Ignoring my own advice because I think the communication point is important for all linux advocates.
Adam Bower abower@thebowery.co.uk writes:
Imaging my surprise when I heard that there was another iis worm doing the rounds! I didn't actually pay any attention to the reports of "another iis worm, that is going to destroy the internet" as there is a new one every week. [...]
It's not an IIS worm for two reasons:
1/ it uses javascript page modifications on broken IIS boxes and email via Outlook to trick OE and IE to infecting machines who receive data from the infected box;
2/ most Windows users don't know what IIS is anyway, so calling it an "IIS worm" doesn't get the point across.
It's a Microsoft Windows Virus. Let's make the mud start sticking.
This one after a bit of reading looks as though it is rather nasty and explains quite alot, I have heard of one person reporting that his apache server has been probed nearly 10,000,000 times in less than a day.
My estimate from logs at UEA is that between 10 and 20% of web traffic on the UEA network is this virus, although mostly from outside now that iTCS have slapped the compromised machines on campus. I expect more as students in networked rooms plug in, though. It really is a active bugger, this one!
Well I think we have a strong case to prove that Windows is criminally broken, I wonder if people with rooted iis boxen will finally see the light when they get the bandwidth bills at the end of the month?
You have to remember that the bandwidth bills are also hitting innocents, both because of scans of random IPs, but also because the ISPs will want to pass their costs on. People using Microsoft products are now costing us all money, even if we bought our computers without Windows.
This has to stop.