[Dshield] MS Patching side-effects

John B. Holmblad jholmblad at aol.com
Thu Aug 18 16:39:23 GMT 2005


Tom,

your experience makes it clear that, in this instance, those experts 
like to criticize sysadmins for not patching soon enough are somewhat 
off base.  It sounds like you have had a "damned if you do, damned if 
you don't" kind of day! 

I have seen references on this list that the "vulnerability announcement 
to exploit code in the wild" interval was somewhere between 4 and 7 days 
in the case of MS05-039.  How many large organizations with 1000's of 
desktops can get the job done in 4 days, especially when it is a desktop 
as well as server exploit and especially if there are business critical 
custom apps that might get broken by the fix?


Best Regards,

John Holmblad

Televerage International
GSEC Gold,GCWN Gold,GGSC-0100,NSA-IAM

(H) 703 620 0672
(M) 703 407 2278
(F) 703 620 5388

primary email address:     jholmblad at aol.com
backup email address:      jholmblad at verizon.net



More information about the list mailing list