"Automatic patch updating sounds like a great idea, but it's very important that patches are tested," Andrew said. "For home users, auto updating is great, but not necessarily for enterprises."
For all users, 2006 will mean even less time to patch, Andrew added.
"The window between a security bulletin released by, say, Microsoft, and the appearance of an exploit is already very, very tight for administrators," said Andrew. "Some worms this year appeared in the wild just five days after a the vulnerability was disclosed.
"That trend will continue," Andrew added.
Such talk, of course, plays to PatchLink's product line, a blend of patch and vulnerability management software that, among other things, lets administrators force policies on all workstations to block, or at least mitigate, the dangerous unpatched bugs dubbed "zero day vulnerabilities."