RE: exploit to vulnerability

From: Tom Milliner (tom.milliner_at_verizon.net)
Date: 08/20/05

  • Next message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: New MS patches crashed my 2k3 SP1 PDC" 
    Date: Sat, 20 Aug 2005 01:10:59 -0500
To: "'Richard Whitworth'" <Richard.Whitworth@hsbp.co.uk>, "'Murad Talukdar'" <talukdar_m@subway.com>, <focus-ms@securityfocus.com>

    Does WSUS let you have one server give different approved updates
    to different groups? I don't think SUS did that.

     
    Tom Milliner, CPA, MCSE
    2404 Summer Place Dr.
    Irving, TX 75062
    (214) 540-2741
    tom.milliner@verizon.net

    -----Original Message-----
    From: Richard Whitworth [mailto:Richard.Whitworth@hsbp.co.uk]
    Sent: Friday, August 19, 2005 9:18 AM
    To: Murad Talukdar; focus-ms@securityfocus.com
    Subject: RE: exploit to vulnerability

    Hi,

    I use WSUS for dektops - I have one computer group configured for myself and
    my technician. As patches appear the are approved for us, if they don't
    cause any issues they are then approved for the rest of the desktops. Turn
    around can be as little as a day.

    Servers are a different matter, I tend to install the patches at planned
    maintenance intervals so I have to take a view as to whether the issue is
    serious enough for me to reboot the servers or if other layers of protection
    such as AV software would mitigate any potential threat til the next planned
    maintenance interval.

    Richard

    -----Original Message-----
    From: Murad Talukdar [mailto:talukdar_m@subway.com]
    Sent: 19 August 2005 07:11
    To: focus-ms@securityfocus.com
    Subject: exploit to vulnerability

    With all the issues highlighting the speed that exploits are now being
    written (eg http://www.securityfocus.com/news/11285 )
    The window between exploit/vuln, appears on average, to be getting tighter.

    We have an SME network and I used to have a week or so to test patches
    before rolling them out.
    This all begs the question now, with limited resources, do I just patch and
    not worry about testing? I definitely have fewer resources than some of the
    companies that were hit (CNN et al) and less time to dedicate to patching.

    Should I just use auto updates/GP to patch everything regardless?
    What do other SME admins do?

    Kind Regards
    Murad Talukdar

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

    ----------------------------------------------------------------------------
    ------------------------------------
    Disclaimer: This email and any files transmitted with it are confidential
    and
    intended solely for the use of the individual or entity to whom
    they are addressed.

    If you have received this email in error please notify the
    originator of the message. This footer also confirms that this
    email message has been scanned for the presence of computer
    viruses and Henshaws Society for Blind People will not accept
    any responsibility for any loss of data or financial loss caused
    directly or indirectly by opening or processing this email and any
    accompanying attachments.

    Any views expressed in this message are those of the individual
    sender, except where the sender specifies and with authority,
    states them to be the views of Henshaws Society for Blind People.

    Please Note: Recipients of this message should be aware that
    Henshaws Society for Blind People reserves the right to monitor
    all email sent to and from the hsbp.co.uk domain or any other
    domain that may be administered by the said organisation.

    Head office telephone number: 0161 872 1234
    Head office fax number: 0161 848 9889
    website: http://www.hsbp.co.uk

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

    ---------------------------------------------------------------------------
    ---------------------------------------------------------------------------

  • Next message: Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP]: "Re: New MS patches crashed my 2k3 SP1 PDC"

    Relevant Pages

    • RE: Hour offset in public calendar
      ... All of our SBS SP1 installations with the exception of two due to hard drive ... the servers and workstations on the network. ... Our Workstations are set to receive their updates automatically and reboot ... I am starting to get comfortable with the WSUS 3.x integration into SBS R2. ...
      (microsoft.public.windows.server.sbs)
    • RE: Hour offset in public calendar
      ... the servers and workstations on the network. ... Our Workstations are set to receive their updates automatically and reboot ... I am starting to get comfortable with the WSUS 3.x integration into SBS R2. ... appointments are one hour later, including all day appointments which make ...
      (microsoft.public.windows.server.sbs)
    • Re: Best Practice Windows Update in Production Environment
      ... or should I just concern myself with the basic WSUS? ... recommended for 30 servers and up to 500 PCs. ... specific updates for specific groups. ... If you have "development" servers that mimic the production servers this ...
      (microsoft.public.windows.server.general)
    • unable to get windows update in windows 2003 servers
      ... I recently installed wsus sp 1 in one of the servers with windows 2003. ... unable to get the updates from the windowsupdate site. ...
      (microsoft.public.windowsupdate)
    • unable to get updates from windows update: 0x80072EE2
      ... I recently installed wsus sp 1 in one of the servers with windows 2003. ... unable to get the updates from the windowsupdate site. ...
      (microsoft.public.windowsupdate)