One big patch or a bunch of small ones...
I was reading through some articles on the Security Focus site and came across one that brought up a good question:
Quote:
A recent XP security hole begs the question, do we really want Microsoft to release individual fixes for every bug?
Do you guys think it would be easier to manage the patches if they continued they way they (M$) do now with a bunch of small patches for specific problems/vulnerabilities or one large patch that covers many. Which do you think would be more manageable from a security perspective? Isn't this kind of what they do with Service Packs anyway?
The article talks about this as kind of a secondary question after speaking on a vulnerability in Windows XP that allows an attacker to delete directories on a victim's machine.
You can find the article here .