Quote: Originally Posted by jimbo45
My motto is that "If it isn't broken don't fix it".
That is my motto for a number of things as well.
However, if Microsoft is releasing updates and listing them as critical then clearly something is broke. Perhaps I just don't know about it, or I haven't run into a point where it would cause me a problem.
A ton of problems we have experienced on the web have spread due to unpatched boxes which have a known security issue that has been exploited. By keeping up to date and applying these patches, we slow the spread of this stuff down. Some people may even have an infected/impacted box at home and may not know about it at all.
With regards to Windows updates, i leave them turned on. For my home personal computers, it's pretty much always been that way and my experienced problems are tiny compared to the number of updates that I have received. I just do the default critical updates and such...never the optional or the driver updates. (that's where I tow the line, "if it ain't broke".
At work, I run the WSUS server and patch all of the Windows workstations. It's extremely rare that I ever decline any of the critical or security updates.