Conversation
Notices
-
what's the best way in Windows to block rogue Windows Updates. host file?
-
@daw the only rogue windows updates are updates to windows update itself
-
@daw unfortunately, if you stop those updates, you wont be able to get any updates though
-
@trelane I don't really have that sort of power over our 4000 or so Windows machines here
-
@dcostalis problem is Windows updates mess up this point-of-sale system we have....they are supposedly turned off...but they aren't
-
@daw then yeah, update.windows.com and update.microsoft.com in the hosts file should kill it.
-
@daw Succeed at that! but plz don't be surprized when you discover your POS machines are vectoring DDOS attacks.
-
@heygabe they've been running like this for years...no vectoring yet
-
@daw IIRC Windows Update doesn't rely on the hosts file. They set it that way so malicious apps couldn't direct users to d'load bad patches
-
@j1mc if only I'd see that before I waster 40 minutes or so
-
@daw Then the only thing I can think of to be certain of avoiding undesired MSFT updates is a separate firewall with default block policy.
-
@daw Depends really on how far you want to go to ensure that MSFT doesn't follow through with the rights from theEULA. I'm paranoid, tho. :)
-
@trelane we've thought of the firewall, but we don't know all the ports this thing needs. maybe the vendor can give us that info.
-
All Identi.ca content and data are available under the