The Artima Developer Community
Articles | News | Weblogs | Books | Forums
Artima Forums | Articles | Weblogs | Java Answers | News
Sponsored Link

.NET Buzz Forum
Enterprise Update Scan Tools

0 replies on 1 page.

Welcome Guest
  Sign In

Go back to the topic listing  Back to Topic List Click to reply to this topic  Reply to this Topic Click to search messages in this forum  Search Forum Click for a threaded view of the topic  Threaded View   
Previous Topic   Next Topic
Flat View: This topic has 0 replies on 1 page
Peter G Provost

Posts: 849
Nickname: pprovost
Registered: Aug, 2003

Peter G Provost is a Solution Architect for Interlink Group in Denver, CO.
Enterprise Update Scan Tools Posted: Aug 28, 2005 3:40 PM
Reply to this message Reply

This post originated from an RSS feed registered with .NET Buzz by Peter G Provost.
Original Post: Enterprise Update Scan Tools
Feed Title: Peter Provost's Geek Noise
Feed URL: /error.aspx?aspxerrorpath=/Rss.aspx
Feed Description: Technology news, development articles, Microsoft .NET, and other stuff... 		Latest .NET Buzz Posts
Latest .NET Buzz Posts by Peter G Provost
Latest Posts From Peter Provost's Geek Noise

Advertisement

<rant>

Here at Microsoft, the IT people frequently scan every computer connected to the corporate network, checking to see if it has all the required patches and whatnot. This is a good idea and not something I would ever say I was opposed to. But strangely, there are a few patches that Microsoft Update, MBSA, etc. can not detect. And if they can't detect them, it makes it rather difficult to know if you are fully patched.

And here is where my rant begins... you wouldn't believe how much time in the past 6 months I've spent on the phone with tech support after getting my port turned off. You see, I have a Virtual Server running in my office. I use it to host anything new and exciting that I'm unwilling to install on my laptop. In the run up to Whidbey Beta 2, I was taking fresh drops every couple of days and putting them in fresh new guest images. I've been doing similar things with Vista (formerly Longhorn), Avalon, Indigo, etc. And apparently my base image, which I made back in late '05, wasn't patched for MS05-009 (the PNG exploit).

So every time I brought a new image up, I either a) had to remember which download to get to fix the base image or b) wait for them to shut my port down.

(Yes, yes... you are all now wondering why I didn't just fix the base image, but there is a certain amount of laziness inertia to contend with here...)

Each time they shut my port down I have to spent 10-15 minutes I'm on the phone with corporate IT support. And each time, I ask, "Hey, how can I detect these things? I'm fully patched as far as I can tell. There has to be a way for me to know this without you guys shutting down my port."

But they always come back with, "Well, the only way is to check this EXE for its version, do a search for that DLL and check its version, look in this registry key, etc."

I thought Windows Update (and now Microsoft Update) were supposed to solve this for us... but apparently there is something about checking file versions that it can't do.

Now for the worst part... It turns out that there are scan tools for all of these "undetectable" issues. They just aren't advertised much (and are apparently unknown by our own tech support people). So, if you want to be 100% sure that you don't have any of these issues, go and get the Enterprise Update Scan Tools from Microsoft Downloads and scan your machines. They aren't quite as easy to use as MBSA and Microsoft Update, but there aren't many of them and you won't have to do them very often.

</rant>

Read: Enterprise Update Scan Tools

Topic: What if everything could be queried with SQL? Previous Topic   Next Topic Topic: 10 Reasons Rails Does Pluralization
Sponsored Links


Google
  Web Artima.com   

Copyright © 1996-2019 Artima, Inc. All Rights Reserved. - Privacy Policy - Terms of Use