none
Checksum and-or https link to verify wsusscn2.CAB RRS feed

  • Frage

  • Is there any possibility to verify a correct download of the important wsusscn2.CAB from 

    http://download.windowsupdate.com/microsoftupdate/v6/wsusscan/wsusscn2.cab

    http://go.microsoft.com/fwlink/?LinkID=74689

    via a checksum or an HTTPS link ?

    The solution, I am searching for, could maybe be a checksum information or an HTTPS download link provided from Microsoft, or both.

    Just to be complete, links I have already checked with no solution are:

    • https://docs.microsoft.com/en-us/windows/security/threat-protection/mbsa-removal-and-guidance
    • https://gallery.technet.microsoft.com/Using-WUA-to-Scan-for-f7e5e0be/view/Discussions#content
    • https://docs.microsoft.com/de-de/windows/win32/wua_sdk/using-wua-to-scan-for-updates-offline

    regards, Jan



    Montag, 11. November 2019 08:27

Alle Antworten

  • Gegen welche Prüfsumme willst du denn prüfen?
    Per .Net kann man z.B. eine MD5-Summe in Powershell errechnen.
    Montag, 11. November 2019 08:31
  • Thats exact the problem I am asking for, there is no checksum available, as I know.

    no sig

    Montag, 11. November 2019 08:33
  • Dann kannst du dich nur auf die internen Mechanismen der Dateien verlassen.
    Wenn eine .CAB beschädigt ist lässt sich sich normalerweise nicht öffnen.
    Montag, 11. November 2019 08:37
  • Sorry, but thats not a solution/correct, it often has happend (just search for the problems with mbsa), that this cab was incomplete or broken downloaded.

    As I know, there is a kind of signature inside the cab, which is great. But this cannot prevent from an incorrect download/malicious file, because I cannot verify the server via https or the integrity via checksum provided by microsoft, correct? 


    no sig

    Montag, 11. November 2019 08:43
  • Hi there,

    this is a German forum, the way TN forum engine works it is highly unlikely that a non-German-reader finds her way here.

    That said, a signed piece of code does not need a static checksum because it bears a digital signature. The cert it is signed by is known so you can verify the authenticity of the signature by verifying the cert. And after you have done that, a valid and authentic signature tells you that the file hasn't been altered after signing:


    Evgenij Smirnov

    http://evgenij.smirnov.de

    Montag, 11. November 2019 09:47
  • That seems like the solution, thanks for!

    Here the sample of a tampered file after check:


    no sig

    Montag, 11. November 2019 10:14