, whether for hobby [or] weekend projects, or more sensitive servers -- including Github," he added.
Bottom line? Patch now, and patch fast.

 
 

Article

A:'Serious' security flaw in OpenSSH puts private keys at risk:ZDnet

HeartBleed 2.0?
 
*Frantically checks all administered servers*

Read other 5 answers
RELEVANCY SCORE 56.4

Is there a way to have Outlook-based contact groups that, if one staff member adds/deletes a contact, that it updates for everyone that has access to the contact group?

We are using a 2010 Exchange Server, 2010 Outlook and most of the computers are PC (I am the only one who also uses a Mac).

I'm having trouble finding a solution online -- because "auto updating contact group" generates different answers for me.

I know we have a Global Address List-- and I think that's kind of the way my boss wants it to function -- but instead of it being the global master list, it would be smaller lists that multiple people should have access to. For example, an "All Staff" list, a list of people who attend the weekly administrative meetings" ... "volunteers" ... and we would normally send these lists out to the people who need it. But if it changes, or people are added or whatever, then we have to send it out again, and most people don't understand how to remove the previous one, and then add the new one. We have a lot of non-computer friendly people, and I'm not the greatest myself...

Okay, any ideas would be GREATLY appreciated. Or if you could kindly point me in a better direction than googling "auto updating contact list".

Thank you!

-Samantha
 

A:Distribution List that updates for all

Welcome to TSG nhcsam. Hope you find answers to your problems and help others when you get the opportunity.

We us FIM (ForeFront Identity Management) This allows admins to assign owners of distrabution groups and security groups. The owners can then add and remove members as they please without requesting the services of an admin. Its been big time saver and freed the admins to do admin work instead of permission.

FIM probably cost money and requires and admin project to implement. There used to be a 'Public Distrabution List' that was stored/associated with an Outlook public folder (Been to long since I wore an Outlook hat). You might ask your IT folks about that or if they can give update permissions to an individual for a distrabution group.

If no cooperation from IT I would have them create a distrabution group and send them the updates each and every time. They can either do the work or find a solution.
 

Read other 2 answers
RELEVANCY SCORE 54

I am operating with Windows Vista Home Basic and have had trouble updating my files after a clean reinstallation. Finally succeeded through many strategies, but in doing so (a jillion times) eventually noticed that failures occurred whenever the 'System Distribution' file in the windows folder had not been emptied of logs and previous downloads. Not sure what this means. Any ideas? Could there be a problem with hard disk, processor, motherboard, electrical shorts? (Do not have problems downloading to other computers in my home, so my overall connection is good.)

Thanks.

A:Can't install updates without deleting files from System Distribution File

Sounds to me like you have hardware issues as stated. Please perform the following, so that we can get the exact specs of your computer. This will better assist us in helping you more.Publish a Snapshot using SpeccyThe below is for those who cannot get onlinePlease take caution when attaching a text file to your post if you cannot copy/paste the link to your post, you will need to edit it to make sure that your Windows Key is not present.

Read other 1 answers
RELEVANCY SCORE 53.6

I have all up-to-date AV (Microsoft Security essentials) on my machine and have run it and Malwarebytes at regular intervals. I've never had any problems however recently Malwarebytes threw up 3 odd things, Didn't look like anything too significant but I elected to "remove": before noting what they were and now Malwarebytes gives the all clear, as does a full AV scan.

However I also ran a GMER scan which I include below, which pointed to something strange in C:\Windows\Software Distribution\Event cache.

I also recently did a Windows update manually, even though I have it set to Automatic updates. I was surprised to see I had 22 updates needed. I downloaded and installed these without trouble. I checked my Automatic updates and it is selected to download and install the updates automatically, at a particular time of day. However all the options to change this - the day, whether to do it automatically, or not at all is all greyed out.

I'd like to get the Automatic updates configuration available again and to confirm that I can have Automatic updates working.

Would it be safe to delete all the files in the event cache, (or just the ones listed below in the Gmer output) or alternatively, the registry key that is referred to in the Gmer output below? Would this clear the issue or what other steps should I take?

Here is the GMER output:

GMER 1.0.15.14966 - http://www.gmer.net
Rootkit scan 2010-09-03 15:15:52
Windows 5.1.2600 Service Pack 3
---- Sy... Read more

A:Solved: C:\windows\software distribution\event cache - and automatic updates

Was just running an on-line Panda scan and at 33% it had already thrown up 9 infected files. I'm going to post in a malware forum instead.
 

Read other 1 answers
RELEVANCY SCORE 51.6

There was an Office vulnerability that was fixed with the April patch Tuesday in an Office update, but we've had trouble making sure all users have the updated Office patch as N-Central(our patch management tool) doesn't always list what build/patch Office
is currently running accurately.

We do know all our PCs have the April/May security updates. Is the Office Update combined into the big monthly one?

Read other answers
RELEVANCY SCORE 50.8

Windows 10 Pro
Version 1703
Just updated to Creators Update and trying to figure out the changes. From what I have been reading on deferring feature updates, under advanced options, you can defer up to 365 days. The drop down menu on this latest up to date build allows 8 days. This is in contrast to what I've been reading. Has this been changed and if so, how can I get more days without using Group Policy ?
 

Read other answers
RELEVANCY SCORE 50.4

P50 owners, have you been getting Windows features updates?My P50 (Product Number 20EN0013US) has not been offered any new Windows feature updates since 1803 in June 2018. All the other Thinkpads in my purview have received all the updates on time. I'd like to know whether or not this is unique to my machine, and whether I should manually install the updates.If you've manually updated your P50 to 1809 or 1903 have you experienced any issues?

Read other answers
RELEVANCY SCORE 49.2

Here at America Online, we know that our members are the best source of good
ideas for a better Internet. And you have told us that one of your biggest
concerns is the threat of online viruses that can crash your computer, steal
your personal information, or damage or delete important files.

So I am pleased to tell you that our newest version of the AOL software, called
AOL® 9.0 Security Edition, now includes one of the leading virus-protection
programs at no additional charge. I encourage you to <A
HREF="aol://1223:135031/aol://1391:47-64928">upgrade</A> today.

McAfee® VirusScan® Online protects your entire computer from tens of thousands
of known viruses and is automatically updated to protect against the hundreds of
new virus threats that emerge each month -- helping keep you and your family
safe at all times.

No other Internet service provider offers this premium service to all of its
users for free.

And that's only the beginning. Because of your interest in safety and security,
we've built numerous enhancements into 9.0 Security Edition to better protect
your PC from other online threats. Among them:

* Better defense against spyware: AOL Spyware Protection helps protect your
computer from unwanted spyware and adware, and the new SpyZapper(TM) feature
automatically targets the most disruptive forms of malicious software for
removal.

* Improved spam and pop-up controls: Simplified spam control tools make it even
easier to keep you... Read more

Read other answers
RELEVANCY SCORE 48.8

Is there a difference between 'Quality', 'Definition' or 'Other' Windows 10 updates and 'Feature' updates?

When my PC carries out 'Quality', 'Definition' or 'Other' updates they work perfectly.

'Feature' updates always fail drastically. I have tried the v1809 to v1909 Feature update several times and each time the download and install phases appear to complete successfully with no error messages, but the restart phase concludes with the BSOD and the stopcode error message ?unmountable boot volume?.

I have a spare bootable drive containing Windows 10 and I used it to examine my C drive. Each time it reports that the C partition has been deleted.

Fortunately I have installed Rollback RX and I was able to revert my C drive to its former state.

I tried Chkdsk, Windows 10 Repair Upgrade and Clean Boot. Same result.

Can anyone help to identify what is going on?
Tech Support Guy System Info Utility version 1.0.0.4
OS Version: Microsoft Windows 10 Home, 64 bit
Processor: Intel(R) Core(TM) i5-3470 CPU @ 3.20GHz, Intel64 Family 6 Model 58 Stepping 9
Processor Count: 4
RAM: 8136 Mb
Graphics Card: NVIDIA GeForce GTX 660, -2048 Mb
Hard Drives: C: 465 GB (350 GB Free); E: 1397 GB (1332 GB Free); H: 931 GB (131 GB Free);
Motherboard: ASUSTeK COMPUTER INC., P8Z77-V LX
Antivirus: Windows Defender, Enabled and Updated
 

Read other answers
RELEVANCY SCORE 48.8

Microsoft Makes Windows 10 Updates Smaller and Faster with New OS Feature

Microsoft has officially introduced the new so-called Unified Update Platform (UUP) which is the company?s latest attempt to make Windows 10 updates smaller and faster on both PCs and smartphones.

In essence, UUP is a new technology that makes it possible for Windows 10 devices to download only the changes that have been implemented since the previous update, which should significantly improve the delivery of large OS updates, as it?s the case of the upcoming Creators Update due in early 2017. These differential updates thus make it possible to receive only the latest improvements and not a full OS build.

UUP will be available on PCs and smartphones powered by Windows 10, but not on Xbox One consoles, as Microsoft is not shipping updates via Windows Updates here.

The company explains that download size can be decreased by as much as 35 percent, which is definitely a big achievement and comes in handy especially for users with slow Internet or limited bandwidth.

Faster checking for updates
Microsoft says that it?s also working on making checking for updates more efficient by changing how the system works on Windows 10 devices.

?We are reducing the update data sent to client devices as well as the amount of processing we are doing on devices, this especially important for devices built on the Mobile OS. Using UUP, when your device checks for updates, the Windows Update service will evaluat... Read more

A:Microsoft Makes Windows 10 Updates Smaller and Faster with New OS Feature

finally , they figure out. For now updates are torture for me . (i have 3 mbit connection )
 

Read other 2 answers
RELEVANCY SCORE 48.8

Hey,

I'm trying to disable that horrible auto-restart feature, but I can only get so far because I'm computer illiterate.

Can someone translate the directions into lay(wo)man's terms? I know I first need to get into the registry, but I don't know how to get there. I know I need to edit HKEY_something_something, but I'm not sure which one or what it needs to be changed to. Etc, etc.

Thanks.
 

A:Solved: Disabling the auto-reboot feature associated with Automatic Updates

Read other 15 answers
RELEVANCY SCORE 48.4

I had to reinstall windows Vista Business on 2 computers (different specs) this weekend, the install disk already contained SP2 and i just installed dotnet 4.5.1 after the clean install followed by all the patches from winupdate. Everything great, no error, no issues, no nada.

Problem is i cant run any .exe or merge any .reg files from external disks or usb jump drives, is it a security feature or a bug caused by windows updates, since I dont remember this happening when I used Vista like 6 years ago, and I really used Vista a lot.

Thanks a lot guys!

A:Vista security feature?

Do you have the same problem when you right click the .exe and select run as administrator?

Read other 12 answers
RELEVANCY SCORE 48.4

As we known, MS Internet Explorer has a special feature called “AutoComplete”, it can remember certain details entered on web forms, such as username and password. Let’s talk about how to do this feature first.
----------------------------------------------------------------------------------------
Referring from: http://www.mediacollege.com
Title: How to Remember Names & Passwords in IE (AutoComplete)

Go to the Tools menu on IE and select Internet Options.

A window will open like the one below. Click the Content tab, then click the AutoComplete button.
In the AutoComplete Settings window, check (or uncheck) the options you would like to use.

--------------------------------------------------------------------------------
Although this feature will help you saving a lot of time on surfing the Internet, here we talk about the security. Do you think it is security? At this time, I’ll say no, because some unauthorized users can also login any forms with these information you saved on your computer. So my opinion is that you should uncheck the AutoComplete feature or use some third-party tools, such as JJSoft IntelliLogin, IE Login, and Smart Login etc.

You can find these tools on:
JJSoft IntelliLogin --------http://www.jjsoft-studio.com
IE Login -------- http://www.IELogin.com
Smart Login -------- http://www.IELogin.com
 

Read other answers
RELEVANCY SCORE 48.4

I like this feature in Panda Security but have to wait to test until get infected

A:A feature in Panda Security

Bite your tongue, hope you never get a chance to test it!!!
Looks good though.

Read other 3 answers
RELEVANCY SCORE 48.4

Hi,

I am trying to setup OpenSSH on XP and near the end I am getting kind of lost. I will post the tutorial and what I need help with below.
Tutorial: http://pigtail.net/LRP/printsrv/cygwin-sshd.html
8) important Pop a cygwin gwindow, harmonize Windows user information with cygwin, otherwise they cannot login
mkpasswd -cl > /etc/passwd
mkgroup --local > /etc/group

If your XP logs on to a domain, you most likely have to manually edit /etc/group. See this page.

If your XP logs on to a domain, you may want to edit /etc/passwd to replace /home/username by //unc_server/path_to_home
(thanks to Geoff Thomas)

mkpasswd creates a password file from Windows' user list, click here for more details.
mkgroup creates a group file from Windows' user list, click here for more details.
Thanks to John Skiggn of Cingular Wireless in Redmond, Washington for his tweak on domain user /etc/group
http://pigtail.net/LRP/printsrv/passwd-group.html
 

A:XP OpenSSH

What was the last step on the tutorial that you did? Also, is the PC you're using in a domain?
 

Read other 1 answers
RELEVANCY SCORE 48

Microsoft confirms no more Windows 10 feature updates in 2016; two coming in 2017

Microsoft published a TechNet blog post on Tuesday regarding what's new in the Windows 10 Anniversary Update. In the article, the company confirmed that it has two feature updates planned for 2017, but no more for this year.

Based on feedback from organizations moving to Windows 10, this will be our last feature update for 2016, with two additional feature updates expected in 2017.

The news is right in line with current rumors. Tuesday's Anniversary Update would be the one feature update for this year, and Redstone 2 - the codename for the next major Windows 10 update - isn't slated to arrive until April 2017. Redstone 3 is rumored as well, but without any release timing, so with today's news, it's presumably late 2017.

It's also in line with what Microsoft has already said. Back in May, the firm said that it would be pushing two feature updates for Windows 10 every year.

The obvious question that you're probably asking is, if Microsoft said that it would release two updates per year, why would the company only release one this year? Well, when Microsoft says the word 'year', it could mean a calendar year, or it could mean a fiscal year, which would be over at the end of June. With that in mind, the firm has released two major updates for Windows 10 every year, and is on pace to do so, even with Redstone 2 coming in April.

Source: TechNet via Re... Read more

A:Microsoft confirms no more Windows 10 feature updates in 2016; two coming in 2017

Thanks for share [email protected]
 

Read other 6 answers
RELEVANCY SCORE 48

why when i set the user password at BIOS it can't be erased or changed (it says "view only item")? what do i have to do to reset the password?
 

A:help me 'bout BIOS security feature

It very much depends on the motherboard you are using. The reset cmos jumper will erase it along with all other settings changes you may have made to the bios.

For better help we really need to know what motherboard, system, and bios you are using.
 

Read other 2 answers
RELEVANCY SCORE 48

ok Ive been studying this ssh service. Im running Fedora Core 3 and it is active on my machine...........or at least a "pgrep ssh and pgrep sshd" command show it running and the ssh daemon is listed as active in my list of active services.

My question is........if it is running on my linux box does the other windows boxes within my network have to be running it to connect to me?

If so or if not....how do I configure this thing? The information that I have found about it so far reads like stereo instructions in another language. I really need some help here!
 

A:openssh question?

If you post this in the Linux forum, you stand a better chance for an answer.
 

Read other 2 answers
RELEVANCY SCORE 47.6

Please help me! The Data Execution Prevention Security Feature is really starting to stress me out. I can't access sites that I need for uni eg Hopfield Network Applet

How do I turn the stupid thing off?!!! Please help!

A:Data Execution Prevention Security Feature

I would not recommend disabling it because it is a security risk, but here is how:

From an elevated (administrator) command prompt:

DEP - Enable or Disable - Vista Forums

bcdedit.exe /set {current} nx AlwaysOff

reboot

Read other 2 answers
RELEVANCY SCORE 47.6

Article on enhancing Win 10 security

Nifty new feature that comes with Win 10 1903

How to Enable the Windows 10 Tamper Protection Security Feature

https://www.bleepingcomputer.com/tu...indows-10-tamper-protection-security-feature/



With the release of the Windows 10 May 2019 Update, Microsoft introduced a new security feature called Tamper Protection that protects security settings for Windows Defender antivirus from being disabled by malware or third-party programs.

When enabled, Tamper Protection will only allow Windows Defender related settings to be changed when done through the Windows Security settings screen. If a program, such as malware, or even PowerShell tries to change security settings or Microsoft Defender preferences, Tamper Protection will block the settings from being modified.

Due to this, Tamper Protection is an integral part of the Windows 10 security environment and should be enabled by all users for increased security and protection from malicious programs. Click to expand...

Directions follow in the article on how to enable.

edit: I just checked mine and found it was already enabled.
 

Read other answers
RELEVANCY SCORE 47.6

I have been getting help from OBP and jimr381 during the past few months to build a database for my workplace - on MY computer in my office.

I recently added the security feature on it, and am completely satisfied with it, however now this morning I burned it on a CD and tried to use it on the secretary's computer and it is looking for the exact file path it used on my computer to access its security file and related information. also, the secretary's computer is windows vista and mine is just good old XP.

What do I do? How would I disable the security feature in order to re set it up on the appropritate computer?

aaaaahhhhhhhhhhh! just kidding, I know someone will know the answer
 

A:Solved: Help! Security Feature + Access 2003

Read other 6 answers
RELEVANCY SCORE 47.6

 

 
Executive Summary

Microsoft is aware of a security feature bypass vulnerability in Secure Channel (Schannel) that affects all supported releases of Microsoft Windows. Our investigation has verified that the vulnerability could allow an attacker to force the downgrading of the cipher suites used in an SSL/TLS connection on a Windows client system. The vulnerability facilitates exploitation of the publicly disclosed FREAK technique, which is an industry-wide issue that is not specific to Windows operating systems. When this security advisory was originally released, Microsoft had not received any information to indicate that this issue had been publicly used to attack customers.
We are actively working with partners in our Microsoft Active Protections Program (MAPP) to provide information that they can use to provide broader protections to customers.
Upon completion of this investigation, Microsoft will take the appropriate action to help protect customers. This may include providing a security update through our monthly release process or providing an out-of-cycle security update, depending on customer needs.

Mitigating Factors
A server needs to support RSA key exchange export ciphers for an attack to be successful.

Recommendation 
Please see the Suggested Actions section of this advisory for workarounds to disable the RSA export ciphers. Microsoft recommends that customers use these workarounds to mitigate this vulnerability.
 
Read more here.... Read more

A:Vulnerability in Schannel Could Allow Security Feature Bypass

https://technet.microsoft.com/en-us/library/security/3046015#_Apply_Workarounds

 

Suggested Actions
 
Apply Workarounds
Workarounds refer to a setting or configuration change that does not correct the underlying issue but would help block known attack vectors before a security update is available.
Disable RSA key exchange ciphers using the Group Policy Object Editor 

 
 
so, what can I do if my version of windows lacks the requisite group policy editor?

Read other 5 answers
RELEVANCY SCORE 47.6

Hello,

I probably could ask this question to the person that told me he could or had done it, but I would like your input as to how to disable Vist's Security Feature.

Can it be done and if so, how?
 

A:Solved: I would like remove Vista's Security feature

Note sure if you meant the UAC or Security Center, but here is how to disabled the UAC:
http://www.howtogeek.com/howto/wind...nt-control-uac-the-easy-way-on-windows-vista/
 

Read other 2 answers
RELEVANCY SCORE 47.2

Hiya

There are two related vulnerabilities in the challenge response handling code in OpenSSH versions 2.3.1p1 through 3.3. They may allow a remote intruder to execute arbitrary code as the user running sshd (often root). The first vulnerability affects OpenSSH versions 2.9.9 through 3.3 that have the challenge response option enabled and that use SKEY or BSD_AUTH authentication. The second vulnerability affects PAM modules using interactive keyboard authentication in OpenSSH versions 2.3.1p1 through 3.3, regardless of the challenge response option setting. Additionally, a number of other possible security problems have been corrected in OpenSSH version 3.4.

Systems Affected

OpenSSH versions 2.3.1p1 through 3.3

http://www.cert.org/advisories/CA-2002-18.html

Regards

eddie
 

A:OpenSSH Vulnerabilities: June 27

July 02, 2002: Added Juniper Networks vendor statement.
July 02, 2002: Added Unisphere vendor statement.
July 02, 2002: Added Sun Microsystems vendor statement.
July 02, 2002: Added FreeBSD vendor statement.
July 02, 2002: Added Apple Computer Inc statement.

http://www.cert.org/advisories/CA-2002-18.html

Regards

eddie
 

Read other 3 answers
RELEVANCY SCORE 47.2

Running Win XP MCE SP2
Cable connection
motorola surboard modem
linksys router

A few weeks ago I installed openssh on my computer using http://sshwindows.sourceforge.net/download/. I set up the group and passwd files, followed the instructions etc. Forwarded port 22 from my router to my computer and configured my firewall (zonealarm) to let traffic through. Everything worked fine until I screwed something up and had to format my hard drive. I've been trying to setup openssh the same way I did when it worked and I just can't get it to work. I've tried turning off the firewall and also connecting the modem directly to the computer, it just won't work. I have the user accounts setup with passwords. When i use putty to connect to my computer from that computer things work out but outside computers can't connect to it. I open putty, tell it to connect to my ip at port 22 using ssh and it brings up the connection window and asks me for a username, which I type in, and then it immiately asks for a password without showing the welcome/warning message it's supposed to show. When I type in the password, it tries to connect for a few seconds and then simply tells me "Access Denied".

Any suggestions? Any diagnostic tools or anything of that sort I can use to figure out what the problem is?
 

Read other answers
RELEVANCY SCORE 46.8

Hello everyone. I just got a new laptop running Vista Home Premium x64, and it's my first experience with both Vista and an x64 OS.

I've changed the security settings in IE7 to a custom level, and now I get the notification bar saying "Your current security settings put your computer at risk. etc." I know this can be disabled via gpedit.mcs but of course Vista Home doesn't include that feature. So, a couple questions.

Nobody here seems to know much about getting GPedit to work in Vista Home, so I won't even touch that. However, I did see mention of the Microsoft speadsheet that lists all the various group policy settings and their corresponding registry entries. I found the "Disable Security Settings Check Feature" entry, but now I'm not sure what to do with it.

HKLM\Software\Policies\Microsoft\Internet Explorer\Security!DisableSecuritySettingsCheck
HKCU\Software\Policies\Microsoft\Internet Explorer\Security!DisableSecuritySettingsCheck

I can navigate to the Microsoft folder in regedit, but that's where the trail ends. Do I need to create a key or something? I don't have much experience with the registry, and I really want this notification bar gone. Help please?


cheers everyone!

A:Disable Security Settings Check Feature && GPEdit

Hello mousetopher. You probably allowed something in the security settings that you should have just set to prompt. Scripts, Activex, something that will tolerate nothing beyond prompt. Allowing anything unsigned more permissions then prompt will set off that warning. Reset them to default and then your security warnings should disappear.

Hope it helped. If not I probably read it wrong.

Read other 4 answers
RELEVANCY SCORE 46.8

I did a search, but didn't quite see anything posted that might relate to my problem.

At one point early last year I installed OpenSSH on an xp business box I have at home. I set it up so that it was an automatic server that would start when the box turned on. I used Putty on my laptop, and through port forwarding on my WRT54G v8 router, I had it all working perfectly and could connect using Putty on my laptop to have a tunnel to my home comp. Last week the hard drive died and I just bought a new one to put in it, and went through the process of re-installing XP. I then reinstalled OpenSSH, put in all the same settings as it had before (detailed notes from when I did it the first time) and fired up Putty and it wouldn't connect. I thought maybe it was the box, so I tinkered and tweeked to no avail. The only firewall I have running is the XP, and I added OpenSSH and it's ports to the firewall exceptions. The ports are forwarded correctly on my router, and everything in Putty looks ok. After still more timed out connections I opened the routers incoming log and noticed that there were no requests to the port I have OpenSSH set to. I thought that this was odd, as I also have PCAnyWhere installed, and it works perfectly, and I can see in the log the incoming requests for that. So now I am stumped. I have tried Putty on 3 different computers, using three different connections, and still nothing. Any ideas?
 

A:Solved: Windows OpenSSH Problems

Read other 7 answers
RELEVANCY SCORE 46.4

I have been using 360 Security for over a year now with no problems but I am now having to do lots of online banking and am not sure if I have enough protection with 360.
I have a trial version of ESET Smart Security Premium installed which has dedicated banking and payment protection.
I have noticed that other software such as Kaspersky, Bitdefender,Comodo,F-Secure all have similar elements. Do these additional features actually give more protection ? An IT consultant friend says that these features are mainly 'cosmetic' . Is this so ?

Would welcome further advice and recommendations please, thanks.
 

A:ESET Online Banking feature - Have you tried it? Internet Security it better than the competition?

I used it one time version 8
I used it in trust site
It check the site
I think may be good
 

Read other 3 answers
RELEVANCY SCORE 46.4

Microsoft has suspended the "Attach-Photo" feature in Hotmail as a result of security concerns.
Webmail users can still add photos as attachments to Hotmail messages, just not in the same way as before. Microsoft expects to restore the suspended feature by the end of September.


Microsoft spoke about the recent suspension in postings to the Windows Live blog here and help pages here on Thursday.

Redmond explains the feature was suspended after testing unearthed a security glitch involving the interaction of its feature with IE.


Link -
Hotmail pulls Attach-Photo feature over security concerns ? The Register

A:Hotmail pulls Attach-Photo feature over security concerns

I used to use that alot. ;[ Wish they would fix it soon! I hate adding them as attachment's then u have to d/l them before u can view them.

Read other 2 answers
RELEVANCY SCORE 46.4

InsighVM(Rapid7) is reporting vulnerability "MS14-046: Vulnerability in .NET Framework Could Allow Security Feature Bypass (2984625)" on Microsoft .NET Framework 2.0 SP2, but recommended patch "KB2937608" was already installed. this
issue for all Windows 2008 sp2 servers. In the report, vulnerability proof mentioned as shown below. could you please help me with this issue.

vulnerable software installed: Microsoft .NET Framework 2.0 SP2

 * Found an applicable package: HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Component Based Servicing\Packages\Microsoft-Windows-WindowsFoundation-LanguagePack-Package~31bf3856ad364e35~x86~en-US~6.0.6001.18000.

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\SideBySide\Winners\msil_RegAsm.Resources_b03f5f7f11d50a3a_en-us_1b2f5d0d8917c959 - key exists

    * The above CBS component is currently version 6.0.6001.18000, expected version 6.0.6002.19134 or higher

    * Fix for KB2937608 is applicable for this CBS component

Read other answers
RELEVANCY SCORE 46.4

ever sine 7.0 or wutever ver of windows media player came out there was some sort of modification so that it wont let u print screen for some stupid security measure...

i kno thers video players with screen capture and those nice features but i still think that security thing is really annoying

is ther a way to completely get rid of it ? (i dont think uninstalling media player does it)

does ne1 know? (regedit>__?)
 

Read other answers
RELEVANCY SCORE 46.4

What security feature disallows applications from loading DLLs from their own directory?

I have two DLLs named ws2_32.dll and wsock32.dll. I also have an application that i want to utilize these two dlls rather then the ones in system32 but it apears that it doesn't. I ran a dependency scanner and found that in fact the application does load these two DLLs rather then the ones in system32 folder.

How i know its not working: the dlls are suppose to make a log file. It succeeded in making the log file on winXP but not Win7.
I found some one else having same problem but with vista but that could be fixed by doing the following:

'set the registry key "HKEY_LOCAL_MACHINE\Software\Microsoft\WindowsNT\CurrentVersion\Image File Execution Options\DevOverrideEnable" to 1" '

However, i can't find the DevOverrideEnable field in my win7 registry. so upon the suggestions of some friends i added the field in manually and set the value that didnt work either.

What i have tried:
On Admin account
Run as Admin
Set compatibility to xp
take ownership
turn off all security features that i could get my hands on

all of that and no luck please advise.

Thank you,
Astropirit
 

Read other answers
RELEVANCY SCORE 46.4

I have a problems with Win 7 Pro x86 where the Openssh SSD service is playing up


Symptoms

Task Manager:
Services Tab:

GGSMGR is running
MySQL is stopped (Right click | start - give access denied), need to start this

Services.msc
Openssh ssd status is blank, and right click is grey out

I need to get these running any ideas please?

I have restarted the PC and cold booted already, no changes same situation as above

Read other answers
RELEVANCY SCORE 46.4

Hi folks,

today I setup Cygwin and OpenSSH on my rented server. I following the usual direction and everything seemed to be fine.

I tested locally using ssh localhost und voila - connection, login, everything fine.

Then I tried to login from my laptop and got no connection. I checked the firewall - and it was off. Both the server provider's firewall and the local windows firewall were off (I turned them on afterwards, however).

Ok, I thought, let's connect locally, so I tried ssh <hostname> and ssh <server-ip> (On the server itself!). Could not connect.

I tried a lot of combinations, changed the port, used ListenAddress to explicitly bind to the local ip, looked at hosts.allow and hosts.deny etc. Actually one can see slight differences with netstat -a, but the effect remains the same: Using localhost and 127.0.0.1 I can connect, but not using the IP.

Server OS is Windows Web Server 2008.

Any ideas?

Thanks for hints or any idea how I can debug this. SSH debug mode shows no output, so it really seems no connection gets established.

Regards,

JavaBird
 

A:Cygwin OpenSSH doesn't listen on actual IP, only on 127.0.0.1

Does the software have an option to change what ports it is listening on? Is their a check mark that you could of over looked that would cause it it only be listening on the loop back address?
 

Read other 3 answers
RELEVANCY SCORE 46

This is an inconvenient delay, not anything serious. Running Windows 7, if it makes a difference.

Issue: Microsoft Security Essentials auto-updates block Microsoft Updates until MSE is finished.

Description: I have Microsoft Update (or Windows Update, whichever it's known as in 7) set to automatically check for updates but not download or install without my approval. I do this so I can review what's being updated, (I'm a little wary of Microsoft putting an anti-piracy app in as a "critical" update in the last year or two). Anyways, when I boot up the computer, it checks for updates and alerts me of them.

However, Microsoft Security Essentials also auto-checks for updates upon boot, and if it has an update it will automatically being downloading and installing it in the background. Which is all well and good, except whenever that's happening it causes MU to "fail" updates until it's done updating. Thus, I have to remember to wait until the MSE update is done, then run the MU update.

Question: MSE definition updates are included under "Optional" updates in MU, is there a way to make MSE stop updating independent of MU so I can queue all the updates together? I feel like this would be the easiest way to prevent this annoyance. I don't see an option, and I'd rather put up with this annoyance if the only solution is to put all updates back into Microsoft's hands completely.
 

A:Microsoft Security Essentials updates blocking other windows updates

My understanding of MSE is it will check several times during the to make it has the latest updates. Most GOOD VA programs will do this as there are several releases daily for AV definitions. This is the only way you and your machine will be aware of these releases.

When some of these attacks happen, a definition is released, but as the infection is refined, the the definition must also be refined and/or improved. I use F-Prot on my machines, but I install MSE on the kids and grand kids machines. I have seen as many as 12 releases in one day from F-Prot, this is what is call" being on top of things".

So I would not want to rely on ME being the one to check several times daily on all of my machines to see if a new release has been made.
 

Read other 1 answers
RELEVANCY SCORE 46

Its been doing most of these updates forever, when I go to shut it down it updates but when I wake up in the morning these updates are still not done... It's like they never finish. This happens every night for the past 6 months or so i'm getting tired of it now so i need some help. I've tried Reset Windows Update History that works for a week or so but they eventually come back.




Code:
Diagnostic Report (1.9.0027.0):
-----------------------------------------
Windows Validation Data-->

Validation Code: 0
Cached Online Validation Code: 0x0
Windows Product Key: *****-*****-WJ2H8-R6B6D-7QJB7
Windows Product Key Hash: ckKNc+BBPDWmo1LUlOkraNjlQ34=
Windows Product ID: 00359-OEM-8992687-00006
Windows Product ID Type: 2
Windows License Type: OEM SLP
Windows OS version: 6.1.7601.2.00010300.1.0.003
ID: {9D9F00D6-4ACE-4595-9A2E-8B72A3B5B243}(1)
Is Admin: Yes
TestCab: 0x0
LegitcheckControl ActiveX: N/A, hr = 0x80070002
Signed By: N/A, hr = 0x80070002
Product Name: Windows 7 Home Premium
Architecture: 0x00000009
Build lab: 7601.win7sp1_gdr.120830-0333
TTS Error:
Validation Diagnostic:
Resolution Status: N/A

Vista WgaER Data-->
ThreatID(s): N/A, hr = 0x80070002
Version: N/A, hr = 0x80070002

Windows XP Notifications Data-->
Cached Result: N/A, hr = 0x80070002
File Exists: No
Version: N/A, hr = 0x80070002
WgaTray.exe Signed By: N/A, hr = 0x80070002
WgaLogon.dll Signed By: N/A, hr = 0x80070002

OGA Notifications Data-->
Cached Re... Read more

A:Windows wont complete updates, Security Updates KB2604121

I've deleted a environmental variable for a PATH for Java I added long ago and it downloaded and installed it for now. I will see if anything else happens

Read other 1 answers
RELEVANCY SCORE 45.6

OpenSSH chink bares encrypted data packets.

One in 262,144 chance = good odds

Important Note: If your system uses OpenSSH, make sure you are running the latest version (5.2) of it!

-- Tom
 

Read other answers
RELEVANCY SCORE 45.6

Hello Qihoo 360 Team,
with new Security features added to the Premium version (Qihoo 360 TS with own firewall, not the GlassWire one), for testing out the level of protection, a try before you buy would be better and easier than the 30 days money back AFTER purchase (currently ~20?).

@PAM101 @Qihoo 360 Support Team
 

Read other answers
RELEVANCY SCORE 44.8

Hello,

I have a ton of Updates, Sec. Updates, and hot fixes installed on WinXP. Is it ok for me to uninstall all but the most recent udates and hotfixes out of the previously listed categories without problems?
 

A:WinXP- Updates, Security Updates, Hotfixes

No, you shouldn't uninstall any updates.
 

Read other 2 answers
RELEVANCY SCORE 44.8

I have a whole ton of security updates for windows XP going back over 2 years in my Add/Remove programs list and I want to know if it is safe to delete those older than the most recent ones. Its taking up too much space on my computer and because of that I have stopped any current regular updates by switching off the automatic updates settings. Could someone please advise me if it is safe to do this?
 

A:Security Updates and general Updates for Windows XP

Read other 16 answers
RELEVANCY SCORE 44.8

Receiving in WU about 4 security updates for .Net Framework 4.0 and 2 improvement Updates .Net Framework 4.0.

Strange, i'm feeling some of those are already installed....since two or three months

They're still not listed at MS Download Center.

[Edit]:
Looks those are only .Net Framework 4.0 Extended & Shared

A:Massive .Net Framework 4.0 Security Updates & Updates

Removed all of the version 4.0, looks like a big MS bug as it was constantly offered in W.U.

False alert!

Read other 1 answers
RELEVANCY SCORE 44.4

Microsoft Baseline Security Analyzer

I usually run this when buying used equipment ive run it twice this week first time it did its job , but this time its not downloading its updates .

Just a black download bar for last 20 mins .

any idea before i unload it , lenovo - thinkpad t420 it does have loads of preinstalled nonsense software on in .

Read other answers
RELEVANCY SCORE 44.4

Hi,
Get-MsrcSecurityUpdate does not seem to list some "security only" updates in the xml output.
It does list all the other updates including Monthly rollups. Is there a way to retrieve this?
For example, the following updates are missing from the output when the command
Get-MsrcSecurityUpdate -Year 2017 was executed:


4015548, 4014985,   4014986,   4014987 and 4014988.




Regards,
Mansur Farooq

Read other answers