Full Disclosure mailing list archives

Re: How to patch your systems (was Re: DCOM RPC exploit)


From: Bryon Roche <kain () kain org>
Date: Mon, 28 Jul 2003 14:32:53 -0500

On Mon, Jul 28, 2003 at 02:12:31PM -0400, Valdis.Kletnieks () vt edu wrote:
On Mon, 28 Jul 2003 14:08:06 EDT, zorkshin () tampabay rr com said:
If you use Active Directory, why not assign the patch package to all
computers? Shouldn't this be quite easy ?

Yeah.. You assign the patch package, push it out - and find out that the
patch doesn't actually *make* it to all the machines because of the issue
identified in the KB article.  That's the *POINT*.

Please excuse the nt4-ism, but:
execution from netlogon script to install patch, force reboot on host to load patch?


-- 
Bryon Roche
Professional {Developer,Linux/MS Consulting,Software Architect}
<kain () kain org>
PGP Key Fingerprint: FE0D EC23 6464 726A CD54  48D3 04AD 86FE 6878 ABD5
Fortuna est caeca

Attachment: _bin
Description:


Current thread: