RE: Windows SUS Question

["Raoul Armfield" <armfield () amnh org>]

:-----Original Message-----
:From: Dan Denton [mailto:ddenton () PAYLESSOFFICE com] 
:Sent: Thursday, April 15, 2004 12:59 PM
:To: Chris Burton; Leon; security-basics () securityfocus com
:Subject: RE: Windows SUS Question
:
:As I told Leon before, we use SUS on a non-domain win2k server to
:provide patches to 35 workstations, who are on a domain. Using either
:manual registry hacks or GPEDIT.msc to set the location of the SUS
:server gets around the use of domain policies. While you have to use
:GPEDIT.msc on each machine individually, it is more fool-proof than
:editing the registry manually.
:
I agree that is is a more foolproof way of handling it but, when you are
in our situation 800+ computers it is not that simple to touch each
individual workstation to setup GPEDIT.msc.  So we are looking at ways
to automate it using a batch file or registry import.  We considered
using Vbscript however, someone sent me /suggested a .reg file that I am
testing on different OSes that should work beautifully.

 

Raoul


---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off 
any course! All of our class sizes are guaranteed to be 10 students or less 
to facilitate one-on-one interaction with one of our expert instructors. 
Attend a course taught by an expert instructor with years of in-the-field 
pen testing experience in our state of the art hacking lab. Master the skills 
of an Ethical Hacker to better assess the security of your organization. 
Visit us at: 
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------