Windows patching for Waters servers
we have this general issue, how do most of you handle this?
Currently, the only way to determine if Windows OS patches have been tested with Waters informatics products is to review the release notes pertaining to a specific version, feature release or service pack.
As you may know, Microsoft releases Windows OS security patches at least once a month, sometimes more frequently.
The effect of this combination is that the list of patches tested by Waters is always far behind what has currently been released.
As a global company, security is a priority and our policies do not allow us to wait six months for an approved patch. However, our support plan with Waters will not guarantee support if we use patches that have not been tested by Waters. I expect we are not alone in this requirement, any company that shares information across the internet is at risk.
As an alternative, we have been forced to assess patches ourselves by extensive application testing internally. This provides a significant burden, but at current, there is no alternative.
That being said, I would like your feedback on how you handle this.