Getting ready for patching

On February 11, 2009, in Security, by

The Microsoft Security Response Center (MSRC) : February 2009 Monthly Bulletin Release:
http://blogs.technet.com/msrc/archive/2009/02/10/february-2009-monthly-bulletin-release.aspx

Notice I said ‘getting ready for’ not that I am yet.  Tuesday when the security patches come out, I start on my testing process.  I see what the patches do, I start reviewing the bulletins to see if I can find a reason to NOT run screaming to the server and patch immediately.  It’s not that I don’t want to patch, it’s that I want to patch when I am ready to patch.  Typically in a firm, being ready to patch does not mean throwing those on a server when you haven’t at least read the bulletin, ran them on a test bed and understood what their impact is.  It annoys me when I see consultants come into the newsgroups and say “some patches installed last night and now I have this issue”.  Always know EXACTLY what patches you have deployed to your systems.

Sign up for that webcast and understand the issues before deploying the patches on servers.

TechNet Webcast: Information About Microsoft February Security Bulletins (Level 200):
http://msevents.microsoft.com/CUI/WebCastEventDetails.aspx?culture=en-US&EventID=1032395122

 

One Response to Getting ready for patching

  1. John says:

    Looking forward to reading about your experience with these patches.