Details
computerworld.com RSS
Hauptkategorie: IT News aus aller Welt
Kategorie: Computer & Internet
Veröffentlicht: Mo, 19.08.2019 20:33
Installing Windows 7 from a backup? You need a BitLocker patch right away | Computerworld Whether you’re installing Win7 from backup on bare metal or on a VM, watch out for a missing patch. On Friday, Microsoft issued a hidden advisory saying you need to run bcdboot.exe and get the SHA-2 patch KB 3133977 – a BitLocker fix – before you do anything else. Getty Images / Microsoft "); }); try { $("div.lazyload_blox_ad").lazyLoadAd({ threshold : 0, // You can set threshold on how close to the edge ad should come before it is loaded. Default is 0 (when it is visible). forceLoad : false, // Ad is loaded even if not visible. Default is false. onLoad : false, // Callback function on call ad loading onComplete : false, // Callback function when load is loaded timeout : 1500, // Timeout ad load debug : false, // For debug use : draw colors border depends on load status xray : false // For debug use : display a complete page view with ad placements }) ; } catch (exception){ console.log("error loading lazyload_ad " + exception); } }); No doubt you recall the warning back in February that Windows 7, Server 2008 and Server 2008 R2 patches starting in July would use the SHA-2 encryption protocol. If you want to install Win7 patches issued after July, you have to get the SHA-2 translator installed.A few days ago, Microsoft tossed a zinger into the FAQs down at the bottom of its SHA-2 post, 2019 SHA-2 Code Signing Support requirement for Windows and WSUS. That post now says that you have to install a seemingly unrelated patch, KB 3133977, entitled, BitLocker can't encrypt drives because of service crashes in svchost.exe process in Windows 7 or Windows Server 2008 R2. That should immediately raise your eyebrows. It’s a BitLocker fix, fer heaven’s sake, and Microsoft now says you better install that fix before you try to run a new instance of Win7 – whether you have BitLocker or not.Specifically, the SHA-2 post was updated on Aug. 16 to say you can run into trouble in any of these scenarios: You’re using setup to perform a clean install of Win7 using an image (perhaps created by DISM) that’s been customized with updates. You’re burning an image of Win7 directly to disk without running setup. You install an image with SHA-2 support, but the system won’t boot, tossing error 0xc0000428, “Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.” The remedies in each of those situations is a little bit different, but in general it includes installing the BitLocker fix KB 3133977 (even if you’ve hidden it!) and running the bcdboot.exe program to refresh your boot files.This, buried at the bottom of a FAQ in an old KB article. And you thought Win10 users got all the new bizarre bugs.Thx @abbodi86, @PKCano Stay up on the latest -- Win7, too -- on AskWoody.com. Copyright © 2019 IDG Communications, Inc. Computerworld The Voice of Business Technology Follow us Copyright © 2019 IDG Communications, Inc.Explore the IDG Network descend
Erstellt: Mo, 19.08.2019 20:33
aktualisiert: Di, 20.08.2019 17:48
Installing Windows 7 from a backup? You need a BitLocker patch right away | Computerworld Whether you’re installing Win7 from backup on bare metal or on a VM, watch out for a missing patch. On Friday, Microsoft issued a hidden advisory saying you need to run bcdboot.exe and get the SHA-2 patch KB 3133977 – a BitLocker fix – before you do anything else. Getty Images / Microsoft "); }); try { $("div.lazyload_blox_ad").lazyLoadAd({ threshold : 0, // You can set threshold on how close to the edge ad should come before it is loaded. Default is 0 (when it is visible). forceLoad : false, // Ad is loaded even if not visible. Default is false. onLoad : false, // Callback function on call ad loading onComplete : false, // Callback function when load is loaded timeout : 1500, // Timeout ad load debug : false, // For debug use : draw colors border depends on load status xray : false // For debug use : display a complete page view with ad placements }) ; } catch (exception){ console.log("error loading lazyload_ad " + exception); } }); No doubt you recall the warning back in February that Windows 7, Server 2008 and Server 2008 R2 patches starting in July would use the SHA-2 encryption protocol. If you want to install Win7 patches issued after July, you have to get the SHA-2 translator installed.A few days ago, Microsoft tossed a zinger into the FAQs down at the bottom of its SHA-2 post, 2019 SHA-2 Code Signing Support requirement for Windows and WSUS. That post now says that you have to install a seemingly unrelated patch, KB 3133977, entitled, BitLocker can't encrypt drives because of service crashes in svchost.exe process in Windows 7 or Windows Server 2008 R2. That should immediately raise your eyebrows. It’s a BitLocker fix, fer heaven’s sake, and Microsoft now says you better install that fix before you try to run a new instance of Win7 – whether you have BitLocker or not.Specifically, the SHA-2 post was updated on Aug. 16 to say you can run into trouble in any of these scenarios: You’re using setup to perform a clean install of Win7 using an image (perhaps created by DISM) that’s been customized with updates. You’re burning an image of Win7 directly to disk without running setup. You install an image with SHA-2 support, but the system won’t boot, tossing error 0xc0000428, “Windows cannot verify the digital signature for this file. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.” The remedies in each of those situations is a little bit different, but in general it includes installing the BitLocker fix KB 3133977 (even if you’ve hidden it!) and running the bcdboot.exe program to refresh your boot files.This, buried at the bottom of a FAQ in an old KB article. And you thought Win10 users got all the new bizarre bugs.Thx @abbodi86, @PKCano Stay up on the latest -- Win7, too -- on AskWoody.com. Copyright © 2019 IDG Communications, Inc. Computerworld The Voice of Business Technology Follow us Copyright © 2019 IDG Communications, Inc.Explore the IDG Network descend