security updates

[Sanford Aranoff]

I have Windows 2000, SP 1.
I never applied the Security Updates. I basically do not trust
Microsoft. I am afraid that if I install the update, my system may go
crazy.

I have Norton and such. Do I need this upgrade?

Thanks.

 

[mushroom]

-----Original Message-----
I have Windows 2000, SP 1.
I never applied the Security Updates. I basically do not trust
Microsoft. I am afraid that if I install the update, my system may go
crazy.

I have Norton and such. Do I need this upgrade?

Thanks.

.

Yes you need the upgrades. Look at my post. I have
Norton anti virus, all up to date, and it did me no good
at all. I had SP4 but they're up to 6 now so I'm
seriously behind and now I'm paying for it.

If you don't trust Microsoft don't use their software.
If you're going to use their software you better keep up
to date on the service packs and security patches 'cause
their stuff never works quite right right out of the box.

 

[GO]

I would think that if you are knowledgeable enough, behind a decent firewall
and not on a LAN you could maintain a secure PC. But the updates will close
any potential holes in the OS giving you extra peace of mind. Most people,
I would imagine, would recommend you get up to date with the security
updates. The best recommendation would be to do a full backup of your
system then apply the patches. If you have any problems you can always
roll-back to your previous state.


Greg

 

[George Hester]

Windows NT is at SP6 NOT Windows 2000. Windows 2000 is at SP4.

In answer to the op's original question only install Security fixes that apply to you. Safer. For example if you are not serving web pages with IIS then you do NOT need security fixes for IIS. If you are the only user on the machine then you do NOT need to apply security fixes that are applicable to users gaining increased permissions locally. And so on.

But if you are on the Net then you do NEED the msblaster fix. So consider carefully the necessity of each security fix for your particular system and you should be fine. One other thing. NEVER accept a hardware driver update from Microsoft. There is a little leprechaun on the World Wide Web that wakes up now and again and tells the user you need them. Ignore those "notifications" or go to the manufacturer for such drivers. H\She'll go back to sleep in a few days and you won't see them anymore.

 

[Enkidu]

Windows NT is at SP6 NOT Windows 2000. Windows 2000 is at SP4.

In answer to the op's original question only install Security fixes that
apply to you. Safer. For example if you are not serving web pages
with IIS then you do NOT need security fixes for IIS. If you are the
only user on the machine then you do NOT need to apply security
fixes that are applicable to users gaining increased permissions locally.
And so on.

I disagree. There are exploits that use holes in IIS even if you don't
run it. Also circumstances change. If you suddenly decide to go
multi-user or set up a web server you have to *remember* to go back
and retro-fit those fixes. That would also preclude the use of the
roll-up patches which I find very useful.

Cheers,

Cliff

 

[Torgeir Bakken \(MVP\)]

I disagree. There are exploits that use holes in IIS even if you don't
run it. Also circumstances change. If you suddenly decide to go
multi-user or set up a web server you have to *remember* to go back
and retro-fit those fixes. That would also preclude the use of the
roll-up patches which I find very useful.

Hi

Yes, but if IIS is not installed on your computer, IIS security
updates will note "take", and if you later decide to install IIS,
you will need to retro-fit those updates.

 

[George Hester]

Right.