I have a quick question on patching browser plugin vulnerabilities. I have read the best practices guide for reparing browser plugin vulnerabilities (http://community.landesk.com/support/docs/DOC-23623) however I am trying looking for another way to be as non-intrusive as possible when updating browser plugins such as (Flash, Shockwave, Java) that require Internet Explorer or Firefox to be closed. I would like to avoid forcing the user to having close their web browser and allow them to reboot on their own time.
Right now I am repairing these as a scheduled task which runs every day (just for testing right now) but due to Firefox and Internet Explorer being open the patches fail on a high number of machines as would be expected.
Is there is a better delivery method such as Delay until next login automatically that will work? (Such as below.)
I think the other issue is I only have my Agent configuration checking for Policy every day (Random delay up to 1 hours). I'm assuming it would make sense to increase the frequency that agents check for policies?
How is everyone else patching browser based plugins on their machines?
Thanks.