Tuesday, April 15, 2008 7:48 PM
bradley
It's blow up the server day
SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc:
http://www.incidents.org/diary.html?storyid=4292
Yes, it's tax day. It's also "Susan can now blow up the server with Security Patches" day now that the office is officially through busy season.
Patch Management = Change management
It means that at this time of the year in this kind of an office I do patches very carefully. And one thing that I look for is the difference between the server and the workstations.
SANS Internet Storm Center; Cooperative Network Security Community - Internet Security - isc:
http://www.incidents.org/diary.html?storyid=4264
Looking at the Patch Tuesday lineup, there is not a single one in there that is high on my must have. Even that DNS client that the Incidents.org site has as critical for servers isn't in the "I must patch now" category.. mainly because I haven't seen widespread issues.
That GDI one, MS08-021 KB948590...that sucker already is patched on the workstations last weekend...the server ... we don't surf at the server so there is no need, no concern about installing those kind of patches on the server.
Bottom line... you direct the change management.. it should not direct you.
Filed under: Security
![[There's a reason that Yoda is the unofficial mascot of SBS. Size indeed matters not.]](http://www.sbslinks.com/images/headertop.png "There's a reason that Yoda is the unofficial mascot of SBS. Size indeed matters not!")