Guest Blogs

Blog archive

Patch Happy

**It's guest columnist time! Doug Barney is traveling this week, so filling his chair today is Michael Desmond, former editor-at-large of Redmond and founding editor of our newest publication, Redmond Developer News. Stay tuned for more guest columnists throughout the week.**

IT managers might still be scrambling after last Tuesday's out-of-band patch to fix the urgent Windows Animated Cursor Handling flaw. Now we learn that tomorrow's scheduled patch will likely offer five Windows fixes, including at least one that merits a "critical" designation.

Some of the new patches will likely require a system restart, which could make life a bit complicated as IT managers try to sequence things so that services and servers don't fall offline. The critical update, targeting Microsoft Content Management Server, also demands a reboot.

Finally, some folks have expressed outrage that the animated cursor flaw had apparently been known to Microsoft for months. While the delayed remediation allowed an exploit to emerge, Microsoft in a blog posting contends that the time on task allowed Redmond to fix a series of vulnerabilities related to the flaw.

As ever with these urgent patches, it all seems to come down to a precarious balancing act. Does Microsoft rush patches to fill a hole before it can be attacked, and risk breaking or missing something critical in the process? Or should it take the time to build a more durable and manageable fix, knowing that the delay could leave systems wide open to attack?

What's your preference? Tell us at [email protected].

Posted by Michael Desmond on April 09, 2007 at 11:53 AM


Featured

  • The 2022 Microsoft Product Roadmap

    Microsoft has a lot in the docket for 2022, including new products like SQL Server 2022, Exchange Subscription Edition and Visual Studio 2022 for Mac.

  • Microsoft Releases Entra Verified ID Service

    Microsoft announced on Monday the "general availability" of Microsoft Entra Verified ID, a new service that promises a more deliberate way for individuals and organizations to share identity information.

  • 2022 Microsoft Conference Calendar: For Partners, IT Pros and Developers

    Here's your guide to all the IT training sessions, partner meet-ups and annual Microsoft conferences you won't want to miss.

  • Microsoft Muddies Water with Microsoft 365 Services and Office Connection

    Microsoft has gone out of its way to making the Office 2016 and Office 2019 connections to Microsoft 365 services unclear and confusing.