Interesting tool. I'll have to check it out later this summer when I begin my devel of a Windows Security course.

Here's what I don't understand. Why couldn't they do something like the tool that Red Hat has? up2date, included as part of the OS, automatically checks and compares your system to what vulnerabilities are found. Updates are done -- including kernel updates -- via a simple push of the button. Downloads and installs are done (without reboots) and the system continues.

Windows Update is ok but it means I have to visit their website and I have found that to be an annoying experience at times. Up2date is a tool -- system admin run -- that is included. After my first year of free service, I can either continue by manually checking or paying a modest fee ($60/yr) to get updates. They also have a mail service to notify me of vulnerabilities.

It's not to say that up2date is perfect but I think it's a step above Windows Update. Given the price paid for Microsoft Server products, I would think a little support should be included.