[bind] Re: The worst thing about the exploit -- Have you done your part?

Jeff Lightner jlightner at water.com
Mon Jul 28 17:43:10 UTC 2008 

Amen to that.

Also most of the companies that reported "no problems" with Y2k were
publicly traded and didn't there admit to any problems no matter how
small.

On Y2K the one project of the large Fortune 500 I worked for DID have
two problems (albeit minor ones).   Given the amount of prep work we'd
done that was a bit surprising.  I often wondered if ever project in
that company had just 2 problems and every company of similar size had
problems how many Y2K problems there really were.  

Also it was the news media that was painting doomsday scenarios at the
time.  Most of us in IT knew that it was important to solve the Y2K
issues ahead of time but also knew we didn't need to water, food and
ammunition.   What really annoyed me after Y2K was how the same alarmist
media complained as if it was the IT community that had told them to use
the scare tactics.  They also didn't bother to do a single story about
the amount of effort done to address Y2K proactively. 

-----Original Message-----
From: bind-users-bounce at isc.org [mailto:bind-users-bounce at isc.org] On
Behalf Of Mark Andrews
Sent: Monday, July 28, 2008 12:50 PM
To: Ronald F. Guilmette
Cc: Tuc at T-B-O-H.NET; DNS BIND
Subject: Re: [bind] Re: The worst thing about the exploit -- Have you
done your part? 


> 
> In message
<200807272025.m6RKPKgt023143 at himinbjorg.tucs-beachin-obx-house.com
> >,
> "Tuc at T-B-O-H.NET" <ml at t-b-o-h.net>  wrote:
> 
> >	People have also said "Well, wait until the news outlets get a 
> >hold of this, it'll be bigger than any movie stars baby, any
presidential
> >scandal, etc". Well, I've seen it on 2 different news sites, with it
> >giving a "dooms day" feel to it.... And.... Seems its just not
getting
> >anyones attention. The ISP I'm on (MAJOR cable co) still hasn't
seemed
> >to make the change or done anything about it. 
> >
> >	I guess someone needs to poison a few large DNS servers and
> >start stealing credit cards and eBay/Paypal/Y!/Gmail id/passes for it
> >to get anyones attention.
> 
> I'm not sure that anybody could have expected anything different.
> 
> I mean hay!  Remember the "doomsday" that was supposed to be Y2K?

	And lots of software was updated in advance to prevent
	problems.  If it hadn't been updated lots more systems would
	have fallen over.

> And since then, we've had various predictions of an Internet "Pearl
> Harbor"... none of which have actually transpired... yet.
> 
> So now, the sky is falling, yet again.  You can't be too awfully
> surprised that some people yawn, roll over, and go back to sleep.
> (I am _not_ saying that that is the proper reaction.  I myself am
> scurring around to try to get my own nameservers updated ASAP.  I'm
> just saying that its kind of a natural reaction.  The network security
> community may have cried "wolf" once too often.)
> 
> 
-- 
Mark Andrews, ISC
1 Seymour St., Dundas Valley, NSW 2117, Australia
PHONE: +61 2 9871 4742                 INTERNET: Mark_Andrews at isc.org
----------------------------------
CONFIDENTIALITY NOTICE: This e-mail may contain privileged or confidential information and is for the sole use of the intended recipient(s). If you are not the intended recipient, any disclosure, copying, distribution, or use of the contents of this information is prohibited and may be unlawful. If you have received this electronic transmission in error, please reply immediately to the sender that you have received the message in error, and delete it. Thank you.
----------------------------------

More information about the bind-users mailing list