[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]
On Fri, 22 Jan 2010, Rob Beard wrote:
Quoting Steve Lee <steve@xxxxxxxxxxxxxxxxx>:2010/1/21 Grant Sewell <dcglug@xxxxxxxxxxxx>:Not updating *any* system leads it to be insecure, however I can perfectly understand why the SUS Admins didn't auto-approve - but not why they weren't on top of the updates in the first place.Quite - you have to do an impact analysis on any patch - and hope it doesn't introduce more holes.Yep I'd have thought they would have some sort of testing lab to test updates before rolling them out. At a previous company I used to work for they would generally delay updates for testing for about a fortnight to test against all the different systems, unless that is it was an ultra urgent update.
Wonder what made Exeter so special that it got caught out so badly. I hear (from friends who work there) that they now have some rather draconian rules in-place for the next 6 months... (Even though said friends do not have any Windoze PCs in thir department).
The admins switched off all the Ethernet switches too - so no VoIP phones, no way to make a 999 call. Interesting.
Gordon -- The Mailing List for the Devon & Cornwall LUG http://mailman.dclug.org.uk/listinfo/list FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html