Scribd Logo
Cargar

¡Te damos la bienvenida a Scribd!

  • Updates of Mylapy

    Cargado por

    Amit Shukla
    52 vistas18 páginas
    lappy

    Derechos de autor

    © Attribution Non-Commercial (BY-NC)

    Formatos disponibles

    TXT, PDF, TXT o lea en línea desde Scribd

    ¿Le pareció útil este documento?

    ¿Este contenido es inapropiado?

    Denunciar este documento
    lappy

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Descargue como TXT, PDF, TXT o lea en línea desde Scribd
    Marcar por contenido inapropiado
    52 vistas18 páginas

    Updates of Mylapy

    Cargado por

    Amit Shukla
    lappy

    Copyright:

    Attribution Non-Commercial (BY-NC)
    Descargue como TXT, PDF, TXT o lea en línea desde Scribd
    Marcar por contenido inapropiado
    de 18

    Security assessment: Incomplete Scan Computer name: WORKGROUP\AMIT-PC IP address: 192.168.0.

    153 Security report name: WORKGROUP - AMIT-PC (18-Jul-2013 1-43 PM) Scan date: 18/Jul/2013 1:43 PM Scanned with MBSA version: 2.2.2170.0 Catalog synchronization date: Security update catalog: Microsoft Update Security Updates Scan Results Issue: Developer Tools, Runtimes, and Redistributables Security Updates Score: Check failed (critical) Result: 1 security updates are missing. Security Updates | MS12-021 | Missing | Security Update for Microsoft Vis ual Studio 2010 Service Pack 1 (KB2645410) | Important | Current Update Compliance | MS09-062 | Installed | Security Update for Microsoft V isual Studio 2008 (KB972221) | Low | | MS11-025 | Installed | Security Update for Microsoft V isual C++ 2005 Service Pack 1 Redistributable Package (KB2538242) | Important | | MS11-025 | Installed | Security Update for Microsoft V isual Studio 2010 Service Pack 1 (KB2565057) | Important | | MS09-062 | Installed | Security Update for Microsoft V isual Studio 2008 Service Pack 1 (KB972222) | Low | | MS11-025 | Installed | Security Update for Microsoft V isual C++ 2008 Service Pack 1 Redistributable Package (KB2538243) | Important | | MS12-021 | Installed | Security Update for Microsoft V isual Studio 2008 Service Pack 1 (KB2669970) | Important | | MS11-049 | Installed | Security Update for Microsoft V isual Studio 2008 Service Pack 1 XML Editor (KB2251487) | Important | Issue: Office Security Updates Score: Check failed (critical) Result: 1 security updates are missing. Security Updates | MS13-054 | Missing | Security Update for Microsoft Off ice 2007 suites (KB2687309) | Important | Current Update Compliance | MS12-079 | Installed ffice Word 2007 (KB2760421) | Critical | | MS12-066 | Installed ffice InfoPath 2007 (KB2687440) | Important | | MS12-079 | Installed ffice 2007 suites (KB2760416) | Important | | 949426 | Installed | UK Service Pack 1 (KB949426) | | | MS12-057 | Installed ffice 2007 suites (KB2596615) | Important | | MS12-034 | Installed | Security Update for Microsoft O | Security Update for Microsoft O | Security Update for Microsoft O Microsoft Office Accounting 2008 | Security Update for Microsoft O | Security Update for Microsoft O

    ffice 2007 suites (KB2596792) | Important | | 937961 | Installed | Office 2003 Web Components Servic e Pack 1 for the 2007 Microsoft Office System | | | 2526086 | Installed | The 2007 Microsoft Office Suite Service Pack 3 (SP3) | | | MS11-089 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2596785) | Important | | 949426 | Installed | Microsoft Office Accounting 2008 US Service Pack 1 (KB949426) | | | MS12-030 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2597969) | Important | | MS13-042 | Installed | Security Update for Microsoft O ffice Publisher 2007 (KB2597971) | Important | | MS12-076 | Installed | Security Update for Microsoft O ffice Excel 2007 (KB2687307) | Important | | MS12-057 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2596754) | Important | | MS12-028 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2596871) | Important | | 957324 | Installed | Business Contact Manager for Outl ook 2007 Service Pack 2 (KB957324) | | | MS11-094 | Installed | Security Update for Microsoft O ffice PowerPoint 2007 (KB2596912) | Important | | MS12-034 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2596672) | Important | | MS12-066 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2687439) | Important | | MS12-076 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2687311) | Important | | MS09-043 | Installed | Security Update for Microsoft O ffice 2003 Web Components for the 2007 Microsoft Office System (KB947318) | Crit ical | | MS12-046 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2596744) | Important | | MS13-002 | Installed | Security Update for Microsoft O ffice 2007 suites (KB2687499) | Critical | | MS11-094 | Installed | Security Update for Microsoft O ffice PowerPoint 2007 (KB2596764) | Important | Issue: SQL Server Security Updates Score: Check failed (non-critical) Result: 1 service packs or update rollups are missing. Update Rollups and Service Packs | 2546951 | Missing | Microsoft SQL Server 2008 Service Pack 3 (KB2546951) | | Current Update Compliance | MS06-061 | Installed | MSXML 6.0 RTM Security Update (925673) | Critical | | 2463332 | Installed | Microsoft SQL Server 2005 Expres s Edition Service Pack 4 (KB2463332) | | Issue: Silverlight Security Updates Score: Check failed (critical) Result: 1 security updates are missing. Security Updates

    | MS13-052 | Missing | Security Update for Microsoft Sil verlight (KB2847559) | Critical | Current Update Compliance | MS13-022 | Installed | Security Update for Microsoft S ilverlight (KB2814124) | Critical | Issue: Windows Security Updates Score: Check failed (critical) Result: 18 security updates are missing. 1 service packs or update ro llups are missing. Security Updates | MS13-054 | Missing | Security Update for Windows 7 for x64-based Systems (KB2835361) | Critical | | MS13-054 | Missing | Security Update for Windows 7 for x64-based Systems (KB2834886) | Critical | | MS13-052 | Missing | Security Update for Microsoft .NE T Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 for x64-based Systems (KB2832414) | Critical | | MS13-052 | Missing | Security Update for Microsoft .NE T Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Syst ems (KB2844286) | Important | | 2813430 | Missing | Security Update for Windows 7 for x64-based Systems (KB2813430) | | | MS13-054 | Missing | Security Update for Windows 7 for x64-based Systems (KB2835364) | Critical | | MS13-053 | Missing | Security Update for Windows 7 for x64-based Systems (KB2850851) | Critical | | MS13-050 | Missing | Security Update for Windows 7 for x64-based Systems (KB2839894) | Important | | MS13-052 | Missing | Security Update for Microsoft .NE T Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2835393) | Critical | | MS13-052 | Missing | Security Update for Microsoft .NE T Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Syst ems (KB2833946) | Critical | | MS13-055 | Missing | Cumulative Security Update for In ternet Explorer 10 for Windows 7 Service Pack 1 for x64-based Systems (KB2846071 ) | Critical | | MS13-057 | Missing | Security Update for Windows 7 for x64-based Systems (KB2803821) | Critical | | MS13-056 | Missing | Security Update for Windows 7 for x64-based Systems (KB2845187) | Critical | | MS12-073 | Missing | Security Update for Windows 7 for x64-based Systems (KB2719033) | Moderate | | MS13-058 | Missing | Security Update for Windows 7 for x64-based Systems (KB2847927) | Important | | MS13-052 | Missing | Security Update for Microsoft .NE T Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Syst ems (KB2840631) | Important | | MS13-049 | Missing | Security Update for Windows 7 for x64-based Systems (KB2845690) | Moderate | | MS13-052 | Missing | Security Update for Microsoft .NE T Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R2 for x64 (KB2840628) | Important |

    Update Rollups and Service Packs | 890830 | Missing | Windows Malicious Software Removal Tool x64 - July 2013 (KB890830) | | Current Update Compliance | MS12-005 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2584146) | Important | | 2820197 | Installed | Cumulative Security Update for A ctiveX Killbits for Windows 7 for x64-based Systems (KB2820197) | | | MS12-001 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2644615) | Important | | MS13-007 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2736422) | Important | | MS12-045 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2698365) | Critical | | MS13-031 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2813170) | Important | | MS12-034 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2660649) | Important | | MS11-092 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2619339) | Critical | | MS11-075 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2564958) | Important | | MS11-019 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2511455) | Critical | | MS12-054 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2712808) | Moderate | | MS12-013 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2654428) | Critical | | MS11-037 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2544893) | Important | | MS11-024 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2491683) | Important | | MS12-034 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2656411) | Low | | MS12-054 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2705219) | Moderate | | MS12-024 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2653956) | Critical | | MS11-066 | Installed | Security Update for Microsoft . NET Framework 4 on Windows XP, Windows Server 2003, Windows Vista, Windows 7, Wi ndows Server 2008, Windows Server 2008 R2 for x64-based Systems (KB2487367) | Im portant | | MS11-053 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2532531) | Critical | | MS12-034 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2659262) | Important | | MS13-040 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2804579) | Important | | MS12-072 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2727528) | Critical | | MS12-056 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2706045) | Important | | MS12-020 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2621440) | Critical |

    | MS12-069 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2743555) | Important | | MS13-007 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2736428) | Important | | MS12-033 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2690533) | Important | | MS13-004 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2742599) | Important | | MS12-009 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2645640) | Important | | MS12-078 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2753842) | Critical | | MS12-074 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2729452) | Critical | | MS12-036 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2685939) | Critical | | MS11-076 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2579686) | Important | | MS13-018 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2790655) | Moderate | | MS11-100 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2656351) | Critical | | MS11-048 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2536275) | Important | | MS12-035 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2604115) | Critical | | 976932 | Installed | Windows 7 Service Pack 1 for x64based Systems (KB976932) | | | MS13-019 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2790113) | Important | | MS13-040 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2804576) | Important | | 890830 | Installed | Windows Malicious Software Remova l Tool x64 - May 2013 (KB890830) | | | MS13-006 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2785220) | Important | | MS12-082 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2770660) | Important | | MS12-081 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2758857) | Critical | | MS12-035 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2604121) | Critical | | MS12-074 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2729449) | Critical | | MS11-030 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2509553) | Critical | | MS13-002 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2757638) | Critical | | MS13-046 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2829361) | Important | | MS12-049 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2655992) | Important |

    | MS12-020 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2667402) | Critical | | MS13-027 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2807986) | Important | | MS12-048 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2691442) | Important | | MS11-024 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2506212) | Important | | MS13-015 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2789642) | Important | | 2718695 | Installed | Internet Explorer 10 for Windows 7 for x64-based Systems | | | MS12-034 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2676562) | Critical | | MS11-071 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2570947) | Important | | MS12-074 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2737019) | Important | | MS13-036 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2840149) | Moderate | | MS11-090 | Installed | Cumulative Security Update for ActiveX Killbits for Windows 7 for x64-based Systems (KB2618451) | Critical | | MS12-006 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2585542) | Important | | MS11-043 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2536276) | Critical | | MS12-004 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2631813) | Important | | MS11-015 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2479943) | Critical | | 2779562 | Installed | Update for Windows 7 for x64-bas ed Systems (KB2779562) | | | MS13-029 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2813347) | Critical | | MS11-085 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2620704) | Low | | MS13-004 | Installed | Security Update for Microsoft . NET Framework 4 on XP, Server 2003, Vista, Windows 7, Server 2008, Server 2008 R 2 for x64 (KB2742595) | Important | | MS13-004 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2756921) | Important | | MS12-034 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2658846) | Important | | MS11-059 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2560656) | Important | | MS13-046 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2830290) | Important | | MS13-001 | Installed | Security Update for Windows 7 f or x64-based Systems (KB2769369) | Critical | | MS13-015 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2789645) | Important | | MS11-100 | Installed | Security Update for Microsoft . NET Framework 3.5.1 on Windows 7 and Windows Server 2008 R2 SP1 for x64-based Sy stems (KB2656356) | Critical |

    Operating System Scan Results Administrative Vulnerabilities Issue: Local Account Password Test Score: Check passed Result: Some user accounts (2 of 3) have blank or simple passwords, o r could not be analyzed. Detail: | User | Weak Password | Locked Out | Disabled | | Administrator | Weak | - | Disabled | | Guest | Weak | - | Disabled | | amit | - | - | - | Issue: File System Score: Check passed Result: All hard drives (2) are using the NTFS file system. Detail: | Drive Letter | File System | | C: | NTFS | | D: | NTFS | Issue: Password Expiration Score: Check failed (non-critical) Result: All user accounts (3) have non-expiring passwords. Detail: | User | | Administrator | | Guest | | amit | Issue: Guest Account Score: Check passed Result: The Guest account is disabled on this computer. Issue: Autologon Score: Check passed Result: Autologon is not configured on this computer. Issue: Restrict Anonymous Score: Check passed Result: Computer is properly restricting anonymous access. Issue: Administrators Score: Check passed Result: No more than 2 Administrators were found on this computer. Detail: | User | | Administrator | | amit | Issue: Windows Firewall Score: Best practice Result: Windows Firewall is enabled and has exceptions configured. Wi ndows Firewall is enabled on all network connections. Detail: | Connection Name | Firewall | Exceptions | | All Connections | On | Programs, Services | | Omg | On | Programs*, Services* | | VirtualBox Host-Only Network | On | Programs*, Service

    s* | | Wireless Network Connection | On | Programs*, Services * | Issue: Automatic Updates Score: Check failed (non-critical) Result: The Automatic Updates feature is disabled on this computer. Issue: Incomplete Updates Score: Best practice Result: No incomplete software update installations were found. Additional System Information Issue: Windows Version Score: Best practice Result: Computer is running Microsoft Windows 7. Issue: Auditing Score: Best practice Result: Neither Logon Success nor Logon Failure auditing are enabled. Enable auditing and turn on auditing for specific events such as logon and logo ff. Be sure to monitor your event log to watch for unauthorized access. Issue: Shares Score: Best practice Result: 8 share(s) are present on your computer. Detail: | Share | Directory | Share ACL | Directory ACL | | Brother HL-2170W | Brother HL-2170W,LocalsplOnly | Pri nt Queue Share | Directory ACL can not be read. | | E | E:\ | Everyone - F | Directory ACL can not be rea d. | | G$ | G:\ | Admin Share | Directory ACL can not be read . | | ADMIN$ | C:\windows | Admin Share | NT SERVICE\Trusted Installer - F, NT AUTHORITY\SYSTEM - RWXD, BUILTIN\Administrators - RWXD, BUI LTIN\Users - RX | | C$ | C:\ | Admin Share | BUILTIN\Administrators - F, NT AUTHORITY\SYSTEM - F, BUILTIN\Users - RX, NT AUTHORITY\Authenticated Users - D | | D$ | D:\ | Admin Share | BUILTIN\Administrators - F, NT AUTHORITY\SYSTEM - F, NT AUTHORITY\Authenticated Users - RWXD, BUILTIN\User s - RX | | Users | C:\Users | Administrators - F, Everyone - F | NT AUTHORITY\SYSTEM - F, BUILTIN\Administrators - F, BUILTIN\Users - RX, Ev eryone - RX | | print$ | C:\windows\system32\spool\drivers | Everyone - R, Administrators - F | NT AUTHORITY\SYSTEM - F, BUILTIN\Administrators F, Everyone - RX | Issue: Services Score: Best practice Result: Some potentially unnecessary services are installed. Detail: | Service | State | | World Wide Web Publishing Service | Running | Internet Information Services (IIS) Scan Results

    Administrative Vulnerabilities Issue: IIS Status Score: Unable to scan Result: The IIS Common Files are not installed on the local computer. Refer to the system requirements list under Microsoft Baseline Security Analyze r Help. Issue: IIS Status Score: Unable to scan Result: The IIS Common Files are not installed on the local computer. Refer to the system requirements list under Microsoft Baseline Security Analyze r Help. Issue: IIS Status Score: Unable to scan Result: The IIS Common Files are not installed on the local computer. Refer to the system requirements list under Microsoft Baseline Security Analyze r Help. Issue: IIS Status Score: Unable to scan Result: The IIS Common Files are not installed on the local computer. Refer to the system requirements list under Microsoft Baseline Security Analyze r Help. Issue: IIS Status Score: Unable to scan Result: The IIS Common Files are not installed on the local computer. Refer to the system requirements list under Microsoft Baseline Security Analyze r Help. Issue: IIS Lockdown Tool Score: Check passed Result: The IIS Lockdown tool was developed for IIS 4.0, 5.0, and 5.1 , and is not needed for new Windows Server 2003 installations running IIS 6.0. SQL Server Scan Results Instance (default) Administrative Vulnerabilities Issue: Score: Result: er and/or MSDE and SQL Server/MSDE Security Mode Check failed (non-critical) SQL Server and/or MSDE authentication mode is set to SQL Serv Windows (Mixed Mode).

    Issue: CmdExec role Score: Check passed Result: CmdExec is restricted to sysadmin only. Issue: Score: Result: SQL Server and/or Registry Permissions Check passed The Everyone group does not have more than Read access to the MSDE registry keys.

    Issue: Folder Permissions

    Score: Check passed Result: Detail: | Instance | Folder | User | | (default) | Internal error. | - | Issue: Sysadmin role members Score: Check passed Result: BUILTIN\Administrators group is not part of sysadmin role. Issue: Guest Account Score: Check passed Result: The Guest account is not enabled in any of the databases. Issue: Sysadmins Score: Check failed (non-critical) Result: More than 2 members of sysadmin role are present. Issue: Service Accounts Score: Best practice Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts should not be members of the local Administrators group or run as Local System. Detail: | Instance | Service | Account | Issue | | (default) | MSSQLServer | SYSTEM | LocalSystem account . | | (default) | SQLServerAgent | SYSTEM | LocalSystem acco unt. | Issue: Password Policy Score: Check failed (critical) Result: Enable password expiration for the SQL server accounts. Issue: SSIS Roles Score: Check passed Result: The BUILTIN Admin does not belong to the SSIS roles. Issue: Sysdtslog Score: Check passed Result: Sysdtslogs90 table does not exist in the Master or MSDB datab ases Instance MSAS10.MSSQLSERVER Administrative Vulnerabilities Issue: Score: Result: er and/or MSDE and SQL Server/MSDE Security Mode Check failed (non-critical) SQL Server and/or MSDE authentication mode is set to SQL Serv Windows (Mixed Mode).

    Issue: CmdExec role Score: Check passed Result: CmdExec is restricted to sysadmin only. Issue: Registry Permissions Score: Check passed Result: The Everyone group does not have more than Read access to the

    SQL Server and/or MSDE registry keys. Issue: Folder Permissions Score: Check passed Result: Detail: | Instance | Folder | User | | MSAS10.MSSQLSERVER | Internal error. | - | Issue: Sysadmin role members Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Guest Account Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Sysadmins Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Service Accounts Score: Check passed Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts are not members of the local Administrators group and do not run as Loc alSystem. Issue: Password Policy Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: SSIS Roles Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Sysdtslog Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Instance MSRS10.MSSQLSERVER Administrative Vulnerabilities Issue: Score: Result: er and/or MSDE and SQL Server/MSDE Security Mode Check failed (non-critical) SQL Server and/or MSDE authentication mode is set to SQL Serv Windows (Mixed Mode).

    Issue: CmdExec role Score: Check passed Result: CmdExec is restricted to sysadmin only. Issue: Registry Permissions

    Score: Check passed Result: The Everyone group does not have more than Read access to the SQL Server and/or MSDE registry keys. Issue: Folder Permissions Score: Check passed Result: Detail: | Instance | Folder | User | | MSRS10.MSSQLSERVER | Internal error. | - | Issue: Sysadmin role members Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Guest Account Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Sysadmins Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Service Accounts Score: Check passed Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts are not members of the local Administrators group and do not run as Loc alSystem. Issue: Password Policy Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: SSIS Roles Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Sysdtslog Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Instance MSSQL10.MSSQLSERVER Administrative Vulnerabilities Issue: Score: Result: er and/or MSDE and SQL Server/MSDE Security Mode Check failed (non-critical) SQL Server and/or MSDE authentication mode is set to SQL Serv Windows (Mixed Mode).

    Issue: CmdExec role Score: Unable to scan Result: Error reading registry. If you are scanning a remote computer

    the Remote Registry service on that computer should be enabled. (13) Issue: Score: Result: SQL Server and/or Registry Permissions Check passed The Everyone group does not have more than Read access to the MSDE registry keys.

    Issue: Folder Permissions Score: Check failed (critical) Result: Permissions on the SQL Server and/or MSDE installation folder s are not set properly. Detail: | Instance | Folder | User | | MSSQL10.MSSQLSERVER | C:\Program Files\Microsoft SQL S erver\MSSQL10.MSSQLSERVER\MSSQL\Binn | \CREATOR OWNER | | MSSQL10.MSSQLSERVER | C:\Program Files\Microsoft SQL S erver\MSSQL10.MSSQLSERVER\MSSQL\Binn | BUILTIN\Users | | MSSQL10.MSSQLSERVER | C:\Program Files\Microsoft SQL S erver\MSSQL10.MSSQLSERVER\MSSQL\Binn | amit-PC\SQLServerMSSQLUser$amit-PC$MSSQLS ERVER | | MSSQL10.MSSQLSERVER | C:\Program Files\Microsoft SQL S erver\MSSQL10.MSSQLSERVER\MSSQL\Data | \CREATOR OWNER | | MSSQL10.MSSQLSERVER | C:\Program Files\Microsoft SQL S erver\MSSQL10.MSSQLSERVER\MSSQL\Data | amit-PC\SQLServerMSSQLUser$amit-PC$MSSQLS ERVER | Issue: Sysadmin role members Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Guest Account Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Sysadmins Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Service Accounts Score: Check passed Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts are not members of the local Administrators group and do not run as Loc alSystem. Issue: Password Policy Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: SSIS Roles Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex ist or access denied. Issue: Sysdtslog Score: Check not performed Result: [DBNETLIB][ConnectionOpen (Connect()).]SQL Server does not ex

    ist or access denied. Instance (default) (32-bit) Administrative Vulnerabilities Issue: Score: Result: er and/or MSDE and SQL Server/MSDE Security Mode Check failed (non-critical) SQL Server and/or MSDE authentication mode is set to SQL Serv Windows (Mixed Mode).

    Issue: CmdExec role Score: Check passed Result: CmdExec is restricted to sysadmin only. Issue: Score: Result: SQL Server and/or Registry Permissions Check passed The Everyone group does not have more than Read access to the MSDE registry keys.

    Issue: Folder Permissions Score: Check passed Result: Detail: | Instance | Folder | User | | (default) (32-bit) | Internal error. | - | Issue: Sysadmin role members Score: Check passed Result: BUILTIN\Administrators group is not part of sysadmin role. Issue: Guest Account Score: Check passed Result: The Guest account is not enabled in any of the databases. Issue: Sysadmins Score: Check failed (non-critical) Result: More than 2 members of sysadmin role are present. Issue: Service Accounts Score: Best practice Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts should not be members of the local Administrators group or run as Local System. Detail: | Instance | Service | Account | Issue | | (default) (32-bit) | MSSQLServer | SYSTEM | LocalSyste m account. | | (default) (32-bit) | SQLServerAgent | SYSTEM | LocalSy stem account. | Issue: Password Policy Score: Check failed (critical) Result: Enable password expiration for the SQL server accounts. Issue: SSIS Roles Score: Check passed Result: The BUILTIN Admin does not belong to the SSIS roles.

    Issue: Sysdtslog Score: Check passed Result: Sysdtslogs90 table does not exist in the Master or MSDB datab ases Instance SQLEXPRESS (32-bit) Administrative Vulnerabilities Issue: SQL Server/MSDE Security Mode Score: Check passed Result: SQL Server and/or MSDE authentication mode is set to Windows Only. Issue: CmdExec role Score: Check passed Result: CmdExec is restricted to sysadmin only. Issue: Score: Result: SQL Server and/or Registry Permissions Check passed The Everyone group does not have more than Read access to the MSDE registry keys.

    Issue: Folder Permissions Score: Check failed (critical) Result: Permissions on the SQL Server and/or MSDE installation folder s are not set properly. Detail: | Instance | Folder | User | | SQLEXPRESS (32-bit) | c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn | BUILTIN\Users | | SQLEXPRESS (32-bit) | c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn | BUILTIN\Performance Log Users | | SQLEXPRESS (32-bit) | c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn | BUILTIN\Performance Monitor Users | | SQLEXPRESS (32-bit) | c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn | amit-PC\SQLServer2005MSSQLUser$WIN-0KRVV1H1PKH$ SQLEXPRESS | | SQLEXPRESS (32-bit) | c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn | \CREATOR OWNER | | SQLEXPRESS (32-bit) | C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Data | amit-PC\SQLServer2005MSSQLUser$WIN-0KRVV1H1PKH$ SQLEXPRESS | | SQLEXPRESS (32-bit) | C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Data | amit-PC\SQLServer2005MSSQLUser$WIN-0KRVV1H1PKH$ SQLEXPRESS | | SQLEXPRESS (32-bit) | C:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Data | \CREATOR OWNER | Issue: Sysadmin role members Score: Best practice Result: BUILTIN\Administrators group should not be part of sysadmin r ole. Issue: Guest Account Score: Check passed Result: The Guest account is not enabled in any of the databases. Issue: Sysadmins

    Score: Check failed (non-critical) Result: More than 2 members of sysadmin role are present. Issue: Service Accounts Score: Unable to scan Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts should not be members of the local Administrators group or run as Local System. Detail: | Instance | Service | Account | Issue | | SQLEXPRESS (32-bit) | MSSQL$SQLEXPRESS | NT AUTHORITY\ NetworkService | This is a Domain Account. Baseline Security Analyzer cannot det ermine whether it belongs to the Domain Admins group due to the following error: 1212 The format of the specified domain name is invalid. . | Issue: Password Policy Score: Check failed (critical) Result: Enable password expiration for the SQL server accounts. Issue: SSIS Roles Score: Check passed Result: The BUILTIN Admin does not belong to the SSIS roles. Issue: Sysdtslog Score: Best practice Result: Do not create sysdtslogs90 in the Master or MSDB database.It is recommended to create a seperate logging database. Instance MSSMLBIZ (32-bit) Administrative Vulnerabilities Issue: SQL Server/MSDE Security Mode Score: Check passed Result: SQL Server and/or MSDE authentication mode is set to Windows Only. Issue: CmdExec role Score: Check passed Result: CmdExec is restricted to sysadmin only. Issue: Score: Result: SQL Server and/or Registry Permissions Check passed The Everyone group does not have more than Read access to the MSDE registry keys.

    Issue: Folder Permissions Score: Check failed (critical) Result: Permissions on the SQL Server and/or MSDE installation folder s are not set properly. Detail: | Instance | Folder | User | | MSSMLBIZ (32-bit) | c:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Binn | BUILTIN\Users | | MSSMLBIZ (32-bit) | c:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Binn | BUILTIN\Performance Log Users | | MSSMLBIZ (32-bit) | c:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Binn | BUILTIN\Performance Monitor Users |

    | MSSMLBIZ (32-bit) | c:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Binn | amit-PC\SQLServer2005MSSQLUser$WIN-0KRVV1H1PKH$MS SMLBIZ | | MSSMLBIZ (32-bit) | c:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Binn | \CREATOR OWNER | | MSSMLBIZ (32-bit) | C:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Data | amit-PC\SQLServer2005MSSQLUser$WIN-0KRVV1H1PKH$MS SMLBIZ | | MSSMLBIZ (32-bit) | C:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Data | amit-PC\SQLServer2005MSSQLUser$WIN-0KRVV1H1PKH$MS SMLBIZ | | MSSMLBIZ (32-bit) | C:\Program Files (x86)\Microsoft S QL Server\MSSQL.2\MSSQL\Data | \CREATOR OWNER | Issue: Sysadmin role members Score: Check not performed Result: Could not perform this check because SQL Server and/or MSDE w as not running. Issue: Guest Account Score: Check not performed Result: Could not perform this check because SQL Server and/or MSDE w as not running. Issue: Sysadmins Score: Check not performed Result: Could not perform this check because SQL Server and/or MSDE w as not running. Issue: Service Accounts Score: Unable to scan Result: SQL Server, SQL Server Agent, MSDE and/or MSDE Agent service accounts should not be members of the local Administrators group or run as Local System. Detail: | Instance | Service | Account | Issue | | MSSMLBIZ (32-bit) | MSSQL$MSSMLBIZ | NT AUTHORITY\Netw orkService | This is a Domain Account. Baseline Security Analyzer cannot determi ne whether it belongs to the Domain Admins group due to the following error: 12 12 The format of the specified domain name is invalid. . | Issue: Password Policy Score: Check not performed Result: Could not perform this check because SQL Server and/or MSDE w as not running. Issue: SSIS Roles Score: Check not performed Result: Could not perform this check because SQL Server and/or MSDE w as not running. Issue: Sysdtslog Score: Check not performed Result: Could not perform this check because SQL Server and/or MSDE w as not running. Desktop Application Scan Results

    Administrative Vulnerabilities Issue: IE Zones Score: Check passed Result: Internet Explorer zones have secure settings for all users. Issue: Macro Security Score: Check not performed Result: No supported Microsoft Office products are installed.

    También podría gustarte