Welcome to The UltraTech Zone Sign in | Join | Help

Talking Out Loud with ASB

Views on Life, Technology and Everything, by ASB (aka Logik!)...

My Profile

Andrew S. Baker (ASB)

News

  • Platform: CS v2.1 SP2...

    Get a FREE phishing filter for your domain!

    Who links to my website?

    Pando Pro

Vendor Patch Management Support

has a very interesting article this week that .

As the following quote indicates, there are things that vendors should be doing to provide their Enterprise and SMB customers with the necessary tools and information to keep their environments secure. 

"When Microsoft announced Trustworthy Computing, a lot of people laughed, but now you see a real difference," said Miko, who spoke at the European Computer Audit, Control and Security Conference in Stockholm.

"I don't like Microsoft, but Oracle definitely has something to learn," he said.

Microsoft offers central patch management tools that allow customers to see what patches are missing and so on, whereas Oracle doesn't, Miko said.

Oracle seems to believe that their database is simply secure, and that this whole situation is rather overblown, but it is when known that the vast number of security issues come about because of configuration problems, and not simply because the software or hardware is inherently secure or insecure.

Apple is another vendor that , but they do offer tools to remotely patch their systems, and so in that area they are ahead of Oracle.  They need to provide better tools for centralized patch management, but at least they are making steady progress on this front.  .

Most recently, , twice per year.   Excellent.  Proper project planning is at the heart of any successful IT or business project, and this is especially true for Information Security projects.  Let's hope that Cisco can expand on this by adding assessment tools at some point in the not-too-distant future.

Share Post:
Posted: Friday, March 14, 2008 6:39 AM by Logik!

Comments

No Comments

Anonymous comments are disabled

About Logik!

Andrew S. Baker aka ASB aka Logik!

Andrew S. Baker is a business-savvy, hands-on IT leader with expertise in mentoring people, mitigating risk, and integrating technology to drive innovation and maximize business results. He creates competitive advantage for organizations through effective IT leadership: implementation of processes and controls, and architecture of robust business solutions.

Mr. Baker has successfully led a number of high-performance technology teams in designing, deploying and maintaining secure, cost-effective computing environments for well-known companies, including Warner Music Group, The Princeton Review, Bear Stearns, About.com, and Lewco Securities.

For over a decade, Andrew has exhibited thought leadership on technology and business topics via mailing lists, technical forums, blogs, and professional networking groups, along with contributions to podcasts, webinars, and over 20 technical/business magazine articles. He also serves on several boards and committees for non-profit organizations, and within the Seventh-day Adventist church.

His personal interests include Astronomy, Basketball, Bible Study, Chess, Comics, Computers, Family Life Ministries, Reading, Strategy/Role Playing games, and Professional Networking...

A summary of Andrew's current résumé is available here, and he can be reached on a variety of social and professional networks, including LinkedIn, Facebook and Twitter.