Interesting blog posting re: MS06-001


Mike Nash, who is Microsoft's Corporate Vice Preisdent responsible for security, has posted to the Microsoft Security Response Center Blog (yeah, they got one!), as noted above. It's an interesting read, though I disagree with a few things he says - namely that there was no "imminent threat" when exploit code had been out for well over a week. I can tell you that I actually had an attempted infection on my machine last week, and was very fortunate that I was using Firefox at the time. I fat-fingered a web site, resulting in going to a site that wasn't kosher, and a WMF was attempting to download. If it could happen to me innocently, it can happen to others a lot easier.

Also, because of the computer security press, I agree that an out of band update was warranted. Normally, yes, I would have preferred to wait until next Tuesday. But there were a lot of emails internally at my company, between the Network Operations Center, Information Protection, network, me … Pretty much anyone who got any sort of email about corporate computing was getting bombarded with info about the exploit that Microsoft hadn't patched yet. It was even starting to leak into mainstream press. Even if the actual exploit numbers were going down, talk was increasing, and there was only one solution -- release the update out of band.


