"Following the virus and worm devastation wrought by Blaster and SoBig this past week, Microsoft Corp. on Friday admitted that it has finally bitten the bullet and committed to automatic security patch updates for its SQL Server database."
It's about time. But MS' reluctance to do this earlier isn't surprising. Automated updates are great when they work properly, but if not implemented securely can lead to security vulnerabilities. The risk of a trojan automatically 'patching' a SQL server isn't one many of us would like to ponder. So, kudos to MS for making the committment and here's hoping they are careful with the implementation so that the patch process brings increased security, rather than increased risk.
Posted by Diana at August 25, 2003 08:04 AM