
	Home > Ask the Windows Security Experts > Windows Patch Management Questions & Answers > Creating a testing environment for hotfixes and patches

Ask The Windows Security Expert: Questions & Answers

EMAIL THIS

Creating a testing environment for hotfixes and patches

EXPERT RESPONSE FROM: Jason Chan

		Pose a Question

		Other Windows Security Categories

		Meet all Windows Security Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 09 September 2005
I am in the process of creating some kind of testing methodology, which will be used as a test guide or confidence exercise to test hotfixes before they get deployed in a live environment. After doing considerable amount of research I have not found any useful tips or hints that I can use for testing purposes. Could you point me in the right direction?

EXPERT RESPONSE
It is definitely a wise idea to thoroughly test patches before deployment. First, I would suggest creating a test environment. Ideally, you'd be able to duplicate all of the various system types and implementations you have in your environment (all applications, operating systems, and combinations thereof). However, in the real world, this is unrealistic for most organizations.

Instead, for a test environment, you can create systems that represent most of the technologies (if not in all their incarnations) you use in production. For example, if you use the Apache web server on Debian Linux, you would have a representative server using these technologies (not necessarily mirroring all content and applications). You might have representative desktop systems loaded with common business applications. To make this even simpler, you can use a virtualization tool like VMWare to create multiple operating system images that can be run simultaneously on the same machine.

Once your environment is reasonably composed (the more critical your systems, applications, and data are, the more rigorous and representative your test environment should be), you can work out test plans for evaluating the effects and results of patches and hotfixes. First, you will want to ensure the actual installation and deployment of the hotfix works on your representative systems. Of course, the patch management and distribution tools you use should be loaded in the test environment.

Once you have tested the installation of the patch, you can proceed to user and application testing. This consists of normal operating tests to ensure that the system and applications continue to work as expected post-patch. Depending on how sophisticated your needs are, you may use an automated suite of testing tools for this purpose.

After you feel comfortable with the patch in your test environment, most organizations opt for a staged deployment. In a staged deployment, the early phases of patch distribution are used as a sort of 'live test'. The patch is deployed to a subset of systems that are monitored closely. Based on the results of these initial deployments, further decisions are made regarding a more comprehensive installation across the environment.

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Windows Patch Management
	Error connecting to the Windows Server Update Services database
	Recommended patch management tools
	Automatically install approved patches without prompting
	Automating Oracle or other database services during patching
	Best practices for patching AV software
	Agent vs. agentless patch management
	Patching Windows-based HP severs
	When to use automated patch packaging
	Microsoft vs. third-party tools for patching
	Conserving bandwidth during patching

Microsoft Windows Patch Management

Revised hotfix for 'animated-cursor exploit' released

Excel, Office '07 affected by patch updates; Vista left alone

IE6 vulnerability included in Patch Tuesday update

Use patching to protect your network from threats

Patch management: Are off-cycle, third-party patches trustworthy?

Microsoft delivers 10 patches and tool update

Standalone patch management vendors under siege

Patch Tuesday will see the release of 13 security updates

Third-party patches appear for new Internet Explorer flaw

Evolution of the VML flaw

Microsoft Windows Patch Management Research

Patch Maintenance

DHCP Client Service error affects network security

Microsoft will release three critical patches in May

Critical patches for IE and Office released

Microsoft releases April trove of patches

PatchLink Update 6.4

What's hot in Microsoft Windows security

Importance of managing unpatched third-party software

Microsoft patch management policy

Microsoft patch maintenance and post-patch security

Patch management and Windows Update aid in network setup

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

patch management (SearchWindowsSecurity.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

SEARCH

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.


TechTarget Corporate Web Site \| Media Kits \| Reprints \| Site Map All Rights Reserved, Copyright 2004 - 2008, TechTarget \| Read our Privacy Policy