|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: [admin] New Security Tool for IIS 5.0
From: minimalist
AHNET.NETDate: Sat Sep 02 2000 - 11:20:34 CDT
- Next message: Ussr Labs: "Re: Remote DoS Attack in Eeye Iris 1.01 and SpyNet CaptureNet v3.12 Vulnerability"
- Previous message: COVERT Labs: "[COVERT-2000-10] Windows NetBIOS Unsolicited Cache Corruption"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
ERROR:
You (securemicrosoft.com) are not subscribed to this list.
SOLUTION:
Send a message to minimalistahnet.net with a subject
of 'info' (no quotes) for information about subscribing.
===========================================================================
-----BEGIN PGP SIGNED MESSAGE-----
Hi All -
We're pleased to announce that we've just released a new tool that
will help administrators ensure that their servers are up to date on
all IIS 5.0 security patches. The tool, called HFCheck, is available
for download at http://www.microsoft.com/technet/security/tools.asp.
It works by comparing the IIS 5.0 patches installed on a server
against
a database of available ones, and advising whenever it finds that a
patch isn't installed.
The tool provides quite a bit of flexibility:
- It can be run on-demand or, by using the Scheduler, run at
predetermined intervals.
- It can check the patch status on the local machine, or on any
remote machine on which you have administrative privileges.
- When it finds a patch that isn't installed on the machine, it can
display a pop-up dialogue or write to the event log.
- It can consult the patch database hosted on the Microsoft web
site, or can use a locally-hosted copy that you've downloaded.
This is a version 1.0 tool. The documentation discusses the tool's
current limitations, the most important of which is that it only
provides information on IIS 5.0 patches. However, we'd like to get
customer feedback and develop an advanced version that works for
other products and provides additional features. We'll look forward
to hearing your comments and suggestions.
Regards,
Scott Culp
Security Program Manager
Microsoft Security Response Center
-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.3
iQEVAwUBObA/yI0ZSRQxA/UrAQGfbgf+KZ/KjPBtICuQkh2Qg4WxB7sNDgojrLkH
oVGIc4WULGwz8DEkXoSOQGHkL3Jt6AwqSPn35QcjyPm2jNYXWPoC7gwizoGgKqLx
e05EyUguyef2n61PTNnYOpOQQAreLlRHUZCbIDVzUUC0Zds2uSvp8gJfWPN1RmN8
TukbLyHwhiA1sUk+Pr5mXg3ufUDgwORaWB+oXj9b946hTGPDsaVsGlebvH31H35n
LoPz/kXhFX0fABV/7IjGQjGtLy/wJcqZgAL4bOP/CPNStqZ2VPUWHKLFWZ6sxVEn
kkPZ68Hjf7e1tKnBlB1j1DBU4hgkUx/SsXWCtzOFAkEz2m2Ewb5qnw==
=fyw9
-----END PGP SIGNATURE-----
_____________________________________________________________________
** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice"
** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST"
SEND ALL COMMANDS TO: listservlistserv.ntsecurity.net
_____________________________________________________________________
** TO UNSUBSCRIBE, send the command "UNSUBSCRIBE win2ksecadvice"
** FOR A WEEKLY DIGEST, send the command "SET win2ksecadvice DIGEST"
SEND ALL COMMANDS TO: listservlistserv.ntsecurity.net
- Next message: Ussr Labs: "Re: Remote DoS Attack in Eeye Iris 1.01 and SpyNet CaptureNet v3.12 Vulnerability"
- Previous message: COVERT Labs: "[COVERT-2000-10] Windows NetBIOS Unsolicited Cache Corruption"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]