PC patch confusion

If you feel confused, you're in good company. The latest Windows security breach, the unofficial patches, and the official patch Microsoft has promised for next week even has Washington Post PC security writer Brian Krebs scratching his head (see "Patch or Pay?")! In short (believe it or not), Microsoft announced it would patch this major security flaw next week; at least two unofficial patches have been released by security code writers (one actually endorsed by the SANS Institute, which usually advises people to wait for the PC maker's patch), Brian reported earlier; and a beta version of the official patch was, Microsoft says, inadvertently leaked to the Net at large, CNET reports. Some experts say it's crazy to wait for the official Microsoft patch (see this ZDNET security blog), but Brian says that may mean forfeiting Microsoft help: "Microsoft says Windows users who have questions, concerns or problems surrounding this issue can call 1-866-PCSAFETY. Keep in mind, however, that if you do apply this third-party patch, Microsoft will in all likelihood refuse to help you return your PC to its previous pre-patch state should the patch somehow muck it up." There just is no final or fool-proof solution to the family PC security problem, though the three cardinal rules (an antivirus service like McAfee or TrendMicro, a firewall, and keeping up with MS patches) help hugely. So what's a PC owner to do in a confusing situation like this? Probably the best thing is trying out the free beta version of Windows OneCare (here's its security info page). Then, if your PC gets infected, it's Microsoft's fault and the company might help you.