32
My boss told me to stop patching everything immediately...
My old security lead at a bank in Austin said to always wait 72 hours before rolling out critical patches. Said half the time the vendor breaks something worse than the exploit. I ignored him at first and pushed an Exchange patch that took down email for 200 users on a Tuesday... has anyone else been burned by rushing patches?
2 comments
Log in to join the discussion
Log In2 Comments
wesley_hart5d ago
Wait but did you have a choice though? Like was your boss giving you a direct order or did they just say "stop doing that" after the fact?
5
richardharris5d ago
72 hours sounds right to me. Vendors rush stuff out the door all the time. Better to let someone else find the bugs first.
3