PatchLink Provides Best Practices Policy Management Capabilities for Microsoft XP Service Pack 2

Business Wire, August 19, 2004

SCOTTSDALE, Ariz. -- PATCHLINK UPDATE First to Give Administrators Flexibility to Block and Fully Test Windows XP SP2 to Enable a Controlled, Policy-based Release to Their Organizations

PatchLink Corp. (www.patchlink.com), the leading provider of security patch and vulnerability management solutions and services, today announced its support of a method to temporarily disable the automatic or accidental delivery of the Microsoft Windows XP Service Pack 2 (SP2) across an entire enterprise environment, including an organization's remote laptop users. Utilizing the WinXP SP2 Temporary Blocker Toolkit, PATCHLINK UPDATE immediately gives network administrators the ability to use the blocking patch in a policy-based deployment to protect key systems that might be affected by the automated installation of XP SP2. With a policy-based, best-practices approach, administrators using PatchLink's agent-based patch and vulnerability management system can quickly identify and deploy XP SP2 to the parts of their organization that are prepared to receive the service pack.

The release by Microsoft of XP SP2 is providing network administrators with an important tool to increase network security. However, due to the extensive nature of the changes in XP SP2, many organizations are concerned about the impact that the automatic deployment of this service pack will have on their environments. Noted as essential to the security of XP systems and a "critical update," Microsoft is automatically distributing XP SP2 to Windows XP and Windows XP Service Pack 1 systems via Windows Update (WU) and the Automatic Updates (AU) delivery mechanism in Windows. Due to the automatic nature of WU and AU, network administrators managing Windows network environments are concerned about employees patching their own systems.

While other patch management vendors have taken the approach of providing quick installation of XP SP2, PatchLink extends this ability further by becoming the first to provide the necessary tools to block XP SP2 until it's fully tested by the network administrator and to permit its roll back. Continuing its core "test before you patch" philosophy, PatchLink recommends that network administrators employ the temporary block to delay user-initiated or unapproved deployment of XP SP2 until after it has been fully tested for their environments. Once testing has been completed, XP SP2 can be immediately and automatically deployed, based on the organization's policies. PATCHLINK UPDATE also includes a roll-back feature, which gives the network administrator the ability to undo or roll back the entire patch to its original configuration.

"By giving our customers the ability to block the automated and unplanned installation of XP SP2 until after they have qualified it for their environments, we ensure that they can take full advantage of the new security features in XP SP2 without serious interruption," said PatchLink CEO Sean Moshir. "By using PATCHLINK UPDATE's policy and baseline capabilities to quickly qualify and deploy XP SP2 in an organized and planned manner, our customers are able to incorporate XP SP2 into a true, best-practices network management approach."

PATCHLINK UPDATE offers more granular vulnerability analysis than a nonagent-based solution, paralleling Microsoft's focus on trusted computing. PatchLink's agent-based architecture allows organizations to keep XP SP2's firewall fully functional. Commenting on the importance of this capability, Moshir noted, "PatchLink is supporting the release of XP SP2 to help bring desktop security up to a level more typical of server environments. Nonagent-based solutions will most likely require that the XP SP2 firewall settings be reduced or completely turned off during scans. Patch management solutions that are not agent-based and that use RPC, remote ADMIN shares, file copying and which rely on domain credentials won't be able to maintain the levels of security that customers desire from XP SP2."

The WinXP SP2 Temporary Blocker Toolkit is immediately available to PATCHLINK UPDATE subscribers. For more information, visit www.patchlink.com.

About PatchLink(TM) Corp. and PATCHLINK UPDATE(TM)

Consistently ranked by industry experts and analysts as the market and technology leader in the patch management segment, PatchLink Corp. (www.patchlink.com) has focused on providing best-of-class enterprise security and system management solutions since its founding in 1991. Today, millions of computers worldwide depend on PatchLink's software and services for vulnerability assessment, remediation and critical patch updates. With a strong reputation for providing unparalleled network and security management software products and services, PatchLink has one of the largest installed subscriber bases for its patch management solution.

PATCHLINK UPDATE is the leading enterprise-level security patch and vulnerability management software that gives IT professionals an automated, cross-platform, and vendor-neutral security utility to detect system vulnerabilities as well as deploy system and application patches. Utilizing its patent-pending digital Patch Fingerprinting(TM) technology, PATCHLINK UPDATE provides extremely accurate, highly efficient and flexible remediation that can be deployed according to company policies and baselines across all enterprise platforms and boundaries.