jgt10
asked on
Offline update and patch of 98, Me, 2K and XP?
I have a client with five machines with Windows 98, millennium, 2000 and XP Pro and home. They are not connected to the Internet. I need to get these machines updated with all Microsoft patches.
I have reviewed the various patch management solutions already posted on this web site. Some things have changed since those articles were written. in particular, The Microsoft web site no longer has an option to buy a CD-ROM of patches for the various systems.
Since this is a small site, there isn't a window server on the network, thus using SUS is questionable.
What options are there to manage the updated these machines without a window server?
I am particularly interested in a complete solution that handles all of the machines and all patches for them.
It would also be nice if it wasn't too expensive!
JGT
I have reviewed the various patch management solutions already posted on this web site. Some things have changed since those articles were written. in particular, The Microsoft web site no longer has an option to buy a CD-ROM of patches for the various systems.
Since this is a small site, there isn't a window server on the network, thus using SUS is questionable.
What options are there to manage the updated these machines without a window server?
I am particularly interested in a complete solution that handles all of the machines and all patches for them.
It would also be nice if it wasn't too expensive!
JGT
Are they just not on the internet or do they not have a network connection? How are they connected?
With 5 machines, the logical thing is to update them manually instead of using a managed solution.
With 5 machines, the logical thing is to update them manually instead of using a managed solution.
ASKER
In this case I'm not concerned about timely update to protect the systems against attack, since the machines can not access the internet.
I am concerned about the complexity of determining what patches are installed and what need to needs to be patched. I'm not thrilled about performing that process manually.
They have one machine in the office that connects to the internet. They use that one for email and Internet research. The rest are on a network that has no connection to the internet. This was a very deliberate step by the owner. One I approve of as it removes 90% of the problems.
There is the last 10% of problems (roughly) that need to be patched for correct (cough) operation of the systems.
Even if I update them manually, there is a question in my mind of how I determine what is needed on each machine...each one is a different version of Windows.
Comments? Ideas?
JGT
I am concerned about the complexity of determining what patches are installed and what need to needs to be patched. I'm not thrilled about performing that process manually.
They have one machine in the office that connects to the internet. They use that one for email and Internet research. The rest are on a network that has no connection to the internet. This was a very deliberate step by the owner. One I approve of as it removes 90% of the problems.
There is the last 10% of problems (roughly) that need to be patched for correct (cough) operation of the systems.
Even if I update them manually, there is a question in my mind of how I determine what is needed on each machine...each one is a different version of Windows.
Comments? Ideas?
JGT
Hmmmm.....
Well there is Microsoft Baseline Security Analyzer which can be downloaded and run on the 2000 and xp machines which will tell you what updates those machines need. This doesn't work for 98 or ME. It may be worth while to think about putting atleast 2000 on those 2 machines.
http://www.microsoft.com/technet/security/tools/mbsaqa.mspx
Just a thought....
Well there is Microsoft Baseline Security Analyzer which can be downloaded and run on the 2000 and xp machines which will tell you what updates those machines need. This doesn't work for 98 or ME. It may be worth while to think about putting atleast 2000 on those 2 machines.
http://www.microsoft.com/technet/security/tools/mbsaqa.mspx
Just a thought....
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Excellent! That is the kind of help I was looking for!
luv2smile: I would like to upgrade the 98 and Me systems as well. As long as the machines are performing well enough for the customer, I don't push.
gor_c: I hadn't thought of using the internet connection sharing function. The drawbacks are it requires moving the computers and a second ethernet or using a USB port to make the connection. I don't want to move the machines around and I'm not sure I want to be hauling a 50 or 100 foot cat5 throug the office to do the job either. It is a good idea and I will look at it further.
zerofield: That is the pointer that I needed! Thanks!
wjal: I'm using Win XP Pro and the update catalog automatically starts looking for patches and updates for XP, not letting me select updates for the other systems. The other two URLs work as advertised. Thanks!
luv2smile: I would like to upgrade the 98 and Me systems as well. As long as the machines are performing well enough for the customer, I don't push.
gor_c: I hadn't thought of using the internet connection sharing function. The drawbacks are it requires moving the computers and a second ethernet or using a USB port to make the connection. I don't want to move the machines around and I'm not sure I want to be hauling a 50 or 100 foot cat5 throug the office to do the job either. It is a good idea and I will look at it further.
zerofield: That is the pointer that I needed! Thanks!
wjal: I'm using Win XP Pro and the update catalog automatically starts looking for patches and updates for XP, not letting me select updates for the other systems. The other two URLs work as advertised. Thanks!
It is necessary to use some recent version of Internet Explorer to successfully browse that site. When you arrive at the page in the link, choose "Find Updates for Microsoft Operating Systems". On the susequent page, highlight the OS that has your interest and click the Search button. All MS operting systems since 98SE are represented.
A bit of advice on browsing these updates:
If for instance, you are looking for XP Home udates, most of them will be found under "Windows XP RTM" (if you have no service packs installed). You will also need the updates listed under "Windows XP Home RTM" as they apply to XP Home in particular. That is to say, the updates that apply to both versions, Home and Pro, are listed under "Windows XP RTM".
One could fairly assume that all XP Home updates would be listed under "XP Home", but this is not the case.
A bit of advice on browsing these updates:
If for instance, you are looking for XP Home udates, most of them will be found under "Windows XP RTM" (if you have no service packs installed). You will also need the updates listed under "Windows XP Home RTM" as they apply to XP Home in particular. That is to say, the updates that apply to both versions, Home and Pro, are listed under "Windows XP RTM".
One could fairly assume that all XP Home updates would be listed under "XP Home", but this is not the case.
Even if you could buy something out of the box and instsall it that would give you all the current updates. How would you contitnue to keep the machines up to date?
Its just like buying an antivirus product.....its useless unless you have a connection to a server somewhere that allows you to get the latest updates.