How do I KNOW that a security update that gets suggested
in XP comes from Microsoft? It would be pretty horrible
if someone cleverly figured out how to impersonate these
critical update messages.

Can you tell me what Microsoft does to ensure that
critical update messages cannot be hijacked? Is there a
manual or automatic process I can do to authenticate those
messages before acting on them?

Only download and install updates suggested by the Windows Update
web site. Do not install any suggested updates or patches you may
receive via email as Microsoft never sends patches or updates via email.

Windows Update: http://v4.windowsupdate.microsoft.com/en/default.asp

I would suggest you install a comprehensive internet security package
to help avoid possible security breeches.

Essential Security Tools for Home Office Users
http://www.microsoft.com/technet/tre...n/5min-105.asp

Norton Internet Security 2003
http://www.symantec.com/sabu/nis/nis_pe/

-- Includes Norton AntiVirus 2003
-- Includes Norton Personal Firewall
-- Includes prevention of annoying web pop-ups
-- Includes Parental Controls
-- All in one, easy-to-install package


--
Nicholas

-------------------------------------------------------------------------------------

"Bruce Homer-Smith" <(E-Mail Removed)> wrote in message:
news:05bb01c3786d$e190d6c0$(E-Mail Removed)...

| How do I KNOW that a security update that gets suggested
| in XP comes from Microsoft? It would be pretty horrible
| if someone cleverly figured out how to impersonate these
| critical update messages.
|
| Can you tell me what Microsoft does to ensure that
| critical update messages cannot be hijacked? Is there a
| manual or automatic process I can do to authenticate those
| messages before acting on them?

You will be safe if you go download it from
windowsupdate.microsoft.com.

-Jeremy
>-----Original Message-----
>How do I KNOW that a security update that gets suggested
>in XP comes from Microsoft? It would be pretty horrible
>if someone cleverly figured out how to impersonate these
>critical update messages.
>
>Can you tell me what Microsoft does to ensure that
>critical update messages cannot be hijacked? Is there a
>manual or automatic process I can do to authenticate
those
>messages before acting on them?
>.
>

Bruce;
Since Microsoft NEVER sends patches unsolicited, any you get by Email
are phony and likely contain a virus.
ONLY get updates from Windows Update.
Start/All Programs/Windows Update.

Also see:
http://www.microsoft.com/security/protect/default.asp

--
Jupiter Jones [MVP]
An easier way to read newsgroup messages:
http://www.microsoft.com/windowsxp/p...oups/setup.asp
http://dts-l.org/index.html


"Bruce Homer-Smith" <(E-Mail Removed)> wrote in message
news:05bb01c3786d$e190d6c0$(E-Mail Removed)...
> How do I KNOW that a security update that gets suggested
> in XP comes from Microsoft? It would be pretty horrible
> if someone cleverly figured out how to impersonate these
> critical update messages.
>
> Can you tell me what Microsoft does to ensure that
> critical update messages cannot be hijacked? Is there a
> manual or automatic process I can do to authenticate those
> messages before acting on them?