Following Microsoft's Patch Tuesday I asked if there was a better way to do roll out patches.
I still don't have an answer, but I know an improvement when I see it.
Ryan Naraine reports:
Sun Microsystems has rushed out patches to fix a code execution hole in the Solaris 10/11 telnet daemon (in.telnetd). The company's fix comes just days after a hacker known as "Kingcope" went public with details of the vulnerability, which allows a remote attacker to bypass the Sun Solaris telnet daemon's authentication mechanisms. It only affects systems which have the telnet(1) service enabled.
It took Sun hours to respond to that hole. Naraine also notes that the company gives good insight into its patch process.
Transparency and speed: Two components of a better patching process.