ITrain Homepage

Site Directory
Membership
Train-the-Trainer
Trainer Certification
Certified Training Materials
ITinfo E-zine
Responsible Training
White Papers
Trainer Resources
What's New
Speaking Engagements
Onsite Training
ITrain Gear



Popular Links
Speaking Engagements
Training Manuals
Certification
Train the Trainer
The Training Book
Technical Writing
Privacy Policy

Print this document

Google
Web ITrain.org

Windows Users Confused

Answers from security analyzers conflict

ITinfo Sponsor

ERROR: Random File Unopenable

ERROR: Random File Unopenable

The random file, as specified in the $random_file perl variable was unopenable.

The file was not found on your file system. This means that it has either not been created or the path you have specified in $trrandom_file is incorrect.

Microsoft Security Programs Yield Conflicting Results

by Dave Murphy
ISSN 1535-3613

Dave Murphy, ITrain founder Most users of Microsoft Windows are familiar with the Windows Update (WU) feature that scans their personal computer and compares its configuration with patches and updates available from Microsoft's Web site. Many system administrators have noticed that the free Microsoft Baseline Security Analyzer (MBSA), reported in this newsletter a few days ago, reports security lapses in system configurations even though the WU reports the system is fully patched and updated.

During a scan of the system, WU reviews the system registry for the presence of installed security patches. If the registry key for a suggested patch is noted, WU does not offer the user the option of downloading and installing the patch. However, users are finding that incomplete patch downloads or installation snags are recording the registry keys even though the patches aren't properly installed.

Using a different technique, MBSA and HFNetChk, another free scanning tool on which MBSA is based, actually scan the system's hard drive for the presence of patches and report any that are missing. However, these programs only search for patches that were released in conjunction with a Microsoft security bulletin.

The bottom line, security-conscious users are getting mixed messages. WU may report their system is fine, MBSA or HFNetChk may report a different answer, and in neither case is the user guaranteed that the system is fully patched and updated.

According to eWeek magazine, Microsoft officials acknowledge the confusion but said much of it has been triggered by two patches—MS02-008 and MS02-009—which were updated after their release and have caused WU and MBSA to report conflicting results. But the company is working to reconcile the differences among the tools.

Dave's Opinion

I noticed the discrepancy between WU and MBSA a two weeks ago, and I figured it was a random anomaly. That is until I saw the problem pop up on other Windows systems. Today I've read a number of articles from IT authors that they, too, are having problems ensuring their systems are secure and ready for the net.

Call for Comments

What do you think? Leave your comments on the message center.

References

Microsoft
eWeek
Message Center

Related Articles

Microsoft Releases Free Security Analyzer

Subscribe to ITinfo.
Receive computing and Internet news & tips
by subscribing to the ITinfo information service.
Type your Internet email address in the form, and click "Subscribe."
Email Address:

Previous issues are on our website at http://itrain.org/itinfo/.

International Association of Information Technology Trainers
PMB 616
6030-M Marshalee Dr
Elkridge, MD 21075-5987

410.567.5366
1.888.290.6200
fax: 801.650.0423
Membership Director: member@itrain.org

Return to ITrain Homepage

Copyright © 2002 International Association of Information Technology Trainers, Ltd., All Rights Reserved

http://itrain.org/itinfo/2002/it020425.html
updated April 25, 2002