Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Focus-Microsoft
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: patching servers...

from [StefanDorn] Network Security [Permanent Link]
Subject: Re: patching servers...
Date: Tue, 10 Jan 2006 13:12:12 -0600 
If you have any spare hardware for it, setting up a small test environment 
can help, especially if you are running any custom software on your 
servers. That way, you have another layer of protection against the 
update(s) you are installing blowing your production servers out of the 
water. The initial cost of setting up a test server should pay for itself 
shortly by saving you a few "oh, crap" moments each year.

As far as testing the patches on a test system goes, you just want to run 
a server through all possible scenarios. Run everything that you expect to 
work on a regular basis, test any services that the server provides to end 
users, and so on.. checking your event log and any application specific 
logs for errors is probably the easiest route for that.

And of course, always read release notes for any known issues or conflicts 
introduced by a patch.

Stefan Dorn



Murad Talukdar <talukdar_m@subway.com> wrote on 01-09-2006 11:06:22 PM:


Hi all,
I wanted to get a few ideas of what people do to test their systems once
they have applied a patch/hotfix.

Currently I pull one of the hotswap drives that has the OS mirrored on 

it

and then let it run with the patch applied for a few days/week before
letting it rebuild.
In that time I will check things like event logs/performance and do some
general 'listening' for any issues. 
Does anyone have a more scientific method? What do you keep an eye on? 

Also,

Do you actually ever check whether the vulnerability(for example) that 

the

patch was designed to thwart has actually been plugged? 
In the last two years I've only had one instance of a patch causing an 

OS to

fail--and then just removing and then reapplying the patch seemed to 

work

just fine. However, I don't want to get complacent.

Kind Regards
Murad Talukdar








---------------------------------------------------------------------------



---------------------------------------------------------------------------




PRIVACY NOTICE: This e-mail message, including any attachments, is for the sole 
use of the intended recipient(s) and may contain business confidential 
andprivileged information.  Any unauthorized review, use, disclosure or 
distribution isprohibited.  If this e-mail was not intended for you, please 
notify the sender by replye-mail that you received this in error.  Destroy all 
copies of the original message andattachments.
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: New article on SecurityFocus, Robert Turner
Next by Date:  Re: patching servers..., Apollo BS Temu
Previous by Thread:  patching servers..., Murad Talukdar
Next by Thread:  Re: patching servers..., Apollo BS Temu
Indexes:  [Date] [Thread] [Top] [All Lists]