CAUTION Vendors have released ???fixes??? that introduced new vulnerabilities
into the application or operating system??”you close one window and open two
doors. Several times these fixes have also negatively affected the application??™s
functionality. So although it is easy to put the blame on the network
administrator for not patching a system, sometimes it is the worst thing that he could do.
There are typically two types of remedies that a vendor can propose: configuration
changes or software changes. Configuration change fixes involve giving the users instructions
on how to change their program settings or parameters to effectively resolve the
flaw. Software changes, on the other hand, involve more engineering work by the vendor.
There are three main types of software change fixes:
??? Patches Unscheduled or temporary remedies that address a specific problem
until a later release can completely resolve the issue.
??? Maintenance updates Scheduled releases that regularly address many known
flaws. Software vendors often refer to these solutions as service packs, service
releases, or maintenance releases.
??? Future product versions Large, scheduled software revisions that impact code
design and product features.
Pages:
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184