Re: Inconsistencies between Windows Updates and AU/SUS

• Previous message: jlawson-bugtraq_at_BOVINE.NET: "FW: Office Viewers vulnerable to gdiplus.dll issue [sr]"
• Maybe in reply to: Joe Dance: "Inconsistencies between Windows Updates and AU/SUS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date:         Fri, 24 Sep 2004 07:27:02 -0700
To: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM

[My previous email had an inaccuracy in it which I've
fixed in this version.]

RE: WU versus SUS, I would use MBSA in HFNETCHK mode
to get more detailed information about what patches AU
thinks is missing. You can run it as many times as
you want to compare what patches are listed as
missing. This might help you figure out what is going
on.

mbsacli.exe /hf -v
mbsacli.exe /hf -v -sus http://yoursusserver

Unless I'm mistaken, SUS 1.x uses the HFNETCHK-style
of checking for patches by checking many files and
registry values, whereas WU currently uses a different
and less rigorous method primarily checking registry
values, I believe as a way to solve performance
issues. I think WU also caches the results in a local
CAB file that can become corrupt. SUS 2.x
unfortunately is supposed to go over to the WU method
of checking. I would tend to trust SUS 1.x over WU.

Also, because WU mainly checks registry values to see
whether a patch has been installed, I'm not sure WU
necessarily notifies you when patches have been
revised, whereas SUS definitely does.

Regarding the other questions, I might search or ask
at the relevant microsoft.public.* newsgroups and/or
www.susserver.com.

- Karl Levinson

__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com

-----
NTBugtraq Editor's Note:

Want to reply to the person who sent this message? This list is configured such that just hitting reply is going to result in the message coming to the list, not to the individual who sent the message. This was done to help reduce the number of Out of Office messages posters received. So if you want to send a reply just to the poster, you'll have to copy their email address out of the message and place it in your TO: field.
-----

• Previous message: jlawson-bugtraq_at_BOVINE.NET: "FW: Office Viewers vulnerable to gdiplus.dll issue [sr]"
• Maybe in reply to: Joe Dance: "Inconsistencies between Windows Updates and AU/SUS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages RE: Deploying Microsoft patches ... If there is a separate patch between xp and 2k, SUS downloads each of them and lets you approve them. ... How can you apply different patches to w2k and win xp ... > Subject: Deploying Microsoft patches ... (Security-Basics) Re: Execute Update on multiple network computers ... > somplicated as I have to download all patches one by one on the MS website, ... You could consider implementing SUS or something similar (links to some ... Note that the current version will only install critical updates and security ... Here is a third party product that supports Win9x and WinME as well: ... (microsoft.public.win2000.active_directory) Re: Execute Update on multiple network computers ... > somplicated as I have to download all patches one by one on the MS website, ... You could consider implementing SUS or something similar (links to some ... Note that the current version will only install critical updates and security ... Here is a third party product that supports Win9x and WinME as well: ... (microsoft.public.win2000.general) Re: Remote Shutdown Batch Issue ... Sorry for being script stupid. ... As for SUS I apoloigize; ... > Dim WshX ... When are patches ... (microsoft.public.windows.server.scripting) RE: Deploying Microsoft patches ... The down side to SUS is it only does critical updates, ... Windows platforms and software, Unix (a number of commercial flavors - ... platforms (down to media player patches). ... The Gartner Group just put Neoteris in the top of its Magic ... (Security-Basics)