I still fear Susan and what she would do if I ever made a serious security blunder.  Luckily for me, I haven't yet.  I also love the way she tells you the way it should be and makes it easy.

I went through the process of evaluating my patches and then installing those I thought were needed (I do have some Office components on my test server, but I am hoping she will let me off for that).

I was thinking on how to write this up when I say Susan's entry The risk evaluation of patching and saw she put it exactly how I would have done.

What is my message - use her process and your customers will be as safe as can be expected.  In fact, I applied the IMF patch immediately, which resulted in Exchange being offline for a few minutes, which when using Outlook 2003 or 2007 is no biggie at all.

ttfn

David