I am looking for an informed opinion regarding some of the updates from MS's monthly security patching. Specifically, is it really necessary to take security updates that are described as applying to attacks from "authenticated local attackers", or even "authenticated remote attackers?"
I always download and install any other security updates involving unauthenticated attackers, since I take that to mean someone who could somehow break in to my machine remotely by any method, even though he/she lacks login credentials for it. I do know that occasionally, a Windows Update is problematic and causes trouble for a few PC users. Even so, I consider the risk worth it to take those updates, because of the security holes supposedly patched... especially after checking around the Internet for a couple of days, and not finding anyone reporting problems with an update from the latest batch.
But, as is done with "not fixing something that ain't broke," I've been passing on updates pertaining to "authenticated local attackers" because that scenario is so unlikely for me.
There are currently three computer users in my house: myself, my wife and my 19-year-old son. Everyone has their own computer. My wife's computer knowledge is pretty much limited to checking/writing email and accessing websites. She wouldn't know how to gain control of my machine, and has no reason/interest in doing so. My son might know how, but I doubt he would want to. There is nothing on this machine that would interest him, he probably knows that, and further, he knows full well the kind of hell that would result if I found out he did break in.
Even so, because we are all on a local network, and I don't know where he goes on the Internet and what his machine might collect while there, I have used the firewall module from my Norton Internet Security suite to specifically block his computer from accessing mine, just in case something nasty wants to spread itself over the network. Also, I do it just in case he forgets his age and thinks he is 15 again, and would like to try something on my machine over the LAN, just to see if it would work.
I haven't blocked the computer my wife uses, because I use it too and I need access to and from it over the LAN.
No one else lives here, although two other people have keys to the house. The place is a private home and is not an office or store or some other location where various employees come and go. If nothing else, if I do leave my machine on when I go out, I have it set up to lock at the screen saver. The Admin user account also has it's own unique password different from the one for my user account, and the machine has a boot password as well, so no one could just jump on, fire it up, and try something.
So, under these circumstances, is it wise to skip any security updates that just pertain to authenticated local attackers, just to avoid the slight chance of problems from those particular updates?
Thanks in advance.