Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

basics logo Security Basics mailing list archives

Patching
From: Alessandro Bottonelli <abottonelli () libero it>
Date: Mon, 20 Oct 2003 10:12:29 +0200
A thought has been crossing my mind for a long time, I'd like to confront it 
with the list.

In the "old days" a patch and/or fix was defined as "something that closes a 
known hole and opens ten unknown holes" :-) Yet, literature and common 
practices keep saying we should maintain our systems and network appliances 
up to date with the last patches / software releases.

WHY should I feel safer that way? How can I tell Rev. 1.3 is any better 
(security-wise) than Rev. 1.2 ? Is the cost (financial and others) of change 
management worth it? If so, how can I measure such worthness?

Too much caffeine on a rainy Monday morning, in usually sunny Italy? :-)

-- 
Alessandro Bottonelli
www.axis-net.it

---------------------------------------------------------------------------
FREE Whitepaper: Better Management for Network Security

Looking for a better way to manage your IP security?
Learn how Solsoft can help you:
- Ensure robust IP security through policy-based management
- Make firewall, VPN, and NAT rules interoperable across heterogeneous
networks
- Quickly respond to network events from a central console

Download our FREE whitepaper at:
http://www.securityfocus.com/sponsor/Solsoft_security-basics_031015
----------------------------------------------------------------------------

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]