As a general rule, run everything... if the affected components aren't present, the update won't run. If it runs, it found the affected components were found and updated. That way, if you start using them later you're protected.
Most patching software, from any vendor, starts by identifying which updates apply to each machine, and only running those. You get the best protection by letting that software try to run everything. Being logical about what's needed will occasionally leave you with a serious security hole, as when an Exchange Server update turned out to apply to 50 workstations at my last company. Fortunately, SMS detected that and reported it, so I was able to include that in the deployment. The documentation, even a follow up through our TAM all said the update only applied to the server. It turned out that certain management tools also required the update. Steve ----- Original Message ----- From: Joe Heaton To: NT System Admin Issues Sent: Friday, February 29, 2008 12:18 PM Subject: Updates that may/may not affect you How do you guys handle Microsoft updates that don't seem to affect you? For instance, the WebDAV patch recently. I was looking at the KB and security bulletin, didn't know what WebDAV was, so Googled it, looked at the wikipedia entry, went to ask our web developer about it, and he didn't know what WebDAV was, so I'm guessing we're not using it here. So should I still install the update, or is it not needed? Joe Heaton AISA Employment Training Panel 1100 J Street, 4th Floor Sacramento, CA 95814 (916) 327-5276 [EMAIL PROTECTED] ~ Upgrade to Next Generation Antispam/Antivirus with Ninja! ~ ~ <http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm> ~
