Re: Sysadmins and Security Patches

From: Chip McClure (vhm3@hades.gigguardian.com)
Date: 05/18/02

• Previous message: ABRAHAM AJI: "Biometrics used for Authentication"
• In reply to: Stephen Zeigler: "Sysadmins and Security Patches"
• Next in thread: Stephen Gillis: "Re: Sysadmins and Security Patches"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Sat, 18 May 2002 13:56:08 -0700 (PDT)
From: Chip McClure <vhm3@hades.gigguardian.com>
To: Stephen Zeigler <SZeigle@smud.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello Stephen,

- From my experience in smaller, to medium sized organizations, it is
expected that an admin stays current on security patches, as well as
bug-fixes, for the machines that they administer. Having an admin not do
this, or not following security procedures, is in my opinion, highly
detrimental not only to the system, but to that of the network.

Chip

- -----
Chip McClure
Sr. Unix Administrator
GigGuardian, Inc.

http://www.gigguardian.com/
- -----

On Fri, 17 May 2002, Stephen Zeigler wrote:

> Hi all,
> I would like to get a feel for how other shops handle this issue. I am a
> security admin responsible for keeping about 140 servers, Unix and NT, up to
> date with security patches and hotfixes. This isn't my only responsibility
> and I'd like to get the sys admins more involved in keeping their servers
> patched. I love my job - but more stuff keeps landing on my plate. How is
> this best handled? Is it reasonable to expect sysadmins to install security
> patches? Thx
>
>

-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8
Comment: Made with pgp4pine 1.76

iQA/AwUBPOa/65uKtP8CSC69EQJk1wCeLriH8ywOiW0WuFnzKAvGje4ez+AAoPJU
4L9WfZmkEQJXuzdKoHp5DnYL
=Pyjl
-----END PGP SIGNATURE-----

---

• Previous message: ABRAHAM AJI: "Biometrics used for Authentication"
• In reply to: Stephen Zeigler: "Sysadmins and Security Patches"
• Next in thread: Stephen Gillis: "Re: Sysadmins and Security Patches"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: inheriting a network ... I am familiar with both AD & W2k and I know LAN/WAN. ... Any other golden nuggets of admin ... > servers, a Virus scanner that was 2yrs out of date, the ... > I would start by running the Microsoft Baseline Security ... (microsoft.public.win2000.security) Re: New to SMS - have a Collections question. ... I loaded the SMS Admin Console on the ... comprimise the security of the servers. ... SMS security is a bit different from normal Windows security. ... Access to objects is based on Security Rights (if you scroll down the list ... (microsoft.public.sms.admin) Re: inheriting a network ... Changed the passwords to the firewall and removed ... Any other golden nuggets of admin ... >> servers, a Virus scanner that was 2yrs out of date, the ... >> I would start by running the Microsoft Baseline Security ... (microsoft.public.win2000.security) Re: inheriting a network ... Clearing the Firewalls is a good idea though. ... So far, I changed all admin ... >> servers, a Virus scanner that was 2yrs out of date, the ... And install updates, SP, and security ... (microsoft.public.win2000.security) RE: New Job Advise ... Then change them all under the guise of basic security procedures, ... not to alarm or tick off the previous admin. ... users of all the servers change their passwords. ... considering my predecessor was a threat to the system. ... (Security-Basics)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > security-basics  > 2002-05