On Thu, May 28, 2009 at 5:11 PM, Jim Majorowicz <[email protected]> wrote: > Where can I find a list of updates that may have affected IIS 6.0 and > determine if and when they were applied to specific server?
MBSA seems to be the best thing for analyzing what updates have been installed, and which are needed. http://technet.microsoft.com/en-us/security/cc184924.aspx I'm not sure if MBSA will tell you when things were installed. The hotfix install logs (C:\WINDOWS\KB*.LOG) definitely have that information, but getting it into a concise report might require some work. I suppose you could run "DIR C:\WINDOWS\KB*.LOG /OD" and hope none of the logs have been touched since install. Getting a general list of released updates in a concise form seems to be nigh impossible. You can go to the TechNet Security Bulletin page and narrow down to the product/platform you're interested in, but you still need to drill into each bulletin to get the pertinent details. It's another several clicks (each) to download the actual updates. -- Ben ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
