Slashdot Mirror
Windows XP Update Library On a CD
KrispyKofta sends us to APC Magazine for a writeup on Project Dakota, a one-man effort to provide all Windows XP SP2 updates on one downloadable CD. It's poor man's XP SP3, but even when SP3 is out, the project will continue to offer a CD that will install all patches offline. "When was the last time you installed a fresh copy of Windows XP SP2? The process is still straightforward and relatively quick... but then you think 'I'll just make sure the patches are up to date,' and proceed to stare in horror at the 100+ security updates and critical fixes that Windows Update or WSUS demands you install. And it takes forever. A better option which we've just discovered is the innovative work of Alek Patsouris... it's a self-contained boot CD which contains all the necessary updates to automatically patch a Windows XP SP2 system with all the patches available at the CD's build time."
Those who don't know history...
Which does pretty much the same thing...
Visit ssjx.co.uk
Reknowned IT publisher Heise is already offering an even better solution: c't Offline Update. Update W2K, XP, Vista, Office in English, French, German, Spanish, Italian and some 20 more languages by using Microsofts update catalog to download all chosen updates, then creates an ISO image per OS (CD-sized) or for everything (DVD needed). The included scripts allow for a fully automated install of all updates from the CD or DVD, even including any necessary intervening reboots.
c't Offline Update Project Download Page
Seriously, the fact that MS doesn't provide something like this for all Windows XP customers is bordering on criminal in my mind.
Honestly why is the latest revelation in documented common Microsoft software practices news on /. ? I mean you don't see "Latest yum library that that comes to you downloaded all rpms in one safe ISO!!1!" as a headline...
This is a nice idea for individuals who only have to do this once. However, the RyanVM and Xable update packs have been offered for years and integrate into your installation disc. No need to run another lengthly installation after the install is done.
Can it be limited to the security updates? Some of the patches are really suspicious.
Although it seems pretty silly, I can see MS's point of view. Autopatcher is essentially becoming a Windows patch "distro" and the more people that use this the less control MS have over patch roll out.
Say in the future MS want to push out a patch that is so mean and so unethical that Autopatcher refuse to include it (kids, don't say that's impossible - we all know MS has infinite Evilness). Suddenly MS has a large body of people that won't swallow the patch.
Less tinfoil-hat-wearing is that Autopatcher shows up MS's own ineptness.MS have shown for a long time that Windows users are their assets ("our install base") and don't treat them as customers. Customer service is secondary to asset control.
Engineering is the art of compromise.
Does Microsoft allow third parties to distribute official patches? If not, this sounds like a copyright violation.
"..but sure sucked not knowing about the other products - took 20 or so reboots from install to completion to get all updates down."
Dude! That's sure a lot of swallowing.
Why use WindizUpdate?
Not only will it keep you up to date with the latest updates from Microsoft, it will also keep software and drivers from other vendors updated. However, that functionality is currently missing.
Good reasons to use WindizUpdate
* No personally identifiable information is collected from your computer.
* No more unwanted spyware -- Microsoft Internet Explorer can finally be removed from your computer (if that were possible).
* It lists just the updates you need. If an update has been superceded by a newer one, it will not ask you to install the older one.
* Using enhanced data from MBSA, WindizUpdate will find more security patches needed for your O/S than the "other" website.
* If there is a security issue with a component that is not yet installed, it will not ask you to update it. For example, if you have not installed hyperterminal, it will not update it.
* It is not restricted to just Microsoft products. Software from other vendors can also be updated.
* Upgrading to the latest version of Internet Explorer is not considered a Critical Update!
* Works on Windows versions no longer supported by Microsoft -- Windows NT 4.0 and Windows 95
* Our plugin is not an ActiveX control.
* Integrated download manager with error detection -- you can cancel downloads at any time, and the next time you wish to install the cancelled update, it will continue from where it left off. Only corrupted sections of the file are redownloaded.
If you are still not convinced that WindizUpdate is the site for you, please check out our page titled "do we need to say any more?"
Disadvantages
* There is a delay from when new updates are released from Microsoft to when they appear on this site.
* If you're using Internet Explorer, you will need to use Microsoft's Windows Update site for updates -- this site will be of no use to you.
* You'll need to upgrade your browser if you're using MSIE 4.xx -- This site won't work, neither will Microsoft's. http://windizupdate.com/
The "do we need to say any more?" link is: http://windowsupdate.62nds.com/whywelovems.php
Sure, it's not an AIO CD, but it's a great alternative to Windows Update.
"While you're watching the quiet ones, a noisy one will fucking kill you!" - George Carlin
Providing an OS + released patches on one CD is actually innovative? Oh my...
C'mon! I know there must be one out there.
It's... Wizard Gay Alliance... geezus, get your shit "straight".
Did it all fit onto a single CD?? :O
Onda Technology Institute
"Not on MS servers" is FUD, not a valid reason. For MS it is all about controlling the distribution chain.
Engineering is the art of compromise.
I think this has already been invented: http://www.ubuntu.com/getubuntu/download
Theres a dude that builds an iso on tpb which will install a fully updated and updateable sp3 xp install with included handy apps, which is quite easy to use and the thing I will probably always use on my other partition (which is rarely used only for games or unruly applications which don't like wine or virtualisation)
like phosphorescent desert buttons singing one familiar song
I've never installed that, and I don't want to, I object to the very idea of it. It's not much of a hardship, since I don't use any Microsoft programs aside from the OS and office anyway, so I don't care about the blocked stuff.
This cd would be great unless it included WGA. Can anyone enlighten me?
Wasting other peoples time is or should be criminal. So is having to waste bandwidth and global warming performig redundant tasks and cpu cycles. Remember when service packs came out monthly, on CDROMS. For the sake of the planet, will someone pass an energy law making inefficiencies illegal.
"The Dakota Project"
"A one-man effort to provide all Windows XP SP2 updates on one downloadable CD."
With:
Bruce Willis as The Architect
Jennifer Lopez as Dakota
Will Smith as Bill Gates
Yet another way that the Linux based OS's are actually, qualitatively superior to Windows, even for normal people. Since we don't have to worry about licensing, we can just, you know, work, and do stuff for you because we like you.
expandfairuse.org
They really think doing 100 updates, and 12 reboots is ok? Get real, maybe if you work for ms and want to waste 3 days work not working.
.1 DVD ISO every 3months for gods sake, and up its number. Major release numbers should ONLY be needed if the kernel changes.
If I was bill gates, I would walk right into the OS group and say, "listen MOFO loosers, make a single one time update for all fucking patches under 100meg, no online wizards"
I think Bill Gee has a personal IT ass-sistant keeping his top of the line laptop always ready & working. If only Billy knew how shit his OS was. This goes to a few linux distros too,
stop this madness 5.1 6.1 7.0 8.1 every 6 month, just update a
Frigging bloody BA Managers. Clueless about IT.
Liberty freedom are no1, not dicks in suits.
Which is why an open source hacked distribution server isn't a big deal. Just go to another server.
Requres a non-distrubiable EULA.
There is about 103 updates for Win2k,
and the only one I cannot download is the
Certificates update.
HTTP 5.1/BITS 2.1 is a bitch to get,
and MS Installer 3.1 is also tough,
but I can get everyother one. Win2k and XP, and Vista.
Genuine Advantage is a typical M$ peice of garbage...
Its harder to jump a turnstile on the NYMetro then get around it.
But the easy way is to find the ftp mirror, and just suck it like a golf ball through a garden hose...( Hint: There are 6 I found, and only one has its files unprotected...._
Boot PC
F12 - PXE boot
"ubuntu-710-server"
enter hostname
*wait 20-40 minutes depending on time of day and bandwidth*
Fully uptodate, patched installation, ready to go, with essential utils installed like sshd, snmp, npt, etc.
If building a generic box, run "setup.sh", select role, and go. Depending on role thigns like apache are installed. Everyone's happy.
Nagios checked every 6 hours for critical security patches are flags them up, test and dev systems get them installed automatically, live systems get the OK (a manual apt-get upgrade) depending on severity of exploits
What's a CD?
There already a freeware tool out there which does most of this task.
"Offline Update" (http://www.heise.de/ct/projekte/offlineupdate/download_uk.shtml) was created by Heise, a German publisher of several serious IT magazines.
You simply choose a MS product and it will then download all updates and patches and generate an ISO image for a bootable CD/DVD. Once finished, simply put that disk into the destination computer's drive and the the rest will be done via autostart. Reboots and related stuff will be handled by creating a temporary local admin account automatically, which will be deleted again once the program finishes its run.
A nice solution for smaller companies who don't want to set up their own WSUS node.
Project North Dakota and Project South Dakota?
Quidquid latine dictum sit, altum viditur.
Also starring:
the Evil Monkey as Steve Ballmer
There is a better solution. WSUS is no option for smallers users/firms. Install IPCOP on a old pc with a 10GB hard disk. Then install Advanced Proxy written by a very smart guy Marco Sondermann.(http://www.advproxy.net). Install the add-on Update Accelerator (http://www.advproxy.net/update-accelerator/). Regardless of standard Squid settings Update Accelerator caches updates from MS, Adobe, Symantec and the new version caches Apple,Avast,Linux (deb & rpm) and Trend Micro updates. No hassle around with cd's. I am systembuilder and this is opensource at it best.
Ever heard of nLite or vLite? They let you build your [u]own[/u] XP/Vista ISOs with update, service pack and additional driver integration as well as literally every customization you can think of. So, yes, this is nothing exactly new, and I'd rather prefer my own customization.
"relatively quick"
Relative to what? Geological time? no, it is not even remotely quick! even w/o patching XP takes a good 2 hours to install, unless its the "stripped to the bone" edition, which is pretty fast, ~30 minutes, pre-patching. Patches add another 4 hours of downloading/rebooting... having the patches offline will save maybe 2 hours...
get a watch.
The Admin and the Engineer
Microsoft updates you!
Mever nind the typos.
They used to ship these for free from MS HQ, even shipping was free. (I still have these "security updates" CDroms laying around. Got an invoice of 0 USD)
At the moment they seem to charge 8 (Offline SP2 CDrom). If you feel thats too much, download teh redistributable, burn it to cdrom or make a slipstreamed XP if you have to do alot of installations.
Do you trust a random guy "patching" your system? I don't.
I think we can keep recursing like this until someone returns 1
I work for the Geek Squad and we have had something like this for a while. It is called Customizer and will automatically do all the patches, including doing restarts between waves of patches. We use it on new computers, after restores, and spyware/virus removal.
I frequently find myself in the exact situation for which this project was intended: I've just done a clean build of Windows XP SP2, and it's time to bring it up to date.
However, I prefer to change the sequence up a bit:
-- Run a scripted build from a modified SP2 CD.
-- Install all the 'inside-the-case' hardware drivers: IMHO, Windows Setup isn't complete until Device Manager is clean.
-- Install the Micro$oft Java VM, and its latest updated version (must be done as two steps, thanks to $un).
-- Install a Google-tweaked version of IE7.
-- Install the latest versions of Flash Player, QuickTime, Real Alternative, and Nero.
-- Install Media Player 10 (which reclaims all the file associations that Media Player can handle).
-- If the machine will get Office, install it.
-- Finally, open the Windows Update page, and immediately click over to Micro$oft Update. Choose the options to hide Media Player 11, and any video driver updates from M$ (they usually break things). Launch the process. Go to lunch.
If the project included an option for starting with a machine that already has IE7, has the M$ Java, and is meant to be left with MP10, it would be perfect for me.
Windows update doesn't take forever. Last time I installed XP the whole thing was done in about 20 minutes. And at this point, Ubuntu 7.10 takes just as much time.
I can see how this could be useful for those without decent-speed internet connections, though.
Here it goes another excuse for microsoft not to roll out a much needed service pack 3.
...that if it wasn't so full of holes you guys wouldn't have to patch it sooo much. In addition, isn't it vulnerable to attacks and exploits while taking 4hrs to download the patches? When is too much bullshit enough for you windoze apologists? I couldn't and wouldn't put up with microsoft's closed, proprietary formats and OSs. Im sure some of you will say but we have to!! That is a line of bullshit. Today there are many alternatives and to say there isn't is approaching lunacy or dare i say stockholme syndrome?
I don't trust updates from a third party nearly as much as I trust updates from MS themselves. Even if the third party is altruistic, it opens up a whole new vector of attack. I just installed XPSP2 on a PC I rebuilt a couple nights ago, and even over a less than amazing connection it was updated and running in about forty minutes with very minimal manual intervention. If I'm installing windows on one PC, I don't mind having to reboot it twice while I'm doing something in another room. If I'm installing it on several PCs, there are better options (network installs, etc).
Did this just yesterday for the X-millionth time....once XP finishes installing I just point it at windows update and walk away. Take a look at it every 20 minutes or so. Was a pretty painless process over my wireless network. Should an OS need such a volume of updates?...probably not, would it be faster to make the updates torrents?...doesn't matter because it's never going to happen.
It sucks when you are reinstalling on your main machine I guess...but isn't that what television/consoles are for?
http://www.heise.de/ct/projekte/offlineupdate/download_uk.shtml
Why must we already be reinventing the wheel, sigh.
I like this idea
Now when I build 10 to 15 machines for a client I don't have to kill my internet connection
or try to download them all to the LAN
Now, how long will it take MicroShaft to file suit or buy the guy out?
-- I am the NRA, enough said...
Don't forget to also add the driver packs to your install disk
http://driverpacks.net/
you can also use RyanVM with it as well but then you likely will need a DVD as it will be to big for a cd.
It's labeled "Ubuntu"
Use Heise Security Offline-Update to patch any installation of Windows XP with the latest service packs and security updates.
.ISO file
which you burn to a CD or DVD. To use Heise Offline-Update, you insert the
CD or DVD, start the program, and let it run.
:)" (2008-02-12). Before, Autopatcher provided patches directly from their servers; Microsoft stopped that, due to security risks, it said. But Microsoft did not provide its own solution.
Why? Heise Offline-Update handles everything. It comes from a reputable company that makes money selling other security services; they have a strong incentive to do it right. To make the CD or DVD, it downloads all the patches from Microsoft's servers, and makes an
Shortcomings of Heise Offline-Update? 1) It does only security updates. 2) The web site is mostly in German, although there is an older English explanation.
Why not the others? 1) Autopatcher and others were much more amateurish. Autopatcher is now back with a scheme like Heise Offline-Update, but that is after months of experimentation. The volunteers at Autopatcher don't seem to have the resources necessary. See the Autopatcher downloads page which says "This page will be back very soon
Problems with Slashdot: 1) Bad stories create bad discussions. Slashdot editors apparently don't know much about Microsoft Windows. Almost all Slashdot readers have to deal with Windows, even if only to help family and neighbors. Sloppy stories that have not been researched waste reader's time. 2) Lots of readers comment when they don't have much to say.
That said, Slashdot is by far the best web site I know for computer-oriented news.
Problems with Microsoft: What Microsoft offers is not complete, so volunteers try to help. In my opinion, Microsoft is often extremely adversarial toward its customers.
It has been more than 3 years since Microsoft issued a Service Pack for Windows XP; that has wasted the time of hundreds of thousands because Windows XP is so unstable and buggy and malware-prone that it often needs re-loading. Often malware replaces a system file, and the only way to recover is to re-load the operating system. Re-loading Windows XP preserves all the programs and settings; however, the latest Windows XP CD from Microsoft has only Windows XP Service Pack 2; there have been hundreds of megabytes of updates since then, making updating over a dial-up connection extremely slow.
Microsoft does have a system for updating, but the system requires the very expensive Windows Server 2003, which requires a network and at least one other computer. Obviously requiring all that creates problems in helping someone with his or her home computer, or with a cash register computer in a small store, for example.
More problems with Microsoft -- Windows Update often fails. Amazingly, Microsoft is unable to deliver an updating system that works reliably. I just worked on a friend's computer, for example, and running Windows Update gives a long numerical error message with no help for fixing the error.
There have been many, many different kinds of problems with Windows Update. See, for example, Microsoft's Windows Update Discussion Group.
I guess that millions of hours are lost every year because of Microsoft's sloppy programming. Bill Gates deserves his title, Chief of Grief, although soon the chair-throwing, bad-mouthing Steve Ballmer will be the Chief, apparently. (The
Only Microsoft could make downloadable updates suck so bad that an update CD would be called "innovative".
microsoft already has a downloadable cd every month with all of its updates. all you would have to do is change a simple batch file, like i do at work to include the new ones. This "project" is nothing but a waste of time. for those of you who are not smart enough to type windows update iso in the search box on microsoft i will provide the direct link to the KB article http://support.microsoft.com/default.aspx/kb/913086
So, for $8 I can order a CD that will take 4-6 weeks to arrive, but why would I want to/should I have to wait that long? If I turn on the automatic updates, I can download the SAME STUFF in dribs and drabs as the updates are created, but it's done automatically; I don't get a chance to tell them to go fuck themselves when they try to put a devious update on my computer. It seems you can download everything else on the site with such ease, so why not the fscking courtesy of a link to SP2 on their site?
And if I buy the $8 CD?
Oh, how kind of them. I have a better idea - for quicker distribution, why don't I put the CD contents up on my website and help M$ out? Because The Microsoft Download Center site is your only authorized web source for downloading a licensed copy of Windows XP Service Pack 2. To report a website offering unlicensed copies of Windows XP SP2 for download, please send e-mail to: piracy@microsoft.com or visit http//www.microsoft.com/piracy/ReportingUs.mspx.
Hmmm, lemme get this straight - a licensed copy of something you're giving away for free that you're encouraging me to give away for free as long as I don't pirate it. Howzzat work?
You know what M$? - Let's make a deal - I turn my partial transition into a full transition to Linux and you stop calling me a customer. Deal?
Has anyone tried CT' Offline Update? http://www.heise.de/ct/ftp/ I have been using this for a while and have had nothing but good results. Very nice for some of my clients who do not have broadband. This is an app designed by some german engineers for creating standalone update discs for the last few flavors of windows and ms office, too.
What MS sysadmin doesn't already make their own patch CD? Download all of the (critical and important) patches to a linux box, burn them onto a CD with a batchfile something like /f %%X ('dir /b *.exe') do %%X --quiet --noreboot && sleep 120
for
Then let the intarweb handle the non crit patches. Tada.
playing the role of BSD
You want a really awful experience try it a firewall/spyware suite installed that asks about system changes :/
:(
:(
At least 4 passes thru windows update and about 200 queries from the security software and MS programs toss in a few more questions for good measure. Right in the middle of 50 updates is IE7 that has to download more of itself so i can't download the updates,pull the plug and kill the security program, too obvious
I answer ok as i get the chance, when i get up, etc. as it is too far away to reach
I always thought a Service Pack was the earlier updates combined. Why does it then d/l 50 updates, SP2, 50 more updates?
you can always use the slipstreaming feature of the xp patches or use nLite to create an updated XP cd.
http://support.microsoft.com/kb/828930
http://unattended.msfn.org/unattended.xp/view/web/23/
You can't download Dakota without WGA, but what if you don't want to run that piece of MS Spyware on your PC?
http://www.smithii.com/slipstream_xpsp2 Same thing as smithii solution. I prefer smithii as it uses the KISS method. :)
Microsoft realizes that XP and Vista are losing propositions, and that the operating systems should be left to third party developers. Still, the cash cow to come is Vista, but MS is looking to applications for revenue and that is certainly confirmed by the offer for Yahoo. MS is a sinking ship. It is not IBM that reinvented itself.
Leslie Satenstein Montreal Quebec Canada
"It [Microsoft] is not IBM, that reinvented itself."
I think IBM is a special case. Companies with offices in more than one location need technical support, and few support agencies besides IBM have offices in every populated area, including in other countries. In general, it is very unattractive for companies to try to contract for support with more than one support agency.
The people who contract with IBM are often not technically knowledgeable enough to fully understand if they get bad service. So, it is not that IBM does well, IBM just provides a recognized name for a service that companies must have. As has often been said, "No one gets fired for recommending IBM"; executives can avoid responsibility if they choose IBM and that is later understood to be a bad choice.
even when SP3 is out, the project will continue to offer a CD that will install all patches offline
When SP3 is out, any decent sysadmin will burn a copy to CD, stick it on a publicly-accessible share, and copy it to their USB key. Same as they did for SP1 and SP2.
This project is yet another waste of time and talent. MS killed Autopatcher, and for posterity's sake I hope they kill this one too. The average doofus should NOT be fooling around with 3rd-party patches.
-Billco, Fnarg.com