PRO+ Premium Content/Information Security magazine

Thank you for joining!
Access your Pro+ Content below.
February 2002

Simplify enterprise patch management with the proper tools

It's hard enough to track security configuration changes on one box, much less a local server farm of identical boxes. Managing configuration changes and uploading hotfixes in a distributed environment -- well, it's enough to drive you to distraction. Despair not: You can choose from several free and commercial tools to help with this important task. Configuration and patch management tools range from simple Windows scripts to modified policy management and vulnerability scanning tools to fully featured centralized management suites. "These products take what the vulnerability assessment vendors have already done and spin it to the preventive configuration side," says Pete Lindstrom, director of security strategies at analyst firm Hurwitz Group. "They're pushing vulnerability management into a more active role." Microsoft, the source of dozens of OS and application patches each year, recently released two tools for patch management. The first is HFNetChk, a free command-line tool that uses an XML database to check for patches ...

Access this PRO+ Content for Free!

By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.

You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

Features in this issue

Columns in this issue

  • Security startups: Recipe for success

    by  Robert Logan

    Stir one part technologist with one part experienced CEO and some VC money and you have the recipe for successful security startups.

  • Secure reads: The CISSP Prep Guide, CISSP Exam Cram

    by  SearchSecurity staff

    Although efficient study guides for cramming before the CISSP test, The CISSP Prep Guide and the CISSP Exam Cram won't advance the infosec profession and are likely plagiarized.