How can it be verified that all automatic updates for the host operating system are blocked?



  • Our application needs to run in a locked-down operating system. Due to quality and regulatory concerns, all updates shall be prevented or blocked.

    For example, we go through a checklist of Windows OS settings and verify they are set to prevent any updates. This doesn't actually test an update will be blocked.

    Other than waiting for the next OS update from the developer, how can it be verified in Windows and other operating systems that all automatic updates will be prevented?



  • There are OS that force updates and others and won't update unless you act.

    The latter is naturally not a problem.

    For the former, I see two options:

    1 - You can run inside a Virtual Machine, using VMWare e.g. Probably you will need to refactor the data migration.

    enter image description here

    2 - You can monitor the version using some script that run by a CRON job. In Java, e.g., you can use the follow statment to fetch the OS Version:

    System.getProperty("os.version");
    


Suggested Topics

  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2