Unless you're running some funky WSUS stuff, getting your updates from MS is safe. https://twitter.com/dlitchfield/status/1217128076485644288 …
Why is this? Pinning? And if so, do you have any reference for that being documented? Best I've been able to easily test is the refusal to get updates from a non-MS root.
-
-
It checks RSA signing (so even if ECC signed, it checks it is dual signed with RSA, which doesn’t have this vulnerability).
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.