POS & wannacry/bluekeep updates on 9.2.6

POS & wannacry/bluekeep updates on 9.2.6

Postby lioninstreet » 10.12.2019, 00:09

I've still got an old xp laptop running a few programs unfriendly with w7 and it's overdue to update the hardware to something with a bit more punch. So I need to do a fresh XP install. Based on a post I read by T. Wittrock on the subject I read that ESR 9.2.6 is pretty much fully depreciated now:
viewtopic.php?f=2&t=9773&hilit=wannacry&start=20

After checking the .txt file in wsusoffline\doc\history and reading the above thread, I was still a bit unclear if 9.2.6 actually does grab the POS & wannacry/bluekeep updates. This same thread posts the file location for the .xsl file that pulls them down. The way I read it, 9.2.6 does pull them, but I'm kind of new to reading scrips.. Am I interpreting the script correctly?

If it does, is there is anything I need to do so WOL will install them (either POS or wannacry/bluekeep) or do they just auto install with everything else?

Also, do hotifixes get downloaded in 9.2.6 and the v11 versions?

Lastly, could you direct me to where I would find the help file showing how to add custom URl's? I'd like to add in the non critical updates to my 9.2.6. (& w7 with 11.8.3) before MS shuts down the xp server.

I seem to remember it's in client\software\custom and I needed to edit the .cmdt file with notepad++. But memory isn't what it used to be & I'm probably wrong.
Last edited by lioninstreet on 21.12.2019, 08:53, edited 1 time in total.
lioninstreet
 
Posts: 108
Joined: 21.06.2018, 00:06

Re: POS & wannacry/bluekeep updates

Postby Cababs » 10.12.2019, 00:36

i magnged to get my hands on a copy of XP Embedded - POS. the version that you can trick XP into becoming.

when i tryed to run WSUS offline update on XPEmbedded it did not work because the file "findstr.exe" is missing from XPEmbedded. you can copy the XP Pro version over but it then fails on SetDXver.cmd from DetermineSystemProperties.vbs
it was expecting DX_Main_Ver but can only see DX_Core_Ver which it doesnt know what to do with.

in short WOU does not seem to work with XPEmbedded


in regards to XP Home / Pro you would have to apply the POS tweak for the POS updates to apply. as standard 9.2.6 does download the embedded updates.
viewtopic.php?f=2&t=4182 this contains the lists of updates that WOU does pickup by default.

to add updates yourself see the WOU readme

Code: Select all
Q: Can I download/install additional patches?
A: Yes, you can adjust how the download and update scripts behave by excluding or adding patches from download or installation. For adding updates proceed as follows:

1. Adding updates to download routines

For adding an update to be downloaded, insert its download URL into the matching "StaticDownloadLinks-<platform>[-architecture>]-<language>.txt file, found in the "...\static\custom" directory. Please don't forget a trailing <CR><LF>.

2. Adding updates to installation routines

Add an update to installation by inserting its knowledge base ID (KBxxxxxx or simply xxxxxx) into the matching "StaticUpdateIds-<platform>[-<architecture>].txt file (directory "...\client\static\custom"). Please don't forget a trailing <CR><LF>.
Notable Achievements
CompTIA A+
HNC Computing
Cababs
 
Posts: 187
Joined: 22.12.2013, 01:17

Re: POS & wannacry/bluekeep updates

Postby lioninstreet » 10.12.2019, 07:33

@Cababs,
Interesting test with XPe. At least it's updates are a way to keep xp somewhat patched for those of us who for whatever reason are handcuffed to it. I mean it's only been 6 months or so since the security updates finally stopped for it so there could still be a fair amount of time left before facing the enevitable.
Cababs wrote:In regards to XP Home / Pro you would have to apply the POS tweak for the POS updates to apply. as standard 9.2.6 does download the embedded updates.
viewtopic.php?f=2&t=4182 this contains the lists of updates that WOU does pickup by default.

Sounds like your saying for WOL to add the XPe updates to 5.1, the registry tweak has to be done to the OS first. But once done, WOL will apply them. Did I get that correct?

Also, that's quite an list of off line updates your maintaining there, looks like literally years of compiling.

Since I'm kinda new to the party, I'm a little unclear about what the contents of that file "download_install_Lists" of 12.6.19 found at http://1drv.ms/1IXSwC4 are. You wrote on page 1 of your thread the file contains the updates WOU doesn't download and install automatically. Does that mean the file contains all the non critical & non- security updates for the Windows OS's & Office versions compatible with 926? Does it just have updates for XP and s2k3? Did you also drop in the XPe updates?

Just wondering if you could add a sentence or two on the first post of your thread with bit more detail about the contents of what you put together in this update file.

On another note, I'd be happy to help contribute to the update thread if I happen to run across any updates or hotfixes that aren't currently included.
Last edited by lioninstreet on 10.12.2019, 16:01, edited 1 time in total.
lioninstreet
 
Posts: 108
Joined: 21.06.2018, 00:06

Re: POS & wannacry/bluekeep updates

Postby aker » 10.12.2019, 12:12

The embedded editions aren't supported by wsusou as they don't have some files/services required by wsusou.

The POSready-trick isn't officially supported, but could work.
I have a list of XPe updates, which has been cleaned up from superseded updates. That one should update a fully patched 2014-04 XPe to 2019-04.
Code: Select all
KB2926765 (2014-05-14)
KB2957503 (2014-06-10)
KB2993254 (2014-10-15)
KB2998579 (2014-10-15)
KB2991963 (2014-11-12)
KB3013126 (2014-12-10)
KB3020393-v2 (2015-01-13)
KB3021674 (2015-01-13)
KB3004361 (2015-02-10)
KB3029944 (2015-02-10)
KB3033889 (2015-03-10)
KB3035132 (2015-03-10)
KB3033890 (2015-06-09)
KB3065979 (2015-07-14)
KB3067903 (2015-07-14)
KB3109560 (2016-01-12)
KB3121918 (2016-01-12)
KB3126587 (2016-02-09)
KB3139398 (2016-03-08)
KB3139914 (2016-03-08)
KB3140709 (2016-03-08)
KB3149090 (2016-04-12)
KB3161949 (2016-06-14)
KB3170455 (2016-07-12)
KB3178034 (2016-08-09)
KB3185911 (2016-09-13)
KB3183431 (2016-10-11)
KB3196718 (2016-11-08)
KB3197835 (2016-11-08)
KB4012584 (2017-03-14)
KB4014652 (2017-04-11)
KB4014794 (2017-04-11)
KB4015383 (2017-04-11)
KB4022747 (2017-06-13)
KB4024323 (2017-06-13)
KB4025218 (2017-06-13)
KB4025398 (2017-07-11)
KB4025497 (2017-07-11)
KB4026061 (2017-07-11)
KB4025409 (2017-07-11_2)
KB4034775 (2017-08-08)
KB4039384 (2017-09-12)
KB4047211 (2017-11-14)
KB4052303 (2017-12-12_2)
KB4056941 (2018-01-09)
KB4019276 (2018-02-12)
KB4089082 (2018-03-13)
KB4089175 (2018-03-13)
KB4089453 (2018-03-13)
KB4089694 (2018-03-13)
KB4091756 (2018-04-10)
KB4056564-v2 (2018-05-08)
KB4089453-v2 (2018-05-08)
KB4101477 (2018-05-08)
KB4130957 (2018-05-08)
KB4291391 (2018-07-10)
KB4339291 (2018-07-10)
KB4343674 (2018-08-14)
KB4457163 (2018-09-11)
KB4458000 (2018-09-11)
KB4458001 (2018-09-11)
KB4458318 (2018-09-11)
KB4458008 (2018-10-09)
KB4462935 (2018-10-09)
KB4462987 (2018-10-09)
KB4463103 (2018-10-09)
KB4463361 (2018-10-09)
KB4459091 (2018-11-13)
KB4467689 (2018-11-13)
KB4470118 (2018-11-13)
KB4467770 (2018-11-27)
KB4473077 (2018-12-11)
KB4486463 (2019-02-12)
KB4486465 (2019-02-12)
KB4487085-v2 (2019-02-15)
KB4486468 (2019-03-12)
KB4486536 (2019-03-12)
KB4486538 (2019-03-12)
KB4489493 (2019-03-12)
KB4489973 (2019-03-12)
KB4489977 (2019-03-12)
KB4490228 (2019-03-12)
KB4490385 (2019-03-12)
KB4490501 (2019-03-12)
KB4493341 (2019-03-12)
KB4491443 (2019-04-09)
KB4493435-IE8 (2019-04-09)
KB4493563 (2019-04-09)
KB4493790 (2019-04-09)
KB4493793 (2019-04-09)
KB4493794 (2019-04-09)
KB4493795 (2019-04-09)
KB4493796 (2019-04-09)
KB4493797 (2019-04-09)
KB4493927 (2019-04-09)
KB4494059 (2019-04-09)
KB4494528 (2019-04-09)
KB4495022 (2019-04-09)
KB4500331 (2019-05-11)
KB4501226 (2019-06-11)
Wer Rechtschreibfehler findet, darf sie behalten oder an den Meistbietenden versteigern. / Everybody finding a misspelling is allowed to keep or sell it.
aker

WSUS Offline Update „Community Edition“
https://gitlab.com/wsusoffline/wsusoffline/-/releases
aker
 
Posts: 3999
Joined: 02.03.2011, 15:32

Re: POS & wannacry/bluekeep updates

Postby Cababs » 16.12.2019, 23:10

@lioninstreet
During me testing I have been unable to make xp pro look like xp pos.as far as I know As long as the wsuscan2 catalog tells what updates to install it should install them if downloaded and if windows versions match..

It has been many years of compiling, I've learnt a lot from it.
For the moment my download lists will only work with 11.8.3. I am refining the lists and will rename them appropriately for each version.

There is an expection with my lists. When getting the download lists for dotnet it give back 3-4 links. Since I do not know which link to use I ignore them. Considering the other updates I include it's no issue to let windows do the rest.
Thanks for feedback.
Notable Achievements
CompTIA A+
HNC Computing
Cababs
 
Posts: 187
Joined: 22.12.2013, 01:17

Re: POS & wannacry/bluekeep updates

Postby lioninstreet » 19.12.2019, 10:05

Cababs wrote:@lioninstreet
During my testing I have been unable to make xp pro look like xp pos. As far as I know As long as the wsuscan2 catalog tells what updates to install it should install them if downloaded and if windows versions match..


aker wrote:The embedded editions aren't supported by wsusou as they don't have some files/services required by wsusou. The POSready-trick isn't officially supported, but could work.
I have a list of XPe updates, which has been cleaned up from superseded updates. That one should update a fully patched 2014-04 XPe to 2019-04.


Thanks to both of you guys for the arrow pointing.

Here's what Ive found working with 926 & these XPe updates. A test machine was setup using clean install of a XPsp3x86 image w/its laptop drivers installed.

926 was then modified by dropping kvroots & rootsupd into .\client\win\glb, the hashes for them updated, sigcheck2.3 added to \wsusoffline\bin, and the -nobanner option removed in wsusoffline\cmd\DownloadUpdates.cmd. Update generator was then run using an in date system. A couple of warnings about wmp11 & rdc7 not installing came up. But nothing earth shaking.

Since code on 926 removed the POS exclusion, I'm guessing you know already that it will download the POS updates along with the other XP updates WOL identifies to .\client\wxp\enu.

Note that the XPe registry hack had not yet been performed at this point. Update installer was run and it installed 171 updates. Running WUMT, it showed another 19 updates remained uninstalled. (9 critical updates, 9 updates, & Windows Search 4.0). I can summarize these in a post edit if needed.

I confirmed update agent 7.6.7600.256 and windows installer 4.5 were installed (as part of the typical pre-EOL POS 2009 hack process), did the registry mod, & then ran update installer again. But for some reason, the XPe updates didn't install. So I figured I'd run WUMT to see if the OS was being seen as XPe after the hack.

Turns out it is. In addition to the 19 missing updates mentioned above, it found an additional 143 POS updates that could be installed (1 critical update, 136 security updates, 3 update rollups, 3 updates). I'm guessing the list of 100 updates @aker posted above is short due to the supersede update cleanup he did.

All this to ask the following. I know a POS install isn't supported and 926 is an ESR that's actually EOL too. But Is there some arrow pointing or a possibly a hack anyone could offer to make it play nice and install those POS updates it downloads?
lioninstreet
 
Posts: 108
Joined: 21.06.2018, 00:06

Re: POS & wannacry/bluekeep updates

Postby aker » 19.12.2019, 23:15

My list has been tested against Windows Update. It should fully update hte machine (if it was at 2014-04 level before).
Wer Rechtschreibfehler findet, darf sie behalten oder an den Meistbietenden versteigern. / Everybody finding a misspelling is allowed to keep or sell it.
aker

WSUS Offline Update „Community Edition“
https://gitlab.com/wsusoffline/wsusoffline/-/releases
aker
 
Posts: 3999
Joined: 02.03.2011, 15:32

Re: POS & wannacry/bluekeep updates

Postby lioninstreet » 20.12.2019, 05:17

There must be an issue on my side then. Ive tried both 926 and 921 under the current install with no success. Can you suggest any troubleshooting steps?
lioninstreet
 
Posts: 108
Joined: 21.06.2018, 00:06

Re: POS & wannacry/bluekeep updates

Postby aker » 20.12.2019, 06:13

:arrow: viewtopic.php?f=4&t=9951&start=10#p30274
Try my ISO (boco split and uploaded it in 1GB parts).
It‘s a 2014-04 wsusou 9.2.1 ISO created somewhere in 2016 (using an old catalog).

Afterwards and with installation of the updates listed above, you should be fully updated.
Wer Rechtschreibfehler findet, darf sie behalten oder an den Meistbietenden versteigern. / Everybody finding a misspelling is allowed to keep or sell it.
aker

WSUS Offline Update „Community Edition“
https://gitlab.com/wsusoffline/wsusoffline/-/releases
aker
 
Posts: 3999
Joined: 02.03.2011, 15:32

Re: POS & wannacry/bluekeep updates on 9.2.6

Postby lioninstreet » 21.12.2019, 10:57

from: http://forums.wsusoffline.net/viewtopic.php?f=4&t=9951#wrap
aker wrote:Be warned: WU doesn‘t work for XP anymore (or at least not the way it should).
An unpatched XP SP3 just gets a hand full of updates from WU, while a slipstreamed media (created around 2014) contains > 200. The result WU shows might not be current.
If you‘re interested I‘d share my wsusou XP-ISO with you.

I downloaded and reassembled your iso, but haven't run it yet. Vielen Dank für deine Unterstützung.

What is the best way to install the missing POS & Wannacry/Bluekeep updates? Did you drop this custom client file into a clean 921 downloader and use it to download them to the wxp enu folder, did you end up installing the KB's one by one, or just add the URL's into the custom folder? Maybe a combination?

True it's obsolete, yet MS support for 5.1 really didn't end in 2014, but instead less than 9 months ago. Seems like even though xp is abandoned and the ESR isn't working at 100%, I'm not the only one out there still trapped with apps that need it. Given the number of recent thread topics on it, there's still a fair amount of others wearing my shoes too. Understood that (edit) WOU wasn't designed as an end user updater, but lots of folks seem to use it that way. With nearly anyone using xp these days having done the POS registry hack, I'd bet many would be grateful if admin would consider the possibility of one last clean up of the updater that would bring the OS up to 2019 security. Or maybe one of you guys could create a fully updated client image, even if it had to be pieced together to use it.

That said, I understand that time is better spent keeping v11 current. Not to mention the need to deal with all the other OS that are depreciating in less than a month. So working with the updater for a 20 year old 32 OS just might not be possible.

Know that no matter what, the work you guys have done is much appreciated.

Myself, I probably won't have time to work with your 921 image again until later next week as between Christmas I'm working on re-wiring my network & updating my router.
Last edited by lioninstreet on 27.12.2019, 20:24, edited 1 time in total.
lioninstreet
 
Posts: 108
Joined: 21.06.2018, 00:06

Next

Return to Download

Who is online

Users browsing this forum: No registered users and 43 guests