MS Updates compromise LAN ?

Discussion in 'Computer Security' started by hacked @oh-shoot.com, Aug 27, 2004.

  1. Now hear this..

    Recently.. ran SP4 on some Win2k servers and workstations.. and a
    number of UPDATES as identified in `Windows Update' function. Nineteen
    in all.. however pulled LAN cable this time (after download phase).

    It took a LONG TIME to complete 19 updates.. and then after reboot.. 9
    more updates.. some of them the SAME. This indicates updates cannot
    complete unless reporting outside the local network.

    Due to this.. I'd suggest that MS Updates can compromise your LAN !!
    hacked @oh-shoot.com, Aug 27, 2004
    #1
    1. Advertising

  2. <hacked @oh-shoot.com> wrote in message
    news:...
    >
    > Now hear this..
    >
    > Recently.. ran SP4 on some Win2k servers and workstations.. and a
    > number of UPDATES as identified in `Windows Update' function. Nineteen
    > in all.. however pulled LAN cable this time (after download phase).
    >
    > It took a LONG TIME to complete 19 updates.. and then after reboot.. 9
    > more updates.. some of them the SAME. This indicates updates cannot
    > complete unless reporting outside the local network.
    >
    > Due to this.. I'd suggest that MS Updates can compromise your LAN !!


    One of the reasons I don't use Windows Update. I always hand pick my
    updates. Currently SP4 and the critical updates for the RPC exploit and
    LSASS exploit (apart of MS04-011) is all you really need to be safe(er).
    All of the updates in the world isn't a replacement for a good Personal
    Firewall software, Antivirus, and Email filter.

    --
    Richard S. Westmoreland
    http://www.antisource.com
    Richard S. Westmoreland, Aug 27, 2004
    #2
    1. Advertising

  3. On Fri, 27 Aug 2004 11:48:01 -0400, "Richard S. Westmoreland"
    <> brought the following to our attention:

    ><hacked @oh-shoot.com> wrote in message
    >news:...
    >>
    >> Now hear this..
    >>
    >> Recently.. ran SP4 on some Win2k servers and workstations.. and a
    >> number of UPDATES as identified in `Windows Update' function. Nineteen
    >> in all.. however pulled LAN cable this time (after download phase).
    >>
    >> It took a LONG TIME to complete 19 updates.. and then after reboot.. 9
    >> more updates.. some of them the SAME. This indicates updates cannot
    >> complete unless reporting outside the local network.
    >>
    >> Due to this.. I'd suggest that MS Updates can compromise your LAN !!

    >
    >One of the reasons I don't use Windows Update. I always hand pick my
    >updates. Currently SP4 and the critical updates for the RPC exploit and
    >LSASS exploit (apart of MS04-011) is all you really need to be safe(er).
    >All of the updates in the world isn't a replacement for a good Personal
    >Firewall software, Antivirus, and Email filter.


    Ok.. have another Win2000 box that called for 9 security updates..
    only this time I'll run a little experiment and see which ones report
    to a remote host.. or at least require some outgoing traffic to
    install successfully.
    hacked @oh-shoot.com, Sep 2, 2004
    #3
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. AeoN
    Replies:
    0
    Views:
    425
  2. Guenter Fieblinger

    Canon PRO1/ sensor-lens compromise done right?

    Guenter Fieblinger, Feb 9, 2004, in forum: Digital Photography
    Replies:
    21
    Views:
    903
    Guenter Fieblinger
    Mar 2, 2004
  3. Allan
    Replies:
    0
    Views:
    427
    Allan
    Mar 24, 2005
  4. Allan
    Replies:
    0
    Views:
    396
    Allan
    Jul 27, 2005
  5. winged

    personal information compromise

    winged, Mar 10, 2005, in forum: Computer Security
    Replies:
    3
    Views:
    468
    Jim Watt
    Mar 11, 2005
Loading...

Share This Page