by Lawrence Garvin, Microsoft MVP (@LawrenceGarvin)
Yesterday Kent Agerlund and I presented at the Microsoft Management Summit. Kent is the Chief System Management Architect with Coretech A/S in Denmark, and a Configuration Manager MVP. It was wonderful to see all of the MMS attendees at our session, UD-B326 – Managing Third Party Updates with System Center 2012 Configuration Manager SP1, yesterday afternoon. The number of attendees at the session reinforces the increased awareness among ITPros of the importance of managing updates for third-party products in the enterprise. I think this is the first year that sessions have been scheduled prior to the “first day”.
We’ll update this post with the link to the recorded session as soon as it’s available, but here’s a quick recap of the highlights of the session:
– 86% of vulnerabilities in today’s environment exist in third-party application; this number is almost twice what it was six years ago.
– Of the Top 50 applications installed, there were 229 vulnerabilities in 2007, 421 in 2009, and 1137 in 2012.
– Patch remediation needs to focus on the severities of vulnerabilities and actual risk; a recent study showed that an 80% reduction in the number of vulnerabilities in the sample could be achieved by either patching the 37 most prevalent applications or patching the 12 applications with the most critical vulnerabilities.
The presentation included demonstrations of:
– Building a JRE7 update package with System Center Updates Publisher (SCUP)
– Managing and publishing updates with Secunia CSI
– Publishing updates and how to do an on-demand deployment with SolarWinds Patch Manager
Be sure to watch the recording to get the benefit of those demonstrations. Check out this related post on understanding the appropriate places to use “Impact” and understanding what “Reboot Behavior” should be set to when “Impact” is not set to normal. Checkout SolarWinds at MMS, booth #712.