Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: When is it appropriate to delete old patches from CSI?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
CSI

This thread has been marked as locked.
jlbalvanz When is it appropriate to delete old patches from CSI?
Member 28th Sep, 2011 21:46
Ranking: 3
Posts: 12
User Since: 19th May, 2011
System Score: N/A
Location: US
I'm part of a group managing about 1200 machines using CSI 4.1. We have been creating patches for several months now, and we're starting to accumulate obsolete patches. For example, with Adobe Flash Player 10.x we now have the following patches on our WSUS server:

Patch Name Creation Date
Adobe Flash Player 10.x, version 10.3.181.14 (ActiveX), Highly critical 5/18/2011 7:10:09 PM
Adobe Flash Player 10.x, version 10.3.181.14 (NPAPI), Highly critical 5/18/2011 7:12:33 PM
Adobe Flash Player 10.x, version 10.3.181.22 (NPAPI), Less critical 6/17/2011 3:24:18 PM
Adobe Flash Player 10.x, version 10.3.181.23 (ActiveX), Less critical 6/17/2011 3:25:26 PM
Adobe Flash Player 10.x, version 10.3.181.26 (ActiveX), Extremely critical 6/17/2011 3:01:02 PM
Adobe Flash Player 10.x, version 10.3.181.26 (NPAPI), Extremely critical 6/17/2011 3:03:23 PM
Adobe Flash Player 10.x, version 10.3.183.10 (ActiveX), Highly critical 2011-09-22 9/22/2011 6:38:47 PM
Adobe Flash Player 10.x, version 10.3.183.10 (NPAPI), Highly critical 2011-09-22 9/22/2011 6:40:54 PM
Adobe Flash Player 10.x, version 10.3.183.5 (ActiveX), Highly critical 8/10/2011 6:39:40 PM
Adobe Flash Player 10.x, version 10.3.183.5 (NPAPI), Highly critical 8/10/2011 6:41:03 PM

I understand that Flash Player needs two separate versions, one for ActiveX and one for all non-IE browsers. The underlying files for all of these patches are versions of either install_flash_player_ax.exe or install_flash_player.exe, differing only in file version. My question is, at what point is it safe to delete the older patches from the CSI console, and what's the best way to do that? One of my co-workers is worried that deleting the patch might cause a workstation with that version of the application to delete the application. That sounds unlikely to me, but I can't provide any documentation to the contrary.

Thank you for your consideration.

--
Jeff Balvanz -- Iowa State University Information Technology Services
Ames, IA, USA

O.Marin RE: When is it appropriate to delete old patches from CSI?
Secunia Official 30th Sep, 2011 09:30
Score: 30
Posts: 116
User Since: 4th Aug 2011
System Score: N/A
Location: Copenhagen, DK
Last edited on 30th Sep, 2011 09:30
Hi,

We recommend that you delete the patch after it was installed on all computers. So the workflow could be:
1. you create a patch
2. you follow it a couple of days until all your computers are up to date
3. and then delete the update from the Secunia CSI Console.

When you delete the update from the CSI Console the package will no longer be offered to the target hosts. To remove the packages from your WSUS you should run the Server Cleanup Wizard.

Let me know if you have any other questions,


--
Kind Regards,

Oana Marin
Solution Specialist
jlbalvanz RE: When is it appropriate to delete old patches from CSI?
Member 30th Sep, 2011 16:09
Score: 3
Posts: 12
User Since: 19th May 2011
System Score: N/A
Location: US
Thank you very much, that's what I needed to know.

Have a good evening!

--
Jeff Balvanz -- Iowa State University Information Technology Services
Ames, IA, USA
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability