-Article ID: 2728973 - Last Review: July 10, 2012 - Revision: 1.0
Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing.
Files are available for download from the Microsoft Download Center:
Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing
-Article ID: 2732052 - Last Review: August 14, 2012 - Revision: 1.0
August 2012 cumulative time zone update for Windows operating systems
Summary:
This update supersedes and replaces update 2633952, which was released in December 2011. All additional time zone changes released as hotfixes after update 2633952 are incorporated in this update.
If you have already deployed update 2633952, read the descriptions of the specific time zone changes that are addressed in this article to determine whether you must deploy this update immediately. If systems are not directly affected, you can schedule deployment at the next available opportunity.
We recommend that you deploy the most current Windows cumulative time zone update to guarantee the consistency of the time zone database on all systems.
Files are available for download from the Microsoft Download Center:
August 2012 cumulative time zone update for Windows operating systems
-Article ID: 2744850 - Last Review: August 20, 2012 - Revision: 1.4
Implementing PEAP-MS-CHAP v2 authentication for Microsoft PPTP VPNs.
Introduction:
Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2) is a password-based authentication protocol which is widely used as an authentication method in PPTP-based (Point to Point Tunneling Protocol) VPNs. Microsoft cautions that any organizations that use MS-CHAP v2 without encapsulation in conjunction with PPTP tunnels for VPN connectivity are running in a potentially nonsecure configuration.
Recommendations:
Microsoft suggests that organizations using MS-CHAP v2/PPTP implement the Protected Extensible Authentication Protocol (PEAP) in their networks. This mitigates this technique by encapsulating the MS-CHAP v2 authentication traffic in TLS.
Configure PPTP to use PEAP-MS-CHAP v2 for authentication:
Implementing PEAP-MS-CHAP v2 authentication for Microsoft PPTP VPNs
-Article ID: 2661254 - Last Review: August 21, 2012 - Revision: 2.1
Microsoft Security Advisory: Update for minimum certificate key length.
Introduction:
To reduce the risk of unauthorized exposure of sensitive information, Microsoft has released a nonsecurity update (KB 2661254) for all supported versions of Microsoft Windows. This update will block cryptographic keys that are less than 1024 bits long. This update does not apply to Windows 8 Release Preview or Windows Server 2012 Release Candidate because these operating systems already include the functionality to block the use of weak RSA keys that are less than 1024 bits long.
NOTE: Please read the "Known issues with this security update" & registry settings before any actions.
Files are available for download from the Microsoft Download Center:
Microsoft Security Advisory: Update for minimum certificate key length
For x32bits:
Download: Update for Windows 7 (KB2661254) - Microsoft Download Center - Download Details
For x64bits:
Download: Update for Windows 7 for x64-based Systems (KB2661254) - Microsoft Download Center - Download Details
Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing.
Files are available for download from the Microsoft Download Center:
Microsoft Security Advisory: Unauthorized digital certificates could allow spoofing
-Article ID: 2732052 - Last Review: August 14, 2012 - Revision: 1.0
August 2012 cumulative time zone update for Windows operating systems
Summary:
This update supersedes and replaces update 2633952, which was released in December 2011. All additional time zone changes released as hotfixes after update 2633952 are incorporated in this update.
If you have already deployed update 2633952, read the descriptions of the specific time zone changes that are addressed in this article to determine whether you must deploy this update immediately. If systems are not directly affected, you can schedule deployment at the next available opportunity.
We recommend that you deploy the most current Windows cumulative time zone update to guarantee the consistency of the time zone database on all systems.
Files are available for download from the Microsoft Download Center:
August 2012 cumulative time zone update for Windows operating systems
-Article ID: 2744850 - Last Review: August 20, 2012 - Revision: 1.4
Implementing PEAP-MS-CHAP v2 authentication for Microsoft PPTP VPNs.
Introduction:
Microsoft Challenge Handshake Authentication Protocol version 2 (MS-CHAP v2) is a password-based authentication protocol which is widely used as an authentication method in PPTP-based (Point to Point Tunneling Protocol) VPNs. Microsoft cautions that any organizations that use MS-CHAP v2 without encapsulation in conjunction with PPTP tunnels for VPN connectivity are running in a potentially nonsecure configuration.
Recommendations:
Microsoft suggests that organizations using MS-CHAP v2/PPTP implement the Protected Extensible Authentication Protocol (PEAP) in their networks. This mitigates this technique by encapsulating the MS-CHAP v2 authentication traffic in TLS.
Configure PPTP to use PEAP-MS-CHAP v2 for authentication:
Implementing PEAP-MS-CHAP v2 authentication for Microsoft PPTP VPNs
-Article ID: 2661254 - Last Review: August 21, 2012 - Revision: 2.1
Microsoft Security Advisory: Update for minimum certificate key length.
Introduction:
To reduce the risk of unauthorized exposure of sensitive information, Microsoft has released a nonsecurity update (KB 2661254) for all supported versions of Microsoft Windows. This update will block cryptographic keys that are less than 1024 bits long. This update does not apply to Windows 8 Release Preview or Windows Server 2012 Release Candidate because these operating systems already include the functionality to block the use of weak RSA keys that are less than 1024 bits long.
NOTE: Please read the "Known issues with this security update" & registry settings before any actions.
Files are available for download from the Microsoft Download Center:
Microsoft Security Advisory: Update for minimum certificate key length
For x32bits:
Download: Update for Windows 7 (KB2661254) - Microsoft Download Center - Download Details
For x64bits:
Download: Update for Windows 7 for x64-based Systems (KB2661254) - Microsoft Download Center - Download Details
Last edited:
My Computer
At a glance
Windows 7 Professional SP1 - x64 [Non-UEFI Boot]Ivy Bridge Core i5 3570K (Delidded)G.Skill "Ares" DDR3 PC3-12800 - 1600MHz (16Gb)Asus Dual-RX480-O4G
- Computer type
- PC/Desktop
- Computer Manufacturer/Model Number
- Custom Build
- OS
- Windows 7 Professional SP1 - x64 [Non-UEFI Boot]
- CPU
- Ivy Bridge Core i5 3570K (Delidded)
- Motherboard
- Asus P8Z77-V LE PLUS
- Memory
- G.Skill "Ares" DDR3 PC3-12800 - 1600MHz (16Gb)
- Graphics Card(s)
- Asus Dual-RX480-O4G
- Sound Card
- Creative Sound Blaster Z w/5.1 sound system
- Monitor(s) Displays
- Asus IPS 23"
- Screen Resolution
- 16/9
- Hard Drives
- Internal:
500Go Sata 6Gb/s (x2)
500Go Sata 3Gb/s (x2)
SSD 60Go Sata 6Gb/s
- PSU
- In Win C 900W Series 80+ Platinum
- Case
- Thermaltake Chaser A71
- Cooling
- Custom Water Cooling Loop
- Keyboard
- Cooler Master QuickFire XTi
- Mouse
- Razer Imperator 2012 (4G)
- Antivirus
- MSE
- Browser
- IE 11.0.xxx Rtm
- Other Info
- "Raid0" with Intel Smart Response Technology (HDD/SSD)