RE: Windows Update
- From: "Edward Sullivan" <esullivan@xxxxxxx>
- To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
- Date: Fri, 20 Dec 2002 10:17:58 -0600
This article addresses more of the concerns. Windows Update is intended for use
for consumer products, and not for production data center environments. To
quote an industry expert:
http://archives.neohapsis.com/archives/ntbugtraq/2002-q2/0053.html
"So in the end, I have to agree with Susan Bradley's basic premise, don't use
Windows Update. I vehemently disagree with her that we should treat it as v1.0,
its been around long enough and MS have had ample opportunities to fix it, it
should be robust, accurate, and incredibly reliable given how important it is.
I also wouldn't agree that it can be used on systems other than servers, its as
unreliable on workstations as it is on anything else."
Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor
-----Original Message-----
From: Rupert Wood [mailto:me@xxxxxxxxx]
Sent: Friday, December 20, 2002 10:05 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: Windows Update
http://www.ISAserver.org
Edward Sullivan wrote:
> There are big problems using Windows Update on production
> servers. I would recommend that you instead download the
> appropriate hotfixes and service packs individually, and apply them.
>
> Reference this thread for more info on why Windows Update on
> servers is bad news.
>
> http://archives.neohapsis.com/archives/ntbugtraq/2002-q2/0054.html
I only have time to skim that, but I read it as
"Windows Update isn't good enough - MS should provide us
with something better."
and his only criticism was that you have to manually check that the
patches it applies cover all the security bulletins. There were no
follow-ups to it.
Is that it, or have I missed something? He didn't convice me of any
reason not to use WU or MS's other free tools - you just have to be
aware of their limits.
Rup.
List Sponsored by Aspelle
Aspelle's Microsoft-centric, Aspelle Everywhere, leverages ISA server and the
Internet to quickly and cost-effectively manage and deliver secure, client-less
access to all corporate applications (Web, Unix, Windows and legacy systems),
for all users.
More info at http://www.aspelle.com/info
------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Exchange Server Resource Site: http://www.msexchange.org/
Windows Security Resource Site: http://www.windowsecurity.com/
Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
esullivan@xxxxxxx
To unsubscribe send a blank email to $subst('Email.Unsub')
Other related posts:
