Hi All, you have all seen me whittling on about Application Whitelisting previously and characterisation.
The Australian Government have mandated that all agencies apply application whitelisting to all servers and endpoints. So if you have for example 25,000 servers, consisting of various Microsoft Windows, LInux types and another 25,000 endpoints workstations, laptops, and mobiles - how long would you realistically think or by experience think the project would take? On the basis, there is good IT Operations integration, resources, and Governance following patch management, and ITIL processes.
That’s an impossible question to ask without a knowing very specific things about your environment. For instance do you push said patches to mobile laptops and such over the internet, or just when say vpned? How many of each do you have, servers serving said patches...etc
Well depending on the task force assigned to this, the amount of power they have to make decisions and implement them, with that same type of deal that we recently had to do, we pushed it to be done to around 9-10 months, but it has to be extremely collaborative to get even 97% compatibility. 100% will of course, be impossible.