This applies to Win2K only.
$icrosoft has always issued Security Hotfixes for its OS's since NT 3.51, however, it was difficult to get them all updated on a server or workstation...it takes time.
So $icrosoft has written a small application which will check your Win2k OS and tell you what Hotfixes are required...then you can go and get them.
Go
here to get the application and read up about it.
To get the specific HOTFIXES go here and search for the specific number e.g Q285851 (you may have to try with upper or lower case as sometimes q285851 will not work, but Q will)
WARNING!!!!!!!!
If you change or add any components to your system you will need to reapply the hotfixes
You MUST re-boot after adding EACH hotfix.
PEACE!!!!!!!!!!!!!!!!!!!!!!
:2cool: :2cool: :2cool:
Win2k Security Hotfixes
Win2k Security Hotfixes
A man with a watch knows what time it is. A man with two watches is never sure.
-
chimdogger
- Posts: 2785
- Joined: Fri Jan 26, 2001 12:00 pm
Thanks
Just what I was looking for...
Thanks dude!
Chimmy
Thanks dude!
Chimmy
-
Juggernaut
- Senior Member
- Posts: 1645
- Joined: Fri Aug 11, 2000 12:00 am
- Location: Parts Unknown
-
Juggernaut
- Senior Member
- Posts: 1645
- Joined: Fri Aug 11, 2000 12:00 am
- Location: Parts Unknown
That is true but I'd prefer to reboot myself after each one just to make sure they get installed correctly. Installing mulitple hotfixes and then rebooting with Qchain may still cause a problem, atleast I think it could...u never know...especially if a couple of the fixes are closely related and they want to change the same files...I wouldn't trust it myself
It can't rain all the time...
Not trying to be uncivil or ungrateful...
But QChain is more of a tool meant for business/enterprise admins.
I learned of it from a friend of mine who is an admin responsible for (up to) 5000 Win2k PCs. It is definitely much more reliable to write a script to install the Win2k Security Patches, QChain, then reboot than to reboot 5000 PC's 9+ times to get what Hfnetchk recommends that you need.
And with 10-15 Win2k (and growing) PCs and Servers at work, it definitely cuts down on the downtime.
QChain, to the best of my knowledge, was released once and never patched. I'm certain that the people who discover these security holes would have noticed if M$'s tool to install their patches was not working LONG before this.
Minvaren
I learned of it from a friend of mine who is an admin responsible for (up to) 5000 Win2k PCs. It is definitely much more reliable to write a script to install the Win2k Security Patches, QChain, then reboot than to reboot 5000 PC's 9+ times to get what Hfnetchk recommends that you need.
And with 10-15 Win2k (and growing) PCs and Servers at work, it definitely cuts down on the downtime.
QChain, to the best of my knowledge, was released once and never patched. I'm certain that the people who discover these security holes would have noticed if M$'s tool to install their patches was not working LONG before this.
Minvaren
-
MousePotato
- Regular Member
- Posts: 165
- Joined: Mon Aug 13, 2001 11:44 pm
- Location: NS,Canada
in addition to fredra's links , heres one also, where it will scan your system (win2k) for you,online, if you prefer not to download any setup programs .
http://www.microsoft.com/technet/mpsa/start.asp
Microsoft Personal Security Advisor, in addition, it also scans for all security weaknesses your system might have and gives a detailed report on how to repair them.
http://www.microsoft.com/technet/mpsa/start.asp
Microsoft Personal Security Advisor, in addition, it also scans for all security weaknesses your system might have and gives a detailed report on how to repair them.
Hey MousePotato
Good link (I had forgotten about that one).... LOL
I have some disagreements with their settings in IE Security Tab.
If you have it set on Custom with the required settings (Medium or High), it still gives you the "Potential Risk" factor. Only when you go in and change it to "Default Settings" that it will give you the green circle.
In other words, change it to what they default to, not to Custom with the recommended setting..... yeah, I AM being picky.
BTW...XP does the same thing with IE6 but it is much stronger in it's default settings.
Again, Thanks for bringing that link to our attention...great post pal.
PEACE!!!!!
:2cool: :2cool: :2cool: :2cool:
Good link (I had forgotten about that one).... LOL
I have some disagreements with their settings in IE Security Tab.
If you have it set on Custom with the required settings (Medium or High), it still gives you the "Potential Risk" factor. Only when you go in and change it to "Default Settings" that it will give you the green circle.
In other words, change it to what they default to, not to Custom with the recommended setting..... yeah, I AM being picky.
BTW...XP does the same thing with IE6 but it is much stronger in it's default settings.
Again, Thanks for bringing that link to our attention...great post pal.
PEACE!!!!!
:2cool: :2cool: :2cool: :2cool:
A man with a watch knows what time it is. A man with two watches is never sure.
-
Kirby Smith
- Member
- Posts: 84
- Joined: Fri Jun 01, 2001 6:42 pm
- Location: Derry, NH
Thanks Minvaren
QChain saved me a bunch of rebooting time, even after belatedly installing SP2 to cut the number of claimed needed hotfixes. Although none of the remaining 8 hotfix articles seemed to apply to my case, I installed them anyway and a script with QChain worked like a charm.
kirby
kirby