back to article Microsoft Exchange update fixes security flaws, breaks other stuff

Microsoft is pausing the rollout of an Exchange security update after it became clear that the patch could break transport rules for some customers. The November 2024 Security Updates deal with various vulnerabilities in Microsoft's email server. While Exchange Online is already protected, customers using Exchange in a hybrid …

  1. Kevin Johnston

    yo-yo patching

    When you have a company which is notorious for treating security as a bolt-on extra it becomes very difficult to take anything they say about security requirements seriously. As for the 'reevaluate its testing practices' that has to be clickbait after the near-daily articles on this esteemed publication about MS using customers for beta testing

    1. Anonymous Coward
      Anonymous Coward

      Re: yo-yo patching

      Feels like the yo-yo CoPilots are patching the asylum IMHO.

  2. Doctor Syntax Silver badge

    TMMM should be mandatory reading for all Microsofties from the very top donw. Particularly the very top. Start by paying attention to the bit about the tar pit.

  3. Lee D Silver badge

    Microsoft, please listen.

    Alpha channel.

    Beta channel.

    Release channel.

    Things like this should not be discovered ON PRODUCTION SYSTEMS.

    1. original_rwg
      Joke

      Channels

      Ah the old days when we only had three channels and you had to cross the room to change it....

      1. Doctor Syntax Silver badge

        Re: Channels

        Three channels? We only had two.

        1. Will Godfrey Silver badge
          Coat

          Re: Channels

          What are these 'channels' you speak of?

          1. navarac Silver badge

            Re: Channels

            >>>What are these 'channels' you speak of?<<<

            UK TV Channels! Back as a kid we had 2 channels, ON (BBCtv) and OFF. In 1955, Commercial TV came along aka ITV. Then we had 2 channels PLUS OFF. Glorious days when the TV went off air about 10pm and for God's Hour between about 6pm and 7pm on Sundays. TV (Tele) didn't start broadcasting much before 5pm for kids TV programmes.

        2. David 132 Silver badge
          Happy

          Re: Channels

          I used to like watching the little white dot after the BBC shut down for the night.

          (Yes, that’s my denim jacket with “VERY METAL” written on the back, and my yellow Ford Anglia parked outside thanks.)

          1. LBJsPNS Bronze badge

            Re: Channels

            Vyvyan!! You Basterd!

        3. chivo243 Silver badge
          Coat

          Re: Channels

          Pink had 13 channels of shit to choose from, pfft rock stars...

        4. captain veg Silver badge

          Re: Channels

          We used to literally turn the telly over.

          Figuratively.

          -A.

      2. An_Old_Dog Silver badge
        Windows

        (Changing the) Channels

        I had an old black-and-white-picture, vacuum tube (vs transistorized) television I'd bought extremely-cheaply from a neighbor kid, who sold it because it didn't work. It took a while for ten-year-old me to wrestle the monster home, and the vibrations from me frequently setting it down so I could rest somehow fixed it.

        Looking at a schematic drawings/technical illustrations/informational pamphlet I found inside it, I learned it had an optional remote control kit. The R/C kit had multiconductor cable which ran from the telly to the control box, and a stepper motor which mounted onto the shaft of the manual channel-changing knob, which in turn controlled a multi-wafer rotary switch.

        *CHUNK* *CHUNK* *CHUNK* ...

        1. captain veg Silver badge

          Re: (Changing the) Channels

          Fixing valve sets was dead easy. Whichever valve didn't glow was kaput and needed replacement. A mate rescued a very nice 26" (i.e. HUGE for the time) Tannoy set from a skip doing just this.

          -A.

  4. m4r35n357 Silver badge

    Is this stuff even newsworthy any more?

    More like a weather forecast than a news story ;)

    1. yetanotheraoc Silver badge

      Re: Is this stuff even newsworthy any more?

      In some places, the weather is the news.

  5. StinkyMcStinkFace

    it clearly needs to reevaluate its testing practices

    LOL!!!! The What?

  6. Colin Bull 1
    FAIL

    Duh

    Trying to report a phisting scam to report@phishing.gov.uk today. Immediately get a error back saying the email could be a spam.

    WHAT FUCKWIT DECIDED TO PUT THAT TRANSPORT RULE IN PLACE.

    So I decide to try point their errors of the ways, after a dozen a so links to FAQ that are not a relevant, I get to a web page to voice my concerns that is a Microshit Report form what ever that is its. Type in my concerns, then I THAT I HAVE TO LOGIN TO A MICROSHIT account.

    Is the total UK security services managed my Microshit?

    Three weeks ago I attended a talk to 100 old age pensioners from the U3A from the local plod that that stated that reporting phishing scam to report@phishing.gov.uk wiull help stop them. If I have trouble reporting them what chance have these people got.

    If there are any ACs out there that can enlighten me please do so.

    Apologies for disjointed grammar after 8 weeks from a stroke, hopefully will get better after therapy next week :-)

    Please, are there any ACs out there that enlighten me on what I missing.

    1. yetanotheraoc Silver badge

      Re: Duh

      "enlighten me on what I missing"

      If you don't want another stroke, best avoid Microsoft entirely.

    2. Anonymous Coward
      Anonymous Coward

      Re: Duh

      I'm not sure what a "phisting scam" is, but I don't want to look at alt.alt-sex.rec (or 4chan) to find out!

    3. captain veg Silver badge

      Re: Duh

      Used to get this all the time. Forward a spam email to the sending IP's abuse role account only for it to be bounced back as suspected spam. Well, der.

      -A.

  7. Colin Bull 1

    Duh

    Trying to report a phisting scam to report@phishing.gov.uk today. Immediately get a error back saying the email could be a spam.

    WHAT FUCKWIT DECIDED TO PUT THAT TRANSPORT RULE IN PLACE.

    So I decide to try point their errors of the ways, after a dozen a so links to FAQ that are not a relevant, I get to a web page to voice my concerns that is a Microshit Report form what ever that is its. Type in my concerns, then I THAT I HAVE TO LOGIN TO A MICROSHIT account.

    Is the total UK security services managed my Microshit?

    Three weeks ago I attended a talk to 100 old age pensioners from the U3A from the local plod that that stated that reporting phishing scam to report@phishing.gov.uk wiull help stop them. If I have trouble reporting them what chance have these people got.

    If there are any ACs out there that can enlighten me please do so.

    Apologies for disjointed grammar after 8 weeks from a stroke, hopefully will get better after therapy next week :-)

    Please, are there any ACs out there that enlighten me on what I missing.

    1. Anonymous Coward
      Anonymous Coward

      Re: Duh

      Dear Bull,

      I think your missing a very important component in you're DNA that is known as the subservient gene. This crucial perigenetic strand of nucleotides allows the desirable users of phishing.gov.uk to deferentially acquiesce and compliantly accomodate their secondary subordinate position to the web portal gods and corporate masters of the universe that operate them.

      In short, you will require a standard spine-removal transplant in order to access the system as designed!

      In the meantime please heed these ancient words of recursive enshittification wisdom: "There's no point in asking, you'll get no reply; Oh just remember I don't decide; Don't ask us to attend, 'cause we're not all there; Oh don't pretend 'cause I don't care; Oh we're so pretty; Oh so pretty; We're vacant [web sites]"!

      1. captain veg Silver badge

        Re: Duh

        Congratulations, genuinely, for knowing the difference between "your" and "you're".

        Alas...

        -A.

  8. Ramis101

    Uh, must be a day with a Y in it

    "Microsoft deserves credit for quickly pulling the faulty update, though it clearly needs to reevaluate its testing practices"

    Credit? For pulling yet another supposed "Fix" that is actually an "insta Break"

  9. Rich 2 Silver badge

    Utterly ridiculous

    For how long has MS tormented the world with exchange now?

    And it’s STILL a mess. MS couldn’t write a “hello world” program in BASIC without fucking it up

    1. David 132 Silver badge
      Happy

      Re: Utterly ridiculous

      Honestly I’m not sure they could write a NOP instruction on an isolated machine in an empty room without it crashing, segfaulting, bringing down Azure/OneDrive, and causing PCs from Azerbaijan to Zimbabwe to BSOD.

      1. Fred Dibnah

        Re: Utterly ridiculous

        And PCs in countries from Albania to Austria use Linux ;-)

    2. captain veg Silver badge

      Re: Utterly ridiculous

      Outlook is fine. As a vector for shovelling useless corporate shit in my face it is unrivalled.

      If only they would stop pretending that it is also an email system then I could safely ignore it.

      -A.

  10. Tron Silver badge

    Oh come on.

    Microsoft has only been updating it's software for four decades. It takes time to sort out the basics of quality control. You can't rush these things.

  11. ecofeco Silver badge
    FAIL

    Same old same old

    Same old same old M$.

    1. Anonymous Coward
      Anonymous Coward

      Re: Same old same old

      What do you expect from a bunch of marketing droids. The real techies were kicked out years ago.

      As someone who spent years developing systems to run on the various iterations of Windows Server, I can say that after 2008, they set out to make it harder to configure and manage as the 'More Vertical Whitespace' cowboys ruled the roost. Some of us had to manage them in Air Capped DC's from 1024x768 monitors in the racking. Did they think about that? That aside...

      When W10/W11 came along, I called it a day. The final straw was a customer applying a patch to PowerShell that brought down our MSCS system. BSOD's everywhere.

      After a reboot, no cluster. The objects in Powershell had gone walkies.

      I now work at a company who has one rule. Anything related to MS is banned. Linux for Servers and Mac's on the desktop. Somehow, we don't suffer from these monthly self inflicted beatings. Much less stress.

      Our next step is to block any access to an MS registered IP address at our corporate firewall. It is in test right now and will probably go live at the end of the month.

      There is a sane world out there for MS refuzniks to live and work.

      1. druck Silver badge

        Re: Same old same old

        I can see why you would want to post that as AC, if anyone found out what the company was, they would be inundated with job applications.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like