[19932] in bugtraq
XATO hotfixes installation
daemon@ATHENA.MIT.EDU (.sozni)
Fri Mar 30 01:36:02 2001
MIME-Version: 1.0
Content-Type: multipart/mixed;
boundary="----=_NextPart_000_0011_01C0B869.42AFACA0"
X-MDaemon-Deliver-To: bugtraq@securityfocus.com
Message-ID: <CDEGIIGDGLHPIJBFECCFKEOBCLAA.sozni@xato.net>
Date: Thu, 29 Mar 2001 15:59:39 -0700
Reply-To: ".sozni" <sozni@do.cked.NET>
From: ".sozni" <sozni@do.cked.NET>
To: BUGTRAQ@SECURITYFOCUS.COM
This is a multi-part message in MIME format.
------=_NextPart_000_0011_01C0B869.42AFACA0
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
We thought we would share our instructions for getting a Windows 2000 server
up-to-date. The download URLs we have included are only for English
hotfixes and does not cover client software like Internet Explorer.
1. Download and install the high encryption pack
(http://www.microsoft.com/windows2000/downloads/recommended/encryption/defau
lt.asp)
2. Reboot (this is essential at this point or the next step will have
problems).
3. Download and install Service Pack 1
(http://www.microsoft.com/windows2000/downloads/recommended/sp1/default.asp)
4. Reboot again.
5. Download WGET for Windows
(http://www.interlog.com/~tcharron/wgetwin.html)
6. Run the attached hotfixes.cmd file.
7. Check the folder for any hotfixes that have been renamed with the .bad
extension and download and reapply those.
7. Run keymigrt.exe and follow instructions if there are any.
8. Reboot.
9. Run qfecheck.exe /v to verify that everything installed correctly
9. As new hotfixes are released, add the download URLs to hotfixes.txt.
The attached batch file will download all the service packs into the current
directory. It will then go through and verify the signatures on each one,
renaming any files that do not pass the check. It will then silently
install each hotfix. After downloading the first time you can remove the
line in the batch file that does the downloading and it will use all the
hotfixes in the current directory. Note that although install order does
not matter in Win2k, the batch file will install the hotfixes in the order
in which they were downloaded which is the proper install order.
If you have any comments or questions, we would be glad to hear them. But
before you ask, no, we do not plan on making one of these for NT4 at this
time.
Xato Network Security Team
www.xato.net
--------------------------------------------------
Copyright ©2001 Xato Network Security, Inc.
Xato is a security consulting firm specializing
in Windows 2000 server security. Contact us at
info@xato.net or sales@xato.net for more information
regarding our consulting services.
--------------------------------------------------
windows 2000 win2k w2k IIS security services consulting
patches service packs sp1 sp2 sp3 install update
administrator password hack pakc harden script command
--------------------------------------------------
"ignore the man behind the curtain"
--------------------------------------------------
------=_NextPart_000_0011_01C0B869.42AFACA0
Content-Type: application/x-zip-compressed;
name="hotfixes.zip"
Content-Transfer-Encoding: base64
Content-Disposition: attachment;
filename="hotfixes.zip"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------=_NextPart_000_0011_01C0B869.42AFACA0--
