Where to find all downloadable security patches for W2K+SP4?

[David F]

I never install anything live from the web, such as "live updates". "live updates", etc.
When I install from the web, I first download and then install
while the cable is disconnected.

Is there a link where I can find all MS' patches for W2K to be downloaded
in an ordered manner, including dependencies (pre-requisites) / order of installation, etc?
For example, in the cumulative patches from December 2006, there is
one patch (KB926121) which would not install, claiming I miss a
prerequisite, w/o telling what is that prerequisite!

Also, preferred is to find those patches in large chunks such as SP4 or
Rollup_1_v2 to save work, mess and mistakes.

Thanks,
David

 

[Steven L Umbach]

Your best bet is to go to the Windows Updates site to check for and
download/install updates. If you go just to that website then you should be
fine. Another options is to configure your computer for Automatic Updates.
Something else you can try is to run Microsoft Baseline Security Analyzer.
It will show you what updates are missing and links to the needed update.

Steve

http://www.microsoft.com/technet/security/tools/mbsahome.mspx --- MBSA
link
http://www.microsoft.com/technet/security/current.aspx --- this may also
be of interest

 

[David F]

Thanks for the prompt info.

David

Your best bet is to go to the Windows Updates site to check for and
download/install updates. If you go just to that website then you should be
fine. Another options is to configure your computer for Automatic Updates.
Something else you can try is to run Microsoft Baseline Security Analyzer.
It will show you what updates are missing and links to the needed update.

Steve

http://www.microsoft.com/technet/security/tools/mbsahome.mspx --- MBSA
link
http://www.microsoft.com/technet/security/current.aspx --- this may also
be of interest

 

[warf]

Thanks for the prompt info.

David snip

I desire the same thing David but MS makes us drop every defense and
enable every potential vulnerability in order to 'be safe'. I even
cringe when I am forced to download the damned verification
program...which never works in my case.
I gave up and moved my media and private data to a non-connected laptop
and use this sacrificial lamb in 'autoupdate' mode for i-net...locked
down to the best of my fledgling abilities.
It is getter faster for me to wipe and reload all or reconfigure it
after windows updates mess with my settings and utilities or WHEN I make
a booboo disabling an essential service or protocol.


Warf.

 

[David F]

1.
When I tried to access the Windows Update site (http://WindowsUpdate.microsoft.com)
I get a page that contains the following:

"Checking if your computer has the latest version of Windows updating software for use with the
website.

The website uses ActiveX controls to determine which version of the software your computer is
running. If you see an ActiveX warning, make sure the control is digitally signed by Microsoft
before installing it or allowing it to run. "

After waiting a while, I get the following:

The website has encountered a problem and cannot display the page you are trying to view. Take
the following steps to try solving the problem:

· Refresh the page.

· In Internet Explorer, delete your Temporary Internet Files by going
to the Tools menu and clicking Internet Options.

· Close and then re-open Internet Explorer


all which sounds like witchcraft remedies (and/or admitting that IE (in my case IE 6.1) is buggy
like hell) and indeed they did nothing.
When I tried Firefox 2.0, it directed me to another link, which seems to be a general update
place. Altogether I gave up on this route.

2.

I then went to the 2nd link you listed. This one seems like the kind of thing

I was looking for - a straight forward detailed global list of all security updates.
I did find however the following problems there.
I normally use Win 2K + SP4.
According the Security Bulletin for the release of SP4,
(http://www.microsoft.com/technet/security/prodtech/windows2000/w2ksp4.mspx)

it contains all new (new - with respect to SP3) patches in the range:
MS01-022 (4.18.2001) till MS03-030 (7.23.2003).
and of course also all prior patches from SP1 to SP3.

But when I looked in that detailed global list you pointed to, I find for example
that as old as MS00--077 (10.13.2000 !) (and many other old ones)
should be applied to SP4. This doesn't make sense.

I found the exact same contradictions with regard to Win XP SP2.
In this case, I found at least one worse situation, when one of the bulletins
showing up in the detailed global list, which according to its date
should be included in the Security Bulletin list for WXP/SP2 but it is not!.

So I don't know what to make of it and how I can rely on that
detailed global list in terms of what to pickup from it and apply to W2K/SP4
(and the same for WXP/SP2).

Thanks,
David

 

[Guest]

I never install anything live from the web, such as "live updates". "live updates", etc.
When I install from the web, I first download and then install
while the cable is disconnected.

I also download them myself and install them. I have a firewall
though, so I don't disconnect the cable.

Is there a link where I can find all MS' patches for W2K to be downloaded
in an ordered manner, including dependencies (pre-requisites) / order of installation, etc?

What I do is go to the Windows Update site and have it tell me what
updates I need to install. Then I just download them myself and
install them.

I'm not completely sure about this, but I don't think order matters.
Once I tested that theory by installing an update that contained files
that were older than the ones on my system. The files on my system
were not replaced by the ones in the update, so that means the
installation program was able to detect that newer files were already
on my system. But I don't know if ALL of the updates behave like
that.

One thing I wish Microsoft would do is to update their security
bulletins for the updates that have been superceded. Whenever they
release a security bulletin, they include information about which
previous updates have been replaced. It would be nice if they also
updated those old security bulletins to tell people that they don't
need to download those anymore. I've been saving all the updates that
I've downloaded, and I'm not sure if there are some that I don't need
anymore. If Microsoft would update the security bulletins for the
updates that have been superceded, then I could delete those.

For example, in the cumulative patches from December 2006, there is
one patch (KB926121) which would not install, claiming I miss a
prerequisite, w/o telling what is that prerequisite!

It says SP4 is required. Do you have that installed?

Also, preferred is to find those patches in large chunks such as SP4 or
Rollup_1_v2 to save work, mess and mistakes.

Unfortunately SP4, the Rollup, and the IE Cumulative patches are the
only "large chunks" that Microsoft puts out.