Does this apply to me?
If you use or manage a University-owned Windows workstation (desktop, laptop, etc.), then yes. This change does not apply to OS X or Linux workstations, nor does it apply to servers.
On January 1, 2013, IT will change how Microsoft updates are applied to Windows workstations. Microsoft updates are automatically downloaded to every Windows workstation as they come available, typically on the second Tuesday of every month. Currently, workstation users can indefinitely postpone the application of those updates. Beginning January 1, 2013, users will be able to postpone the application of "Critical" and "Security" Microsoft updates only up to 2 a.m. of the Friday following the download. If a user has not applied any "Critical" or "Security" updates to their workstation by Friday at 2 a.m., that workstation will automatically apply all pending updates itself and reboot.
What Do I Need To Do?
- Get into the habit of applying any new Microsoft updates as soon as possible.
- Be aware that if you have unapplied updates pending at 2 a.m. on Friday, your machine will reboot itself.
- If you believe there is a reason why you should be exempted from this policy please contact the Office of Information Security: firstname.lastname@example.org.
Why is this change being made?
For security reasons. "Critical" and "Security" updates fix significant security problems with Microsoft software. If those updates are not applied quickly, workstations are vulnerable to attacks. Currently, users can delay applying updates indefinitely, which puts the entire University network at risk.