Actually, anyone who knows Windows and knows security laughs, but not because it is silly. They laugh because Windows has a poor security design, and Microsoft forces underskilled administrators onto the market as "experts". The MCSE isn't worth the cost of the certificate.

While this bug is no bug at all, there are plenty of Windows security mishaps that warrant attention. It is too bad that a Windows administrator doesn't take the initiative and head his boss off at the water cooler. A competent administrator would know the current state of security in his system and would be able to intelligently answer or address any security concern of management without having to be asked.

You are paid to provide security, both information security and peace of mind. If your boss has to track you down to ask you questions, you are doing something wrong.

Pitching stones, by reflex, at the latest security warnings only tends to make your under-informed opinion that much less valuable.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/144/18334#18334