Security Incidents mailing list archives

RE: Nimda et.al. versus ISP responsibility

From: Dean Cunningham <Dean.Cunningham () ew govt nz>
Date: Fri, 28 Sep 2001 12:25:25 +1200

1)      Lets avoid the MS bashing , it achieves nothing especially, when the
other half of my firewall alerts appear to be  from *nix boxen......

2)      bearing in mind the above, your points 2) and 3) have validity for
*all* software developers. Unfortunately "the consumer" these days gets
annoyed if their remote control does not change channels when "the consumer"
just thinks of changing channels. Oh and for 3) they already have , it is
their security mailing list :-)

The PC and the net is becoming more and more a commodity item "plug and go"

This thread discusses ISP responsibility, but forgets there is no chance
that all the countries in the world would adopt that standard or even one
state in the US......

regards
Dean

-----Original Message-----
From: terry white [mailto:twhite () aniota com]
Sent: Friday, 28 September 2001 11:30 a.m.
To: incidents () securityfocus com
Subject: Re: Nimda et.al. versus ISP responsibility


on "9-27-2001" "Luc Pardon" writ:

:    I'd like the opinion of the list on the attitude of ISP's versus
: worms. It is clear that we're going to see more of this.
  
... having read all current responses to this question, it seems like
'treating the symptom' the default choice.  couple of things to consider
here.
  
    (1) this 'readership' assumed the wherewithall to deal with security
issues.  that expertise, when coupled with the ability to chastise those
not having it, clearly an error.
  
    (2) M$ targets users that have no interest in security issues.
'blaming' that user for (a) what they do not know, or (b) may never be
able to comprehend, just so much crap.
  
    (3) M$ 'has' to be the ultimate locus of a solution to 'their' flawed
software.  leaving it to 'their' customers, a cruel irony.  maybe M$
could invent something like a "Windows Update" kinda thing ...








-- 
... i'm a man , and i can change ,
    if i really have to , i guess ...



----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com
***************************************************
This e-mail is  not an  official  statement of  the
Waikato  Regional  Council unless otherwise stated.
Visit our website http://www.ew.govt.nz
***************************************************

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

RE: Nimda et.al. versus ISP responsibility, (continued)
- RE: Nimda et.al. versus ISP responsibility Mogull,Rich (Sep 27)
- RE: Nimda et.al. versus ISP responsibility ahoward (Sep 27)
  - RE: Nimda et.al. versus ISP responsibility Greg A. Woods (Sep 27)
    - RE: Nimda et.al. versus ISP responsibility Jay D. Dyson (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Stephen Villano (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Chad Mawson (Sep 27)
- RE: Nimda et.al. versus ISP responsibility UMusBKidN (Sep 27)
  - RE: Nimda et.al. versus ISP responsibility Jonathan Levy (Sep 27)
- Re: Nimda et.al. versus ISP responsibility Brian Cervenka (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Tony Langdon (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Dean Cunningham (Sep 27)
- RE: Nimda et.al. versus ISP responsibility ahoward (Sep 27)
- RE: Nimda et.al. versus ISP responsibility Smith, Mark (Sep 28)