Last year, our college campus was hit with an unclassified virus. After
the hours it took to manually run around and patch 1000+ computers, our
upper management finally approved a WSUS server. Knock on wood, it has
run beautifully, and keeps our desktops and servers patched. As far as
actually getting the updates applied and rebooting, we have standard
times posted that the server may be unavailable due to routine
maintenance. After last year's scare, everybody seems to be OK with
this slight inconvience. We aren't regulated as much as the healthcare
field, but do still have standards to meet for state and federal
funding. As long as the president of the college supports our
practices, we don't have much to worry about.
Renee
Network Manager
-----Original Message-----
From: beinm@ummhc.org [mailto:beinm@ummhc.org]
Sent: Monday, May 08, 2006 8:02 AM
To: focus-ms@securityfocus.com
Subject: Patch Management on Critical Servers (Healthcare)
Hello
I'm just curious to hear how people in the field have been handling
patch management with critical servers. Have you setup maintenance
windows? If, so how did you manage the down time? What have people been
doing if the device or server has an approved FDA configuration? Are you
using thing like WSUS?
Thanks,
Matthew
Security Engineer
------------------------------------------------------------------------
---
------------------------------------------------------------------------
---
---------------------------------------------------------------------------
---------------------------------------------------------------------------
