December 10, 2002 at 10:21 am
Are SQL patches (especially security patches) and updates available through "Windows Update"? (I'd select the ones I want to install).
Currently I download sql patches manually but this is no small job and I'm looking for a way to automatically download (but not necessarily install) them.
TIA,
Bill
December 10, 2002 at 10:26 am
Nope.
Fortunately, there usually aren't that many. This years security push really messed up my world. Basically at this point, you could get the SP3 beta (supposedly stable, and a webcast today (12/10) on it). Otherwise, get SP2, then the cum patch. Add in the killpwd and the MDAC patch and you should be ok.
NGSSoftware has NGSQuirrel which will also help you monitor and get these patches.
Steve Jones
December 10, 2002 at 11:01 am
If you don't already, I would subscribe the newsletters from Microsoft. I get 5-6 of them and they overlap quite abit. But better too many notices about a new hole than not enough. The TechNet update and the Platform newsletters are my faves.
December 10, 2002 at 11:13 am
Subscribe to the Microsoft Security Bulletin and you should be covered:
http://www.microsoft.com/security/
Also, NTBugTraq is one of the first places vulnerabilities and patches are reported. You can join that list, too:
K. Brian Kelley
http://www.truthsolutions.com/
Author: Start to Finish Guide to SQL Server Performance Monitoring
http://www.netimpress.com/shop/product.asp?ProductID=NI-SQL1
K. Brian Kelley
@kbriankelley
December 10, 2002 at 11:26 am
I have not seen any patches for SQL on Windows Update. That is for Windows OS related updates only. I would do as Don suggest and subscribe to their security emails and various others related to patches that are out.
December 10, 2002 at 11:37 pm
BTW, if you use any of the following tools, they'll identify what your SQL Servers are missing:
Microsoft Security Downloads (http://www.microsoft.com/security):
Microsoft Baseline Security Analyzer
HFNetChk (command-line)
Free Utilities:
HFNetChkLT (http://www.shavlik.com)
Third-Party (Non-Free Utilities):
HFNetChkPro (http://www.shavlik.com)
Update Expert (http://www.stbernard.com)
The last three will not only report on what's missing, but also gives you the option to automatically deploy as well. I think my shop has become partial to Update Expert and that's what we're going to recommend for patch management. The interface is simpler than HFNetChkLT (and Pro). But if you want free and want push, take a look at HFNetChkLT.
K. Brian Kelley
http://www.truthsolutions.com/
Author: Start to Finish Guide to SQL Server Performance Monitoring
http://www.netimpress.com/shop/product.asp?ProductID=NI-SQL1
K. Brian Kelley
@kbriankelley
December 11, 2002 at 12:18 pm
Microsoft Baseline Security Analyzer isn't accurate. It prompts me for patches that I already applied.
December 11, 2002 at 12:33 pm
Are you using 1.0 or 1.1? 1.0 had bugs like this. I'm not sure how much got addressed in 1.1. If you are using 1.1 and are still having issues, posting to the Microsoft Usenet forum for MBSA should get a response from a Microsoft person who'll want to investigate more.
K. Brian Kelley
http://www.truthsolutions.com/
Author: Start to Finish Guide to SQL Server Performance Monitoring
http://www.netimpress.com/shop/product.asp?ProductID=NI-SQL1
K. Brian Kelley
@kbriankelley
December 11, 2002 at 12:54 pm
I used 1.0; and stopped using it because I didn't trust it. Don't know about existing of 1.1. Will give it a try.
Thx.
Viewing 9 posts - 1 through 8 (of 8 total)
You must be logged in to reply to this topic. Login to reply