...even with the largest % of web servers being Apache how many systems will be affected with this mythological worm, not many I bet (ps, do you have the skill to write one?? DO IT OR SHUT UP!) . See the problem with the NIMDA and others are the worthless admins that let systems go unpatched even if the patches were released 1, 2 or up to 4 months before the worms were set free.

If a worm were released to exploit Apache's vulnerability and systems went down the admins should be fired, as the fix is out. Firing should have been the punishment for the admins of over a million systems attacked due to their negligence in repairing MS bloat-code. They were probably too busy surfing dice.com for the oh-so-much-better job needing to be graced by they incompetence.

As for ISS, stop buying their ridiculously priced products, or visit your favorite crack site. They are just a group of as foolish as NFR?s Marcus Ranum. (It?s nice to see that NFR finally updated their web site, though still lacking an AUP) ISS will get their reward for jumping in bed with the likes of MS, that?s for sure. It?ll most likely end up Microsoft Security Systems (Belly-laugh...sorry, can't help it...it just tickles me so). I wouldn?t be surprised if what they did wasn?t a gift for MS favor, even so you'll still have to surrender your spine at the door.

MS admins, remove the foot from yer keister, stop surfing for a better job and thank your God for having an employer dumb enough to allow you to touch their computers...oh yeah and patch your systems. They're is up to MS02-33, better than last year but still more than one a week.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/91/13421#13421