Does the MBSA create any vulneribilities

G

Guest

Several services running and opened ports, these are the
preresiquities for successul running of MBSA.
Under the required services are those such
- Remote Registry service
- Server service
- Workstation service
- File and Printer Sharing service
- Automatic Updates service

Does the vulneribility bilance not get worse if these services are active ?
I don't need file and printer sharing for any other purposes.
The same applies to remote registry and automatic update.
Please note, I wish use the MBSA as a report generator only.
No updates shall be installed by this tool. Why the automatic update then ?
I affraid, through the suspicious services the protection of my system
will decrase.

What vulneribilities from not yet patched are these services affected with ?

Does the MBSA can work without IE being set to default browser ?
 
S

Steven L Umbach

MBSA does not install updates but the automatic updates service needs to be
started. What can be done to minimize risk of enabling services you don't
need is to configure the Windows Firewall to only accept network traffic for
MBSA scans from the IP address of the admin workstation doing the scan and
such workstation should be clean and secured. Planning security always
involves balancing risk and convenience. Not doing the MBSA scans could also
be a security risk or take much longer to on each computer individually. --
Steve
 
G

Guest

Steven L Umbach said:
MBSA does not install updates but the automatic updates service needs to be
..............
Click to expand...


Thank you for your explanation.
A single workstation only connected to internet via a broadband modem is in
focus here. Therefore I don't see any application of one yours sentence in my
use case:
"...to only accept network traffic for MBSA scans from the IP address of the
admin workstation doing the scan and such workstation should be clean and
secured...".

The MBSA will connect with Microsoft servers only in my case.
 
S

Steven L Umbach

For a single computer you do not need to have those services enabled - those
are only needed for remote scanning of computers on your network. It should
work fine and it will connect to the Microsoft server only to download the
file that contains the list of updates to check for and that will be done
via normal HTTP web traffic. --- Steve
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Can't run MBSA. Insufficient services? 1
Service Pack 2 does not install 2
MBSA and GP firewall settings 0
I don't have some updates 6
Problem with Internet Explorer 3
Terminal Services service and Windows Security Alerts 5
Windows Security Alerts 2
Repost of Automatic Update Problem 1

Top