Announcement

Collapse
No announcement yet.

Erm...... Stupid question here

Collapse
X
 
  • Filter
  • Time
  • Show
Clear All
new posts

  • Erm...... Stupid question here

    I am running with autoupdate disabled yet found the following crap in the system log
    Event Type: Information
    Event Source: crypt32
    Event Category: None
    Event ID: 2
    Date: 3/1/2004
    Time: 7:26:03 AM
    User: N/A
    Computer: GLAD
    Description:
    Successful auto update retrieval of third-party root list cab from: <http://www.download.windowsupdate.co...uthrootstl.cab>

    For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
    How did this "autoupdate" happen?, and whats the meaning/purpose of it?
    Lawrence

  • #2
    Maybe a "DAMN-DOWNLOAD-THIS-PATCH-NOW-OR-YOUR-COMPUTER-DIES" sort of patch?

    Comment


    • #3
      off the top of my head, that would be your browsers root certificates list.

      it is independant of normal windows update, and even moz and opera will do it.

      it is a good thing, because that way any certificates that have been revoked will show up. (ssl sites, java applets etc)
      Juu nin to iro


      English doesn't borrow from other languages. It follows them down dark alleys, knocks them over, and goes through their pockets for loose grammar.

      Comment


      • #4
        Thanks for the thoughts........

        Guchi - no patches was offered or applied manually, so that doesn't compute.

        Sasq - sounds plausible - so who decides to automatically update my certificates and based on what criteria? - anybody have any background dope for a "certified" illiterate?

        That MS help site is about as useful as a crotchless jockstrap.
        Lawrence

        Comment


        • #5
          I *think* they update monthly or so, but I could be wrong (it might be weekly) I think it really depends on the browser.

          Basically your downloading the 'public' key for the various certificate authorities (public) Cert.

          When you go to a ssl web site, or download a java app etc, it presents its certificate as signed by an authority.

          Basically the root public key of the root CA's you download decrypts the encoded message from the private key of the authority. if it says what it should, you browser is happy and you see lots of green ticks.

          If something doesn't match - like dates or whatever your browser will warn you about a possible problem with the applications signed certificate.

          The is also a mechanism for the root authority to 'cancel' certificates, i.e. a few years ago we had to fraudulent M$ certs escape. there was a revocation (sp?) list update and the fraudulent certs were canceld.

          This is one of the reasons regular updates are good.

          ** ok for you rules and exact facts lawyers out there, yes i have fuzzed some points. Just trying to get the basics across
          Last edited by Sasq; 1 March 2004, 06:39.
          Juu nin to iro


          English doesn't borrow from other languages. It follows them down dark alleys, knocks them over, and goes through their pockets for loose grammar.

          Comment


          • #6
            Cheers once again - thanks for the time and explanation - know you very busy - thats about as much as I need to know about the issue I think.
            Lawrence

            Comment


            • #7
              In IE:

              Tools/Internet Options/Advanced tab/Security section/Check for server certificate revocation

              That may be where the setting is activated. I'm not sure though...
              Lady, people aren't chocolates. Do you know what they are mostly? Bastards. Bastard coated bastards with bastard filling. But I don't find them half as annoying as I find naive, bubble-headed optimists who walk around vomiting sunshine. -- Dr. Perry Cox

              Comment


              • #8
                Hi

                In Add/Remove programs, Add/Remove Windows Components there is a component called "Update Root Certificates" which downloads and installs the latest certs.
                QDI KinetiZ 7E, Athlon XP 1800+, 1 GB PC133 SDRAM, ATi Radeon 9600 PRO 128 MB, SB Live! 5.1, Memorex 40x CD-RW, NEC ND-2500A DVD-/+RW, 120 + 80 GB Seagate Barracuda, Windows XP SP1, 17" LG L1710B TFT

                Comment

                Working...
                X