[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re[2]: Security Alert -- massive flood against UPD port 1434 (UPDATE)



PureBytes Links

Trading Reference Links

It's not a matter of being cheap. With critical infratructure stuff like 
databases, you don't throw patches on as soon as they come out. There's an 
old saying in the IT biz that goes something like "the pioneers take the 
arrows". You wait to let other people find the problems and report them. 
After a time if nothing bad has been reported, you apply the patch on a test 
system and let the user test group wring it out. Six months is not out of the 
ordinary from when a patch is released until it's put on.

In a message dated 1/26/03 8:21:54 PM Pacific Standard Time, 
prosys@xxxxxxxxxxxxxxxx writes:

> Let's see....July 24th, wasn't that 6 MONTHS ago ?
>  Wow, IMHO, the "cheapies" deserve to get "hit".
>