The week after Patch Tuesday typically is when more subtle issues of patches
start coming to light. This post-Patch week was no exception.
I printed out this week’s "Book-of-the-Month" — otherwise known as
Microsoft’s ten new security bulletins — with gleeful anticipation. That’s
especially because we have two new patch tools to try out on these babies.
Microsoft’s recently released Windows Server Update Services (WSUS) is
another step in the goal of making patch management more efficient.
The old saying is, "April showers bring May flowers," but in this case we got
service packs instead.
For a week that only resulted in one patch bulletin, there still seems to
be a lot for me to wade through this month.
You should always keep your systems up-to-date with the latest patches. But
it isn’t always that easy to stay current, especially on critical production servers
that require careful testing and planned deployment.
Where has the week gone? We started with a new pope, we’re still shaking out
issues with both Windows 2003 SP1 and Microsoft’s April patches, and I’ve decided that
turning Japanese is the way to go. At least when it comes to security bulletins,
It was just a few years ago that I complained that patch management shouldn’t
be something we have to think about to use a PC. I trust my local lube shop to
keep my car’s fluid levels topped off. I trust my lawn service to spray my lawn
with the appropriate treatment each month. And I trust my financial software to
keep my checkbook balanced. I wanted to trust someone else to keep my system
After a month with no security bulletins in March, it’s back to our normal
evaluation process. This month, in addition to eight security bulletins
available via Windows Update, we’ve got two nonsecurity patches, Windows 98 and Me re-releases — and, oh, did I happen to mention some
newfound browser insecurities?
The past week brought us a passle of work. Some of it is very worthwhile, to be
sure, but all of it is a bit more effort to add to our already-overburdened