Jump to content


  • Content Count

  • Joined

  • Last visited

Community Reputation

0 Neutral

My Information

  • Agent Count

Recent Profile Visitors

The recent visitors block is disabled and is not being shown to other users.

  1. Curious question for you guys... I have recently started noticing in both my Computer Health Standards reports, and in the Standards & Health Plugin... that almost all of my agents are getting dinged on score, for one of the Patch Recommendation checks.. Specifically, it's complaining about "Missing Security Baseline Patch". Question is, does anyone have info on exactly what this baseline is, and how it is checked. I am seeing this almost across the board, and on agents who show 100% patching scores in in Patch Manager. Just looking for any info on how these checks are run, if anyone knows? It seems like these checks are run against Microsoft recommendations somehow? The CVSS score checks make sense as I have something tangible to compare to, however the baseline is a mystery to me? Thanks Tim!
  2. I am posting this out of curiosity, I am trying to get a better handle on my patching approval groups, and am curious to see what some of you may be doing. Specifically, looking to see what patch categories, and severity levels you are pushing out for your servers and workstations in regards to Windows Updates, and what your thoughts are on how you chose them. I am trying to find the "right" level of patching.. do you tend to push only critical, or include moderate and important updates etc.. I guess there are caveats on either side. You can push too much and cause potential issues (for example IE updates tend to break a lot of web based apps, however also one of the more vulnerable apps to be not patching), on the flip side, pushing only critical you tend to not be patching nearly as much as i would expect if i were a client. Any thoughts, or good articles, best practices etc.. on this topic out there? -Tim