On 10 Aug 2009 at 10:51, Christopher Bodnar wrote: > If a machine is not at the latest SP level, say for example a server is > at W2K3 SP1, but it has all the critical updates for SP1 applied, is that > machine considered "patched" for critical updates? It has always been my > impression that it is not. My reasoning is that it´s missing all the critical > patches that are included in the latest SP ( SP2 in this case) and all the > post SP updates. My colleague disagrees and says that as long as it has the > latest updates for its SP level it´s fully patched. Can someone clarify this > for me? Thank you, Chris Bodnar, MCSE Sr. Systems Engineer Distributed Systems > Service Delivery - Intel Services Guardian Life Insurance Company of America > Email: [email protected] Phone: 610-807-6459 Fax: 610-807-6003
My understanding is that any SUPPORTED SP will be fully protected if it's patched with all Windows Updates Critical and Important patches. Any other patches that might be included in SPs later than the one currently installed are not security-related. -- Angus Scott-Fleming GeoApps, Tucson, Arizona 1-520-290-5038 +-----------------------------------+ ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~
