Well no I don't expect Joe shmoe to know this, but it's the corporate networks that we are seeing being bogged down, and helping to spread these worms around, how many Joe shmoes have SQL ? Most of what I have said the people that are reading it aren't Joe shmoes. As well win 98 is not affected by the latest major worm and 98 is no longer being sold with new machines XP home is, but this list isn't an out reach to Joe Shmoe and others like him it's to the administrators and advanced users, many of which know what they are doing and still don't patch machines or do what they can to protect themselves and their networks 1 month is more then enough time to test the patch and roll it out to all of the users on their network again my 2 cents as I understand a lot are over worked as it is Bruce Martins Systems Administrator EXTEND>>MEDIA 190 Liberty Street Toronto, Ontario Canada M6K 3L5 _______________________ e:bmartinsat_private t: (416) 535-4222 ext. 2307 f: (416) 535-1201 http://www.extend.com -----Original Message----- From: Valdis.Kletnieksat_private [mailto:Valdis.Kletnieksat_private] Sent: Wednesday, August 20, 2003 12:37 AM To: Bruce Martins Cc: incidentsat_private On Tue, 19 Aug 2003 15:43:29 EDT, Bruce Martins said: > patches it, the real problem is that some people aren't heading the > warnings and patching their machines when a patch is released for a > very serious vulnerability like this one, same thing happened with the > SQL slammer worm, people had more then enough time to test and apply > this patch but didn't but hey just my 2 cents OK.. So this worm does a really nice slash-and-burn if it gets loose on a nice speedy 100mbit corporate network. But that's just where it gets the *initial* burn, it's not where its staying power is going to be... Hmm... How many copies of Win98 and later has MS sold? Hint - a LOT of them aren't corporate, they're being sold to Joe Sixpack on that machine they just bought at Walmart or Circuit City. And remember - Joe Sixpack is still fuzzy on the idea that the Internet and the Web are two different things. Do you *REALLY* expect him to read MS03-026 and understand what it *REALLY* means? --------------------------------------------------------------------------- Attend Black Hat Briefings & Training Federal, September 29-30 (Training), October 1-2 (Briefings) in Tysons Corner, VA; the world's premier technical IT security event. Modeled after the famous Black Hat event in Las Vegas! 6 tracks, 12 training sessions, top speakers and sponsors. Symantec is the Diamond sponsor. Early-bird registration ends September 6.Visit us: www.blackhat.com ----------------------------------------------------------------------------
This archive was generated by hypermail 2b30 : Sat Aug 23 2003 - 13:44:03 PDT