08-22-2003, 07:21 PM
|
|
|
Confirmed User
Join Date: Jul 2001
Posts: 6,964
|
Quote:
Originally posted by Phil21
We do...
Actually any critical stuff that you use are default install on (apache, php, ssh, openssl, etc. etc.) will automatically get patched as soon as there is an upgrade available. This check is performed once every 8 hours or so.
For critical things like the latest apache remote exploit, we of course do pre-emptive testing of customer machines. If someone has an unmanaged box we no longer have access to, we e-mail them and offer to fix it if they like.
It's actually more tricky than it sounds. Many people once getting a ded box decide they don't want the apache install it comes with, or the php install, or whatever, and go compile/install their own. In these cases it's not something we can come around and fix instally behind the scenes, because we need to consult w/ the customer first to figure out what if any modifications were made. If we didn't do the due-diligance, we would break things, which is arguable worse than fixing it in the first place.
If we fully manage a box though, it's cake. Usually all machines on our network are patched within hours of an exploit being announced.
-Phil
|
ok cool thats what i wanted to know |
|
|