locked
Secunia CSI, anyone? RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote
    Hi all, just wondering if anyone's tried using the Secunia CSI patch management integration with WSUS.  Its in beta right now, but the promise of being able to leverage the WSUS architecture to help get a handle on things like Acrobat and Flash updates is pretty attractive. 

    I haven't been able to make it work yet, but it may just not be ready for prime time.  Just curious if anyone's had any luck w/ it...

    Thanks!
    Tuesday, March 16, 2010 4:52 PM

Answers

  • Question
    Sign in to vote
    0
    Sign in to vote
    Actually I installed both an x86 and x64 version of the product the other day on isolated/dedicated WSUS servers, and sad to say .. I've not been able to get them to work either. Other priority tasks got in the way, so it may be a day or two before I can get back to them -- but I'm not encouraged by my first experiences.

    In addition, I note that Secunia is a security company, and their primary focus is on vulnerability scanning and security remediation -- so I'm not exactly sure how their CSI product intends to address NON-security related third-party scenarios. (e.g. What happens when I'm ready to deploy Adobe Reader 10.0?)
    Lawrence Garvin, M.S., MCITP:EA, MCDBA, MCSA
    Principal/CTO, Onsite Technology Solutions, Houston, Texas
    Microsoft MVP - Software Distribution (2005-2010)
    My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.Garvin
    My Blog: http://onsitechsolutions.spaces.live.com
    Tuesday, March 16, 2010 10:28 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote
    Actually I installed both an x86 and x64 version of the product the other day on isolated/dedicated WSUS servers, and sad to say .. I've not been able to get them to work either. Other priority tasks got in the way, so it may be a day or two before I can get back to them -- but I'm not encouraged by my first experiences.

    In addition, I note that Secunia is a security company, and their primary focus is on vulnerability scanning and security remediation -- so I'm not exactly sure how their CSI product intends to address NON-security related third-party scenarios. (e.g. What happens when I'm ready to deploy Adobe Reader 10.0?)
    Lawrence Garvin, M.S., MCITP:EA, MCDBA, MCSA
    Principal/CTO, Onsite Technology Solutions, Houston, Texas
    Microsoft MVP - Software Distribution (2005-2010)
    My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.Garvin
    My Blog: http://onsitechsolutions.spaces.live.com
    Tuesday, March 16, 2010 10:28 PM
  • Question
    Sign in to vote
    0
    Sign in to vote
    On Tue, 16 Mar 2010 22:28:31 +0000, Lawrence Garvin wrote:

    >Actually I installed both an x86 and x64 version of the product the other day on isolated/dedicated WSUS servers, and sad to say .. I've not been able to get them to work either. Other priority tasks got in the way, so it may be a day or two before I can get back to them -- but I'm not encouraged by my first experiences.In addition, I note that Secunia is a security company, and their primary focus is on vulnerability scanning and security remediation -- so I'm not exactly sure how their CSI product intends to address NON-security related third-party scenarios. (e.g. What happens when I'm ready to deploy Adobe Reader 10.0?)
    >Lawrence Garvin, M.S., MCITP:EA, MCDBA, MCSAPrincipal/CTO, Onsite Technology Solutions, Houston, TexasMicrosoft MVP - Software Distribution (2005-2010)My MVP Profile: http://mvp.support.microsoft.com/profile/Lawrence.GarvinMy Blog: http://onsitechsolutions.spaces.live.com

    I've installed Secunia CSI on my SBS2008 box; install went well, just
    usual kind of glitches one might expect on SBS2008. Scanning works and
    gives interesting results.

    I haven't worked out how to do any actual updates yet - I'd have
    thought one of the points of CSI would be guidance or templates on
    updating packages like Adobe Rdr/Flash et al. Is there a forum or are
    their KB articles I'm missing? Otherwise it seems like CSI has just
    done two-thirs of the job (scanning and deliery) but is leaving users
    too much on their own with one-third (update creation).

    Regards
    William

    Regards William K Rankine
    Saturday, March 20, 2010 11:00 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    I have tested CSI and PSI and they work really well. The new version will upgrade software if there is newer version of the insecure software. It is howevre NOT a patch management system. Look at BigFix if you have such needs. 

    Moreover, Secunia CSI is allegedly for small business companies, yet the pricing policy makes it uneconomical to purchase licenses for companies with substantially less that 100 endpoints. 

    Regrads

    Vladimir

    Wednesday, December 22, 2010 5:26 PM