Secunia
Login
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Forum Thread: JAVA (jre6u24) patching msi
You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.This thread was submitted in the following forum:
CSI
| ebucklew | JAVA (jre6u24) patching msi |
|---|---|
 |
23rd Feb, 2011 20:45 |
|
Ranking: 1 Posts: 25 User Since: 1st Jan, 1970 System Score: N/A Location: N/A |
C:\Users\%username%\AppData\LocalLow\Sun\Java\jre1 When you go to install java manually.....when the first screen comes up....look in the location above and you will find the files needed for quiet installing. According to some sources online all you need is the data1.cab and jre1.6.0_24.msi..... My question is why can't secunia csi distribute this patch using the wsus....without making automatic installs a mandatory option. disruption of workstations forcefully should not be needed.....and with java being VERY important to 3rd party patching.....why can't I create my own update with these two files combined into an msi...? cheers |
| ebucklew | RE: JAVA (jre6u24) patching msi | ||||||||
|
|
23rd Feb, 2011 20:49 | ||||||||
| instead of an msi.....it could be a cab file as well..... here is the link to check your java version... http://www.java.com/en/download/installed.jsp?dete... |
|||||||||
|
|||||||||
| rjohansson | RE: JAVA (jre6u24) patching msi |
|
24th Feb, 2011 08:35 |
| Score: 15 Posts: 61 User Since: 5th Oct 2009 System Score: N/A Location: Copenhagen, DK |
Hi The CSI do supports the Java patch to be distributed trough WSUS. However due to a bug in the Java installer: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id... It seems that in the case of a silent install, then the FilesInUse dialog is simply skipped. These are problems with the installer, not uninstallers. So you need to configure your Windows Update to install the Java patch when a user i not logged on. If i.e. a user is logged on, the package can be made to be not applicable to that computer. However as soon as the computer is rebooted, and as long as no user logs on, the package will apply to that computer. This method is very likely safe for this bugged java installer, and it works in my tests. The only remaining issues are the inconvenience of having to reboot the computers for the update to apply, and of course the computers must be set to automatically install updates, because as soon as a user logs on, the update won't apply anymore. PS. You are more then willing to thest the msi file that you found in the patch but this is not supported by Secunia. Thank you, Rickard -- Rickard Secunia Support |
| ebucklew | RE: JAVA (jre6u24) patching msi | ||||||||
|
|
24th Feb, 2011 16:20 | ||||||||
| There is the problem.....is the patch is deemed "not needed" due to the installer flaw...... It is apparent that our setup is not working properly.....java is not being installed on pc's that are later scanned needing the install.....I believe this is due to the not needed. Currently our updates are automattically applied daily at noon....not forcing a reboot.....but everyday java is apparently not needed....but it actually is... any idea to break this chain....without manually installing java.... |
|||||||||
|
|||||||||
| rjohansson | RE: JAVA (jre6u24) patching msi |
|
|
24th Feb, 2011 22:24 |
| Score: 15 Posts: 61 User Since: 5th Oct 2009 System Score: N/A Location: Copenhagen, DK |
So you need to configure your Windows Update to install the Java patch when a user i not logged on. If i.e. a user is logged on, the package can be made to be not applicable to that computer. However as soon as the computer is rebooted, and as long as no user logs on, the package will apply to that computer. This method is very likely safe for this bugged java installer, and it works in my tests. -- Rickard Secunia Support |
| ebucklew | RE: JAVA (jre6u24) patching msi | ||||||||
|
|
24th Feb, 2011 22:48 | ||||||||
| Ok I see....but I doubt that at noon no one will be logged in....let alone his/her pc even being on....because power saving settings will not permit that as well....(if you are smart and saving electricity at night)...installing on shutdown would prove to be better than "installing when no one is logged on"....this is a serious problem especially for secunia...JAVA is at the TOP of the list for vulnerabilities!....forcing me to manually install is exactlly what people want to avoid with this product.....I guess I am going to have to find a way with batch files on user login....or something...? I sure hope java fixes their installer problem......but it has been since 2009....so...I am not sure when that will be..... |
|||||||||
|
|||||||||
