Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Microsoft Simplifies Security Patching Process for Exchange Server
Delivering hotfixes and system updates separately will allow manual patching without requiring elevated permissions, Microsoft said.
1 Min Read
Source: NicoElNino via Alamy
In a move to ease the process of applying security updates to Exchange Server and help ensure the servers get patched, Microsoft has kicked off new security update packaging for the software.
Previously, elevated admin permissions were required to both update the application as well as install the most urgent "hotfix." The result, according to a new Microsoft Exchange security team blog post, have been servers being left unpatched.
Moving forward, Exchange server updates will be sent in two packages — one Windows installer patch file (.msp) for automated updates and another (.exe) installer for manual updates.
"The EXE package is a wrapper for the .msp file that ensures the installation runs with the required permissions," the Exchange security team added. "To install the update, simply double-click the .exe file and follow the instructions. The installation process checks permission prerequisites and if the check fails, it will try to elevate the permissions to the required admin level."
About the Author
You May Also Like
More Insights
Webinars
The State of Attack Surface Management (ASM), Featuring Forrester
Nov 15, 2024Applying the Principle of Least Privilege to the Cloud
Nov 18, 2024The Right Way to Use Artificial Intelligence and Machine Learning in Incident Response
Nov 20, 2024Safeguarding GitHub Data to Fuel Web Innovation
Nov 21, 2024
Events
