Re: Dear Microsoft... Rebooting servers id NOT security..
From: Duse (dude_at_soft.com)
Date: 05/25/05
- Next message: Duse: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Previous message: Duse: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- In reply to: Miha Pihler [MVP]: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Next in thread: techguy: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Reply: techguy: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 25 May 2005 18:03:07 +1000
"Miha Pihler [MVP]" <mihap-news@atlantis.si> wrote in message
news:%23mOcA8dXFHA.2288@TK2MSFTNGP14.phx.gbl...
> Hi,
>
> I am not sure where you see the problem? Is the problem that you have to
> reboot the server?
There are two parts to the problem, a patch which seems to partially load
files,a nd not others, and leaves the system unstable..
The second is the need to reboot just to make the first part work...
>
> If this is the case, you can deploy clusters where you reboot one server
> while the other takes the load and takes care of any user requests. Then
> you patch and reboot the other node.
>
> Personally I don't have any problem with rebooting server once a month
> (this is how often Microsoft will in general release patches).
<< My only concern is critical patches...
>
> My practice is to automatically install and reboot client computers, but
> to only download patches on server. After the update has been evaluated
> that it will not cause any problem it is installed on servers...
>
> There are also quite a few tools that will allow you to remotely deploy
> and control installation of patches on server. One tool that comes to mind
> is Microsoft SMS (Microsoft System Management Server) or WSUS (Windows
> Server Update Services) that will soon be released.
>
> When was last time you updated your active network equipment (routers,
> switches etc)? E.g. CISCO, IBM, Juniper, Symantec, 3COM, etc... all have
> same problem that is described in MS05-19 for Microsoft.
Not so, have not rebooted my CISCO router for about three years, symantec
VPN 2 plus years, firewall six months...
>It is a critical bug that could allow DoS against your network. Let me know
>how it went with rebooting routers and switches.
> http://news.com.com/2102-1002_3-5669392.html?tag=st.util.print
>
> --
> Mike
> Microsoft MVP - Windows Security
>
> "Duse" <dude@soft.com> wrote in message
> news:Oyxg33XXFHA.2684@TK2MSFTNGP09.phx.gbl...
>> The recent rend for critical patches for win 2003 to require rebooting
>> the server is USELESS!!!
>>
>> Win 2003 is a SEVER, it cannot be continually rebooted and offer any
>> Server level to its users.
>>
>> Additionally the fact that only a partial installation occures ( which
>> leaves the server in a unstable state) is also USELESS...
>>
>> FYI: server are NOT workstations and do not have people sitting at them
>> to monitor and react to your auto updates and installs..
>>
>> Is this truely what you think improving security is....
>>
>> Unhappy..
>>
>>
>>
>
>
- Next message: Duse: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Previous message: Duse: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- In reply to: Miha Pihler [MVP]: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Next in thread: techguy: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Reply: techguy: "Re: Dear Microsoft... Rebooting servers id NOT security.."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
