RE: AW: [mssms] 3rd party patch management question

[Duncan McAlynn]

This is a great question, Sherry. I’ve replied directly offline so as to not 
turn this into a HEAT Software advert. ☺

[cid:image002.png@01D0819A.0B097420]

Duncan McAlynn, Sr. Solutions Specialist, Americas
HEAT Software
M: +1.512.391.9111 | 
duncan.mcal...@heatsoftware.com<mailto:duncan.mcal...@heatsoftware.com>
HEAT Software<http://www.heatsoftware.com/> |  490 N McCarthy Blvd. Suite 100 | 
Milpitas, CA 95035

Ask 
me<mailto:duncan.mcal...@heatsoftware.com?subject=Why%20are%20you%20THE%20leader%20in%203rd%20party%20patching%20for%20Microsoft%20System%20Center?>
 why we’re THE leader in 3rd party patch management for System Center

From: listsadmin@lists.myitforum.com [mailto:listsadmin@lists.myitforum.com] On 
Behalf Of Sherry Kissinger
Sent: Tuesday, January 12, 2016 8:18 AM
To: ms...@lists.myitforum.com
Subject: Re: AW: [mssms] 3rd party patch management question

Just curious...  we use SCUP and the rules direct from Adobe for any catalogs 
Adobe chooses to offer.  It just seems more direct that way, and sustainable 
(and always "faster" than waiting for any other 3rd party to re-do them in 
their catalog).

Do you have some awesome SMA or powershell or some kind of super-cool 
automation around Secunia where you really, really want the updates there, vs. 
direct from Adobe?


On Monday, January 11, 2016 8:47 PM, Duncan McAlynn 
<duncan.mcal...@heatsoftware.com<mailto:duncan.mcal...@heatsoftware.com>> wrote:

Just as an update, I have received word from the product group that we did ship 
the update today, as promised.
Sent from Outlook Mobile<https://aka.ms/qtex0l>



On Mon, Jan 11, 2016 at 3:32 PM -0800, "Roland Janus" 
<roland.ja...@hispeed.ch<mailto:roland.ja...@hispeed.ch>> wrote:
Lol, shameless ☺

I was in particular asking if you provide the update Secunia is refusing to?

-R

Von: listsadmin@lists.myitforum.com<mailto:listsadmin@lists.myitforum.com> 
[mailto:listsadmin@lists.myitforum.com] Im Auftrag von Patch My PC Support
Gesendet: Montag, 11. Januar 2016 17:27
An: ms...@lists.myitforum.com<mailto:ms...@lists.myitforum.com>
Betreff: RE: [mssms] 3rd party patch management question

Hi Roland,

We are doing great ☺! Adding new products often full list available here: 
https://patchmypc.net/supported-products-scup-catalog

Our release history is typically to get the update out in our SCUP catalog the 
day it’s released history available here: https://patchmypc.net/feed

Our price is still 1$ per client annually.

Thanks,

Marie
Patch My PC Support
Support Number: +1 (720) 408-4659
Support Email: supp...@patchmypc.net<mailto:supp...@patchmypc.net>
Support Forum: https://patchmypc.net/forum

From: mailto:listsadmin@lists.myitforum.com 
[mailto:listsadmin@lists.myitforum.com] On Behalf Of Roland Janus
Sent: Friday, January 8, 2016 4:39 PM
To: ms...@lists.myitforum.com<mailto:ms...@lists.myitforum.com>
Subject: AW: [mssms] 3rd party patch management question

My take would be they need to provide what the vendor provides, regardless what 
it patches or fixes…
Only providing a secure but broken installation is stupid, hence you need to go 
back to an older version, not broken but unsecure.

If I would evaluate vendors for that, with that input, I would look what others 
do. What is Patchmypc doing?

Von: mailto:listsadmin@lists.myitforum.com 
[mailto:listsadmin@lists.myitforum.com] Im Auftrag von Miller, Todd
Gesendet: Freitag, 8. Januar 2016 22:05
An: ms...@lists.myitforum.com<mailto:ms...@lists.myitforum.com>
Betreff: [mssms] 3rd party patch management question

I am having an argument with my 3rd party match management vendor – 
Secunia/Flexera, and I am curious how other vendors handle this situation.

Recently, Adobe released a security update for Flash-- 20.0.0.267 that had a 
bug in it and then a couple of days later released 20.0.0.270 to correct the 
bug.

I need to patch Flash because there are security vulnerabilities in version 
20.0.0.235.  The only option Secunia has for us is to deploy version 20.0.0.267 
which corrects known security vulnerabilities, but has a known critical 
functional bug.  Secunia refuses to offer 20.0.0.270 because they consider it a 
“bug fix” and not a “security update”   Secunia is in the business of patching 
security vulnerabilities not supplying patches that fix functional bugs.

I am curious to know how the other patch vendor solutions are handling this 
issue.  Does your third party patch solution offer all patches for Flash or 
only ones that plug security holes?


________________________________
Notice: This UI Health Care e-mail (including attachments) is covered by the 
Electronic Communications Privacy Act, 18 U.S.C. 2510-2521, is confidential and 
may be legally privileged.  If you are not the intended recipient, you are 
hereby notified that any retention, dissemination, distribution, or copying of 
this communication is strictly prohibited.  Please reply to the sender that you 
have received the message in error, then delete it.  Thank you.
________________________________