Windows7/8 - Updates to hide to prevent Windows 10 Upgrade / Disable Telemetry

Discussion in 'Windows OS and Software' started by Ultra Male, Aug 23, 2015.

  1. br0adband

    br0adband Notebook Guru

    Reputations:
    17
    Messages:
    62
    Likes Received:
    5
    Trophy Points:
    16
    The 2.35 BIOS/UEFI update for the ThinkPad W541 was from April 20 2018 so, well past the Meltdown/Spectre fiasco. After doing some more research it seems Intel is "in production" in terms of the microcode update for the Haswell 4th gen Mobile Core processors so, "they're working on it" basically and if they do push it out it'll be out whenever.

    With the new findings from the first week of May about 12-15 more potential Spectre-like or related exploits now coming along it could be a long time before any machine is safe again, if they ever truly were. :(
     
  2. Riley Martin

    Riley Martin Notebook Geek

    Reputations:
    20
    Messages:
    97
    Likes Received:
    138
    Trophy Points:
    41
    Hmm, then you should be able to enable Spectre (and/or Meltdown) protection. You're right in the sense all these patches are works in progress. But in the meantime, use a Simplix Update Pack to install the latest unbundled, no telemetry win7 updates -then you'll at least enable some Spectre protection. (Enabling Meltdown protection will likely see your performance take a hit on that Haswell). If you have updated your OS, then maybe you have a 3rd party, AV registry issue going-on? 'Something is better than nothing', 'better safe(er) than sorry', et. :)
     
  3. br0adband

    br0adband Notebook Guru

    Reputations:
    17
    Messages:
    62
    Likes Received:
    5
    Trophy Points:
    16
    I don't care that much about the performance hit, it's not like I'm on any kind of performance kick anymore, I stopped worrying about every last tweak that could possibly be done a decade or more ago after focusing on it so much.

    Regardless, on Windows 7 I'm unable to get InSpectre to show green across the board, on Windows 10 RS5 (I'm part of the Windows Insider program) it shows green and good to go. As for AV issues, I use Microsoft Security Essentials along with a weekly on-demand scan using Eset NOD32 and their "online" scanner (local on the machine) and TrendMicro Housecall (also local on the machine), it's clean as a whistle with a fresh install of the simplix Update Pack from May 10th just a few days ago.

    Intel and Microsoft are doing this crap on purpose to push people towards new processors, I'd stake my reputation on it - personal opinion there so take it as such, but considering just one or two of the things Microsoft has done over the past few years, I would not put it past them or Intel, not for one second.
     
    Papusan, Riley Martin and hmscott like this.
  4. MobileArtist

    MobileArtist Notebook Deity

    Reputations:
    234
    Messages:
    1,394
    Likes Received:
    292
    Trophy Points:
    101
    Because people on this thread are concerned about security, is Thunderbird a secure way to copy/download my several GB Inbox on AOL? I want to preserve all those emails that are now stored online,
     
    hmscott likes this.
  5. hmscott

    hmscott Notebook Nobel Laureate

    Reputations:
    4,958
    Messages:
    17,536
    Likes Received:
    21,534
    Trophy Points:
    931
    Use POP or IMAP to sync AOL Mail on a third-party app or download your email
    https://help.aol.com/articles/how-do-i-use-other-email-applications-to-send-and-receive-my-aol-mail

    Thunderbird - Manual Account Configuration
    https://support.mozilla.org/en-US/kb/manual-account-configuration

    Set up your Thunderbird connection to AOL through IMAP instead of POP:

    Add Your AOL mail Account to Thunderbird Using IMAP
    http://pop2imap.com/aol_thunderbird.php

    Finding the AOL Mail IMAP Settings
    https://www.lifewire.com/what-are-aol-mail-imap-settings-1170847

    2nd post from Toad-Hall has some Connection Security vs Authentication suggestions:

    https://support.mozilla.org/en-US/questions/1201406#answer-1068952

    Thunderbird among other mail clients have a bug that allows attackers to read encrypted emails, so if you use PGP be aware - some suggest disabling PGP (EFF), some suggest other mitigations (GNUPG):

    #EFAIL vulnerability: What PGP and S/MIME users need to do right now
    https://www.windowscentral.com/efail-vulnerability-what-pgp-and-smime-users-need-do-right-now

    Attention PGP Users: New Vulnerabilities Require You To Take Action Now
    https://www.eff.org/deeplinks/2018/...w-vulnerabilities-require-you-take-action-now
    https://www.eff.org/deeplinks/2018/05/disabling-pgp-thunderbird-enigmail

    Efail or OpenPGP is safer than S/MIME
    https://lists.gnupg.org/pipermail/gnupg-users/2018-May/060315.html
    Read full email for full details.

    After you've downloaded your email using Thunderbird securely, now secure your Thunderbird local files:

    Protecting the contents of the profile - mail
    This article was written for Thunderbird but also applies to Mozilla Suite / SeaMonkey (though some menu sequences may differ).
    http://kb.mozillazine.org/Protecting_the_contents_of_the_profile_-_mail

    Download the latest version of Thunderbird for #efail fixes, partial fixes available now, the next dot release is supposed to fix them all - but read the release notes and informative updates such as this to be sure:

    Thunderbird 52.8.0 security update released
    https://www.ghacks.net/2018/05/21/thunderbird-52-8-0-security-update-released/

    "Thunderbird 52.8.0 protects emails against some exploits of EFAIL, a recently disclosed attack against OpenPGP and S/Mime. Attackers may use EFAIL attacks to retrieve the actual text of encrypted messages provided that they managed to get hold of the encrypted email and that the target runs a vulnerable client.

    The team plans to publish Thunderbird 52.8.1 to fix the issue completely in Thunderbird. Check out the descriptions for the vulnerabilities CVE-2018-5184 and CVE-2018-5162 for additional details."

    Have fun :)
     
    Riley Martin and alexhawker like this.
  6. MobileArtist

    MobileArtist Notebook Deity

    Reputations:
    234
    Messages:
    1,394
    Likes Received:
    292
    Trophy Points:
    101
    Is Thunderbird the best application for this purpose?

    I've never used PGP due to ignorance of it.
     
    hmscott likes this.
  7. MobileArtist

    MobileArtist Notebook Deity

    Reputations:
    234
    Messages:
    1,394
    Likes Received:
    292
    Trophy Points:
    101
    Is Thunderbird the best application for this purpose?
    I never used PGP due to complete ignorance of it.

    Is it possible to send you a private message? I don't see the option on your profile.
     
    hmscott likes this.
  8. hmscott

    hmscott Notebook Nobel Laureate

    Reputations:
    4,958
    Messages:
    17,536
    Likes Received:
    21,534
    Trophy Points:
    931
    IDK if it's the best, but it works.

    Outlook isn't something I like to use, but you could use that too.

    There are other apps available, Eudora which I used to use regularly was folded in to Thunderbird years ago.

    Thunderbird has worked fine for me for many many years, and others I've helped and I have no complaints about it, but here are some links for alternatives:

    Top Alternatives to Mozilla Thunderbird for Windows
    https://mozilla-thunderbird.en.softonic.com/windows/alternatives

    Also, from time to time there comes from out of nowhere rumors of Thunderbird being dead or canceled, as answered by this post in 2006:

    Is Thunderbird dead and other FAQ
    http://forums.mozillazine.org/viewtopic.php?f=39&t=366405

    Thunderbird's got a home at Mozilla with financial support, and there is no announced EOL for Thunderbird, despite what competitors like Mailbird say (and retract), so I'd donate to Thunderbird to help it's ongoing support as linked here in this notice, May 9 2017:

    The Mozilla Thunderbird Blog
    Thunderbird’s Future Home
    https://blog.mozilla.org/thunderbird/2017/05/thunderbirds-future-home/

    "The investigations on Thunderbird’s future home have concluded. The Mozilla Foundation has agreed to serve as the legal and fiscal home for the Thunderbird project, but Thunderbird will migrate off Mozilla Corporation infrastructure, separating the operational aspects of the project."

    "Philipp Kewisch wrote on May 9, 2017 at 12:40:
    I’m going to make the first comment my own. Now that we have our financial home settled I think it would be a great time to make a donation to support our work. While the Mozilla Foundation is our financial home, it is up to us to raise the funds needed to make sure Thunderbird is a modern and secure email client for years to come.

    If you would like to help us out, please head over to https://donate.mozilla.org/thunderbird/. Your support means a lot to us! Maybe you would even consider a recurring donation, as this would help our success in the long term."

    Thunderbird:Home
    https://wiki.mozilla.org/Thunderbird:Home

    "Status
    Thunderbird is alive and well in 2018! Yes, 2018. Please help us keep it that way!

    • The community has continuously shipped releases with bug fixes and enhancements for several years.
    • The community holds regular meetings to discuss important matters of common interest, open to all.
    • The Thunderbird Council is the governing body for the Thunderbird project, and coordinates legal and fiscal matters on behalf of the community."
    I'd rather support the long ongoing project than switch to something else, having already switched to Thunderbird years ago.

    Time moves on, as there are alternatives, and if you have a problem with Thunderbird functionality, then take the time to investigate alternatives.

    Be aware that most mail apps come and go, mostly go, so it's best to at least keep a toe dipped in the reliable long term supported app Thunderbird - keep all your email archived in Thunderbird as well as whatever new flavor mail app comes along.

    What I am trying to say is, if you have years of Email from AOL to archive, having local backups of that email in a couple of apps including Thunderbird is probably a good idea. :)
     
    Last edited: May 27, 2018
  9. MobileArtist

    MobileArtist Notebook Deity

    Reputations:
    234
    Messages:
    1,394
    Likes Received:
    292
    Trophy Points:
    101
    There's an update to Spybot Anti Beacon prior to their rlease of Version 3 (2.1) which looks good. Out of various concerns I haven't updated Windows 7 since February. Are the following updates safe, in the sense that they won't crash the computer?

    2018-05 Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1 on Windows 7 (KB4099633)

    2018-05 Security Monthly Quality Rollup for Windows 7 for x86-based Systems (KB4103718

    Microsoft .NET Framework 4.7.1 for Windows 7 (KB4033342)

    Update for Windows 7 (KB2952664)

    Windows Malicious Software Removal Tool - May 2018 (KB890830)
     
  10. MobileArtist

    MobileArtist Notebook Deity

    Reputations:
    234
    Messages:
    1,394
    Likes Received:
    292
    Trophy Points:
    101
    As Anti Beacon disables telemetric services, I'm more concerned about updates that crash or otherwise impair the system.

    So these five updates seem okay?
     
    Last edited: Jun 4, 2018
Loading...

Share This Page