Threat Level: green Handler on Duty: Russ McRee

SANS ISC InfoSec Handlers Diary Blog


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Day 30 - Applying Patches and Updates

Published: 2008-10-30
Last Updated: 2008-10-30 15:06:39 UTC
by Kevin Liston (Version: 2)
0 comment(s)

Today's topic revolves around applying patches and updates as a response measure.

My first personal comment is that patching and updating is really a Preparation step and helps avoid incidents in the first place.  But we all already knew that. :-)  I'm interested in how your patching and updating process differs when you've had an incident before patches become available.

Reader comments to follow...

Chris: wants to remind us about Secunia's PSI inspector.  I should also point out that we musn't forget the home-user scaled incident response.

Anonymous: wants to remind us to disable an unpatched service until the patche become available-- especially in the dreaded "zero day" scenario with exploits ongoing and patches still being developed/tested.

Keywords: Awareness2008
0 comment(s)
Diary Archives