存档

文章标签 ‘补丁管理’

Implementing and Managing Patch and Configuration Management: Introduction

2012年10月31日 没有评论

Endpoint devices have been the bane of security practitioners for as long as we can remember. Whether it’s unknowing users who click anything, folks who don’t think the rules apply to them, or the forgetful sorts who just leave their devices anywhere and everywhere, keeping control over endpoints causes heartburn at many organizations. To address these concerns, Securosis recently published our Endpoint Security Management Buyer’s Guide, which began with a list of the key issues complicating endpoint security management, including:

阅读全文…

Implementing and Managing Patch and Configuration Management: Preparation

2012年10月31日 没有评论

As we described in the Introduction to Implementing and Managing Patch and Configuration Management, endpoint hygiene is key to endpoint security management. WIth the product (or service) in hand, it’s time to get the technology implemented and providing value as quickly as possible. You know the old saying, “if you fail to prepare, you prepare to fail.” It’s actually true, and the preparation in this situation involves ensuring your processes are solid, defining device coverage and roll-out priorities, figuring out what’s already out there, and finally going through a testing phase to make sure you are ready to deploy widely. So, let’s revisit the patch and configuration management processes.

阅读全文…

Implementing and Managing Patch and Configuration Management: Integrate and Deploy Technologies

2012年10月31日 没有评论

By this point planning should be complete. You have designed your patch and configuration management processes, defined priorities to manage the devices in your environment, figured out which high-level implementation process to start with, discovered the devices in your environment, and performed initial testing to make sure the new technology doesn’t break anything. Now it’s time to integrate the patch and configuration management tools into your environment. Enough of this planning stuff, let’s get down to business! But you won’t actually remediate anything yet – the initial focus is on integrating technical components, installing agents as necessary, and preparing to flip the switch.

阅读全文…

rdp 3389漏洞考验企业补丁管理能力

2012年3月15日 2 条评论

1、安全团队响应速度

2、补丁推送速度

3、补丁生效速度

4、补丁推送覆盖率