RE: Critical/Security Updates as well as other Patch Management

From: dave (dave@netmedic.net)
Date: 03/14/03

  • Next message: Lachlan McGill: "RE: Critical/Security Updates as well as other Patch Management" 
    From: "dave" <dave@netmedic.net>
To: <jasonc@science.org>, "'Jed Needle'" <jed@vitel.com>, <security-basics@securityfocus.com>
Date: Thu, 13 Mar 2003 18:17:05 -0500

    There are after market alternatives which use a different approach such as
    hfnetchk pro at http://www.shavlik.com/ and securit-e-updater at
    http://www.s-doc.com/products/securitelok.asp

     
    _____________________
    Dave Kleiman
    dave@netmedic.net
    www.netmedic.net

     

    -----Original Message-----
    From: Jason Coombs [mailto:jasonc@science.org]
    Sent: Thursday, March 13, 2003 14:38
    To: Jed Needle; security-basics@securityfocus.com
    Subject: RE: Critical/Security Updates as well as other Patch Management

    SUS is nothing more than a filter for windowsupdate.com that tells managed
    boxes not to allow windowsupdate.com to install anything other than the
    subset of updates approved by the SUS administrator.

    Each Windows box still uses Windows update directly, so all vulnerabilities
    that impact Windows update and the client-side code that talks to
    windowsupdate.com are still present when SUS is used.

    Jason Coombs
    jasonc@science.org

    -----Original Message-----
    From: Jed Needle [mailto:jed@vitel.com]
    Sent: Tuesday, March 11, 2003 12:24 PM
    To: security-basics@securityfocus.com
    Subject: RE: Critical/Security Updates as well as other Patch Management

    On Microsoft platforms there is a patch management util called SUS
    "software update service?? (I think)
    Once configured, the server will automatically download relevant
    patches, you then point the clients to the sus server and push updates
    to clients that way.

    Jed

  • Next message: Lachlan McGill: "RE: Critical/Security Updates as well as other Patch Management"

    Relevant Pages

    • Re: SUS downloading XP SP2 with error code 407
      ... Go to your SUS admin page. ... The w2k DC SUS server is configured to automatically download updates ... Automatic Sync Started- 29. ...
      (microsoft.public.isa)
    • Re: Not sure if this is the right place but
      ... Note that the free version will only install critical updates and security ... SUS needs to be installed on a IIS server. ... installs operating system critical updates and security rollup packages. ...
      (microsoft.public.windowsxp.security_admin)
    • Re: running patches as admin
      ... Note that the free version will only install critical updates and security ... SUS needs to be installed on a IIS server. ... installs operating system critical updates and security rollup packages. ...
      (microsoft.public.win2000.security)
    • Re: Software Update Services (SUS) - SA Edition
      ... And she has contacted several people at Microsoft ... >>> downloading or the appropriate CD? ... >>> "SUS is available in two versions. ... >>> system critical updates and security rollup packages ...
      (microsoft.public.security)
    • RE: Windows SUS Question
      ... I run SUS in an environment more than 5000 PC's ... This way it is a controlled environment and only approved updates installes. ... to facilitate one-on-one interaction with one of our expert instructors. ...
      (Security-Basics)