Will patches be installed on servers that have never run the application but hav... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		bruceboughton on Dec 5, 2014 \| parent \| context \| favorite \| on: Introducing .NET Core Will patches be installed on servers that have never run the application but have it deployed, such as DR servers? The mechanism describes seems to imply they won't as Microsoft Update won't know the vulnerable assembly is sitting on the machine waiting for a failover.

jameshart on Dec 5, 2014 [–]

Same applies if I have an old build of an application which I push; it'll be vulnerable until Windows Update kicks in to patch it.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact