Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Pulls Broken XP Update

Posted by michael on from the repatch-and-sin-no-more dept.

Cally writes "Yahoo! reports that Microsoft have pulled a Windows XP update from the Windows Update servers after it killed network access for some users of the claimed 600,000 who installed it. (Does this mean only 600,000 XP users trust Windows Update?) The story hints that the problem was something to do with VPN or IPSec drivers clashing with Symantec software - however I haven't found anything about this on the Microsoft KnowledgeBase (the link Yahoo provide goes to the generic support home page.) Anyone got more info?"

29 of 478 comments (clear)

  1. windows update by satanicat · · Score: 5, Funny

    windows mustive been getting too stable. .

    Do they have any sort of quality control?=)

    --
    How Now Brown Cow
    1. Re:windows update by Sazarac · · Score: 5, Funny
      As an IT professional/developer with 130 wintel boxes in my charge, I just want to say thanks to Microsoft for giving me something to fill up the otherwise boring hours of my employment with endless regression testing to make sure everything works with everything else. It's not as if I'm AT ALL busy with keeping everything running anyway. Not to mention writing new code that compiles and runs fine on Win2K but randomly throws exceptions on NT.

      != ("Not!")

      Sheesh... I'm gonna quit my job and start a new thrash band called Rage Against The Butterfly

      --
      This sig is exempt from disclosure under the privacy Act of 1974.
  2. If only they had apt-get by Debian+Troll · · Score: 5, Funny

    I am currently porting apt-get to Windows. This will mean that these types of embarassing security breaches never happen again. apt-get is the answer to all of today's problems.

    1. Re:If only they had apt-get by Saint+Stephen · · Score: 5, Informative

      I got tired of apt-get blowing up my unstable Debian, so I wrote this to make it transactional:

      sub=dists/latest/binary-i386
      dt=`date +"%y%m%d_%H%M%S"`
      cd /data/apt
      dpkg-scanpackages latest /dev/null > $sub/Packages
      grep -Ex "Filename: latest/.+" $sub/Packages | sed "s/Filename: latest\/\(.*\)/\1/" > old/L$dt
      pushd $sub
      rm Packages.gz
      gzip Packages
      popd
      mv latest $dt
      mkdir latest
      for x in `cat old/L$dt`; do mv $dt/$x latest; done
      if [[ `ls $dt | wc -l` -eq 0 ]]; then rm -r $dt; fi

      If it blows up, I can easily roll back, and keep a history of all the intermedate versions.

    2. Re:If only they had apt-get by Debian+Troll · · Score: 5, Funny
      I got tired of apt-get blowing up my unstable Debian, so I wrote this to make it transactional:

      Your code looks very interesting, and would make a fine addition to the new Windows version of apt-get which I have almost finished writing. It is crafted in MMX/SSE accelerated x86 assembler, so it runs really fast! You will, however, need to port your nice Java program to assembler. I am also looking for people to help out with the GUI front-end to win-apt-get, which is based around a helpful paper clip character called 'Klecker'. When the user requires an update, they 'Klick' on 'Klecker', and he helpfully tells the user to "Fuck off and read the manual you filthy Windoze luser", or to "Take a fucking number and wait for win-apt-get stable to be released in 2017".

    3. Re:If only they had apt-get by subreality · · Score: 5, Funny
      Hah, you BSD people are so behind the times.

      subreality@underminer:~$ apt-get cure-world-hunger

      Your ports tree can't do that. No wonder BSD is dying.

      :-)

  3. That's the problem with automatic patching by Tsu+Dho+Nimh · · Score: 5, Insightful

    If XP is allowed to go find its master and patch itself, any problem with a patch will spread widely to the people least able to deal with it.

    At least this patch made it perfectly obvious that it had a bug.

    1. Re:That's the problem with automatic patching by DShor · · Score: 5, Informative

      To the best of my knowledge, the auto-patch would not download this as it was a "security improvement" not an "urgent repair". The only people who would get affected by this are the ones who manually downloaded it themselves.

      --


      Why is it that people always hear what I say, and not what I mean?
    2. Re:That's the problem with automatic patching by Helmut+Kool · · Score: 5, Funny

      "Security improvement"? I guess it improves security dramatically if it kills the network access. Thanks, Microsoft!

  4. Hmmm....I wonder why... by Howard+Beale · · Score: 5, Insightful
    "Most systems didn't crash; they simply lost network connectivity," said Michael Surkan, a Microsoft program manager for its networking communications group. "There were hundreds of thousands of people who downloaded this, and we know of only a handful of people who had the problem."

    Maybe because they couldn't get online to report the problem???

  5. Old news by rjch · · Score: 5, Insightful

    Unfortunately, it's something we've all heard before. I'm a recent entrant to the world of tech support, and the company I work for (much like many other large companies) refuse to touch a new Microsoft OS until it's been through at *least* one, preferably two service packs. Likewise, updates that Microsoft class as "critical" are not to be installed for at least a fortnight, unless they are for serious security holes with known exploits. Whilst I think this is probably a rather conservative approach, it sure as hell is better than having the network crash down around you. I believe this company was bitten badly by such a problem with a patch a couple of years ago, hence their policy on updates.

  6. Re:Maybe its not on KB because nobody is at work? by BabyDave · · Score: 5, Funny
    It is 5am in the morning.
    Which is different to 5am in the afternoon ...
  7. More Slashdot Sensationalism by Anonymous Coward · · Score: 5, Insightful

    Does this mean only 600,000 XP users trust Windows Update

    What do you think is more likely: "only" 600,000 people trust Windows Update or everyone else just hasn't patched for checked for patches yet? I personally don't use the little auto-notification thingie, I just check every once in a while.

    Also, how is this different from any automated Linux update method? Software has bugs. Patches may have bugs. Regardless of vendor, patches are not perfect and may induce problems.

    Agree or disagree with me, when you think about it without bias it's true.

  8. In Tomorrow's News by AndroidCat · · Score: 5, Funny

    A new worm has begun infecting XP systems that didn't install the latest patch. "It's their own fault, they should have kept up to date" said BG.

    --
    One line blog. I hear that they're called Twitters now.
  9. Before you all complain about auto update... by 26199 · · Score: 5, Informative

    The article says that since this wasn't a critical patch, just an 'improvement', auto update doesn't install it.

    1. Re:Before you all complain about auto update... by Timesprout · · Score: 5, Funny

      What the hell are you doing !! Get a hold of yourself man and stop trying to point out the facts in this story. Most posters so far have already managed to increase MS's few reported cases to 600,000 broken updates. Let them have their fun.

      --
      Do not try to read the dupe, thats impossible. Instead, only try to realize the truth
      What truth?
      There is no dupe
  10. Personal Experience by aaaurgh · · Score: 5, Interesting

    All I know is that, having decided to pull down some of the critical updates (not on auto, you understand) I can no longer get the properties window to appear for a directory in Explorer, except in safe mode. Kind of makes it difficult to administer security that does; oh and the performance went down a heap too. Even tried backing them all out too, but the system restore was disabled - too little disk space apparently, nice of it to tell me in time(!).

    Only four hours ago, I was on the phone to MS support. If the p.c. is started with only MS services enabled (there's only Norton or MS ones on this machine) via the msconfig utility, everything is fine. If I disable all the non-MS services in the services window though and do a normal restart, everything is broken again - duh!

    I'm going to try unloading/reloading all the Norton stuff again but don't hold out much hope. Oh well, looks like I'm up for another rebuild, the sixth in five months... and no, I won't be using the updates in future

    --

    Go permanent? In your dreams and my worst nightmares.
  11. Geez by Quill_28 · · Score: 5, Insightful

    >Does this mean only 600,000 XP users trust Windows Update?

    Umm... NO. It doesn't.

    And stop taking cheap shots at MS, it just make you look like a whiny school kid.

    There is plenty of reasons to bash MS policies and software, but the signal-to-noise ratio is getting silly.

  12. Software Update Services... by jamesh · · Score: 5, Insightful

    ... allows an admin to release patches to users when they have tested them. SUS retrieves patches from Microsoft. An Admin approves them. Client PC's (with an appropriate Group Policy) retrieve and install approved updates from the SUS server. Easy.

    If you're paranoid^H^H^H^H^H^H^H^Hsensible, wait a week or more to give the rest of the world time to find bugs, test the patch thoroughly in a test environment, and of course ask yourself if you actually need it.

    ps. how many of todays slashdot readers know what ^H means?

  13. It wasn't just Symantec by Anonymous Coward · · Score: 5, Informative

    Yet another example of MS trying toi pass the buck and dodge the bullet...

    I had NO symantec s/ware on my system, (I use Mcafee) and I lost all networking / internet access.

    Also, the Yahoo article says that the update had to be removed which is bull$hit, the update could NOT be removed, and the only way to fix my system was to re-install and re-update Windoze.

    MS said only a small number complained, well, I did, and a couple of days later the update was pulled, no reply to my email though, not even a thank you or aknowlegment - typical MS =O(

    fLaMePr0oF

    1. Re:It wasn't just Symantec by Johnny318 · · Score: 5, Informative

      On Friday 5/23 I had a customer complain that our wireless DSL was down. After doing all the usual junk over the phone, I drove out there and checked all wires, etc. Nothing. His machine was grabbing an IP dynamically, so the wiring HAD to be correct. I asked him, "When is the last time this worked properly?" and he said Wednesday (5/21). I was about to uninstall his virus checker (Mcafee online), but first went into the XP System Restore utility, and I noticed a restore point on Wednesday due to the installation of a Microsoft update. I restored to the way the system was before Wednesday and everything worked great! Unbelievable. Microsoft is totally underplaying this one.

  14. Unfortunate by Davak · · Score: 5, Insightful

    This is not good for the average consumer.

    Bugs like this keep the common microsoft user from installing the latest and greatest updates. They might not understand that their security is troubled until they recent damage; however, they understand this:

    "I finally ran windows update... and now I can no longer get on the internet. Crap, I'm never doing that again."

    Methinks it's a Microsoft-is-too-huge-syndrome. Microsoft can't test its fixes on every possible configuration; therefore, problems like this will occur. Episodes like this have previously occurred and will occur again.

    It's the nature of the beast.

    btw, thanks Slashdot. I could have installed that this morning!

    Davak

  15. Re:Why is this news? by theCoder · · Score: 5, Informative

    True enough, but then again, I heard this story on NPR on my way to work today, so it's only natural that /. would carry something about it.

    But you're right, this does remind me of the kernel-that-never-should-have-been. I don't remember the version number (it was in the 2.4 series), but it was the one that corrupted your drives when you unmounted them. Of course, IIRC, that kernel wasn't pulled, the next version was just released very quickly. You can still get that kernel version if you really want to corrupt your data :)

    --
    "Save the whales, feed the hungry, free the mallocs" -- author unknown
  16. difficulty with software upgrades by e**(i+pi)-1 · · Score: 5, Informative

    Every software update is a risk. Especially OS updates. With software, I always fear that beside enhancements, also restrictions will be built in (happend with quicktime once years ago). Therefore, I usually
    keep a copy of the old software or to make full backups before upgrading the OS. Updating software is not trivial because it X + A + B is not equal X + B + A : the update A can and will in general change something of the modification B. After a few such operations it becomes very difficult to keep track about all possible
    states the users can have on their machine.

    My experiences from updates:

    - even for modern Linux distributions, it is a good idea
    to make full new installs rather then upgrading. I personally
    always had problems with upgrades and almost never had problems
    with full reinstalls.

    - the OS X updates went all smooth so far. Still, I always upgrade
    first one machine, wait to see if everything works fine before
    updating the others.

    - XP updates. No problem with vmware. Just keep an copy of the
    old virtual machine around. If something screws up or one of
    the software has decided to "upgrade" itself:

    rm -rf winXPHome
    mv old.winXPHome winXPHome

    Virtual machines can also easily be copied from one machine to
    an other.

  17. DRM by Root+Down · · Score: 5, Funny

    It's not a bug, it's digital rights management preventing illegal file sharing!

  18. Automatic Updates by bjb · · Score: 5, Informative
    I think the biggest problem is how the Windows Automatic Update feature is turned on by default on everyone's machines.

    For most people, it is the only way they're ever going to install updates on their computer. However, I've found production Windows 2000 servers with this feature enabled! This is at least the 2nd or 3rd time that I've read a story on /. about a Windows XP/2000 patch that was no good.

    If you want to disable automatic updates on your computer, go to Control Panel->System->Automatic Updates tab and click the buttons to turn it off. You'll be better off picking what you want to update manually.

    --
    Never hit your grandmother with a shovel, for it leaves a bad impression on her mind...
  19. Also don't install the 811493 fix by drwtsn32 · · Score: 5, Informative

    If you're running XP SP1, you definitely do not want this fix. It will bring your system to a crawl. See this for more info.

  20. Lots More Slashdot Sensationalism by gad_zuki! · · Score: 5, Insightful

    >Also, how is this different from any automated Linux update method?

    Its not. Well, this wasn't automated, it had to be downloaded from the windowsupdate.com site, but I think we're just seeing something of a double standard here.

    Okay /. has an anti-MS bias. So do a lot of people, but losing network connectivity is pretty serious, especially on the world's monopoly OS.

    What really gets me is that whenever there's an MS problem the /. crowd complains about ignorant users who don't patch. Now the patchers are the problem?

    MS's automated patching system isn't bad, it keeps Joe User updated and there simply will be x amount of problems over y amount of time, as you said just like with any other vendor.

    Enjoy the schadenfreude guys, it'll just make real MS complaints sound all the less convincing. Optional supplemental reading: the boy who cried wolf.

    Crying wolf is a big problem when criticizing MS to the uninitiated. I have the displeasure of taking a 3 hour class with a rabid anti-MS type and at this point no one takes him seriously because of his zeal, even though 2/3 of the stuff he says are actually excellent points.

    Engaging in simple-minded schadenfreude simply makes people look less credible. Seems like a tough lesson to learn for the loud-mouth anti-MS types.

  21. Time to think about Mac again? by Anonymous Coward · · Score: 5, Interesting

    I guess I was not the only one who got hosed downloading this update recommended to me by MS thru the update site. It ruined my DSL connection and could not be uninstalled. I wound up fdisking and formatting, which of course required the nice little phone call to Microsoft to get this number and that number. When they asked me why I was calling, I told them I downloaded an update from the update site that killed my internet connection - they were very polite after that.....wonder why? :)

    When Apple comes out with their new PPC 970 systems I will be first in line to buy one. I dont like what I see coming down the Microsoft trail re DRM and all the spying going on. I liked my G4 when I had it but it was so slow compared to my windows box I sold it. Seems like Mac maight make a comeback, I'm sure I'm not the only one thinking this way. But there's no way I'm buying a G4 unit.