Patch right and keep hackers out

In the arms race between network admins and hackers, battles are fought over the security holes in enterprise software. Your best defense ...

In the arms race between network admins and hackers, battles are fought over the security holes in enterprise software. Your best defense is the patches that vendors release to plug those holes.


Vendors are working to make patching easier and more trustworthy—like Microsoft and its monthly Patch Tuesday release—but you shouldn't necessarily deploy every patch to every system in your enterprise the day it's released. To best protect your network, you should develop a plan for patching that is based on best practices and tailored to your unique enterprise.

The hidden risks of patching
"Patches are becoming a routine thing. The odds that a patch will crash your critical system are decreasing," says Rafal Los, senior security strategist with HP Software. "It isn't such a hindrance because of automation, but the enterprise still needs controls. Too many enterprise apps could break."

Patching software holes is essential to network security, but it brings a set of operational challenges. You need to know how a patch will impact your existing systems, particularly legacy systems. Patching can expose major problems on your network, including brittle systems, home-grown, mission-critical software, and outdated hardware. As difficult as managing these systems can be, they become a security risk when they're not updated.

You also need to assess the urgency of the update. Does the patch fix a hole that is right now being exploited by hackers? If it's an emergency patch, deploy it immediately—but those are fairly rare. Assuming the patches are part of a vendor's regular patch release cycle, you should deploy them with the same careful, measured steps you take with any other software.

Best practices for patching
With each patch, you should weigh the impact it might have on your systems against the immediate threat level and the consequences to your enterprise if the hole is breached. If many patches are released on the same Patch Tuesday, figure out which ones are most important to your organisation and which pose the greatest security threat. Next:

1. Don't deploy the patch immediately (unless it's an emergency fix). As Los says, "You don't want to be the guy that gets hosed" when you install a patch that hasn't been fully tested. He recommends waiting a few days to install the patch, giving yourself time to learn from any mistakes other admins make and discuss online. Of course, if you wait too long, you risk falling prey to the security exploit the patch fixes.

2. Test the patch on a single system. First install the patch on a system that's in quarantine. Find out how the patch impacts any other applications it interacts with on your network. If you need to patch a business-critical system, create a duplicate system for testing if at all possible.

3. Monitor your systems when you roll out the patch. When you've deemed the patch safe for your systems, deploy it in phases, starting with the low-risk groups and moving on to the higher-risk groups across your enterprise. Monitor all of your systems through the deployment—you need to be able to pinpoint any failure as it happens. Also, you should have backups that you can revert to if a patch takes down any part of your network.

Part of IT's natural life cycle
Beyond the immediate need to patch—say, on next Patch Tuesday—your organisation should have a routine plan for patch deployment. You should establish a regular patch cycle that is in sync with your network's utilisation and employees' schedules. Patching should not be a fire drill!

Also, educate your users. Let them know when to expect patches so they can save their work, shut down their computers, and ready their systems as much as you need for the patch to roll out smoothly. Automate as much as you possibly can. If you have several patches to roll out to one thousand physical servers, you need to be able to push that patch out once automatically. Finally, work with trusted vendors that test their patches before they're released.

Your ability to fend off hackers' latest gambits often comes down to knowing what's changed, and what needs to be changed, on your network. When you make patching a central part of your organisation's change management plan, your network becomes more secure and reliable.
Name

Acronyms,1,Ads Ready,1,Adsense,1,Adserver,1,airtel,2,android,22,Apps,4,Auto Loader,19,backup,1,Bank,1,BB10,1,better,1,bios,1,blackberry,24,Blogger,11,blogger jquery,12,Blogger Template,3,blogger tips,12,Blogger Widget/Gadget,13,Bluetooth,1,BOIS Update,1,browser,2,Bug,1,business,3,CAD,1,capability,1,Career Development,2,Celebrate,1,chat,1,cloud computing,1,code,1,comment,2,computer,13,crack,17,crash,1,css,3,cure,1,CV,18,data,2,delete,1,Diamond Bank,2,download,32,email,6,ESPN,1,etisalat,2,Facebook,2,Feedburner,1,Firmware,3,Flash File,27,Flash Games,3,Flashing,3,For Seniors,2,free-up space,1,Freebies and Giveaways,2,FTP,1,Galaxy,2,games,5,glo,2,good,1,Google,8,Google Affiliate,1,Google Drive,1,Google Photos,1,Google Play Store,3,Google+.,1,great,1,GTA,4,guide,3,hacks,7,handle,1,Hard drive,2,HDD,1,how to,10,HTC,2,html,1,Huawei,1,ict,4,India,1,INEC,1,Infinity Best,1,Innovation,1,Intel,1,internet,6,internet explorer,1,iOS,2,ipad,4,iphone,7,Itel,1,java script,6,Jetpack,1,keyboard,8,know,3,Label,3,Laptop,1,Learning,12,LG,2,Lollipop,2,Mac,2,Management,1,Marriage,1,Mediafire,1,meeting,1,message,12,Microsoft,5,Microsoft excel,2,mobile,7,Mobile Phones Specifications,1,mobility,2,money,1,Motorola,1,Movie,1,Mozilla Firerfox,1,MS Word,1,MTK,2,mtn,4,music,1,need,1,Networking,1,NOBLE NOKIA INFO,9,Nokia,4,notebook,1,passwords,1,PayDirect,1,PayPal,1,PC,7,PC Games,45,PC mgazine,6,PC Tricks,3,pc-crash,1,PDF,1,Personal Productivity,4,Phone,3,photo shop,1,Play Station,9,Plugin,1,post,2,Premium Blogger Template,1,protect,3,ProtectTool,1,Racing Game,2,reasons,1,Responsive,1,Root,2,sagem,1,samsung,11,save,1,secrets,1,secure,4,security,9,security Enhancements,5,Server,1,shell-coding,1,shortcut,21,Simple Server,1,SmartsmsSolutions,2,SMS,6,social community,3,Sony,2,Spreadtrum,1,SSD,1,steps,1,Stock Rom,2,Symbian,1,Sync,2,Tablet PC,3,Talent,1,TECH_WORLD,2,Techniques,3,technology,3,technology tips,26,Tecno,7,template hacks,1,Theme,1,tips,19,transmissions,1,Tutorial,3,tutorials,28,types,1,USB Driver,1,users,1,Video,1,Virus,1,Visa Card,1,Volcano Box,8,Vote,1,WAP WORLD,8,Whatsapp,1,windows,11,Windows 10,2,Windows 7,1,Windows 8,1,windows mobile,1,Windows Phone,2,Windows Phone Store,2,windows xp,5,word of life,11,Wordpress,3,work place skills,7,WPTouch Mobile Plugin,1,Xbox,2,zain,1,Zenith Bank,1,
ltr
item
NOBLE ICT EXPLOITS ZONE™: Patch right and keep hackers out
Patch right and keep hackers out
http://3.bp.blogspot.com/-G2x7Q0E76p0/USxY_mQMwnI/AAAAAAAABhE/9TG7LczAK5E/s320/spanner.jpg
http://3.bp.blogspot.com/-G2x7Q0E76p0/USxY_mQMwnI/AAAAAAAABhE/9TG7LczAK5E/s72-c/spanner.jpg
NOBLE ICT EXPLOITS ZONE™
https://naijaexploits.blogspot.com/2013/02/patch-right-and-keep-hackers-out.html
https://naijaexploits.blogspot.com/
https://naijaexploits.blogspot.com/
https://naijaexploits.blogspot.com/2013/02/patch-right-and-keep-hackers-out.html
true
4058378300189517969
UTF-8
Loaded All Posts Not found any posts VIEW ALL Readmore Reply Cancel reply Delete By Home PAGES POSTS View All RECOMMENDED FOR YOU LABEL ARCHIVE SEARCH ALL POSTS Not found any post match with your request Back Home Sunday Monday Tuesday Wednesday Thursday Friday Saturday Sun Mon Tue Wed Thu Fri Sat January February March April May June July August September October November December Jan Feb Mar Apr May Jun Jul Aug Sep Oct Nov Dec just now 1 minute ago $$1$$ minutes ago 1 hour ago $$1$$ hours ago Yesterday $$1$$ days ago $$1$$ weeks ago more than 5 weeks ago Followers Follow THIS CONTENT IS PREMIUM Please share to unlock Copy All Code Select All Code All codes were copied to your clipboard Can not copy the codes / texts, please press [CTRL]+[C] (or CMD+C with Mac) to copy