Stories
Slash Boxes
Comments

SoylentNews is people

SoylentNews is powered by your submissions, so send in your scoop. Only 18 submissions in the queue.

October 11 Saw the First of Redmond's All-or-Nothing Monthly Patches

posted by martyb on Sunday October 16 2016, @09:47AM   Printer-friendly
from the some-folks-don't-need-flexibility,-apparently dept.

-- OriginalOwner_ writes:

The Register reports

Redmond kicks off the era of the force-fed security update

Microsoft is kicking off a controversial new security program this month by packaging all of its security updates into a single payload.

The October security release introduces Redmond's new policy of bundling all security bulletins as one download. While more convenient for end users, who now get just one bundle, the move will irk many administrators, who had preferred to individually test and apply each patch to avoid compatibility problems.

Krebs on Security notes

Microsoft: No More Pick-and-Choose Patching

Starting this month, home and business Windows users will no longer be able to pick and choose which updates to install and which to leave for another time. For example, I've often advised home users to hold off on installing .NET updates until all other patches for the month are applied--reasoning that .NET updates are very large and in my experience have frequently been found to be the source of problems when applying huge numbers of patches simultaneously.

But that cafeteria-style patching goes out the...err...Windows with this month's release.

[...]Microsoft's patch policy changes are slightly different for home versus business customers. Consumers on Windows 7 Service Pack 1 and Windows 8.1 will henceforth receive what Redmond is calling a "Monthly Rollup," which addresses both security issues and reliability issues in a single update. The "Security-only updates" option--intended for enterprises and not available via Windows Update--will only include new security patches that are released for that month.

What this means is that if any part of the patch bundle breaks, the only option is to remove the entire bundle (instead of the offending patch, as was previously possible). I have no doubt this simplifies things for Microsoft and likely saves them a ton of money, but my concern is this will leave end-users unable to apply critical patches simply due to a single patch breaking something.

[...]The smartest option is probably to ditch [Adobe Flash] once and for all and significantly increase the security of your system in the process. I've got more on that approach (as well as slightly less radical solutions) in A Month Without Adobe Flash Player.

[...]Finally, Adobe released security updates that correct a whopping 71 flaws in its PDF Reader and Acrobat products. If you use either of these software packages, please take a moment to update them.

Has this change in method and control altered the thinking of any Soylentils WRT their choices of software supplier?
Now for the biggie: Has anyone convinced his boss to depart the Redmond path?

Previous: Windows 7 and 8.1 Moving to Windows 10’s Cumulative Update Model

Original Submission

 
This discussion has been archived. No new comments can be posted.
October 11 Saw the First of Redmond's All-or-Nothing Monthly Patches | Log In/Create an Account | Top | 48 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 3, Insightful) by Nerdfest on Sunday October 16 2016, @02:34PM

    by Nerdfest (80) on Sunday October 16 2016, @02:34PM (#414858)

    ... unless of course they use some commercial product that gets broken by one of the updates. In that case, they're basically screwed, because after all, it's not their computer anymore anyway.

    Starting Score:    1  point
    Moderation   +1  
       Insightful=1, Total=1
    Extra 'Insightful' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   3  

  • (Score: 3, Insightful) by RamiK on Sunday October 16 2016, @06:17PM

    by RamiK (1813) on Sunday October 16 2016, @06:17PM (#414912)

    What is this, a welfare economy? Too stupid to fail? If they can't make smart business choices and intelligent acquisitions in infrastructure, let them fall.

    How many decades Red Hat been servicing workstations? How many admins and developers been warning corporations Microsoft is a consumer toy OS that has no place on the corporate network? Every half wit duel-booting teen says the only thing keeping them on Windows is games... Isn't that a pretty thick hint on the state of the product?

    This is stupid. Customers saving money by going with cheaper vendor offers that out-source the development and don't maintain a local response-team should have known the risks when they jumped in bed with those companies and products. They've been voiced by the competition and their own staff time and again.

    How many office drones reboot their workstations once or twice a day when windows decides to take a break? How many calls the local admins get in an average corporate floor a day? Does that sound like a reliable product to build one's business on to you? Would you buy a fleet of trucks that needs that kind of in-house maintenance?

    This is absurd. Stop using crap or just fall off the market for all I care.

    --
    compiling...

  • (Score: 0) by Anonymous Coward on Sunday October 16 2016, @08:38PM

    by Anonymous Coward on Sunday October 16 2016, @08:38PM (#414939)

    MICROS~1 is way ahead of you.

    Buggy Excel patch panned [theregister.co.uk]
    Roll back the latest Excel patch, people: it's a crasher.

    Of course, not every Microsoft user will be able to roll it back, in which case you'll have to sit tight and hope nothing goes wrong before the next cumulative update.

    So, it's not only a commercial product, it's Redmond's own junk.
    Pfffff.

    -- OriginalOwner_ [soylentnews.org]