> Hello Craig,
>
> Thursday, September 20, 2001, 8:42:32 PM, you wrote:
>
> CW> can we pass on the NT bashing...there are worms for other OS's too.
>
> Err, sounds fair to me. If it weren't for idiot IIS admins right now
> (not a personal attack against you), I wouldn't be wasting a hell of a
> lot of bandwidth and time (currently in the process of mixing up a
> concoction to help alleviate the suckage).
How about we only pass on the NT bashing when we talk on an MS mailing list.
In case you didn't notice, this is is a Linux mailing list.
When Code Red was crapping out the network MS replied saying that it
wasn't a problem for the average user - so they shouldn't worry - but
of course MS where spewing forth their usual lies and I guess either
lots of MS OS idiots didn't follow up when MS said that OR they where
too stupid to know anything was wrong.
Yes, this is not a statement that all people with MS OS's are stupid
(I got 3 out of 10 :-) but the problems where MS related and MS only
prolonged it by lying about it and it went on for weeks!
>
> CW> While I am glad that I only have to watch less than 5 IIS servers,
> I CW> have to keep alert for apache vulnerabilities too - and they
> exist.
>
> How many exploits/hacks/worms for Linux software and/or Apache have
> caused anywhere near this much strain on public networks? How many
> exploits actually check for previous exploits (4 in this particular
> case) to see if their lives can be made easier on the target zombie?
> Set themselves up for auto-download on the webserver to infect
> unsuspecting visitors while also mailing the worm around using it's own
> mailer daemon?
>
> None, none, and none, that I know of. Please enlighten me if I am
> incorrect.
>
> Again, don't get me wrong. This is not a personal attack against IIS
> admins -- unless you setup a box w/o even thinking of looking at the MS
> security bulletins. In the latter case, I hope your hardware melts
> into a sticky pile of goo.
>
> BTW, I heard on the news the some MS division in Japan was hit hard by
> Nimda. Sheesh....
>
> --
> Best regards,
> Brian Curtis
My network limits and overrun costs are actually quite measuarable when
it comes to these MS IIS problems! So I have been keeping my usage low
so I don't exceed my limits and have to pay for this IIS S*!T
If the problem was a Linux worm - strangely enough I would be just as
critical of the Linux users who hadn't fixed it, weeks after it started,
for stuffing everything up (especially if the first problem occurred
quite a while ago and a new one was still using it)
But I will make one bias comment ... RedHat has an automatic update
utility that you can run and keep up to date on such problems VERY
easilty YET MS who has billions of dollars - can't even do something
that simple
Worse still, MS's closed restrictions on it's software mean that MS
related problems will be worse and fewer people who use MS OSes will
know about it very quickly - simple fact of circumstance
Well the Japan comment really sums it up - even MS sites are too stupid
to apply MS security updates.
-Cheers
-Andrew
--
MS ... if only he hadn't been hang gliding!
_______________________________________________
Seawolf-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/seawolf-list
