Title: Message
Agreed joe, it would take you away from other
useful things *grin*
However, I've been re-reading the posts, and it
sounds like a damn good idea. With the current virii swarming around, we
are constantly being hounded as to the EXACT patch state of all servers on the
network
Title: Message
Definitely. And I don't want to put out a free tool that people come to
depend on that requires constant interaction from me. That doesn't make sense
from any standpoint.
joe
-Original Message-From:
[EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]
On Behal
Title: Message
Definitely, that is one of the reasons why I don't want to come up with a
method of figuring out the patches, would rather leverage something they have
and "parse" it. That way if there is a problem in the hotfixes ascertained, it
isn't my problem, it is a problem with an MS to
I would visualize pulling the hotfixes (method purposely undetermined at
this point :oP ) and then normalizing and sorting it, then posting it.
If the string is identical AD should admit it did an update but not
really do it and go on its way. Alternatively I could read the attribute
from AD and d
You'd have to pull the attribute back to the client, perform the sort, then
repopulate the string.
I guess it depends on the way the attrib update would be one - complete
refresh or incremental additon. If it's a complete refresh for every scan
then its not a big deal.
---
Why do you feel it would slow updates or are you simply thinking the
time to sort it?
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Roger Seielstad
Sent: Saturday, September 13, 2003 10:04 AM
To: [EMAIL PROTECTED]
Subject: RE: [ActiveDir] Any AD GURUS
Microsoft Systems Management Server. It will takes your 2 days down to 6
hours or less. When a serious vulnerability is found and an attack is
initiated, 2 days is too long.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of David Adner
Sent: Saturday, Sep
Our workstation team has been using MBSAFU, which has garnered some respect
and press on NTBugTraq. Used to be called HFNetFU, but was renamed at the
request (kind request, BTW) of Shavlik.
It's a nice tool because it's not terribly hard to set up, is very efficient
at detecting systems that need
Just curious, due to the discussion on trying to verify patched systems and
such, but did anyone actually use 3rd party or even MS's patching
software? Or did you use custom scripts, manually updates, etc?
I ask because we had budgeted for patching software but management has
decided we're too
Title: Message
I
believe I mentioned that exact issue elsewhere. There is at least a hint of
security built into SOAP - unlike RPC which comes from the "trust everyone"
days
Roger
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. S
Title: Message
I
never said it was a *good* place to look, but its a good start,
IMO.
Like
many of my issues with developers these days, it comes down to consistency.
There needs to be a consistent way to track these things, and the only place
that's going to come from is Microsoft.
-
Title: Message
For
some reason, my InfoSec (who is damn good to begin with) guy likes working with
me.. Haven't figured that out yet...
Roger
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr. Systems Administrator Inovis Inc.
--
Between what you told us about the field size (>2k) plus Tony's[1] comment
about using comma separated rather than semicolon separated values, I think
you've got a good first hack at it.
Would it make sense to store the AD attrib's content in a pre-sorted order?
Benefits retrieval but slows update
Title: Message
Deji,
Not sure what you mean I'm not indicating
anything about XP - I'm just talking about the 6 - 8 wierd 'maybe it's patched,
maybe it's not patched' issues that are cited when running MBSA against Win2k
SP3.
XP - yeah, there might be problems. But I've
got 500 Win
Title: Message
That
makes perfect sense. I guess I'm wondering how complex that would be for Joe's
idea, though. It would require the AD updater to itself require very regular
updates.
--
Roger D. Seielstad -
MTS MCSE MS-MVP Sr
15 matches
Mail list logo
