Microsoft is trying hard to fight an expected denial-of-service (DoS) attack on the WindowsUpdate.com site, starting from midnight August 15th.
The DoS attack which will be triggered from systems infected by the fast-spreading 'Blaster' worm, could make it nearly impossible for infected users to get the needed fix from the WindowsUpdate Web site.
Microsoft patched the vulnerability exploited by the worm (for more info on the worm, see the Symantec Web site), nearly a month ago, when it issued Security Bulletin MS03-026 on July 16th.
Microsoft made the patch available through it's usual channels - Windows Update, Auto Update, and Security email notifications - but many users failed to heed notice, and as a result, found themselves infected when the worm came knocking at their 'door'.
Although we have had the same in the past, users still don't seem to grasp the fact that the Internet is a dangerous place, and that a little care should be taken in maintaining their operating systems.
Many try to shift the blame to Microsoft, and although I wouldn't say that they are doing everything they could to avoid these problems, a little more responsibility from end users and administrators certainly won't hurt.
Any software will always contain bugs. It's a fact that users should recognize, and therefore use the available options to stay current with the latest patches.
It seems that here the Anti-Virus software makers have one up on Microsoft: many AV users are rigorously downloading AV updates on a daily basisÂ… Now if they would just do the same for their operating system...
In fact, Microsoft makes it quite easy with the "Automatic Updates" feature, which is standard in Windows XP, and an add-on for Windows 2000.
The only other solution, which could prevent similar problems in the future, would be the full activation of a firewall (like the Windows XP's ICF). Microsoft has till now been selling Windows XP installations with the firewall only partially enabled, to make it more easy for users to play on-line games and/or use Web services, as users preferred such a thing. But for security it would be better to have the firewall fully enabled, and let users choose ports to open if they want to run specific software/services which would require Internet access.
According to press reports, Microsoft is now considering changing this practice, and start shipping future installations with a fully enabled firewall.
This would still not guarantee complete protection, but would go some way in making systems harder to penetrate.
source:http://www.windows-help.net/microsoft/blaster-worm.html
The DoS attack which will be triggered from systems infected by the fast-spreading 'Blaster' worm, could make it nearly impossible for infected users to get the needed fix from the WindowsUpdate Web site.
Microsoft patched the vulnerability exploited by the worm (for more info on the worm, see the Symantec Web site), nearly a month ago, when it issued Security Bulletin MS03-026 on July 16th.
Microsoft made the patch available through it's usual channels - Windows Update, Auto Update, and Security email notifications - but many users failed to heed notice, and as a result, found themselves infected when the worm came knocking at their 'door'.
Although we have had the same in the past, users still don't seem to grasp the fact that the Internet is a dangerous place, and that a little care should be taken in maintaining their operating systems.
Many try to shift the blame to Microsoft, and although I wouldn't say that they are doing everything they could to avoid these problems, a little more responsibility from end users and administrators certainly won't hurt.
Any software will always contain bugs. It's a fact that users should recognize, and therefore use the available options to stay current with the latest patches.
It seems that here the Anti-Virus software makers have one up on Microsoft: many AV users are rigorously downloading AV updates on a daily basisÂ… Now if they would just do the same for their operating system...
In fact, Microsoft makes it quite easy with the "Automatic Updates" feature, which is standard in Windows XP, and an add-on for Windows 2000.
The only other solution, which could prevent similar problems in the future, would be the full activation of a firewall (like the Windows XP's ICF). Microsoft has till now been selling Windows XP installations with the firewall only partially enabled, to make it more easy for users to play on-line games and/or use Web services, as users preferred such a thing. But for security it would be better to have the firewall fully enabled, and let users choose ports to open if they want to run specific software/services which would require Internet access.
According to press reports, Microsoft is now considering changing this practice, and start shipping future installations with a fully enabled firewall.
This would still not guarantee complete protection, but would go some way in making systems harder to penetrate.
source:http://www.windows-help.net/microsoft/blaster-worm.html
