For those of you who use SEP, do any of you apply the rapid release definitions? We had done this once in the past due to a bot outbreak we had, but the clients were affected afterward and could not update beyond the rapid release definition. It looks like there is another worm outbreak and have seen reports of some users receiving spam email with a *.html attachment. They have addressed this in the rapid release definition. Does anyone apply these and is it good practice to do in general?
A+, Net+, MCP, CEH
Former U.S. Marine and damn proud of it!