[windows2000] SV: Re: Discussion: Microsoft to release patches once per month
- From: "Svein Arild Haugum" <svein@xxxxxxxxxxxxxx>
- To: <windows2000@xxxxxxxxxxxxx>
- Date: Wed, 10 Dec 2003 10:02:12 +0100
I solved the laptop problem by doing:
I made an OU for Laptop Computers in AD.
Created a GPO wich installed the AutoUpdate klient, made the AutoUpdate service
autostart, turned of software install warnings. Then i importet the
WindowsUpdate template into the policy, and configured the laptops to
automaticly download and install updates from WindowsUpdate (web).
Once a Laptop has been in the domain-network, this wil apply.
Also, you say:
"I think maybe they should release the patches as and when they are available,
but send out a mail summarising patch releases every month."
I dont agree with this, this would give people who are die hard security
focused a better option, and hackers better options, since they can find bugs
up to a month before regular people even hear about them. So once a patch is
ready they MUST tell everyone, or keep it quiet.
Mvh
Svein Arild
-----Opprinnelig melding-----
Fra: Neil Bullock [mailto:n.bullock@xxxxxxxxxxxxxxxxxxxxx]
Sendt: 10. desember 2003 09:46
Til: windows2000@xxxxxxxxxxxxx
Emne: [windows2000] Re: Discussion: Microsoft to release patches once
per month
Sorin Srbu wrote:
>> He said the reason was that WE, the end user, told M$ that M$ was
>> overloading us with all these darn patches, so THEY did us a favor
>> and cut it back to once a week, and now once a month.
> Do they mean that even if a serious security flaw is found, it
> won't be posted until the next monthly release??
Seems so. I think maybe they should release the patches as and when they
are available, but send out a mail summarising patch releases every month.
We recently had the dilemma of trying to get our laptop users to update
their laptops. We tried custom programmed ideas, tried forcing them to do
it themselves from Windows Update, and tried making them log on to the
network regularly to get the updates from SUS. In the end we had to give,
and just live with the fact that the laptops will likely remain unpatched
until a) someone's machine is exploited, or b) we update the machines
ourselves.
The monthly updates do make my life much easier, but it's silly to withhold
critical patches until a pre-determined release date.
My boss was one of those people complaining about overloading with patches.
I suspect it's people like him (people who know nothing about computing) who
made this happen.
--
Neil Bullock, ICT Technician.
Brayton College, Doncaster Road, Selby, North Yorkshire, YO8 9QS
Tel: 01757 707731; Fax: 01757 213389
********************************************************
This Weeks Sponsor SeamlessPlanet.com
Register your domain name for as low as $7.75 per year!
Cheaper than Godaddy..same great service!
http://SeamlessPlanet.com
********************************************************
To Unsubscribe, set digest or vacation
mode or view archives use the below link.
http://thethin.net/win2000list.cfm
********************************************************
This Weeks Sponsor SeamlessPlanet.com
Register your domain name for as low as $7.75 per year!
Cheaper than Godaddy..same great service!
http://SeamlessPlanet.com
********************************************************
To Unsubscribe, set digest or vacation
mode or view archives use the below link.
http://thethin.net/win2000list.cfm
Other related posts:
