Estimating the Time-To-Own of an Unpatched Windows PC

An anonymous reader notes a recent post on the SANS Institute's Internet Storm Center site estimating the time to infection of an unpatched Windows machine on the Internet — currently about 4 minutes. The researcher stipulated that the sub-5-minute estimate was valid for an unpatched machine in an ISP netblock with no NAT or firewall. The researcher, Lorna Hutcheson, called for others to post data on time-to-infection, and honeypot researchers in Germany did so the same day. They found longer times to infection, an average of 16 hours. Concludes the ISC's Hutchinson: "While the survival time varies quite a bit across methods used, pretty much all agree that placing an unpatched Windows computer directly onto the Internet in the hope that it downloads the patches faster than it gets exploited are odds that you wouldn't bet on in Vegas."

Baloney

I am posting this message from a completely unpatched windows box on the Internet and I am not seeing any side eff....

Buy Viagra Cheap at http://myipaddres/viaga

Re:Baloney

Pft. Newb. If you were smart, like me, you would have patched your Windows bo

Buy Viagra Cheap at http://myipaddres/viaga

Re:Baloney

[SurturZ]

Fools, don't you know that all you have to do is make sure you scan any flopp

Buy Viagra Cheap at http://myipaddres/viaga

Re:Baloney

[Exitar]

Haha, no problem for me with my Linux dis

Buy Viagra Cheap at http://myipaddres/viaga

Re:Baloney

Well, once again, me and my Mac have been proven to be superi

Buy Viagra Cheap at http://myipaddres/viaga

Re:Baloney

This reminds me, can your OS be shut off remotely? Because I just got a new dell, and I'm wondering if I install linux can dell jack my computer and turn it off remo

Re:Baloney

[Exitar]

Hey, are you hitting on me?!?

Re:Um, what version?

Would be interesting to compare with Vista.

They tried. They ran into some obscure bug with Vista that prevents it from accessing the internet while the machine is powered on.

Typical /. Hypocrisy!

I keep hearing on /. about how slow Windows is. Now it turns out that Windows is very fast.

Re:Typical /. Hypocrisy!

[pbhj]

Now it turns out that Windows is very fast.

Kinda like a high priced callgirl...and just as expensive to purchase.

But you only get to use windows for a couple of hours before you get a virus ... oh, wait ...

Re:I have to call BS

I never patch my windows unless its a service pack and I run just fine... Always have my Antivirus running and Windows defender with a router with built-in firewall... No complaints for the 7 years since I built my pc....

Indeed, your computer is a valued member of our botnet.

Re:How is this measured

[BazilBBrush]

How is this statistic measured?

How long is a piece of string?

Pretty short in this case...

Anonymous Coward

Why does my IT guy always say PwN3D? he actually pronounces the "3" in klingon. Does this somehow relate?

Re:What?

Luck.
hell people have managed to survive jumping from airplanes without a parachute.

Re:How is this measured

[Alpha+Whisky]

I'd mod you funny if I had modpoints. I think he probably meant no router/firewall, Microsoft's toy firewall enabled by default in SP2 is about as effective protection as a wet paper bag would be against a rocket propelled grenade. Or for the Slashdot crowd who only understand car analogies, as good a protection as a Ford Pinto crashed into by an express train.

It just means your aquarium populates faster now..

[vittal]

http://xkcd.com/350/

Re:wholesale jewelry

[bloodninja]

Slashdot the spammers!

Re:How is this measured

[BillyGee]

FUD much? I think if one gave you a default install XP SP2 to play with remotely, you'd get frustrated oh in about 30 minutes, shrug and go back to WoW.

Re:Honeynet

[bloodninja]

If this is Windows XP, why isn't there an article on the time-to-own for an unpatched RedHat 8 install?

Can you still buy Redhat 8?

Can you still buy Windows XP?

Re:Doesn't make sense

[bloodninja]

As the OP said, just don't browse the web while you're doing a server install.

Yeah, let's see YOU install Gentoo without browsing the web.

Re:How is this measured

[PopeRatzo]

but who has access to two computers at home?

Everybody who would be reading this article?

Re:How is this measured

[phoenixwade]

if everyone was computer savvy like most of us here then there would be hardly any need for The Geek Squad, and others.

Are you sure there is a need for geek squad? People can steal porn off of computers without professional help....

Re:Funny thing is that Zone Alarm has had vulns

[ColaMan]

How hard would it be for Microsoft to add a patch CD to the box, or when patches are released to ship patch CDs..... to people that ask nicely for them?

It seems that it's not that hard, seeing that they already do.

Your homework for today is to find the link at Microsoft's site that lets you get a copy of the SP3 security update CD mailed to you, and post it below. Extra points if you can write a script that goes through your local phone book and orders a CD for each person.

Re:How is this measured

[ozmanjusri]

those who ignore MS's progress from the Blaster days are just spewing FUD.

Exactly.

Everybody's long since upgraded to the Storm worm.