Security Basics mailing list archives

RE: Windows SUS Question

From: "Shawn" <shawnebbs () sympatico ca>
Date: Thu, 15 Apr 2004 13:52:15 -0400

We have it setup in our network...

On the desktops and servers...go to start run...gpedit.msc

And edit the windows update service..and configure it to use your SUS
server..


ciao

Shawn


-----Original Message-----
From: Tom Milliner [mailto:tom.milliner () verizon net] 
Sent: Wednesday, April 14, 2004 10:30 PM
To: 'Leon'; security-basics () securityfocus com
Subject: RE: Windows SUS Question


I am testing SUS now.  I think it works without the
user being included in the local administrators group
(unlike Windows Update, which requires that an administrator
do updates).

I think SUS works via GPO; everything I have read seems to
indicate that a SUS GPO can be configured for an Active
Directory container (domain, domain controllers, or an
OU which contains computers).

In my setup, I think a user in my test OU can still use
Windows Update manually.  I think there are ways that
could be stopped, but I haven't researched it fully.

The upcoming upgrade for SUS (Windows Update Service or
WUS) will improve the setup.  I am giving SUS a try-out now
because I want to have the chance to test the up-coming
WinXP SP2 before it is automatically installed via an
update service.

Sorry that I cannot be more precise...that is all I 
know at this stage of my testing. 


 
Tom Milliner, CPA, MCSE
2404 Summer Place Dr.
Irving, TX  75062
(214) 540-2741
tom.milliner () verizon net

-----Original Message-----
From: Leon [mailto:roastin () yahoo com] 
Sent: Wednesday, April 14, 2004 1:50 PM
To: security-basics () securityfocus com
Subject: Windows SUS Question

Hi everyone,

My question regarding SUS is dealing with security
permissions.  Lets say 20 servers are part of a work
group; is their still a way to use SUS under the
context of the local system account or something
similar to be able to centrally deploy patches in a
de-centralizied network environment.  I have a
workgroup that needs to have patches deployed and I
would prefer to use something like SUS which is
central as opposed to something like Hfnetcheck pro.

Thanks in advance,

Leon


        
                
__________________________________
Do you Yahoo!?
Yahoo! Tax Center - File online by April 15th
http://taxes.yahoo.com/filing.html

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the
skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

Current thread:

Windows SUS Question Leon (Apr 14)
- Re: Windows SUS Question Chris Burton (Apr 15)
- RE: Windows SUS Question Tom Milliner (Apr 15)
  - RE: Windows SUS Question Shawn (Apr 16)
- RE: Windows SUS Question Carlton Foster (Apr 15)
- RE: Windows SUS Question Raoul Armfield (Apr 15)
- RE: Windows SUS Question Alex Lomas (Apr 15)
  - Re: Windows SUS Question paralleluniverse (Apr 16)
    - RE: Windows SUS Question Alex Lomas (Apr 16)
    - RE: Windows SUS Question Nagy Gergely (Apr 19)
- <Possible follow-ups>
- RE: Windows SUS Question Andrew Shore (Apr 15)
  - RE: Windows SUS Question Raoul Armfield (Apr 16)
  - RE: Windows SUS Question Glenn Pearl (Apr 16)
- RE: Windows SUS Question Rojo Ramon, Ricardo (Apr 15)

(Thread continues...)