- FBI warns Hit Man e-mail scammer back
- 20 tech habits to improve your life
- Industry mourns slain Cisco exec
- 10 Firefox add-ons for better browsing
- Wireless LANs face scaling challenges
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:App Performance | On Demand Security | Networking Solution | SOA | Value of WDS
Pure-play vendors such as Shavlik Technologies, BigFix and PatchLink got off to an early lead in the patch management game, but many established security vendors are adding patching to their arsenals. This means more choices for users, and it means the pure-play leaders need to adapt quickly to the trend toward multipurpose tools.
While software should be developed with a focus on minimizing security issues in the first place, the reality is that you'll always need to understand what is running in your environment and have the ability to deploy updates quickly and easily.
And the need for patch management grows stronger every day. Virus/worm/Trojan/phishing technology is only getting more sophisticated, probing for vulnerabilities in e-mail, Web browsers, instant messaging, file sharing and the like.
A company only needs to be brought to its knees once with an infection to understand the importance of patching. Personal firewalls, intrusion prevention , and other mitigating controls can be implemented, but patching is the only way to get to the root of the problem.
• First of all, operating system vendors are providing products focused on their individual platforms. Microsoft released Software Update Service (SUS) and has the next-generation Windows Update Services (WUS), in beta (see test). Red Hat has added a patch management offering for its enterprise products, although it is a bit pricey.
Microsoft is quickly gaining ground in this area, especially because its tools are free. As functionality continues to evolve in WUS, some companies are having a hard time justifying the cost of the current pure-play patch management products when they can get similar functionality at no charge.
But most companies are not a one-shop environment, so they are implementing one patch management process for Windows, one for Linux and a third for Solaris. This is not ideal, so many are looking for a patch management solution that provides cross-platform support.
• Asset/configuration management companies are really taking charge of the patch management arena. They are in the ideal position because they already have agents running on all managed systems and have access to see what is installed and configured. Add some functionality for identifying missing patches, plug that in to the software deployment mechanism, and a new patch management module is born.
Rss FeedRss Feed
Aging network systems and old habits have dictated how businesses spend their IT budgets. As a...
Implementing HA at the Enterprise Data Center Edge to Connect to a Large Number of Branch OfficesThis paper reviews the problem of creating a network where the dynamic availability of services is...
Enterprise Data Center Network Reference ArchitectureUsing a High Performance Network Backbone to Meet the Requirements of the Modern Enterprise Data...
The standard for Power over Ethernet (PoE), IEEE Std. 802.3af(tm)-2003, advanced networking,...
Harnessing the power of communications to increase workplace performanceDue to the convergence of IT and telecommunications technologies, the business workplace has been...
Stay out of the headlines: Detecting and preventing network intrusionsHow do YOU stay out of the headlines? There is no denying that risk exists in our computer-driven...
We have so many holes punched in our firewalls today that many industry insiders question the value...
IP address management in 2008 - six things to knowRead this Network World Special Brief to learn how Enterprise IT managers must update their...
The self-managed networkWe aren't there yet, but advances in network and systems management tools are making it possible to...
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask to prospective vendors to get the right endpoint solution.
Download the white paper.
Unauthorized applications: Taking back control
Employees installing and using unauthorized applications like IM, VoIP, games and peer-to-peer file-sharing applications cause many businesses serious concern. How do you control these applications?
Download the white paper.
Comment