Alex wrote:
> I've got a W2K web server that sits in a DMZ and, as such, all non-essential
> ports are locked down and the few open ports are available only to specific
> IPs. I have WSUS running for the rest of my servers with great success, but
> I cannot use it to update my web box. Also, my web box cannot hit external
> websites, including Windows Update.
>
> My question is this: how can I determine which updates might apply to the
> web box? If I copy the contents of C:\WSUS\WsusContent to the web box, is
> there some way I can the local Automatic Updates utility to recognize them
> and choose what it needs?
Hi,
Copying C:\WSUS\WsusContent will not work.
I suggest you install and run MBSA to get a list of missing
security updates.
Microsoft Baseline Security Analyzer (MBSA)
http://www.microsoft.com/technet/sec.../mbsahome.mspx
Microsoft Baseline Security Analyzer (MBSA) 2.0 is available
http://support.microsoft.com/kb/895660
Be sure to read the answer to the following question in the FAQ for MBSA 2.0:
MBSA uses files that it downloads from the Internet, but the
computer I want to use to scan my network doesn't have Internet
access. How can I use MBSA in this case?
The FAQ is available here:
http://www.microsoft.com/technet/sec.../mbsa2/qa.mspx
--
torgeir, Microsoft MVP Scripting and WMI, Porsgrunn Norway
Administration scripting examples and an ONLINE version of
the 1328 page Scripting Guide:
http://www.microsoft.com/technet/scr...r/default.mspx
Similar Threads
Linear Mode
