How to keep your Microsoft software secure

Tuesday, 6 May 2003, 10:59 AM EST

I think it's irresponsible of Microsoft to make finding out about and installing software patches so hard. When you consider the huge number of people using Internet Explorer and other Microsoft apps, the amount of damage that could be caused to both individual systems and corporate servers is great.

I don't think software makers should automatically push updates to your computer--you should be able to find out what a patch will do to your system before you install it. But Microsoft could do a much better job of notifying the public when new security updates are available and make it easier to find detailed information about these flaws.

Case in point: If, as I did, you go looking for information about the IE patch on the Windows Update site, you'll be disappointed. The site briefly scanned my test system, and reported that no IE updates have been installed on it since last September.

But the Update site failed to mention the latest security update. I was, however, reminded to download updates from between September 2002 and February 2003--which sounded pretty out-of-date.

[ Read more ]

Related items


Pen-testing drone searches for unsecured devices

You're sitting in an office, and you send a print job to the main office printer. You see or hear a drone flying outside your window. Next thing you know, the printer buzzes to life and, after spitting out your print job, it continues to work and presents you with more filled pages than you expected.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Oct 9th