It is a big problem. This one's much less of a problem for corporate users, because it won't go through a firewall at all; this one will hit home users. It's kind of the opposite situation from what we saw with SQL Slammer, where corporate users were hammered but home users never noticed anything.
Overall, though, I think this is is the biggest threat since NIMDA. So many home users both don't run a firewall and don't keep their systems updated (this vulnerability was discovered July 16th, so they've had plenty of time) that it can spread like wildfire.
Honestly, I think what will have to be done to completely stem the tide is ISPs blocking the RPC ports on their routers. People shouldn't be using RPC for routable Internet communication anyway.
![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
no subject
Date: 2003-08-12 11:16 am (UTC)Overall, though, I think this is is the biggest threat since NIMDA. So many home users both don't run a firewall and don't keep their systems updated (this vulnerability was discovered July 16th, so they've had plenty of time) that it can spread like wildfire.
Honestly, I think what will have to be done to completely stem the tide is ISPs blocking the RPC ports on their routers. People shouldn't be using RPC for routable Internet communication anyway.