Beyond Windows Patching: Dealing with the New Imperative to Patch Adobe, Apple, Linux and More

1,292 views

Published on

In today’s complex IT environment, you must be able to rapidly patch not only servers and operating systems, but also PC’s and third party applications. Join Randy Franklin Smith from Ultimate Windows Security in this live webcast as he discusses going “beyond Windows patching” to other operating systems like Linux, UNIX and Apple, as well as the applications that run on them.

Download the presentation to:
*Learn the security gaps that exist by relying upon multiple, platform-specific patch management utilities.
*See a product demonstration that shows how you can centralize and streamline patch management across your entire organization.

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,292
On SlideShare
0
From Embeds
0
Number of Embeds
1
Actions
Shares
0
Downloads
32
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Beyond Windows Patching: Dealing with the New Imperative to Patch Adobe, Apple, Linux and More

  1. 1. Beyond Windows Patching: Dealing with the New Imperative to Patch Adobe, Apple, Linux and More <br /><ul><li>Commissioned by:</li></ul>© 2010 Monterey Technology Group Inc.<br />
  2. 2. © 2010 Monterey Technology Group Inc.<br />Brought to you by<br />Speakers<br />Russ Ernst, Senior Product Manager<br />Andrea Bolz, Solution Marketing Manager<br />
  3. 3. Preview of Key Points<br />© 2010 Monterey Technology Group Inc.<br />Patching today’s enterprise against today’s threats<br />Layer by layer<br />Stats<br />Tools<br />Issues <br />
  4. 4. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />WSUS<br /><ul><li>Over 100 patches a year
  5. 5. Most released on monthly patch schedule
  6. 6. Not all MS products covered by WSUS</li></ul>Microsoft Apps<br />(Office, etc.)<br />Windows<br />
  7. 7. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />HP Insight Control, et al<br />WSUS<br /><ul><li>Vulnerabilities are discovered and patches issued
  8. 8. Very difficult to find on some hardware vendor sites
  9. 9. Ability to automate patches varies
  10. 10. Insight Control is $</li></ul>Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Windows<br />
  11. 11. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />HP Insight Control, et al<br />WSUS<br /><ul><li>About one patch per week in Adobe Reader alone
  12. 12. Automatic Updates is for the home user
  13. 13. How to uninstall older versions?
  14. 14. Risk of installing extra software</li></ul>Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Windows<br />
  15. 15. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />HP Insight Control, et al<br />WSUS<br /><ul><li>Java patching is a nightmare
  16. 16. Multiple versions required
  17. 17. No enterprise tools
  18. 18. Risk of installing extra software
  19. 19. iTunes
  20. 20. No enterprise tools</li></ul>Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Windows<br />
  21. 21. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />?<br />HP Insight Control, et al<br />WSUS<br /><ul><li>Just because it is uncommon doesn’t mean you will never need to security patch
  22. 22. Just exacerbates the whole heterogeneous patch management challenge</li></ul>Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Windows<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br />
  23. 23. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />?<br />HP Insight Control, et al<br />WSUS<br /><ul><li>15 VMWare Security Advisories in 2010
  24. 24. vCenter only updates ESX(i) hosts and vCenter
  25. 25. Offline guest images
  26. 26. Costs $</li></ul>Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Windows<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br />Virtualization Managers<br />(vCenter)<br />vCenter Update Manager<br />
  27. 27. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />RHN, et al<br />?<br />HP Insight Control, et al<br />WSUS<br /><ul><li>90 Security advisories so far in 2010 for v5 Enterprise Server
  28. 28. RHN costs $
  29. 29. Companies moving to “freer” distributions of Linux but you lose the management tools of RHN</li></ul>Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Windows<br />Linux<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br />Virtualization Managers<br />(vCenter)<br />vCenter Update Manager<br />
  30. 30. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />Sun Patch Manager, et al<br />RHN, et al<br />?<br />HP Insight Control, et al<br />WSUS<br />Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Unix<br />Windows<br />Linux<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br />Virtualization Managers<br />(vCenter)<br />vCenter Update Manager<br />
  31. 31. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />Sun Patch Manager, et al<br />RHN, et al<br />?<br />HP Insight Control, et al<br />WSUS<br />?<br />Microsoft Apps<br />(Office, etc)<br />System Agents<br />(Dell, HP, etc)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Unix<br />Mac<br />Windows<br />Linux<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br /><ul><li>20 Security advisories so far in 2010 affecting Mac OS
  32. 32. No centrally controllable patch manager</li></ul>Virtualization Managers<br />(vCenter)<br />vCenter Update Manager<br />
  33. 33. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />Sun Patch Manager, et al<br />RHN, et al<br />?<br />HP Insight Control, et al<br />WSUS<br />?<br />?<br />Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Apps and Agents<br />Unix<br />Mac<br />Windows<br />Linux<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br />Virtualization Managers<br />(vCenter)<br />vCenter Update Manager<br />
  34. 34. Product Patching<br />© 2010 Monterey Technology Group Inc.<br />?<br />?<br />Sun Patch Manager, et al<br />RHN, et al<br />?<br />HP Insight Control, et al<br />WSUS<br />?<br />?<br />Microsoft Apps<br />(Office, etc.)<br />System Agents<br />(Dell, HP, etc.)<br />Adobe Apps<br />(Acrobat, Flash)<br />Other Popular Apps<br />(Sun Java, QuickTime, iTunes, Browsers)<br />Uncommon Apps<br />Apps and Agents<br />Unix<br />Mac<br />Windows<br />Linux<br />Virtualization Hosts<br />(VMWare, HyperVisor, Xen)<br />?<br />Virtualization Managers<br />(vCenter)<br />vCenter Update Manager<br />Network Devices<br />Routers, VPNs, Switches, Access Points, Firewalls<br />
  35. 35. How to handle enterprise patching<br />© 2010 Monterey Technology Group Inc.<br />Central security response team<br />ID all hardware, software, devices<br />ID team within IT responsible for each product<br />Subscribe to each vendor’s security update service<br />Subscribe to CVE lists<br />Each advisory<br />Does it affect any products we have?<br />Contact appropriate team<br />Track decision and follow through<br />Document<br />Regular vulnerability scanning<br />
  36. 36. Security Alerts<br />© 2010 Monterey Technology Group Inc.<br />
  37. 37. Bottom Line<br />© 2010 Monterey Technology Group Inc.<br />Patch management <br />Needs to be comprehensive and consistent across the enterprise<br />Technology needed for efficiency and effectiveness<br />Cooperation, coordination and workflow needed between security and operational teams<br />Not just an OS issue anymore<br />Not just a server issue anymore<br />Not just a Microsoft issue anymore<br />
  38. 38. © 2010 Monterey Technology Group Inc.<br />Brought to you by<br />Speakers<br />Russ Ernst, Senior Product Manager<br />Andrea Bolz, Solution Marketing Manager<br />
  39. 39. Want to Learn More?<br />Lumension<br />info@lumension.com<br />www.lumension.com<br />http://blog.lumension.com<br />Resource Center<br />http://www.lumension.com/Resources/Resource-Center/Reduce-Your-Threat-Exposure.aspx<br />© 2010 Monterey Technology Group Inc.<br />

×