*
  Home FORUM Help Search Calendar Members Login Register  
KillazInc : Forum : Tech Support and Tips : Software (Moderator: anomaly) : Major XP, 2003, 2000 vulnerability found, patch yer stuff!
9 Guests, 0 Users
Welcome, Guest. Please login or register.
Did you miss your activation email?
September 07, 2010, 10:45:50 am

Login with username, password and session length
Pages: [1]   Go Down
« previous next »
  Print  
Author Topic: Major XP, 2003, 2000 vulnerability found, patch yer stuff!  (Read 251 times)
Stormgren
=-[kI]-= Elder
*

Justice! +12/-1
Offline Posts: 127


F10 Mastah


WWW

Ignore
« on: October 24, 2008, 10:16:12 am »

Article is here:  http://www.securityfocus.com/brief/844

Advisory is here:  http://www.microsoft.com/technet/security/Bulletin/MS08-067.mspx

Figured I'd help spread the word, this looks like another nasty one.
Logged
For a good time, call 989-272-7425
My Left4Dead Server status pages: http://chavez.bendorius.net/l4d
anomaly
wtf?
Narc
*

Justice! +49/-14
Offline Posts: 4531


looking for the path of least resistance...
« Reply #1 on: October 24, 2008, 10:40:45 am »
thanks.... notified my IT manager

installing patch now....
Logged
every answer discovered will exponentially raise more questions.
BoneyOne
=-[kI Clan]-=
*

Justice! +4/-0
Offline Posts: 263




Ignore
« Reply #2 on: October 24, 2008, 12:54:53 pm »
Yah....fun stuff. I got to poke fun at my girlfriend (she's a Windows Server Admin) about it (I use Linux for pretty much everything) when she started telling me how she (and her team of 3 others) have to patch some 230 servers at her work.

 2funny
Logged
DAwG
=-[kI Clan]-=
*

Justice! +33/-61
Offline Posts: 2219





Ignore
« Reply #3 on: October 24, 2008, 01:24:35 pm »
shouldn't be too hard, that can easily be accomplished remotely
Logged
BoneyOne
=-[kI Clan]-=
*

Justice! +4/-0
Offline Posts: 263




Ignore
« Reply #4 on: October 24, 2008, 03:09:30 pm »
Nah, not hard at all. Just takes time out of ones weekend to remote into the servers install the patch, reboot them, make sure all the services and programs needed start like they should. So your probably talking for her at least 5-6 hours total out of her weekend she has to spend remoted in to work doing updates.

Of course Linux has it's need for updates too though. Just fun to pick on her about it all.

I'm curious just how many people and company's out there aren't going to get their systems patched and a new worm gets released taking advantage of this hole.
Logged
Stormgren
=-[kI]-= Elder
*

Justice! +12/-1
Offline Posts: 127


F10 Mastah


WWW

Ignore
« Reply #5 on: October 24, 2008, 04:47:12 pm »
Quote from: DAwG on October 24, 2008, 01:24:35 pm
shouldn't be too hard, that can easily be accomplished remotely

Have you ever had to patch that many servers by hand via remote desktop?  While the actual steps aren't that hard, it's a massive pain in the ass to make sure you didn't miss something.  It's not trivial by any means.

Better to shove the patch to a WSUS server and let that do all the heavy lifting for you.  Smiley
Logged
For a good time, call 989-272-7425
My Left4Dead Server status pages: http://chavez.bendorius.net/l4d
DAwG
=-[kI Clan]-=
*

Justice! +33/-61
Offline Posts: 2219





Ignore
« Reply #6 on: October 24, 2008, 06:25:44 pm »
we were doing it on a much smaller scale on vmware.  Just roll it out to the various groups via the DC and tell them to update, I already forgot how to do it though, in one ear out the other  rolleyes
« Last Edit: October 24, 2008, 06:27:28 pm by DAwG » Logged
Harry Lee Smith
Witty Custom Title
=-[kI Clan]-=
*

Justice! +17/-6
Offline Posts: 2037


I reject your reality and substitute my own.




Ignore
« Reply #7 on: January 09, 2009, 03:54:46 pm »
Ever hear of WSUS?Huh
Logged

Pages: [1]   Go Up
  Print  
« previous next »
  
Jump to:  

TinyPortal v1.0 beta 4 © Bloc
Powered by SMF 1.1.11 | SMF © 2006-2008, Simple Machines LLC

Alienation design by Bloc | XHTML | CSS
Page created in 0.112 seconds with 33 queries.