For how long has the world’s IT been running naked, with anyone on the network able to take over the whole system?“it’s high impact and easy to exploit. And if you are exploited, the price is high, irrespective of any damage the attacker does: The only way to remediate is to rebuild the domain from scratch. Don’t let this happen to you.” Any length of time is too long. Yesterday, M$ told the world they were naked and now system administrators are scurrying around to make sure every system running InActive Directory has a patch. Meanwhile, the bad guys have been out there a while compromising whatever they could phish into.
This makes the occasional flaw in GNU/Linux pale into insignificance. What will M$’s apologists write now? That M$ has the One True Way to do IT? That the problem is fixed? That it’s the user’s fault??? Ignore them and think for yourself. M$ has let down the world in a big way. Would you continue to do business with the locksmith who installed a useless lock on your front door? Would you continue to do business with the car-maker who cranked out ten million lemons even after discovering the problem? Would you permit your daughter to date a guy with a history of vehicular crashes? Would you do business with a company that can’t rely on its own software? Don’t do it. Get software that works for you, not M$, M$’s “partners” and the bad guys. Get Debian GNU/Linux.