RE: Rolling out patches

From: garberoa@WellsFargo.COM
Date: 05/06/02

Previous message: christianjm: "RE: Rolling out patches"
Maybe in reply to: H C: "Rolling out patches"
Next in thread: Secure Green: "HfNetChk Message: File versions greater than expected:"
Reply: Secure Green: "HfNetChk Message: File versions greater than expected:"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: garberoa@WellsFargo.COM
To: jgoldberg@nowldef.org, focus-ms@securityfocus.com
Date: Mon, 6 May 2002 12:17:43 -0700

FYI to all considering implementing the psexec method - Be aware that psexec
passes your username/password in the clear.

Quote from the usage:

"If you omit a user name the process will run in the context of your
account on the remote system, but will not have access to network
resources (because it is impersonating). Specify a valid user name
in the Domain\User syntax if the remote process requires access
to network resources or to run in a different account. Note that
the password is transmitted in clear text to the remote system."

Best Regards,

Andrew Garberoglio, CISSP
Wells Fargo Services, Internet Technology Services

"Let us prepare to grapple with the ineffable itself, and see if we may not
eff it after all"
-Douglas Adams

-----Original Message-----
From: Jonathan Goldberg [mailto:jgoldberg@nowldef.org]
Sent: Friday, May 03, 2002 2:20 PM
To: 'focus-ms@securityfocus.com'
Subject: RE: Rolling out patches

To reply to my own post, I came back to my patch-deploying scripts yesterday
for more tweaking, and I came across several improvements on the method I
posted:

For Step 1, I did some more checking and found that the REG tool works on
remote computers. FILEVER, of course, can access any file on an
administrative share. This makes dumping relevant info into a local text
file for parsing very simple.

The major improvement, however, came when I replaced my "Step 3: Use Task
Scheduler" with "Use PSEXEC from the 'pstools' package from the excellent
folks over at www.sysinternals.com."

PSINFO replicates a lot of the functionality of REG and FILEVER, and is
geared towards assisting in the automation of deploying hotfixes, but REG
and FILEVER, on the whole, seem to be more flexible. The toolkit as a whole
is still invaluable.

Jon

Previous message: christianjm: "RE: Rolling out patches"
Maybe in reply to: H C: "Rolling out patches"
Next in thread: Secure Green: "HfNetChk Message: File versions greater than expected:"
Reply: Secure Green: "HfNetChk Message: File versions greater than expected:"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Windows 2003 FSRM command options dont work
... I have used PsExec for some things in the past. ... I suppose you could use instant messaging, ... interacts with the desktop on the remote system". ...
(microsoft.public.windows.server.general)
RE: run app remotely?
... Inside PsExec ... to the Admin$ share of the remote system. ... The Psexesvc service creates a named pipe, psexecsvc, to which PsExec ... specify the -d switch, the service exits after starting the ...
(microsoft.public.dotnet.framework)
Emulate PSEXEC/RunAS with the CreateScript method?
... I'd like to execute a VB script on a remote system with credentials ... different from the one launching the script- currently, ... using SysInternal's PSEXEC to do this, but, I would rather not call an ...
(microsoft.public.scripting.vbscript)
RE: [Full-Disclosure] Psexec on *NIX
... > time, yes, I know exactly what psexec does. ... > network in Florida from my laptop and for some strange reason I need the ... > MAC address of a desktop in Ohio. ... > command on the remote system. ...
(Full-Disclosure)