RE: Microsoft SUS on Apache?

["Aditya [ Aditya Lalit Deshmukh ]" <aditya () online gateway technolabs net>]

lets consider your patch managment problem in a windows env:-

ms issues patches that are good but it issues numerous ones that are avilabale as a compressed xml file in a cab format 
at 

http://download.microsoft.com/download/xml/security/1.0/NT5/EN-US/mssecure.cab

now what you do with that depends upon you here are some options avilable 

write a perl script or use some scripting language that prases the file and checks for the registery entries ( google 
around for this and you will find how to do this, ie read the reg and prase a xml file )

that way you can manage your system and fix it if anything breaks ... this is the most flexible thing possible without 
great overhead 

also if possible why dont you try to move to samba on solaris it works great in windows env and had good uptimes as 
well a good env for running perl scripts.

however if this is not possible then you could also use something like gfi.com lanscaner that checks for the missing 
patches but only on the client side ( u  can use it on the server side with the following  requirments 

1. the remote reg serv should be running 
2. admin access necessary 

this is not what you are exactly looking for but goes pretty close  http://languard.com

-aditya


-----Original Message-----
From: jburzenski () americanhm com [mailto:jburzenski () americanhm com]
Sent: Friday, January 09, 2004 9:03 PM
To: security-basics () securityfocus com
Subject: Microsoft SUS on Apache?


Does anyone have any experience trying to get SUS running on an open source
web server?  

I haven't looked at the license agreement for SUS but I would imagine there
is language in there making this illegal or restricted.  Anyone read it over
recently who can comment on this?

Justifying the cost for SUS (free) is easy until you realize you have to pay
for a Microsoft Server license to run it. 

On this subject.  Does anyone know of a distributed open source patch
management system that works well in a windows enterprise?  

Thanks.

Jason

---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any 
course! All of our class sizes are guaranteed to be 10 students or less. 
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention, 
and many other technical hands on courses. 
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off 
any course!  
----------------------------------------------------------------------------


________________________________________________________________________
Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

---------------------------------------------------------------------------
Ethical Hacking at InfoSec Institute. Mention this ad and get $720 off any
course! All of our class sizes are guaranteed to be 10 students or less.
We provide Ethical Hacking, Advanced Ethical Hacking, Intrusion Prevention,
and many other technical hands on courses.
Visit us at http://www.infosecinstitute.com/securityfocus to get $720 off
any course!
----------------------------------------------------------------------------