Muhamad, MBSA is based off of HfNetchk. As such, it's "target" install section is the Security Bulletins section rather than Windows Update. While it *does* detect items often installed via Windows Update *and* replaces the Personal Security Advisor, the tool checks much deeper than the analysis tools used by Windows Update.
It does still need a good bit of work (although I can't complain *too* much about a tool that errs on the side of caution...i.e. even if a fix doesn't apply, it still fails the server if the fix isn't installed), but it looks like it might make for a good utility in future revisions. Charlie Muhammad Faisal Rauf Danka wrote: > Ahem, basically MBSA expects that everyone should install patches/hotfixes/whatever >via Windows Update option. Unless it's installed via windows update option, it's not >installed at all according to MBSA, so in other words, It's just messy. > Maybe future versions of MBSA won't act the same. > > Regards, > --------- > Muhammad Faisal Rauf Danka > > Chief Technology Officer > Gem Internet Services (Pvt) Ltd. > web: www.gem.net.pk > voice: 92-021-111-GEMNET > > Chief Security Analyst > Applied Technology Research Center (ATRC) > web: www.atrc.net.pk > voice: 92-021-4548323, 92-021-4546077 > > "Great is the Art of beginning, but Greater is the Art of ending. " > > ------BEGIN GEEK CODE BLOCK---- > Version: 3.1 > GCS/CM/P/TW d- s: !a C++ B@ L$ S$ U+++ > P+ L+++ E--- W+ N+ o+ K- w-- O- PS PE- Y- > PGP+ t+ X R tv+ b++ DI+ D G e++ h! r+ y+ > ------END GEEK CODE BLOCK------ > > --- <[EMAIL PROTECTED]> wrote: > > > > > >I've had a chance to use this new tool on my three > >servers. > > > >1. It told me I had 3 hotfixes missing,MS02001, 016, and > >022. When downloading patch MS02001, it says that this > >patch is part of the Security Rollup Package 1. I > >installed this package on all w2000 machines as well as my > >3 w2000 servers when it was first released. Why can it not > >see that it is installed already? > > > >2. I downloaded and installed the other two hotfixes, > >rebooted, and reran the scanner. The hotfixes still show > >as not being installed. > > > >3. I've changed other settings it told me were a risk, yet > >it never changes it's analysis when run again. > > > >Has anyone else encountered these and similar issues? > > > >thanks > > > >dp > > _____________________________________________________________ > --------------------------- > [ATTITUDEX.COM] > http://www.attitudex.com/ > --------------------------- > > _____________________________________________________________ > Run a small business? Then you need professional email like [EMAIL PROTECTED] from >Everyone.net http://www.everyone.net?tag -- ************************************************************************************* E-mail correspondence to and from this address may be subject to the North Carolina Public Records Law and may be disclosed to third parties. *************************************************************************************
