UPDATE: Microsoft Security Fixes -- Superstition vs. Best Practices
Patch Tuesday comes tomorrow, and it's looking like a lucky 13 batch. Two patches are expected to be "critical" to apply. All are expected to require a restart.
IT pros, as opposed to home Windows users it seems, are supposed to test each security bulletin first before pushing it out on the network. And then do that 13 times, possibly while wearing wreaths of garlic, or something like that. Well, no. Here's what Microsoft's best practices publication says:
"One of the common misconceptions about Microsoft updates is that they are mandatory and/or urgent. All updates, regardless of their type (whether they are service packs, hotfixes or security patches), are to be applied on an 'as-needed' basis. They need to be evaluated individually and treated as important optional updates."
Well, that sounds nice, but most security bulletins seem to be about basic flaws in Windows or Internet Explorer. So, in practice, wouldn't IT pros be obligated to apply them all each month? Update: a reader pointed out that this advice above from Microsoft is from an old archived Microsoft TechNet library article. To get more current best practices advice from Microsoft, see this article.
What's your approach to the monthly Microsoft patch routine? Do you bother testing them? Do you apply all of them or just some? Share your best practices with Doug and readers at firstname.lastname@example.org.
-By Kurt Mackie
Posted by Kurt Mackie on 08/08/2011 at 6:13 PM