 Notice. New forum software under development. It's going to miss a few functions and look a bit ugly for a while, but I'm working on it full time now as the old forum was too unstable. Couple days, all good. If you notice any issues, please contact me. |
Forum Index : Microcontroller and PC projects : Win 24H2 update
  Page 2 of 3   |
|||||
| Author | Message | ||||
Mixtel90 Guru  Joined: 05/10/2019 Location: United KingdomPosts: 7851 |
I was the other person that bought a netbook! :) Unfortunately the second battery eventually died and I couldn't afford to replace it again. However, it now runs very well from its power supply. The OS has been replaced by a HDD install of Puppy Linux. It's mostly used for reading, and sometimes rescuing, unknown USB drives and sticks that Windows is turning its nose up at. Mick Zilog Inside! nascom.info for Nascom & Gemini Preliminary MMBasic docs & my PCB designs |
||||
| circuit Senior Member  Joined: 10/01/2016 Location: United KingdomPosts: 274 |
The latest update to Windows 11 24H2, specifically the KB5050009 patch, is well-recognised to be causing many issues with webcams, bluetooth, audio subsystems, the taskbar and others. It has been reported in many of the computer magazines such as 'Computer Active' that Microsoft is working urgently on a patch but without any timeline for a release. In the interim, it is recommended to uninstall the update. Your approach by pausing updates is rather sensible; I used to install updates as soon as they became available but I am now much more cautious and wait until I hear that the road is clear. In Windows Update; More Options, the first option is to "Get updates as soon as they become available" with an on-off switch to select. I leave this on "off". That way, I leave others to trip over and scream. Microsoft claims that the 24H2 update addresses "[Windows Kernel Vulnerable Driver Blocklist file (DriverSiPolicy.p7b)] This update adds to the list of drivers that are at risk for Bring Your Own Vulnerable Driver (BYOVD) attacks.". This seems to be the reason that so many peripherals are affected. I must admit that I had to look up what a BYOVD attack is. I found the following: A Bring Your Own Vulnerable Driver (BYOVD) attack is a technique used by threat actors to exploit vulnerabilities in legitimate, signed drivers to gain elevated privileges and bypass security measures. Here's how it works: Introduction of Vulnerable Driver: The attacker introduces a digitally signed and trusted driver that has known vulnerabilities into the target system. Exploitation: The attacker exploits the vulnerabilities in the driver to gain kernel-level access, which allows them to execute malicious code with high privileges. Bypassing Security: With kernel-level access, the attacker can disable security solutions, such as antivirus and endpoint detection and response (EDR) software, making it easier to carry out further attacks undetected. This technique is particularly dangerous because it leverages legitimate drivers that are trusted by the operating system, making it difficult for security solutions to detect and block the malicious activity. Clearly, this is a significant security update but, given the vast number of drivers for peripherals that are out there, it is not surprising that there are consequences in trying to make the system kernel secure from attack. Oh, and yes I do also have a problem; my HDMI output has ceased functioning! |
||||
| GAVI Newbie  Joined: 20/11/2024 Location: ItalyPosts: 12 |
Greetings, I have a PC and two laptops, all with hard disk partitioned into three parts, Windows, Linux Mint and data disk containing the Documents, Downloads etc. folder. Grub lets me choose what to work with at startup. Installing other Linux distributions and deleting and reloading Windows to start from scratch has become much more comfortable and hassle-free, (almost) Edited 2025-01-28 19:51 by GAVI |
||||
| robert.rozee Guru Joined: 31/12/2012 Location: New ZealandPosts: 2436 |
WT  !!! does this mean that microsoft is handing out trusted private keys to 3rd parties so they can sign any code they like, and that microsoft is then distributing said (now signed) code through their windows update system? if so, that would be insane. surely every 'trusted' driver has been submitted to microsoft as source code, checked by microsoft, and only then signed (by microsoft themself) before deing distributed and/or returned to the 3rd party for them to distribute. giving a 3rd party the means to sign drivers themself, based upon that 3rd party being "honest, trustworthy fellows" defeats the whole security model of windows. cheers, rob :-) |
||||
| JohnS Guru Joined: 18/11/2011 Location: United KingdomPosts: 4037 |
Sadly I very much doubt it. John |
||||
| Volhout Guru Joined: 05/03/2018 Location: NetherlandsPosts: 5049 |
Dream on..... The likes of Nvidea, AMD, Intel and who else. ??? No man. Volhout Edited 2025-01-28 21:00 by Volhout PicomiteVGA PETSCII ROBOTS |
||||
| robert.rozee Guru Joined: 31/12/2012 Location: New ZealandPosts: 2436 |
i take it that it is possible to get a list of all microsoft's "trusted friends", so that i have some idea of who contributed binary-blobs to my copy of "Windows For Warships" that will be deployed across the nuclear-armed battleship fleet my company is building for one of our customers? cheers, rob :-) Edited 2025-01-29 02:33 by robert.rozee Footnote added 2025-01-29 03:32 by robert.rozee (my company is not really building a fleet of nuclear-armed battleships, but i am sure that somewhere in the world there is a company that is!) |
||||
| JohnS Guru Joined: 18/11/2011 Location: United KingdomPosts: 4037 |
Er... probably? Maybe? Your guess is as good as mine... Many years ago I opted not to work on Windows NT being deployed in nuclear power stations - not because of worries re nuclear but because they had no control of (or even source code of) NT. John Edited 2025-01-29 03:23 by JohnS |
||||
| Mixtel90 Guru Joined: 05/10/2019 Location: United KingdomPosts: 7851 |
You'll be lucky, Rob. That'll be confidential as they wouldn't like to start a fight. "He's got a key to sign his drivers, why can't I have one too? I contribute just as much to Windows computing as he does!" Just assume that there are no safe Windows drivers unless they are open source and you won't go far wrong. Mick Zilog Inside! nascom.info for Nascom & Gemini Preliminary MMBasic docs & my PCB designs |
||||
| robert.rozee Guru Joined: 31/12/2012 Location: New ZealandPosts: 2436 |
well that is just the problem - could there be dozens, or even hundreds of trusted private keys out there? while microsoft has no idea which ones - probably only one or two - that are in the hands of bad actors. it sounds like the situation is so dire that now microsoft has to introduce another later of security that is dedicated to watching the "trusted" drivers to see if they act in any way suspiciously. thankfully, the only machine i have running windows directly is a netbook used solely to upload map updates to a couple of GPS navigation units every 6 months. everything else windows runs in VMs that are isolated from the rest of the world. cheers, rob :-) |
||||
Marcel27 Regular Member  Joined: 13/08/2024 Location: NetherlandsPosts: 93 |
[deleted] Edited 2025-02-01 18:20 by Marcel27 |
||||
stanleyella Guru Joined: 25/06/2022 Location: United KingdomPosts: 2532 |
my experience is install win 11 iso over win 10 on hp compaq with 4GB ram using rufus flash usb stick. cloned the 120GB ssd to 240GB ssd and upped ram to 14GB. originally it was 21H2 but forgot login pass word so had to reset win 11. that worked and I now have a 4 digit pin instead of a password but didn't realise it updated to win 22H3 and is now un-activated. :( tried to reactivate but won't let me then noticed "recently changed hardware?" clicked yes and it activated win 11 from win 10 from microsoft account. happy days. stan I noticed it installed "recall" , which I don't want and there's cmd line to disable but heard it's disabled by default now. Edited 2025-02-02 01:36 by stanleyella |
||||
| stanleyella Guru Joined: 25/06/2022 Location: United KingdomPosts: 2532 |
my last post is relevant as updating ram win 11 did not boot. it said hardware had changed but showed F1 to boot. pressed and booted ok. cloning the drive no probs. the reset win 11 and it updating was a long process. the activation cos of new hardware and win10 key is new to me. but nobody uses win 11 so irrelevant. you all use linux or win xp/win 7  |
||||
| stanleyella Guru Joined: 25/06/2022 Location: United KingdomPosts: 2532 |
just cloned an optiplex win 11 128 GB to 240GB ssd no prob. it only got 2 ram slots so stuck with 2x 4GB. not really expandable but why, it's fine and small. The hp compaq elite 8200 sff is more upgradeable and an amazing take to bits with just press a button. the psu hinges up as does the optical drive and the hdd/sdd board slides then pulls out. brill. bigger than optiplex but still small. 6 ram slots, core I5 at 3.3mhz and £50 ebay. on board graphics fine. vga and sound to large tv is good as hdmi. watching startrek section 31 now off hp. nice |
||||
Grogster Admin Group  Joined: 31/12/2012 Location: New ZealandPosts: 9592 |
Do you guys and girls remember the GLOBAL fiasco a year or so ago, where a company that made checkout/cash register software rolled some update out that crashed THOUSANDS of computers at checkouts all over the world with a BSOD? Seems like a similar idea - if a company pays MS enough cash, MS issue them with their own keys to certify their own updates and......CRASH! I forget the name of the company that was responsible for THAT mess, but it was a GLOBAL issue - computers all over the planet were crashing with a BSOD, and you COULD NOT just reboot to fix it, you had to do a manual edit of the registry from what I remember, and most shop owners would not know how to do that, so although the fix was reasonably easy, it took about 20-30 mins per machines, and with hundreds of thousands of machines all unable to process sales..... Come to think of it, is that company still around or were they class-action sued into oblivion!  Smoke makes things work. When the smoke gets out, it stops! |
||||
| Mixtel90 Guru Joined: 05/10/2019 Location: United KingdomPosts: 7851 |
CrowdStrike. July 18th 2024. Yes, CrowdStrike are still in business and "in a strong financial position". Mick Zilog Inside! nascom.info for Nascom & Gemini Preliminary MMBasic docs & my PCB designs |
||||
| Mixtel90 Guru Joined: 05/10/2019 Location: United KingdomPosts: 7851 |
Well, that was fun. I've finally been able to run Mint as a live filesystem on my original little fanless PC. Follow the instructions from Mint: get the iso - ok verify it against the SHA256 - ok get the little GPG prog. - ok authenticate it - fails every time sod it, I'll skip that get Etcher to set up a USB stick - ok run it - ok, but it looks different use it to put the iso on the USB stick - can't find any way to do that. give up and go top bed use rufus instead - that works. :) set up the PC - ok the video is all over the place swap the HDMI cable - fixed boot into Mint. Hurrah! This PC has a history. I originally attempted to put Mint on it years ago but I couldn't get it to work no matter what I did. I suspect the Mint loading system has been improved since then. Oh - and I found a stereo microscope for £10 in a charity shop! It's an old, low cost model with vertical tubes, but it's in new condition and works nicely (it's a x20) for looking at SMD stuff. :) Mick Zilog Inside! nascom.info for Nascom & Gemini Preliminary MMBasic docs & my PCB designs |
||||
| stanleyella Guru Joined: 25/06/2022 Location: United KingdomPosts: 2532 |
Mick. I just stripped my large desktop pc's. The bios won't boot off usb stick. 64bit pc's. got two 32bit laptops but 32 bit linux is limited choices. Dunno what people who actually own a home pc will do. probably the same as when win 7 expired... sod all. then there was a free upgrade to dual boot win 7/ win 10 but even then one laptop failed the spec for win 10. my solution was buy 2 refurbished compact desktop pc's and upgrade them. one had win 11 installed but cloned 120GB ssd to 240GB ssd. upgraded ram from 4G to 14G but got message hardware changed and a button with F1 and press to boot. loads of fun. the other updated win 10 to win 11 with rufus.8 G ram but only 2 slots. and a win 10 laptop to win 11 with rufus. how many people going to do that? stan |
||||
| Mixtel90 Guru Joined: 05/10/2019 Location: United KingdomPosts: 7851 |
I have two of these little Beelink fanless boxes. They have Celeron N3450 CPUs and 4GB of RAM. The main one has 4 USBs and 2 HDMI, the old one only has 3 USB and 1 HDMI. There's only 64MB of (flash) storage on C: though. Both run Windows 10 Pro at the moment. They are lovely little things and do most of what I want. I also have a similar box but twice the height and with bigger CPU, a fan, 6GB RAM and much more storage (on a SSD). That runs Win 11. My main storage is on a 3TB+3TB RAID 1 (mirror) NAS drive, I don't rely on these little boxes. I also have another single 3TB NAS but that's mostly empty as it has no backup. Mostly used for my music files as those are backed up on other non-connected HDDs. I might save up for another 2-drive NAS to replace it. The main fanless has been kept up to date and is on 22H2 now - the last Win 10 version. I might move the old fanless onto Mint. It was cool having a play with that again. :) Mick Zilog Inside! nascom.info for Nascom & Gemini Preliminary MMBasic docs & my PCB designs |
||||
| stanleyella Guru Joined: 25/06/2022 Location: United KingdomPosts: 2532 |
£15 car reversing monitor hdmi,vga,avi a year ago still ok hdmi pico 2  |
||||
| Page 2 of 3 |
|||||
 Print this page |
 |
The Back Shed's forum code is written, and hosted, in Australia. | © JAQ Software 2025 |
