Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: MS Service Packs

From: "Shawn K. Hall (RA/Security)" <Security () ReliableAnswers com>
Date: Fri, 20 Jun 2003 12:52:14 -0400
There are a couple infection vectors inherent in the windows
auto-update mechanism. Please consider hard before setting it up. It
also only includes consumer and base service packs - not anything for
Office ( http://officeupdate.microsoft.com/ ) or IIS (for example).
For a more healthy system diagnostics use MBSA (
http://www.microsoft.com/technet/security/tools/Tools/MBSAhome.asp ),
which enables you to scan your system for *most* known flaws.

Hit windows update every Thursday afternoon, as that is when 99% of
the patches are released.

Regards,

Shawn K. Hall
http://ReliableAnswers.com/

'// ========================================================
The human mind is not a deep-freeze for storage but a forge
for production; it must be supplied with fuel, fired and
properly shaped.
 -- William A. Donaghy




-----Original Message-----
From: Alastair Cook [mailto:Alastair.Cook () crown uk com]
Sent: Friday, June 20, 2003 8:15 AM
To: 'security-basics () securityfocus com'
Subject: RE: MS Service Packs


Yep, and if you allow windows automatic updates, you'll be notified of
any
new patches as and when they are available.  This can be set to
download and
install automatically, though from experience I would strongly advise
to set
to review before installing.

Al


-----Original Message-----
From: David Olivier [mailto:Dolivier () yoweb co za]
Sent: 19 June 2003 16:54
To: 'phil groner'; 'security-basics () securityfocus com'

Well as far as I know, once you visit windows update, it will only
have you
install patches that you don't have installed. So I assume once
installing
SP3 and doing Windows Update, you should have everything.

-----Original Message-----
From: phil groner [mailto:labodentnga () qc aira com]
Sent: 19 June 2003 06:48
To: Thad Horak; security-basics () securityfocus com
Subject: Re: MS Service Packs


From my experience Once you' ve installed SP3  you have to run windows

update so that you can get all the patches starting from when SP3 was
released.
----- Original Message -----
From: "Thad Horak" <thadhorak () yahoo com>
To: <security-basics () securityfocus com>
Sent: Wednesday, June 18, 2003 11:59 AM
Subject: MS Service Packs



All,

Has anyone had any luck decyphering what security fixes are include

in

what MS service packs. For example, if I apply SP3 to a W2K Server
will this patch all security issues found for the base OS up until

the

release of SP3. What about IIS/SMTP/FTP, etc fixes. Do I need to
install these Qfixes and rollups seperately? I've looked through the
readme for the SP, but it's not that clear. Hoping someone on the

list

has tackled this and can shed some light. Many thanks.

Thad





---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: