[prev in list] [next in list] [prev in thread] [next in thread]
List: patchmanagement
Subject: RE: Security updates available for Flash Player, RoboHelp, Audition, and Flash Media Server
From: "Turner, Glenn" <Glenn.Turner () apra ! gov ! au>
Date: 2011-05-26 23:01:32
Message-ID: C5D00BD777D5AC458BFD2128C1E3AF2E263E6FF138 () sydprdexc04 ! internal ! apra ! gov ! au
[Download RAW message or body]
Or, offer an .adm so administrators can use Group Policy to configure and lock every \
single setting that is available through the interface, including turning off \
Hardware Acceleration (which caused the app to crash repeatedly in one of our \
configs), at any time without having to change a file on every workstation.
-----Original Message-----
From: Haug, Torolf [mailto:thaug@mchutchison.com]
Sent: Friday, 27 May 2011 3:37 AM
To: Patch Management Mailing List
Subject: RE: Security updates available for Flash Player, RoboHelp, Audition, and \
Flash Media Server
Even better, could Adobe give us an Adobe Customization Wizard designed for Flash? \
It would be so much better to be able to set all of these things beforehand without \
having to worry about .cfg files.
-----Original Message-----
From: Andrew M. Kinnard [mailto:andyk@slcpa.biz]
Sent: Thursday, May 26, 2011 10:34 AM
To: Patch Management Mailing List
Subject: RE: Security updates available for Flash Player, RoboHelp, Audition, and \
Flash Media Server
Crud. What I wrote earlier about the mms.cfg settings being preferences was from \
memory and was wrong. See: \
http://kb2.adobe.com/cps/167/16701594.html#main_Administrator_configurat \
ion_of_auto_update_notification, esp. "Note: Settings in mms.cfg override the users \
settings and users cannot change it through Settings Manager. Settings Manager, as \
viewed by the user, doesn't reflect configuration settings set by mms.cfg." Which \
probably answers most questions that come up in testing (i.e., it is a PITA to tell \
whether the mms.cfg settings are being applied).
Thankfully, someone has done this verification already with 10.3:
http://www.appdeploy.com/messageboards/tm.asp?m=76415.
Settings.sol has been around a long time and is where the user preferences are set; \
these are reflected by the Settings Manager web applet at \
http://www.macromedia.com/support/documentation/en/flashplayer/help/sett \
ings_manager05.html (but the mms.cfg ones aren't). It appears that the same is true \
of the Control Panel applet.
Hey, Pat W! Any chance you can persuade the Flash team to grey out Control Panel \
applet options that are set in the mms.cfg file (you know, like, um, Windows USUALLY \
reflects policy settings)? That would be SO great AND fix a pain point that has been \
present for many years.
Thanks,
Andy
>
Andrew M. Kinnard
Schaffer & Layher, PLLC
805 Van Brunt Ave., P.O. Box 47
St. Joseph
MI 49085
Tel: (269) 983-0131 x14
Fax: (269) 983-0335
Fax 2: (269) 983-6548
mailto:andyk@slcpa.biz
http://www.slcpa.biz
-----Original Message-----
> From: Eddy, Chris [mailto:CEddy@glhec.org]
> Sent: 05/26/2011 9:04 AM
> To: Patch Management Mailing List
> Subject: RE: Security updates available for Flash Player, RoboHelp,
> Audition, and Flash Media Server
>
> Thanks everyone for your responses...
>
> We know about the mms.cfg file. The question is does this still work
> with Flash Player 10.3. 10.3 added a per user configuration file
> called settings.sol in AppData\Roaming\Macromedia\Flash
> Player\macromedia.com\support\flashplayer\sys which stores the control
> panel automatic update settings.
>
> -----Original Message-----
> From: Spillane, Paul [mailto:pspillane@irobot.com]
> Sent: Tuesday, May 24, 2011 9:31 AM
> To: Patch Management Mailing List
> Subject: RE: Security updates available for Flash Player, RoboHelp,
> Audition, and Flash Media Server
>
> Hi Chris,
>
> Are you using an MMS.cfg file to defeat updates?
>
> The file contains one line - AutoUpdateDisable=0
>
> First, we create mms.cfg, with the following contents:
>
> AutoUpdateDisable=1
>
> We then created a transform to copy mms.cfg to
> %windir%\system32\Macromed\Flash
>
> Finally, we install with:
>
> msiexec /i flashplayer.msi TRANSFORMS=flashplayer.mst /qn
>
> Paul
>
>
> -----Original Message-----
> From: Eddy, Chris [mailto:CEddy@glhec.org]
> Sent: Tuesday, May 24, 2011 8:36 AM
> To: Patch Management Mailing List
> Subject: RE: Security updates available for Flash Player, RoboHelp,
> Audition, and Flash Media Server
>
> For the deployment of the Flash Player v10.3, has anybody figured out
> how to disable auto-updates?
>
> Thanks
> chris
>
> -----Original Message-----
> From: Susan Bradley [mailto:sbradcpa@pacbell.net]
> Sent: Friday, May 13, 2011 12:27 PM
> To: Patch Management Mailing List
> Subject: Security updates available for Flash Player, RoboHelp,
> Audition, and Flash Media Server
>
> Security updates available for Flash Player, RoboHelp, Audition, and
> Flash Media Server
>
> Today, we released the following Security Bulletins:
>
> * APSB11-09 - Security update available for RoboHelp (Important
> Severity) <http://www.adobe.com/go/apsb11-09>
> * APSB11-10 - Security update available for Audition (Critical
> Severity) <http://www.adobe.com/go/apsb11-10>
> * APSB11-11 - Security update available for Flash Media Sever
(FMS)
> (Critical Severity) <http://www.adobe.com/go/apsb11-11>
> * APSB11-12 - Security update available for Flash Player (Critical
> Severity) <http://www.adobe.com/go/apsb11-12>
>
> Customers of the affected products should consult the relevant
Security
> Bulletin(s) and apply updates as recommended.
>
> On a related note, we recently added an Acknowledgments page
>
<http://www.adobe.com/support/security/bulletins/securityacknowledgment
> s
> .html>
> on the Adobe website to thank the individuals and organizations who
> report a security vulnerability or vulnerabilities
> <http://www.adobe.com/support/security/alertus.html> in an Adobe
> product
>
> or online service. For acknowledgments of individuals and
organizations
> reporting a security vulnerability or vulnerabilities in an Adobe
> product, please refer to the "Acknowledgments" section in each
Security
> Bulletin <http://www.adobe.com/support/security/>. The new page will
> list the individuals and organizations who reporta security
> vulnerability or vulnerabilities
> <http://www.adobe.com/support/security/alertus.html> in
> an<http://www.adobe.com/products/onlineservices/>Adobe online service
> <http://www.adobe.com/products/onlineservices/>, and worked with us to
> help protect our customers.
>
> *This posting is provided "AS IS" with no warranties and confers no
> rights.*
>
> Source:
> http://blogs.adobe.com/psirt/2011/05/security-updates-available-for-
> flas
> h-player-robohelp-audition-and-flash-media-server.html
>
>
>
> ---
> When posting or replying to messages on this list, please send all
> emails in plain text format. HTML formatted messages will not be
> accepted.
>
> PatchManagement.org is hosted by Shavlik Technologies
>
> To unsubscribe send a blank email to
> leave-patchmanagement@patchmanagement.org
> If you are unable to unsubscribe via this email address, please email
> owner-patchmanagement@patchmanagement.org
>
>
>
>
-----------------------------------------------------------------------
> -
> --------
> The information contained in this communication may be confidential,
is
> intended only for the use of the recipient(s) named above, and may be
> legally privileged. If the reader of this message is not the intended
> recipient, you are hereby notified that any dissemination,
> distribution, or copying of this communication, or any of its
> contents, is strictly prohibited. If you have received this
> communication in error, please notify the sender immediately and
> destroy or delete the original message and any copy of it from your
> computer system. If you have any questions concerning this message,
> please contact the sender.
>
=======================================================================
> =
> ========
>
>
>
>
> ---
> When posting or replying to messages on this list, please send all
> emails in plain text format. HTML formatted messages will not be
> accepted.
>
> PatchManagement.org is hosted by Shavlik Technologies
>
> To unsubscribe send a blank email to
> leave-patchmanagement@patchmanagement.org
> If you are unable to unsubscribe via this email address, please email
> owner-patchmanagement@patchmanagement.org
>
> ---
> When posting or replying to messages on this list, please send all
> emails in plain text format. HTML formatted messages will not be
> accepted.
>
> PatchManagement.org is hosted by Shavlik Technologies
>
> To unsubscribe send a blank email to
> leave-patchmanagement@patchmanagement.org
> If you are unable to unsubscribe via this email address, please email
> owner-patchmanagement@patchmanagement.org
>
>
>
>
>
>
>
> ---
> When posting or replying to messages on this list, please send all
> emails in plain text format. HTML formatted messages will not be
> accepted.
>
> PatchManagement.org is hosted by Shavlik Technologies
>
> To unsubscribe send a blank email to leave-
> patchmanagement@patchmanagement.org
> If you are unable to unsubscribe via this email address, please email
> owner-patchmanagement@patchmanagement.org
--------------------------------------------------------------------------
This message and any files transmitted with it are confidential and are intended only \
for patchmanagement@listserv.patchmanagement.org. If you are not \
patchmanagement@listserv.patchmanagement.org or an employee or agent responsible for \
delivering this message to patchmanagement@listserv.patchmanagement.org, you may not \
copy this message or disclose its contents to anyone. If you received this e-mail by \
mistake, please notify andyk@slcpa.biz immediately and delete this e-mail from your \
system. The integrity and security of this message cannot be guaranteed when \
transmitted via the Internet. Please note that any views or opinions presented in \
this e-mail are solely those of Andrew M. Kinnard and do not necessarily represent \
those of Schaffer & Layher, PLLC. The recipient should check this e-mail and any \
attachments for the presence of viruses. Schaffer & Layher, PLLC accepts no liability \
for any damage caused by any virus transmitted by this e-mail.
CIRCULAR 230 DISCLOSURE
"To ensure compliance with requirements imposed by the IRS, we are required to inform \
you that any U.S. federal tax advice contained in this communication (including \
attachments) is not intended or written to be used, and cannot be used, for the \
purpose of 1) avoiding penalties under the Internal Revenue Code or 2) promoting, \
marketing, or recommending to another party any transaction or matter addressed \
herein."
---
When posting or replying to messages on this list, please send all emails in plain \
text format. HTML formatted messages will not be accepted.
PatchManagement.org is hosted by Shavlik Technologies
To unsubscribe send a blank email to leave-patchmanagement@patchmanagement.org
If you are unable to unsubscribe via this email address, please email \
owner-patchmanagement@patchmanagement.org
---
When posting or replying to messages on this list, please send all
emails in plain text format. HTML formatted messages will not be accepted.
PatchManagement.org is hosted by Shavlik Technologies
To unsubscribe send a blank email to leave-patchmanagement@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement@patchmanagement.org
---
When posting or replying to messages on this list, please send all
emails in plain text format. HTML formatted messages will not be accepted.
PatchManagement.org is hosted by Shavlik Technologies
To unsubscribe send a blank email to leave-patchmanagement@patchmanagement.org
If you are unable to unsubscribe via this email address, please email
owner-patchmanagement@patchmanagement.org
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic