Leaderboard

Moderator Edit: The download for the latest (1.6) version of Heinoganda's root certificates and revoked certificates update utility is here - https://www.mediafire.com/file/pflkq12ik8tlx5w/jveWB2Qg1Lt9yT5m3CYpZ8b8N4rH.rar/file The archive password is: S4QH5TIefi7m9n1XLyTIZ3V5hSv4se1XB6jJZpH5TfB6vkJ8hfRxU7DWB2p Note that the utility will also work on Windows Vista, but will have to be run as an administrator. I hereby would like to offer a way to keep the roots certificates and the revoked certificates up to date. For the security of Windows XP after the last condition no official patches more for blocking div. Roots certificates and certificate update available. For revoked Certificate Update "rvkroots.exe" Microsoft download (http://www.microsoft.com/download/details.aspx?id=41542), unzip to a folder (e.g. with WinRAR). In "rvkroots.inf" the entry in the string VERSION should be changed to "5,0,2195,0" and the VER entry changed to "005". The next step is download the "http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/disallowedcert.sst" and paste the unzipped folder and replace older file. Then with e.g. (Create Self-Extracting Archive) WinRAR all files in the folder to an archive option SFX with the following comment: TempMode Silent=1 Overwrite=1 Setup=Rundll32.exe advpack.dll,LaunchINFSection rvkroots.inf,DefaultInstall pack and you have a current update for blocking unsafe Certificates! For Root Certificate Update "rootsupd.exe" Microsoft download (http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/rootsupd.exe), unzip to a folder (eg with WinRAR), in "rootsupd.inf" entry in the string VERSION should "40,0,2195,0" loud and in VER "040" , In the next step, "http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authroots.sst" "http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/delroots.sst" "http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/roots.sst" "http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/updroots.sst" download and paste the unzipped folder and replace older files. Then with e.g. (Create Self-Extracting Archive) WinRAR all files in the folder to an archive option SFX with the following comment: TempMode Silent=1 Overwrite=1 Setup=Rundll32.exe advpack.dll,LaunchINFSection rootsupd.inf,DefaultInstall pack and you have a current root certificate update! For all languages! If you do approximately every 3 months. To re-update extends the generated SFX files to open with WinRAR and drag to the archives newer downloads (.sst files) by drag and drop into it.

Roytam1 has done a great job with the cipher and TLS2 updates. There are some things open for debate still as to what stops the later browsers from operating with differing ideas we do not all agree on. Negative feedback is what is implied though if joking about KernelEx on 3.11, for me anyway. You have done good testing and your comments have been genuine. MSFN is an information source that is much appreciated, I doubt whether you have got in the way anymore than I have. There is some advantage for those who have started earlier with the KernelEx project in that they would be more knowledgeable about it. Do not be perturbed by my last post.

Huh? The joke was not even a critic, I never criticized KernelEx. Yes I like it on 2000, 98 isn’t that bad at all but it’s not their fault because browsers, security protocols, have evolved quite fast these years that Win98/KernelEx can’t keep up with them nowadays. And my criticism was always targeted towards the browsers and the excessive number of custom browsers for XP but almost nil options for 98/Me. I don’t get why there are more custom browsers for XP when even official browsers still work perfectly on XP. IMHO people should be more focused in doing custom browsers for 98/Me/2000 than XP. In one or two years, 2000 will be where 98 is now. Youtube is starting to break for 2000 with their revamped version, so 2000 users will soon be where 98 users are now. It’s normal - HTML, JS and CSS are always evolving. Retro compatibility are one of the reasons why I want people to stop using jQuery and learn vanilla JS. But jQuery has taken so much dominance these days that its now incredibly hard to go back to the vanilla. (Trust me, I tried to do that with my new website and a week later, I was doing jQuery again). Don’t get me wrong - I like 98, that was my 1st and favorite choice for a retro gaming pc, for nostalgia reasons, but without browsing options I had to resort to the closest thing to the 98 that exists- 2000. I’m not happy with that either but I can live with that. Anything that is not Windows 10, I’m good. However, I’m pretty sure that the number of 98/Me enthusiasts aren’t going down because of my, or someone elses criticism, but yes because of the lack of news on KernelEx or updates for these systems. We are pretty much stuck with what we have now. People want to go forward so you can’t blame them for looking elsewhere for other options such as 2000. I have spent months and lost nights trying to improve 98 for better browsing. No luck, sadly. I did all I could. If anything, I made the joke with the intention to praise what KernelEx has done for both systems, not as a critic. I just caught myself thinking “what if we had that for 3.x too? Oh, I can dream.” And hey presto, there was an april fools joke. I’m sorry if you didn’t get it the way I did.

I made patch for CVE2019-1441, CVE-2019-0889, CVE-2019-0890, CVE-2019-0891, CVE-2019-0893, CVE-2019-0894, CVE-2019-0895, CVE-2019-0896, CVE-2019-0897, CVE-2019-0898, CVE-2019-0899, CVE-2019-0900, CVE-2019-0901, CVE-2019-0902 If anyone interested I will post it in ryanvm forum Anyone one can list out all cve of gdiplus after April 2019? Edit: Now testing fix for CVE-2020-0779,CVE-2020-0814, CVE-2020-0842, CVE-2020-0843,CVE-2020-0847