> -----Original Message----- > From: [email protected] [mailto:nessus- > [email protected]] On Behalf Of Bazy > Sent: Friday, January 09, 2009 6:10 AM > To: [email protected] > Subject: Checking if Windows was restarted after update > > Hello! > > We use WSUS in our company for updates, but not everyone restart's his > workstation for days. So in some cases the computer is still vulnerable > if not restarted. How would be the best practice to check this? I'm > using Nessus for about 3 months, read the book but have little > experience.
It depends on how the plugin for the specific vulnerability works. For example, if it only checked WMI it would show the patch as being installed whereas if it actually checks it should identify the system as vulnerable. Nessus plugins are good for actually checking. What we do to handle the "but I don't reboot" issue is to have the updates set with a "forced reboot by." I handle nessus, not windows patching, so I don't know the technical details but it does deal with those situations. Tim Doty
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Nessus mailing list [email protected] http://mail.nessus.org/mailman/listinfo/nessus
