I could be that new SQL worm, It's roumered to take up a lot of bandthwith at the moment. (I need a spellchecker badly today)

Compare the s/w industry with the motor industry of 1925 and you probably have a good comparison in terms of maintenance and reliability.

Wow, this is by far the best argument I've heard in a long time. Good thinking man.

Ian,

I agree with you that the software industry is very dynamic.

However, this is the price M$ has to pay. If they want to launch their products quickly, they should do either one of the following:

1. As I said before, pay an army of hackers to find security gaps.
2. Assume their responsability and do like the auto industry as another member suggested. Do loud recalls. Spend the money that is necessary to inform their faults and solutions. And finally face the charges in the tribunals.

I definitely don't agree with the idea that the means (not properly testing) justify the ends (getting quick to the market). They must be responsible for what they do.

I guess we should also thank the admins out there who are keeping their servers current.

This could have been a lot worse.

My POP3 email accounts here in LA are working fine however my web based email accounts based in San Francisco area are still out.

Just one observation.

Software industry versus the motor industry.

The motor industry spends millions of $$$ in testing a product before it goes on the market, but still in many cases inevitably there are recalls.

The software industry spends millions on developing a product also, but there are more problems in MS software than is desired. If they were in the motor industry business and allowed to continue with business as usual, there would be more accidents on the road than anyone care to imagine.

Software development could do with some of the same stringent guidelines as the motor industry.

It still comes down to us though. If there is a patch get it. If there is a recall take the vehicle to the shop.

jaybee

I actually find it to have gotten worse since this AM here on East Coast USA.

Cannot access my e-mail and all sites from my ISP are unreachable.

:(

Don't take it too hard Alphawolf - I'm still missing plenty of sites. You are far from alone.

None of mine in the Far East have returned, and some of my UK sites are out as well.

In fact since this morning only one host has returned out of the whole stack missing.

I'm beginning to wonder whether there will still be substantial holes on Monday when people are back at work.

We are talking about a vunrability that is 6 months old, MS have already patched it back in July, people should have patched their boxes by now. If they are running SQL server then they should have a decent idea on how to install a patch. I don't think you can blame MS on this one, there are plenty of other vunrabilities on other OSes that if they aren't patched can cause a problem.

I wonder if Googlebot is out crawling right now. I did not notice the web was fubar till noon mouuntain time. So far, no problems here though. (knocking on wood)

SQHELL

Selling software is all about pushing -cool new features -and not about reliability.
As long as people suck up microsoft products, they won't change. Other companies would'nt either....

Googlebot is crawling. Hard to keep a good bot down.

isn't this ironic?

Look at this link:
[internetnews.com...]

Letīs hope they do what they are saying.

Is there any idea who started this one? Or is this another CodeRed ghost job? (they never have found -- or maybe even looked -- for the codered writer)

While I'm not a big fan of Micro$oft products, I will say this much in their favor -

They have only however many employees they have on their payroll trying to patch whatever software problems they've got. However, each and every company with open source software (Apache, Linux, etc.) has every single programmer who uses their software discovering security (and other) problems, then setting about to fix these problems. They've got a greater pool creating patches and updates than M$ does, so of course they've got problems getting fixed at a faster rate.

This definitely does not excuse M$ from putting software on the market before it's been fully and properly tested, but it does provide them a small "cushion" for the amount of time they take in providing fixes and patches for their software problems.

Just my 2-cents.
(And I still don't particularly like M$ products!)

Of course the b*stards choose the weekend. Who's likely to have a not-patched-up-to-the-minute MS server? - smaller set-ups. Who's unlikely to have a server-tech in at weekends?

"Audi Alterum Partum"

One might think the reason for doing the attack over the weekend to have been somewhat good.

Consider this: The attack was staged on the weekend specifically so the business community would not be as affected and more likely to have the repairs made for the beginning of the following business day...Monday.

In other words, the weekend attack was a proving ground of sorts to exhibit the vulnerabilities not patched by system and/or network administrators.

Pendanticist.

see the msg boards on slashdot, there are some interestig theories on who, why and when.

I like that reference to smartcards in the internet news article, to us smart cards are already old hat superceded by fingerprint scanner, iris scanner and signature recognition technology.

I don't think anyone has a handle on who caused this - haven't heard anything other than the fact that the worm is 376 bytes and has been decompiled with lots of people analysing the code.

Who's likely to have a not-patched-up-to-the-minute MS server?

Hmm, up-to-the-minute? Wasn't the patch release like 6 months ago?

I live in New York and heard of the New York minute, but damn, where the heck are you from? :)

What gets me is the fact that through most of the worst of the attack the only email I was getting was SPAM! How do they manage it - despite most of the net being overloaded the spammers still managed to get through.

Who or what is most likely to survive a nuclear attack? Cockroaches, Keith Richards, and spammers. ;)

lawman

Lawman please enlighten us. Keith will be dead well b4 the cockroaches and spammers well they will live for ever.

see the msg boards on slashdot, there are some interestig theories on who, why and when.

I did. In a word, Wow!

Pendanticist.

Sorry hurlimann, I guess I didn't make myself clear. After asking the question, I gave the answer - those three will be sure survivors.

lawman

I'm having problems again. Anybody else?

I'm having problems accessing 90% of small sites, about 50/50 on large ones such as Google.

Always did love my hosting co. I run SQL and show traffic EVERY HOUR of the last 24 :)

isn't this ironic?
Look at this link:
[internetnews.com...]

Hmmm... This from the internetnews article:

The e-mail comes one year to the day that Gates told employees that they must now make security in Microsoft's products their first priority.

This seems more than ironic. If the worm attack was also on the anniversay of the Gates e-mail, which it sounds like it was, then the timing suggests that the attack was a deliberate warning shot.

What gets me is the fact that through most of the worst of the attack the only email I was getting was SPAM! How do they manage it - despite most of the net being overloaded the spammers still managed to get through.

Collusion?

A certain amount of selectivity?

A perceived kinship to Bill Gates?

Things that make you go: "Hmmmmmmmmm." :o

Pendanticist.

A perceived kinship to Bill Gates?

Pendanticist - Not sure exactly how you're meaning this. If I interpret you correctly, I was thinking just the opposite.

If Microsoft were to benefit from this in any way, it would be in their getting ammunition to push through whatever that project was that would put hardware ID codes on everything and have us buy new machines and software.

The timing of this attack, though, makes it more than a huge embarassment and potential hassle for Microsoft. In my opinion, it's a real slap in the face to them.