Microsoft .NET Patch May Make PCs Go "Haywire" 212
yuna49 writes "Various people are reporting that the MS07-040 patch for .NET released on Tuesday can cause a variety of seemingly unrelated problems. According to the SANS Internet Storm Center 'the reports we got so far seem not to lead to any specific thing that happens in many cases, just various things going haywire.' Some commentators on The Register's report of this story indicate that the patch failed to install at all, while others report things like the mouse suddenly failing to work or long periods of hard drive thrashing. In some cases a hard reboot seems to fix the problem, but other reports suggest that a reinstallation of the .NET framework itself is required. The problems may be related to the MSCORSVW.EXE process which recompiles all the .NET assemblies when the patch is downloaded. While the recompilations are supposed to run as a background task, in some instances the recompilation will drive the processor to 100% usage."
background task & 100% CPU (Score:5, Interesting)
I frequently make processes that run at 100% CPU run as a background task.
Re:Sonofa... (Score:3, Interesting)
Re:Win 2k not affected? (Score:5, Interesting)
The patch is also nearly 15 MB, which is huge for a patch. Some people have just been having problems with their AV scanners locking the file to scan while Automatic Updates wants to begin installing it (see MS KB 883825 [microsoft.com]). That's not a MS issue. It's arguably not even an AV vendor issue. Mostly it's an issue with admins not excluding the updates download directory.
Re:100% CPU ? (Score:1, Interesting)
Or maybe you can control swappiness/VM priority in Windows?
Re:Sit on it... (Score:3, Interesting)
How? We use group policy and IE security zones so that only sites IT have authorised can run scripts. It's about ten minutes work a week to maintain now, and while there's still some risk that a trusted site could host a vulnerability, the risk is small enough we can sleep soundly at night despite having a hundred or so workstations in an unpatched state.
The upside: Haven't had a security breach, or problem with a MS patch in two years.
.NET gripes (Score:1, Interesting)
It uses rediculous amounts of disk space. Tuesdays security updates stole an additional 200+MB. This is after deleting the temp folders in the windows directory. There are some 10 copies of the same
Re:Sit on it... (Score:3, Interesting)
Not a huge MSFT fan here, but that is a bit of an overblown statement. Just use common sense. I have a dual boot PC (XP, Feisty) and my wife uses the web all the time using XP, and I have never (I mean NEVER) had a problem.
Get a good firewall. Or, an OK firewall for that matter (I use Zonealarm). Don't use IE. You cannot uninstall it, but you can hide it pretty well so that nobody can use it. Use legitimate F/OSS (with GPL, Mozilla, BSD licenses), otherwise, grabbing all the latest "free" software is risky. If you install software and it tells you that in order for it to be installed, it also needs to install its "friends", halt the installation unless you know those friends. Stay away from warez sites, those are the dark alleys of the intarwebs.
Like I said, use common sense and you will be fine.
The biggest danger to your XP computer is not malware (assuming a certain level of proficiency here, see above). It is all of the retarded software that leaves system cruft (I call them roaches) whenever you upgrade that will slow you down to a crawl. Yes, looking at you, iTunes (about ready to roll back to version 6 here), and your stupid inbred cousin named Quicktime (must you reinstate your automatic startup every time I upgrade you? curses!). And let's not forget Office or Visual Studio, with its myriad of mostly useless startup services. I'd say it takes more knowhow to clean all that crap because retarded MSFT provides all kinds of nooks and crannies for all the damn roaches to hide in (like the registry!). That's why using Windows is a pain, not because of security problems.