Security Updates 101

Hi All

I assume there is a way to include XP securty updated in to my XPe
builds. Is there any good resources on how to do this?

Essentially, all I need to know is where do I get the updates and how
do I apply them to my XPe builds (I assume it's just a component I add
in TargetDesigner).

thanks for all your help

BattleAngel444,

It used to be 2 places where you could download the updates for XPe.
From Feb 1 it is going to be just one location supported.

Here is the blog page with the info about the changes:
http://blogs.msdn.com:80/embedded/a...of-january.aspx


Regards,
KM

> Hi All
>
> I assume there is a way to include XP securty updated in to my XPe
> builds. Is there any good resources on how to do this?
>
> Essentially, all I need to know is where do I get the updates and how
> do I apply them to my XPe builds (I assume it's just a component I add
> in TargetDesigner).
>
> thanks for all your help
>

KM wrote:

> It used to be 2 places where you could download the updates for XPe.
> From Feb 1 it is going to be just one location supported.
>
> Here is the blog page with the info about the changes:
> http://blogs.msdn.com:80/embedded/a...of-january.aspx

WTF, since when is this known?! I had been on the Secure OEM site two
weeks ago, and had seen no announcement of that sort. The Blog entry is
from Jan-30, and the site is closing Jan-31?? Why the freaking rush?

We have to register now on two new sites by EMAIL. Give me a break. What
if I need to download something in the meantime? Why no anncouncement
HERE? Or in the Embedded Devwire Newsletter? All kinds of <beep> is in
that newsletter, why not an announcement on an issue like this??

I hate to lose my countenance, but this is genuine Microsoft. :-(

I second that.
I just saw the link posted by Shayna [MS] here two days ago in a reply to some post.
No other announcements that I saw.

One centralized constant location for XPe updates available to *everyone* has always been a really week place of the product.

What's really confusing me is why other embedded products of Microsoft such as WinCE have their updates publicly available. While
for XPe you have to be an OEM or sort of to get access to those websites with heck of complicated register procedure.

--
=========
Regards,
KM


> KM wrote:
>
>> It used to be 2 places where you could download the updates for XPe.
>> From Feb 1 it is going to be just one location supported.
>>
>> Here is the blog page with the info about the changes:
>> http://blogs.msdn.com:80/embedded/a...of-january.aspx
>
> WTF, since when is this known?! I had been on the Secure OEM site two weeks ago, and had seen no announcement of that sort. The
> Blog entry is from Jan-30, and the site is closing Jan-31?? Why the freaking rush?
>
> We have to register now on two new sites by EMAIL. Give me a break. What if I need to download something in the meantime? Why no
> anncouncement HERE? Or in the Embedded Devwire Newsletter? All kinds of <beep> is in that newsletter, why not an announcement on
> an issue like this??
>
> I hate to lose my countenance, but this is genuine Microsoft. :-(

I agree.

Regards,

Sean Liming
www.sjjmicro.com / www.seanliming.com
XP Embedded Book Author - XP Embedded Advanced, XP Embedded Supplemental
Toolkit

"KM" <konstmor@nospam_yahoo.com> wrote in message
news:OG5KFCXRHHA.1180@TK2MSFTNGP05.phx.gbl...
>
> I second that.
> I just saw the link posted by Shayna [MS] here two days ago in a reply to
> some post.
> No other announcements that I saw.
>
> One centralized constant location for XPe updates available to *everyone*
> has always been a really week place of the product.
>
> What's really confusing me is why other embedded products of Microsoft
> such as WinCE have their updates publicly available. While for XPe you
> have to be an OEM or sort of to get access to those websites with heck of
> complicated register procedure.
>
> --
> =========
> Regards,
> KM
>
>
>> KM wrote:
>>
>>> It used to be 2 places where you could download the updates for XPe.
>>> From Feb 1 it is going to be just one location supported.
>>>
>>> Here is the blog page with the info about the changes:
>>> http://blogs.msdn.com:80/embedded/a...of-january.aspx
>>
>> WTF, since when is this known?! I had been on the Secure OEM site two
>> weeks ago, and had seen no announcement of that sort. The Blog entry is
>> from Jan-30, and the site is closing Jan-31?? Why the freaking rush?
>>
>> We have to register now on two new sites by EMAIL. Give me a break. What
>> if I need to download something in the meantime? Why no anncouncement
>> HERE? Or in the Embedded Devwire Newsletter? All kinds of <beep> is in
>> that newsletter, why not an announcement on an issue like this??
>>
>> I hate to lose my countenance, but this is genuine Microsoft. :-(
>
>

Hi Eberhard,
Gina Bentley on our team handles the interaction between the product
team and Windows Sustained Engineering team and the team that owns the
release process and hosting of the updates on the site. Please see her
response to your comment in the blog today here:
http://blogs.msdn.com/embedded/arch...y.aspx#comments

Basically the blog was not *the* announcement, the communication you
were expecting actually started some time last year. Announcements were
placed on the OEM secure site and via a mailing list announcement that
was sent out previously with information on the new site and your new
account. Is it possible you were using a book mark and skipping past the
announcements area going directly to the downloads section. I guess one
good piece of feedback from this is perhaps the newsgroup could have
been spammed with periodic announcements as well to cover all the bases.

Thanks for the feedback, take care.

----
Andy

Check out the Embedded team blog: http://blogs.msdn.com/embedded/
This posting is provided "AS IS" with no warranties, and confers no rights.



KM wrote:
> I second that.
> I just saw the link posted by Shayna [MS] here two days ago in a reply to some post.
> No other announcements that I saw.
>
> One centralized constant location for XPe updates available to *everyone* has always been a really week place of the product.
>
> What's really confusing me is why other embedded products of Microsoft such as WinCE have their updates publicly available. While
> for XPe you have to be an OEM or sort of to get access to those websites with heck of complicated register procedure.
>
>

Andy Allred [MS] wrote:

> Basically the blog was not *the* announcement, the communication you
> were expecting actually started some time last year. Announcements were
> placed on the OEM secure site and via a mailing list announcement that
> was sent out previously with information on the new site and your new
> account.

What mailing list announcement are you referring to, please, MICROSOFT
WINDOWS EMBEDDED DEVWIRE? I have just checked November, December and
January again, and neither had an announcement. What else do I need to
subscribe to?

Anyway. If extremely active XPE community members like KM haven't heard
about the change, something in the communication was seriously flawed,
don't you think?

> Is it possible you were using a book mark and skipping past the
> announcements area going directly to the downloads section.

Nothing of the sort. A colleague of mine was there too, and he had seen
nothing either which caught his attention.

We have now this newsgroup, the Blog site, the "MOO" site, and the "ECE"
site, the newsletter and one is still not save to catch the most
essential information. Really, I have better things to do than run like
after the damn patches. I'd like to get my work done. :-(

> We have now this newsgroup, the Blog site, the "MOO" site, and the "ECE"
> site, the newsletter and one is still not save to catch the most essential
> information. Really, I have better things to do than run like after the
> damn patches. I'd like to get my work done. :-(

I did catch the announcement. last week. Somehow I have read the message on
the startpage . Normally I just click directly to the update section.
Getting access was easy. Within a day I had all the neccessary login info.
The annoying thing is the Confidentiality of Information Reminder.

ontopic:
I know this newsgroup. The *ece* site. I just subscrided to the devwire
(just in case)
Don't forget the MS embedded Forums.
But what is the *MOO* site?

TIA

Pieter



Regards

Eberhard Schefold wrote:

> Andy Allred [MS] wrote:
>
>> Basically the blog was not *the* announcement, the communication you
>> were expecting actually started some time last year. Announcements
>> were placed on the OEM secure site and via a mailing list announcement
>> that was sent out previously with information on the new site and your
>> new account.
>
> What mailing list announcement are you referring to, please, MICROSOFT
> WINDOWS EMBEDDED DEVWIRE? I have just checked November, December and
> January again, and neither had an announcement. What else do I need to
> subscribe to?

I really would like to know, so I would not miss this kind of
information again.