RE: Deploying Microsoft patches
From: Doug Massey (doug_at_masseytechnologies.com)
Date: 07/24/03
- Previous message: David Gillett: "RE: ARP Spoof Question"
- Maybe in reply to: Ronish Mehta: "Deploying Microsoft patches"
- Next in thread: KOCHAR,GURPREET (HP-Singapore,ex1): "RE: Deploying Microsoft patches"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 24 Jul 2003 13:37:21 -0400 To: dnvaidya@rilinfo.net
SUS stands for System Update Services. It doesn't apply
service packs, only hot patches. I have it implemented and
it works quite well. The latest version allows you to
suppress the reboot if a user is logged on. If no one is
logged on, it installs and reboots. Once implemented, I
have had zero problems wiht it.
I deployed configuration information for SUS with Group
Policy.
As a means of deploying service packs, try Group Policy if
you have AD. That also works quite well in my experience.
---- Original message ----
>Date: Thu, 24 Jul 2003 10:19:00 +0530
>From: "D N Vaidya" <dnvaidya@rilinfo.net>
>Subject: RE: Deploying Microsoft patches
>To: "'Roger A. Grimes'" <rogerg@cox.net>, "'MOHESOWA BYAS'"
<byasmohesowa@sbm.intnet.mu>, <security-
basics@securityfocus.com>
>
>May I know what is SUS stands for? Also I want to know the
best practice for
>deploying new Service Packs and Hot fixes in production
environment. Because
>I faced some problems after installing SP4 of Win2K server
on one production
>machin. That machine became very slow and stopped sending
mails to the
>Internet but i can send mails within Intranet.
>
>Next time I dont want to repeate same mistek. Also where I
can get the
>technical info of new service packs i.e. what changes that
SP is going to do
>on my system and is there any way to roll back only
required component of SP
>or Hot fix.
>
>Please help.
>
>Sincerely,
>D.N.Vaidya
>
>-----Original Message-----
>From: Roger A. Grimes [mailto:rogerg@cox.net]
>Sent: Tuesday, July 15, 2003 10:48 PM
>To: MOHESOWA BYAS; security-basics@securityfocus.com
>Subject: Re: Deploying Microsoft patches
>
>
>Yes on IE, no for IIS. Which is a little interesting
considering that it
>runs using IIS.
>
>Basically, it's Windows critical updates and security roll-
ups that you can
>see using Windows Update, minus driver updates and service
packs (service
>packs can be installed using the Software Assurance version
of SUS).
>
>Roger
>
>************************************************************
****************
>****
>*Roger A. Grimes, Computer Security Consultant
>*CPA, MCSE (NT/2000), CNE (3/4), A+
>*email: rogerg@cox.net
>*cell: 757-615-3355
>*Author of Malicious Mobile Code: Virus Protection for
Windows by O'Reilly
>*http://www.oreilly.com/catalog/malmobcode
>*Author of upcoming Honeypots for Windows (Apress)
>************************************************************
****************
>*****
>
>----- Original Message -----
>From: "MOHESOWA BYAS" <byasmohesowa@sbm.intnet.mu>
>To: <security-basics@securityfocus.com>
>Sent: Tuesday, July 15, 2003 1:20 AM
>Subject: RE: Deploying Microsoft patches
>
>
>> Can SUS be used to deploy Patch for IIS and IE?
>>
>> -----Original Message-----
>> From: Roger A. Grimes [mailto:rogerg@cox.net]
>> Sent: Saturday, July 12, 2003 01:08
>> To: security-basics@securityfocus.com
>> Subject: Re: Deploying Microsoft patches
>>
>>
>> The newest Software Assurance version of SUS can be used
to deploy service
>> packs.
>>
>> > You can't use SUS to deploy service packs.
>>
>>
>************************************************************
****************
>> ****
>> *Roger A. Grimes, Computer Security Consultant
>> *CPA, MCSE (NT/2000), CNE (3/4), A+
>> *email: rogerg@cox.net
>> *cell: 757-615-3355
>> *Author of Malicious Mobile Code: Virus Protection for
Windows by
>O'Reilly
>> *http://www.oreilly.com/catalog/malmobcode
>> *Author of upcoming Honeypots for Windows (Apress)
>>
>************************************************************
****************
>> *****
>>
>>
>> ----------------------------------------------------------
----------------
>-
>> Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader
by top analysts!
>> The Gartner Group just put Neoteris in the top of its
Magic Quadrant,
>> while InStat has confirmed Neoteris as the leader in
marketshare.
>>
>> Find out why, and see how you can get plug-n-play secure
remote access in
>> about an hour, with no client, server changes, or ongoing
maintenance.
>>
>> Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
>> ----------------------------------------------------------
----------------
>--
>> ###########################################
>>
>> This message has been scanned by F-Secure Anti-Virus for
Microsoft
>Exchange.
>> For more information, connect to http://www.F-Secure.com/
>>
>> ----------------------------------------------------------
----------------
>-
>> Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader
by top analysts!
>> The Gartner Group just put Neoteris in the top of its
Magic Quadrant,
>> while InStat has confirmed Neoteris as the leader in
marketshare.
>>
>> Find out why, and see how you can get plug-n-play secure
remote access in
>> about an hour, with no client, server changes, or ongoing
maintenance.
>>
>> Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
>> ----------------------------------------------------------
----------------
>--
>>
>>
>
>
>------------------------------------------------------------
---------------
>Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by
top analysts!
>The Gartner Group just put Neoteris in the top of its Magic
Quadrant,
>while InStat has confirmed Neoteris as the leader in
marketshare.
>
>Find out why, and see how you can get plug-n-play secure
remote access in
>about an hour, with no client, server changes, or ongoing
maintenance.
>
>Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
>------------------------------------------------------------
----------------
>
>
>
>------------------------------------------------------------
---------------
>------------------------------------------------------------
----------------
>
Doug Massey
Massey Technologies, Inc.
301-717-6404
---------------------------------------------------------------------------
----------------------------------------------------------------------------
- Previous message: David Gillett: "RE: ARP Spoof Question"
- Maybe in reply to: Ronish Mehta: "Deploying Microsoft patches"
- Next in thread: KOCHAR,GURPREET (HP-Singapore,ex1): "RE: Deploying Microsoft patches"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
