Best Practice for Windows Server Updates and Business Accounts

Topic

New Reply

I don’t know where to post this query, so decided to start here.

I am relatively new to AskWoody, having started using the Defcon level to schedule the install of the May updates after some questions about if the April updates were safe.  I found the master patch list (MPL) and started using the month only list to determine which new updates to approve and install each month.  I try to manage the windows updates for many Server 2016 and Server 2012 systems.  We have Server 2008 as well but decided not to use ESU and just try to migrate away as quick as possible.

There was only one other time that I recall the MPL recommending install before the Defcon level changed, until now for the August updates.  The MPL indicated install updates on or about August 31, but so far the Defcon level hasn’t indicated that the August updates should be installed.  Is there a downside to waiting for the Defcon level to change before apply Server updates in a business?

I have tried poking around the forum to find a best practices for servers thread, but haven’t found it yet, so please point me to the right threads if this has all been documented and I just haven’t been able to figure it out.

Thank you in advance!

Reply | Quote

Replies

In general, the Master Patch List is aimed at Businesses/IT who are usually under time constraints to get their machines patched, but usually have the convenience of test machines to catch the bugs first.

The DEFCON System is aimed more at the consumer level, where the User may have one or few machines. In that case they can’t afford buggy updates taking out their machines. And it is likely they don’t have the knowledge to fix anything that breaks. So there is a good deal more caution.

But, in either case, only fools rush in……

1 user thanked author for this post.

Goikey

Reply | Quote