RE: Microsoft Baseline Security Analyzer

• Previous message: Jannie Hanekom: "RE: adding new service to system services list"
• Maybe in reply to: Jerri Dawson: "Microsoft Baseline Security Analyzer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: 'Jerri Dawson' <JDawson@swst.com>, "'focus-ms@securityfocus.com'" <focus-ms@securityfocus.com>
Date: Mon, 23 Jun 2003 15:36:10 -0400

The MBSA stores the reports in XML format in C:\Documents and
Settings\userprofile\Security Scans (where "userprofile" is the profile of
the user under whose account the tool was run). You can grab them from
there and move them to wherever you want.

You can also use MSXML or another XSLT processor to transform these reports
into any format you choose. This is exactly how MBSA generates its reports,
so you can look in the program folder to see a lot of examples.

Patrick Correia
Clough, Harbour & Associates LLP
http://www.cloughharbour.com

-----Original Message-----
From: Jerri Dawson [mailto:JDawson@swst.com]
Sent: Monday, June 23, 2003 1:19 PM
Subject: Microsoft Baseline Security Analyzer

        Has anyone found the ability with this tool to write logs out to a
location for shared reporting? The only way we have found to view the
reports is inside the tool itself, from the same machine that ran them.
Which would require giving the security group trusted access.

-----------------------------------------------------------------------------
------------------------------------------------------------------------------

• Previous message: Jannie Hanekom: "RE: adding new service to system services list"
• Maybe in reply to: Jerri Dawson: "Microsoft Baseline Security Analyzer"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]