Windows 7 users: You need SHA-2 support or no Windows updates after July 2019
Windows 7 and Windows Server 2008 users need to have SHA-2 code-signing installed by July 16, 2019, in order to continue to get Windows updates after that date. Microsoft issued that warning on February 15 via a Support article.
Windows operating system updates are dual-signed using both the SHA-1 and SHA-2 hash algorithms to prove authenticity. Bug going foward, due to "weaknesses" in SHA-1, Microsoft officials have said previously that Windows updates will be using the more secure SHA-2 algorithm exclusively. Customers running Windows 7 SP1, Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 must have SHA-2 code-signing support installed by July 2019, Microsoft officials have said.
Microsoft has published a timeline for migrating these operating systems to SHA-2, with support for the algorithm coming in standalone updates. On March 12, Microsoft is planning a standalone update with SHA-2 code sign support for Windows 7 SP1 and Windows Server 2008 R2 SP1. It also will deliver to WSUS 3.0 SP2 the required support for delivering SHA-2 updates.
Microsoft will make available a standalone update with SHA-2 code sign support for Windows Server 2008 SP2 on April 9, 2019.
https://www.zdnet.com/article/windows-7-users-you-need-sha-2-support-or-no-windows-updates-after-july-2019/
2naSalit
(92,695 posts)I now have questions. I run Win7 on an ASUS laptop. Back when the Win10 came out, I didn't want the upgrade so I installed Never10 to keep some hidden update from installing WIN10 when I was not looking.
I have not been able to receive regular updates since that Never10 install and I have been annoyed by this. My laptop is my main communication device and it runs well so far even at its age. I can't afford to replace it yet.
So the question is, if I get rid of the Never10 software, will I end up with five days of updates and end up with that ghastly Win10 on my computer? It bothers me that I have not been able to receive updates for a while. I keep Avast and ghostery updated but I am getting concerned, especially with the news you posted.
OhZone
(3,216 posts)I put them back on again eventually.
Reason I had them off? I didn't want to be forced into Win10.
MS is it's own virus in some ways.
I do have one Win10 laptop and it's Oh-k, but I do no trust them. I have an Apple device or two too.
I'm also experimenting with Linux now.
Anywho, it's good to be pan-devicsual! ha
((Although I'm like 90% lesbian! ))
lpbk2713
(43,201 posts)I'd better get with it and get them configured.
JayhawkSD
(3,163 posts)Is my computer presently SHA-1 or SHA-2? How do I tell which one it is?
Will it quit running on July 16, 2019? At what time of day will that happen? When it does that, is there any danger of it setting fire to my house?
As a point of information, before I let Microsoft dictate to me, I will buy an Apple. I don't like buying foreign products made with slave labor, but I will do that.
The Microsoft product is stolen, but at least it is stolen in and by Americans. Well, okay, not made by Americans, but by an American company paying wages that are almost American wages.
msongs
(70,172 posts)douglas9
(4,474 posts)All Windows 7 users hopefully know that Microsoft will cease support for the operating system in January 2020, but what they might not realize is that extended support could dry up in July 2019 if they fail to install some critical patches next month.
The patches arriving in March mark a security upgrade for Windows 7, and mean that Windows updates will only use the SHA-2 hash algorithm to sign and authenticate patches (i.e. to make sure theyve come directly from Microsoft, and havent been tampered with).
snip>
In short, then, you need to make sure you dont miss the various standalone security updates that will deploy next month and usher in SHA-2 code sign support currently, Microsoft is estimating a target date of March 12 for their release on Windows 7.
https://www.techradar.com/news/if-you-miss-this-vital-windows-7-patch-updates-will-stop-working-in-july
https://support.microsoft.com/en-us/help/4472027/2019-sha-2-code-signing-support-requirement-for-windows-and-wsus