I do not agree to this. Updates should be installed as soon as they are available. Especially security updates. It shows , that within 24 hours after the release of an update, an exploit is available for this security hole.
But you should do it corrdectly, like some hospitals did: First check with a canary (a testserver or some unimportant server), then, when everything is working without any problems, roll it out to the rest of the servers. Waiting for some days is a very very bad idea! I admit, that many people do not so, because they are comfortable and this requires more work. But it is the correct way! And really: This is not a new knowledge, this practice is standard since years (or should be everywhere). If one think, he must not do it and rely on the manufacturer, well his decision. If it breaks, i have no pity for him. Best Hans > At the very least, updates should be avoided for a few days after > release, unless they are the exceeding rare 'Oh my God, patch this > yesterday' kind, such as when the malware writers of the world realised > that Windows MetaFiles could contain executables... > > Small businesses cannot really do as you say, but any business large > enough to have logistics problems in fixing all of their machines > quickly should do so.
