31
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 21 Jul 2024
31 points (100.0% liked)
Pulse of Truth
493 readers
108 users here now
Cyber Security news and links to cyber security stories that could make you go hmmm. The content is exactly as it is consumed through RSS feeds and wont be edited (except for the occasional encoding errors).
This community is automagically fed by an instance of Dittybopper.
founded 1 year ago
MODERATORS
Then make sure no auto updates without a sysadmins ok. Not rocket science.
The whole point to Endpoint Protection is to quickly and easily send updates to block currently exploited vulnerabilities to the systems most likely to be affected. Adding a delay for in-house QA testing (and the associated costs) doesn't make any sense.
I think it's very unrealistic to expect all sysadmins to spot uninitialized memory access in all software they don't produce. This calls for independent software testing at scale which is more elaborate than just pushing the responsibility to sysadmins.