Upon completion of the Security Updates Lab, students will be able to:

1. Install a Security Update and a Service Pack.
2. Install the Microsoft Baseline Security Analyzer (MBSA) program and use it to check a computer for security risks.

All operating systems have flaws and vulnerabilities that can be exploited to attack a computer or a network. As these flaws are discovered, the operating system code is modified or added to in order to secure this vulnerability. In order to protect a computer or a network, the modified code must be installed as a Security Update. When enough updates have been done to a particular operating system, they are bundled together as a Service Pack. Microsoft has also designed a program for identifying common security misconfigurations called Microsoft Baseline Security Analyzer (MBSA). This is a good program for finding overlooked security flaws.

This lab will take 10 to 20 minutes.

A computer with Internet access.

1. Show your instructor the Security Updates or Service Pack you plan on installing.
   Be sure and obtain your instructor's signature that signifies you have completed this step before moving on.
   
   
    
2. Notice that Microsoft has added an automatic update option.
   List one reason that automatic updates would be good and one reason why this option could cause problems.
   
    



3. Select the Use Administrative Options link. Select the Microsoft Baseline Security Analyzer (MBSA) link. Select the latest version and download it. Install MBSA and run it. Be sure to show the results to your Instructor and get his/her signature before moving on.
   
   
   
   
4. What security lapses did the MBSA program find? Explain why these risks could cause security problems.