I have no particular problems with it myself. I am knowledgable enough to disable all of the unneeded services that are enabled by default and put myself behind both hardware and software firewalls
Too much is enabled by default and most users don't know how to correct that. Ask the average user what services they are running on their machine and your most popular response will either be "windows!" or "uh...aol?". Not to mention the number of vulnerabilities that shouldn't even be a factor. why the hell is DCOM accessable from the net? My god you guys got lucky with Blaster. An exploit that shouldn't exist gives full admin access to the machine. He could rename user accounts...delete user accounts...do whatever he wants to ruin a half a million machines. And what does it end up being used for? A half-assed, horribly moronic excuse for an attempted DoS attack on "windowsupdate.com". kid used stolen code for most of the worm, and didn't even bother to put in the actual URL of windows update. even then...as fast as that was spread there shouldn't have been a multi-day delay in the attack
I'm a conspiracy theorist. I think someone at MS found the code, knew the damage potential it had, and released an essentailly harmless worm. Well, harmless aside from the fact that is broke RPC - which it wasn't intended to do, the code just sucked