Presentation is loading. Please wait.

Presentation is loading. Please wait.

F HEPNT/HEPIX Sept, 1999 Use of SPQuery and STAT At FNAL.

Published by Modified over 8 years ago

Similar presentations

Presentation on theme: "F HEPNT/HEPIX Sept, 1999 Use of SPQuery and STAT At FNAL."— Presentation transcript:

1 f HEPNT/HEPIX Sept, 1999 Use of SPQuery and STAT At FNAL

2 f SPQuery F SPQuery is a useful tool for: F Reporting Service pack and hotfix information for an entire domain or a select group of machines. F Downloading of hotfixes from Internet for NT, IIS, Exchange, SQL and Site Server to a central repository F Applying Workstation/Server hotfixes to remote machines

3 f Query Systems F Ability to check single machine, entire domains, or use machine list files. F Information on date Service Pack and hotfixes were applied F Information on available hotfixes for applied service pack

4 f Systems Information

5 f Importing Machine Lists

6 f Hotfix Info F Get information on files replaced or added by the hotfix F Query Internet for newest hotfix information F View Knowledge Base Article

7 f Affected Files

8 f Knowledge Base Information

9 f Applying Fixes Three Basic Steps FDownload hot fixes to a local repository u Multiple downloads possible. FInstall u Must have admin rights to install to remote system u Schedules hotfix to be applied at next login. User must have local admin u Hotfix files and an ‘agent’ copied to remote system and run on next login. u Pop up box during login gives user choice to apply patch or not. uOnly visible for 20 seconds u Only supports singular patch application FReboot NOTE: User has the ability to decide if patch is applied!

10 f Downloading Fix

11 f Fix Scheduled

12 f User Login

13 f Hotfix Applied

14 f Profile Creation F Offers the ability to create service pack/hotfix profiles. F Test your NT machine(s) against these profiles to determine if they pass or fail. F We have Profiles for SP4 and SP5 with appropriate security hotfixes.

15 f Profiles

16 f Reporting F Print reports (very detailed) F Save reports for future reference in SPQuery or save them to a csv file and import into Excel

17 f Options

18 f SPQuery Stuff I’d like to see FNotify if user selects ‘Never’ apply patch. FAbility to load patches in correct order. FAbility to apply more than one patch at a time. FMore details when downloading from Internet FCustomization of Report Printing Inexpensive- $595 for a site license! http://www.mtesoft.com

19 f STAT (Security Test and Analysis Tool) F Detects 600 + Vulnerabilities from NT 3.51 to NT4 SP5 F Can Examine specific machine, multiple machines or Entire Domain F Automatic Vulnerability Fix F Configuration Templates available F Password Strength testing

20 f Account requirements F To analyze systems on the network must be Domain Admin. F To analyze workgroups must be in local admin for machines you wish to access

21 f Analysis Overview F Analyze single machine, multiple machines or domains F Machine analysis can be saved and compared to new analysis F Systems must appear in Network Neighborhood F Domain examination is time-consuming FChecking all vulnerabilities takes an average of one gigabyte per minute. F 4 Levels of Vulnerability FHigh- May grant unauthorized administrative access. FMedium- May provide access to sensitive data leading to further exploitation. FLow- May be used for information gathering or preventative security measures that could lead to higher risk levels. FWarning- Recommended good security practices.

22 f 4 Warnings F There are 4 warnings in the STAT database that will always be displayed: F ID# 87 boot enabled (anyone can boot system from floppy) F ID# 403 clipboard ( clear clipboard before logging off or locking computer F ID# 409 emergency repair disk (ERD has compressed version of SAM. Make sure to lock it up!) F ID# 421 administrators group (check administrators group for unknown account names)

23 f Analysis

24 f Vulnerability Info

25 f Fixing Vulnerability

26 f Vulnerability Fixed

27 f Configuration Files F Ability to define ‘templates’ to check for only specific vulnerabilities. F Description field helps identify vulnerability. F Eight ‘templates’ provided: FAll- ~600 vulnerabilities. FAutofix- Check only what can be fixed. FFilechecks- Check only file related vulnerabilities. FHigh- Check only vulnerabilities defined as high. FLow- Check only vulnerabilities defined as low. FMedium- Check only vulnerabilities defined as medium. FNofilechecks- Check only vulnerabilities not related to files. FWarning- Check only vulnerabilities not related to files.

28 f Configuration

29 f Password Cracking F Uses simple text file to check passwords F Cracked passwords not displayed. Just Username. F File can be modified to your requirements. FNote: Software upgrade could overwrite the file.

30 f Report Print Options Executive FPie-chart representing the percentage of vulnerabilities by level of risk found in a selected network or machine. Network FBar chart representing percentages of discovered vulnerabilities with respect to total possible vulnerabilities tested per machine. Vulnerability FBar chart representing each vulnerability detected and how many machines contain that specific vulnerability. F Detailed FReport shows all vulnerabilities found per machine. The report provides a brief description of each vulnerability, along with the applicable risk each represent.

31 f STAT Wish List F Ability to import machine lists F Better documentation F Improve speed of analysis F Problems analyzing domain with 95/98 systems F Canceling a vulnerability assessment takes too long Cost- $1797 per Admin License does not include yearly maintenance http://www.statonline.com

Download ppt "F HEPNT/HEPIX Sept, 1999 Use of SPQuery and STAT At FNAL."

Similar presentations

AS ICT Finding your way round MS-Access 2007. The Home Ribbon This ribbon is automatically displayed when MS-Access is started and when existing tables.

AS ICT Finding your way round MS-Access The Home Ribbon This ribbon is automatically displayed when MS-Access is started and when existing tables.
AIMSweb Progress Monitor Online User Training

AIMSweb Progress Monitor Online User Training
WSUS Presented by: Nada Abdullah Ahmed.

WSUS Presented by: Nada Abdullah Ahmed.
15.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.

15.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 15: Configuring a Windows.
14.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

14.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.

Hands-On Microsoft Windows Server 2003 Chapter 2 Installing Windows Server 2003, Standard Edition.
Cambodia-India Entrepreneurship Development Centre - : :.... :-:-

Cambodia-India Entrepreneurship Development Centre - : :.... :-:-
MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.

MCTS Guide to Microsoft Windows Server 2008 Network Infrastructure Configuration Chapter 11 Managing and Monitoring a Windows Server 2008 Network.
Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.

Guide to Operating System Security Chapter 2 Viruses, Worms, and Malicious Software.
Windows Anti-virus and Security WNUG Meeting 2-7-2002.

Windows Anti-virus and Security WNUG Meeting
Patch Management Module 13. Module 2-421 You Are Here VMware vSphere 4.1: Install, Configure, Manage – Revision A Operations vSphere Environment Introduction.

Patch Management Module 13. Module You Are Here VMware vSphere 4.1: Install, Configure, Manage – Revision A Operations vSphere Environment Introduction.
1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.

1 Chapter Overview Creating User and Computer Objects Maintaining User Accounts Creating User Profiles.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.

11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW Understand the difference between service.
1 Computer Security: Protect your PC and Protect Yourself.

1 Computer Security: Protect your PC and Protect Yourself.
16.1 © 2004 Pearson Education, Inc. Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.

16.1 © 2004 Pearson Education, Inc. Exam Managing and Maintaining a Microsoft® Windows® Server 2003 Environment Lesson 16: Examining Software Update.
11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.

11 MAINTAINING THE OPERATING SYSTEM Chapter 5. Chapter 5: MAINTAINING THE OPERATING SYSTEM2 CHAPTER OVERVIEW  Understand the difference between service.
11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 CHAPTER OVERVIEW Understand the differences between local user and domain.

11 WORKING WITH USER ACCOUNTS Chapter 6. Chapter 6: WORKING WITH USER ACCOUNTS2 CHAPTER OVERVIEW Understand the differences between local user and domain.
Chapter 7 Installing and Using Windows XP Professional.

Chapter 7 Installing and Using Windows XP Professional.
Ch 11 Managing System Reliability and Availability 1.

Ch 11 Managing System Reliability and Availability 1.
9.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

9.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.

Similar presentations

Ads by Google