Essential Guide
Catch up on the Windows Server patches of 2017
Technology stacks are rife with complex dependencies. While some IT shops tackle Windows Server patches on Patch Tuesday, many administrators take a cautious approach, waiting weeks or even months to apply the fixes.
Introduction
IT organizations depend heavily on Windows Server to manage the infrastructure, users and their devices, using features such as Active Directory and products like System Center. Windows Server also provides the backbone for numerous business-critical applications, such as Exchange Server and SQL Server.
Because of Windows Server's importance in a shop that depends on Microsoft's technology stack, administrators take extra care when they patch the server operating system. One bad update can take down the entire data center. Microsoft's monthly security updates bring additional stress to administrators with numerous enterprise systems based on Windows Server -- a fix for the server operating system could break the functionality in an important third-party application.
This essential guide to 2017's monthly Patch Tuesday news stories and related articles helps administrators understand and implement Windows Server patches, whether it's the next day, next month or next quarter.
1Patch Tuesday reports-
The scoop on Windows Server patches
On the second Tuesday of each month, dubbed Patch Tuesday, Microsoft releases security bulletins and associated patches to close vulnerabilities in the company's software, including Windows Server. Most administrators apply these patches in a timely fashion to remove these exploits from business systems. Approach system patches and updates armed with insights from security analysts and administrators on each month's most important Windows Server patches.
Microsoft releases fixes for three exploits for January Patch Tuesday
Microsoft issues three bulletins to close vulnerabilities in Microsoft Office, the Edge browser and a Windows Server service. The company also supplied a fix from Adobe for its Adobe Flash Player application. Continue Reading
'Last-minute issue' delays February Patch Tuesday
Microsoft delays the release of security bulletins for February Patch Tuesday until March, due to a last-minute issue. One administrator now mulls whether to apply a manual fix for a zero-day vulnerability. Continue Reading
March Patch Tuesday returns with zero-day vulnerability fix
After a month-long delay, Microsoft releases 17 updates on March Patch Tuesday and addresses several known vulnerabilities that can affect Windows Server administrators. Continue Reading
Microsoft swaps security bulletins for new Security Update Guide
On April Patch Tuesday, Microsoft officially switches from verbose security bulletin format to the database layout of the Security Update Guide. Windows Server admins should be aware of a Hyper-V host patch. Continue Reading
Microsoft closes Malware Protection Engine flaw ahead of May Patch Tuesday
Microsoft releases a rare out-of-band patch to plug an exploit on several Windows systems, including Windows Server 2016. Continue Reading
Microsoft stitches up Windows Server 2003 on busy June Patch Tuesday
A month after the WannaCry ransomware outbreak, Microsoft cites a new threat when it supplies a patch for Windows Server 2003, two years after the server OS went out of support. Continue Reading
Microsoft closes exploit connected to SMB on July Patch Tuesday
Administrators should prioritize yet another vulnerability associated with the SMB protocol that could allow attackers to overtake Windows systems. Continue Reading
No patch for zero-day SMB exploit for August Patch Tuesday
Security researchers uncovered a new SMB vulnerability in July, but Microsoft feels most administrators who follow network security best practices are already protected. Continue Reading
DHCP server exploit highlights September Patch Tuesday
Windows Server admins have a relatively light patching workload for September but should focus on the update for vulnerable systems set up as DHCP failover servers. Continue Reading
Microsoft closes 62 exploits on October Patch Tuesday
October doesn't just bring updates to several critical vulnerability for Windows Server admins. It's been one year since Microsoft moved to a cumulative update model. It's more secure, but that comes at a price for admins. Continue Reading
2Patch like a pro-
A window into patching Microsoft systems
Security is a 24/7 concern -- not just something to think about on Patch Tuesday. Stay in the know with other developments related to the security of Microsoft's operating systems, such as the servicing model change.
Microsoft changes servicing model to bundle patches
In October 2016, Microsoft migrated several Windows operating systems to a rollup model that packages individual patches into a single file. IT pros weigh the pros and cons of losing the ability to add and remove individual patches. Continue Reading
How can admins protect systems from a bad Microsoft patch?
System administrators need to act when Microsoft issues a security update, but a bad patch can break systems -- so what's an overworked IT staff to do? Continue Reading
Windows Bash raises concerns about Linux-based exploits
While Microsoft offered developers a way to run Linux in Windows 10, did it also expand the attack surface of the operating system? Continue Reading
Establish a patch management process to reduce pain
Get a grip on the Microsoft patching change by using automation tools and new features like Nano Server to minimize downtime and disruptions to end users. Continue Reading
3Secure systems defined-
Develop a Windows Server security vocabulary
This glossary of terms related to patches and security will help Windows Server administrators learn about the different threats to systems, and Microsoft's technologies and features for patch management.
Start the conversation
0 comments