What's The Actual Cost of A Virus? 526
ThosLives writes "CNN Money just posted a story that says the MyDoom virus may cost businesses $250M. My favorite quote is that for small to medium businesses with 400 or less employees, the estimate is between $48,000 and $58,000 cost to 'secure themselves' from the particular virus. Does anyone know where that number comes from? If one can charge a year's salary to fix one virus, I'm in the wrong job! Any input out there on the real, hard costs of things such as virus protection?"
Actual Cost of a Virus / SCO (Score:5, Funny)
Let's see...
The cost of securing your mail server from viruses includes...
The total cost of protecting a company from *all* viruses that go to their business accounts runs around $200 maximum.
Any moron who works at a company and opens said attachment should be fired anyway. So in the long run, the company actually *saves* money by all these worms going out.
So that must mean that SCO must be rewarding the MyDoom author for all the extra money they keep from firing morons at their company that open those attachments. Wait... that can't be right...
Re:Actual Cost of a Virus / SCO (Score:5, Insightful)
So remember folks: all those years of school, training, reading, getting up at 5:30AM, working your ass off, overtime, weekends, holidays, sitting in meetings, telling your asshole boss how smart he is...
Re: Actual Cost of a Virus / SCO (Score:5, Funny)
> So remember folks: all those years of school, training, reading, getting up at 5:30AM, working your ass off, overtime, weekends, holidays, sitting in meetings, telling your asshole boss how smart he is...
>
You're talking to the CIO that moved the company to Microsoft products, right?
Re: Actual Cost of a Virus / SCO (Score:3, Funny)
At least HE didn't catch the virus. He still gets his email printed out. His only risk is from papercuts.
Re: Actual Cost of a Virus / SCO (Score:3, Informative)
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
Oh, sure, companies should provide one one-day training course on virus recognition, to protect the truly ignorant.
But after that, anyone who still falls for them should be fired, because they shouldn't be in a job which involves reading e
Re:Actual Cost of a Virus / SCO (Score:3, Funny)
Yes I'm usually careful, but I opened the attached zip file out of curiosity - I've never heard of an exploit of Winzip before.
Two minutes later we got instructions from our sysadmin to apply the new McAfee patch, which detected it. So rip out the network cable, then track down the latest version of Stinger from a co-workers machine, run it, reboot, run again, then a full system scan.
Re:Actual Cost of a Virus / SCO (Score:3, Interesting)
Cuz if so I'd better get cracking. I'd unzipped one of these earlier. I don't seem to be infected but one never knows.
Re:Actual Cost of a Virus / SCO (Score:4, Insightful)
That's why, in spite of the fact that "any moron can step over a loose cable" it is still necessary to keep cables away from foot traffic or at least tape them down. It's also why it's bad to login as root all the time (for OSes that permit any other option anyway).
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
is like setting the office on fire by smoking besides inflammable goods when smoking is banned and there are a dozen signs saying 'Danger, inflammable' and 'No Smoking'.
That analogy only holds up if smoking is a normal part of your job description. I doubt it is. I have never seen a workplace with signs reading "No reading email". If there were such a workplace and someone read an email and unleashed a virus, that would be a different matter.
Re:Actual Cost of a Virus / SCO (Score:5, Informative)
It doesn't just do viruses though, it can run Spam checks (with or without the help of spamassassin), Filter out (and remove) dangerous HTML, filter/remove file attachments and has lots of other useful features.
Definately worth checking out.
Re:Actual Cost of a Virus / SCO (Score:4, Insightful)
When the orginal MyDoom.A came out, we were catching them with ClamAV 5 hours before McAfee's patters came out. A similar thing with MyDoom.B.
Update your patterns hourly, as a minimum.
Even that's not enough with a mass vectored attack in which thousands of compromised PCs used to distribute a new virus at the same time.
Antivirus vendors are going to have to rethink.
We need rapid responses to newly detected viruses.
Waiting hours for updated detection patterns isn't good enough, or soon won't be.
Re:Actual Cost of a Virus / SCO (Score:4, Informative)
I filter anything that can be executed by the user. That's the best defense you can do.
E-mail Jail on Windows (Score:2, Interesting)
Sort of like isolating Outlook, which runs attachements in a virtual server where viruses would be locked in a controlled environment and fail to spread outside of that system.
Re:Actual Cost of a Virus / SCO (Score:5, Interesting)
The cost of anti-virus and related is the least part of the equation, even factoring in the admin's time, and I don't care *how* cheaply you work. Not even if you're a volunteer.
The real cost is factored more like this:
- Staff hours that are lost looking at false bounces (or worse, getting infected, something which is very common) and having to correct that
- Helpdesk hours that are lost answering questions from people with a mailbox full of bounces for stuff they didn't send (or we hope not);
- Helpdesk hours that are lost disinfecting the
machines of all those who clicked the attachment. Mostly, the same ones who fell for it last time, too.
- Sysadmin hours that may be spent on watching over stressed mail queues to make sure they don't get full, and dealing with potential mail backlogs.
Those are three broad areas, I'm sure the accounting department could tell me a bunch more of their favorites.
Let's say you make $20 per hour at your job. The cost of your benefits is probably also about $20 hour, assuming health insurance, etc. Heck, it could be more. But lets go with $40/hour as the total cost of your compensation for this example.
Now, let's say you lost 30 minutes of productivity to a worm. OK, $20 bucks that your company spent on having you do something other than your job function. But, you're way smarter than most of your colleagues. You didn't click it. You've just wasted 30 minutes initially looking at what it was, deleting more copies that came in, and deleting bounces, and you ever even called the help desk. Most people are probably at one hour, maybe more. Lots more, if they got
infected.
If by some chance it works out that the average cost of compensation (salary + benefits) in your company is $40/hour, and you have 100 employees and on average each person lost 30 minutes to the worm (again, I bet it's hard to get the number that low in most companies when a big wrom like this appears), that's $2000 right there. Antivirus software is not even factored in because you either had it already or not, but either way, it's not a directly related expense.
OK, that was the first day. People will deal with more crap in their mailboxes tomorrow, and the day after and quite a few days after. At least for a week, you might expect to have a company-wide average of 30 minutes per person, per day, spent on things related to the worm.
Now we're at $10,000.
This all assumes that no data was damaged or destroyed (if it was, the monetary value of that data, if irreplaceable, is charged. For replaceable data, the cost of an admin restoring it is charged).
And don't think your average will probably be that low. If a lot of people get infected, your helpdesk staff and sysadmin staff will probably be spending the majority of their time on this problem for at least a week. In a typical 100-person company with a Windows machine on every desk, you may be really lucky to get away with $10,000 chargeable to the worm.
I work for a well-known mail filtering company, and I'm getting a front-row seat for the impact this is having. It's large, even for companies that have our services. If you have tens of thousands of employeeds, you're going to see a lot of bounces coming in, and those divert staff time to deal with them.
Now, imagine you have tens of thousands of employees and you're not using a service like ours. You're going it alone. Your admins. Your equipment. Your anti-virus software which you hope gets the new signatures before the worm gets to you. Your admins and helpdesk staff are working their butts off for at least a week, probably more (not that they weren't already busy). You might have hundreds or even thousands of infected machines to deal with. Countless bounces. Suddenly, you find yourself looking at a cost reaching into the hundreds of thousands of dollars. Not a pretty sight.
While
Re:Actual Cost of a Virus / SCO (Score:3, Interesting)
Ok, infections can (keyword can) be very expensive for a company, but there is a tendancy for "software" issues to inflate the numbers they u
Re:Actual Cost of a Virus / SCO (Score:5, Informative)
I provide consultance and external admin to a 'mid sized company' who got hit by this in the last couple of days. This is a company with around 50 on-site employees and an anual turnover in the region of $40 Million.
My filters let through two instances of the virus before they automatically updated their defs.
One went to a windows machine and infected it.
One went to a mac, and did not.
None of around 7 internal Linux servers were affected of course.
I knew very quickly which machine had an infection, as it was trying to send more viruses via the smtp server (which was by then blocking them) - we are not NEARLY stupid enough to give employees direct internet access via NAT!.
I blocked the access to the smtp server for that single machine (didn't even need to track down who it was) and they called me about 30 minutes later, when they next tried to send an email, letting me know who they were.
I asked them to download and run the cleaner program, which they did, so I re-enabled them. Their machine made no further attempts, so I suspect it is fine.
I also installed another layer of virus scanning just for the hell of it, and re-tuned their anti-spam setup with the latest versions.
(clamav, http://www.clamav.net)
Total cost to them:
2 hours of my time at $60US/hour.
1 hour of employees time (overestimating here), say $60US/hour.
A moderate amount of traffic on their link (we are blocking around 1/minute at present for this virus, but it is dying pretty fast) - they pay a fixed link cost, so don't really care.
So there we go - lets call it $200US total cost, and they got some usefull systems updated as part of that.
I didn't even have to leaave my home office.
So, your point was?
Re:Actual Cost of a Virus / SCO (Score:4, Funny)
by taking care of your company cheaply, your forced some other company to have a MAJOR expense.. kind of you.
Re:Actual Cost of a Virus / SCO (Score:5, Informative)
Your costs need a little inflating ;) Add the following:
Re:Actual Cost of a Virus / SCO (Score:3, Funny)
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
If you pay someone $20 every day with and expectation of getting $40 back every day, then on normal days you net +$20.
If someone hinders your guy from doing his job, then you net -$20.
The amount that you lost, by any reasonable definition of the term is 20 - -20 = $40, or the opportunity cost of the guy not doing his job.
It seems that what you, and pre
Re:Actual Cost of a Virus / SCO (Score:5, Insightful)
Now, imagine you have tens of thousands of employees and you're not using a service like ours. You're going it alone. Your admins. Your equipment. Your anti-virus software which you hope gets the new signatures before the worm gets to you. Your admins and helpdesk staff are working their butts off for at least a week, probably more (not that they weren't already busy). You might have hundreds or even thousands of infected machines to deal with. Countless bounces. Suddenly, you find yourself looking at a cost reaching into the hundreds of thousands of dollars. Not a pretty sight.
Nice advert for your services, you forgot the URL ;)
I work in a 100% NT4 desktop corp environment (our admins, our equipment) and we have around 40,000 users on various domains. We use Exchange and Outlook. Wanna know how many of these "deadly" worms we've had infect our systems in the last 3 years I've been working there? None
There's nothing inherently deadly about MS stuff in a corp environment as long as your admins and engineers are worth the money they're paid. Frankly I welcome hearing how much cash companies are supposedly losing with this - let it be a kick up the backside. :)
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
wait a damned minute. Are you an employee there? would you get paid even if this outlook worm did not exist? oh you forgot that did you.
and you forgor that typically IT workers are hired as EXEMPT status and therefore can be worked after hours for FREE.
I know that you are good at enron style of accounting from your post, but
Re:Actual Cost of a Virus (Score:3, Interesting)
Firstly, my email server bounces all emails with attachments like
Secondly, I have Symantec Antivirus Corporate Edition installed on a server and on all client workstations. It automatically downloads new
Re:Actual Cost of a Virus / SCO (Score:3, Funny)
No. It's everyones responsibility to get rid of the morons. For good.
Just think of those working around you, in the next cubicle or in the next room... Are they morons? Some morons are obivious, some hide their moronity well, so look carefully! Even your family members or friends could be morons... So stay vigilant at all times!
After you've identified a moron, it's your national duty to get rid of him... Some poison slipped into h
Re:Actual Cost of a Virus / SCO (Score:4, Insightful)
They're not geeks and calling them morons on the basis of their not understanding computers is like calling someone a moron for not being a great chef, a gifted pianist, a brilliant chess-player, or an insightful auto-mechanic.
Ceteris paribus, knowing nothing else about the poor schmuck panicking with his hot little hand on the mouse button, the word makes no sense. In fact, it may very well say more about the person who needs to reach for it than it does about the one to whom it's applied.
Re:Actual Cost of a Virus / SCO (Score:3, Interesting)
I readily admit that I know virtually nothing about car repair. Even I know enough to get regular maintance, to check the fluid levels on occaision and stop the car when some warning light comes on the dash. Knowing these things does not make me a mechanic, but are a necessary
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
What they mean is instead of using the time to fix up and repair the damages of the virus, that time could have been used generating profit for the business.
Since they are not being productive during the time the virus is being sorted out they are losing money because of it. Hence the cost of fixing viruses.
Re:Actual Cost of a Virus / SCO (Score:5, Insightful)
If a virus came out and the news reported it as causing "a few thousand dollars of damage across north america", would anyone give a damn? So the news directors and reporters try and figure out a more "interesting" damage estimate that they can broadcast. So, pump up those numbers! The virus caused $250 MILLION OF DAMAGES, suddenly sounds impressive and formidable.
It has about as much bearing as when the RIAA sues people for tens or hundreds of millions of dollars because "the song they had shared 'could' have been sent to everyone on the planet, thus depriving the record company of any profits whatsoever".
The reality is that in the office I work for, one person clicked on the attachment and got their machine infected. He continued working as normal and called the IT guys who came around and fixed it.
Total lost productivity time? A 30 second phone call. Total lost revenue? $0.
Compared to people just plain ol' "slacking on the job", viruses do a negligable amount of damage.
Funny how you never hear about the '$50 billion in lost revenue' from employees taking three 15-minute "smoke breaks" every day.
Re:Actual Cost of a Virus / SCO (Score:5, Interesting)
The cost of 400 yellow post-it notes saying "DO NOT OPEN FILE IF EXE OR SCR!"
You don't even need this one. Just strip all incoming executables at the mail server so the user never gets anything dangerous to click on.
We did that (at an admittedly small - just under 100 user) site using MailMarshal [marshalsoftware.com], now known as NetIQ Marshal.
There's never any good reason to send an executable file via e-mail anyway. Software updates etc are better accessed through ftp or straight off the web. Self extracting archives (zip files) are unnecessary given the number of free decompressors available if the company is too cheap to pay for licenses.
Blocking all (Windows) executables is easy in most filtering software, removes the worry of not being up to date with anti-virus library files, and works 100% of the time.
This was back in the days of the good old Anna Kournikova, ILoveYou and similar viruses. We had exactly zero infections, and zero problems.
Yes you can still get viruses in other ways (if some damn fool downloads a virus direct from a website) but how often does that actually happen? They all come via e-mail, and propagate via e-mail - be it your server or their own SMTP connection.
Re:Actual Cost of a Virus / SCO (Score:5, Interesting)
As for anyone who opens attachments, it's fine to say that when you've got at least reasonably computer savvy users. However, many small companies have one computer 'expert' (which may be the boss's son) and a computer illiterate workforce who knows how to type a letter in Word and send an email. They don't know what EXE or SCR is and are unlikely to remember. They might be fabulous truck drivers on the other hand, who've never had a wreck and who always get their vehicle to where it's going on time. Why fire them for a mistake in something they have little knowledge about?
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
Generally, this isn't the case at small companies. I've done many virus cleanups at 5-man companies where the guy installing the software is the boss or the boss's son, and knows just enough to be dangerous. The rest of the employees maybe use the computers 10 minutes a day to look at their order sheet that someone's emailed in. They don't
Re:Actual Cost of a Virus / SCO (Score:3, Insightful)
Don't Forget Bandwidth (Score:5, Interesting)
Why do you care? (Score:4, Insightful)
These numbers used to be in the billions of dollars, but now they are more reasonable in the millions. If anything, it shows a trend in the perception of the value of data in a downwards direction. Everyone thinks data is some really important thing which should have a high value, but as more and more data is brought into the open (including, but not limited to, source code) the value of data drops.
The most interesting statistic (Score:3, Insightful)
The articles about losses from email worms consistenlty fail to adress the problem of crap email clients (or more correctly, THE crap email client) that causes this problem. They also give the same two pieces of advice, "use anti-virus software and dont open attachments", conspicuosly leaving out the most important advice: change your email client.
Is it because they are embarrassed that they use this sam
Re: (Score:3, Interesting)
Re:The most interesting statistic (Score:3, Informative)
They're addicted to the groupware features... (Score:3, Interesting)
Mozilla Mail doesn't provide the scheduling- and even if it did, it's not integrated into the framework like Outlook's is. Same goes for Pegasus Mail, Eudora, and any of the other programs out there.
Re:Why do you care? (Score:3, Funny)
Its a lie (Score:2, Insightful)
As has been said 100 times before, there are 3 types of lies: lies, damned lies, and statistics. This is just another case of statistics being used to lie.
The cost to MAKE a virus (Score:3, Insightful)
You're out of touch with reality (Score:4, Insightful)
2. No business would invest into an application made by a freshman software company. They would choose experience and mindshare over empty, unsubstantiated promises.
3. It doesn't take few hundred thousand to write a decent AV application. You can create one on a shoestring budget and package it under $10,000 or less.
4. You're assuming none of the AV products would be able to provide a "fix" for said virus, which would create a market for this fresh application. In the AV world, there is no such thing as "exclusive fix" to a widespread problem.
Re:The cost to MAKE a virus (Score:2)
Wasted time! (Score:5, Insightful)
Time waiting for your 'net link to do what you've paid for it to do while your email server chokes on hundreds of incoming virus emails.
Time wasted by tech staff explaining to every user at least once to not click that file (or if the organisation has virus scanning) to ignore the ten dozen "virus has been nuked" warning emails.
Time wasted by staff who have to spend time ignoring this junk, replying to warnings about the thing from their naieve friends and family emailing then CNN URLs and saying, "is this for real?"
Time wasted making sure the company virus protection is up to date on laptop machines that get infected at home on 'raw' Internet connections then get plugged into the pristine corporate network in the morning. Time wasted fixing machine that weren't caught in time.
This sort of cost really adds up...
Re:Wasted time! (Score:5, Funny)
Umm, that means slashdot is more dangerous than all these virus! :)
Re:Wasted time! (Score:4, Funny)
Assuming, of course, that people who are reading slashdot would otherwise be doing something productive instead...
Re:Wasted time! (Score:3, Informative)
Re:Wasted time! (Score:3, Insightful)
It just eats into the time that would otherwise be spent talking about Coronation Street or the latest 'reality' TV show, and gives the mongs something to get excited about.
Certes, it wastes IT staff time, but considering what the office staff don't do through the average day, why not just chill and sort it out at your own pace?
Education (Score:3, Insightful)
Re:Education (Score:3, Interesting)
But seriously, this whole thing only took about 2 hours or so of my time. Blackhole the infected machine at the firewall, check mail logs, remove the virus, update AV pattern file, about an hour. Of course, another hour is wasted respo
do your math: it'd only be 5000 small businesses (Score:5, Insightful)
are there only 5000 small businesses out there?
i think not.
So those $48K to $58K must certainly be understood as a "worst case" figure applying only to a fraction of businesses out there
The Numbers (Score:4, Funny)
Remember, a consultant is someone who'll steal your watch, then make you pay them to tell you the time.
As long as you are not infected (Score:5, Interesting)
The company I work for has not become infected, the only cost of the virus is stupid bounce back messages and an hour of my time fine-tuning our mail server config. Due to this the virus has cost us something, but its hardly worth mentioning.
The cost of having a good anti-virus system is really easy to justify.
Is it in the books? (Score:3, Insightful)
I mean, $48000-58000 for each attack is a lot on the balance of a healthy 400 employee company ($3,000,000 revenue, $100,000 EBITA).
--
I cannot conceive that anybody will require multiplications at the rate of 40,000 or even 4,000 per hour -- F. H. Wales
I suspect the viruses aren't the worst (Score:3, Interesting)
But I pity the millions of people whos PCs are infested with dialers, trojans, browser-infecting gremlims. These are not technical 'viruses' because they don't propagate. But they are very serious time wasters,
Re:I suspect the viruses aren't the worst (Score:2, Informative)
Re:I suspect the viruses aren't the worst (Score:2)
Sounds great.
Re:I suspect the viruses aren't the worst (Score:2)
At least, that's what SHE tells me.
HA HA HA (Score:3, Funny)
Reading about it on my Mac: Priceless
+1 Funny Because It's True (Score:2)
Despite what Windows pundits would have you belive, Linux and Mac OS alike dont' get fewer virii because of lower market share (lower market share?!? I smell a pissing contest), but because they have no mechnasisms in place out of the box where a user can recieve e-mail with an executable file which can be activated with a single click. Not a double click, mind you; a single click and Outlook will launch a
If Mic
Comment removed (Score:5, Interesting)
Not to fix the worm (Score:2, Insightful)
One company's cost may be the other's profit (Score:2)
Sure, IT companies in general might complain about huge losses, but for antivirus software makers the same losses might mean profits. Not 1:1 of course. If viruses wouldn't exist, those companies would be out of business (duh). And every virus that gets out in the w
Re: (Score:2, Interesting)
It has to be said (Score:2, Funny)
400 or less employees - $58,000
DDOS SCO - priceless
There's some news money can't buy. For everything else, there's Slashdot.
Rough cost of the latest virus here (Score:2)
Total cost at this business probably didn't exceed A$400. We're "medium". 19 core staff, 80-odd contractors.
It would have been less of m
Cost of a Virus (Score:2)
1. How many man hours were spent to keep services available
2. Cost of actual flow of income if it was interupted (contacts, sales, etc)
3. Cost required to protect against next wave. This could be to hire another person on staff, additional software, contractors for a few days, etc.
There could be more, but those are the first that came to mind...
I talked to friends in a few different large companies. They weren't really affected last time I ta
Some comments about virus spreading (Score:2)
"It doesn't matter which mail client you use, if you clic
The cost seems a bit, um, high. (Score:3, Interesting)
Re:Culling attachments is a good idea (Score:2)
Inflated costs AGAIN - that trick never works (Score:5, Interesting)
One good example is in the Bruce Sterling non-fiction book "The Hacker Crackdown" - which can also be read online. To sum up, the financial cost of get a paticular document taken from a mainframe was given as the total cost of the mainframe, a terminal and the salaries of a bunch of people going up the heirachy from the person who wrote the document, for far longer than that person actually spent working on that document (ie. paying for someone to write it at the rate of a few words a day, someone else to stand behind then and look over their shoulder for days, someone behind them etc). The defence proposed that the actual worth of the document was the few bucks plus postage that other people paid for it when they ordered it from the company over the phone.
Opportunity costs are difficult to calculate, one missed email and you could have been a contender - on the way to fame and fortune - but it's more likely that the email is just spam.
Re:Inflated costs AGAIN - that trick never works (Score:3, Informative)
you pay what deserve to pay (Score:2)
If you cant be bothered to hire ppl who have no sense then to open everything that comes to them without seeing what it is then you deserve to waste thousands of dollars on this.
If you cant be bothered to have someone on your staff who is qualified to run your network and not just the person
Re:you pay what deserve to pay (Score:2)
The REAL serious issue is that they're giving NETWORKED computers to people who will open a
Before anyone touches a computer, people need to be told that the internet is a hostile area where theft and fraud occurs with complete an
The costs add up (Score:2, Interesting)
It isn't just one person working on the virus.
With really bad viruses it will take a week of work, if you are lucky and it doesn't spread too badly.
You probably have the entire server/desktop team working on the updated anti-virus software and how to deploy it.
You have the entire Tech Support team who ac
Real Costs include (Score:2, Funny)
productivity lost by user, files lost etc.
severance pay for dumb user
hiring fees for the replacement (ad costs etc)
Of couse when the dumb user is also the boss/owner of the company it can cost a whole new computer just for starters (Dual G5 with everything) and a lot of time reshuffling computers to incorporate this one into the company plus new firewalls
Yep those viruses can be costly
With the frequency of these virii and worms... (Score:2, Insightful)
Perhaps that would be sound corporate IT strategy?
User education (Score:2)
On a funny side, awareness for viruses can be achieved by putting up posters like this:
Safer Surf [feisar.de].
This is harsh, but it needs to be said (Score:5, Interesting)
The reason why so many attacks are against Windows is that Windows is usable by complete morons -- and, as an inevitable result, you get complete morons using it. Yes, we all know GNU/Linux requires a little tech savvy. You don't get smart enough to use GNU/Linux without first learning that running just any old programme when you don't have the faintest idea what it does, is a bloody stupid thing to do. On the other hand, any living advertisement for the pro-choice movement can fire up Windows XP and get their computer riddled with malware in a twinkling. Why? Because Windows is too easy to use.
It's a perfect illustration of reverse evolution in action. You try to make something idiot-proof, then nature only goes and comes out with a dafter idiot.
You could never make a car that a five-year-old could drive safely -- and even if you could, it would necessarily lack so much functionality it would barely be usable. Really, there's no point trying -- it's better to issue full driving licences only to adults and only on completion of a test. And then we don't have to suffer the consequences of cars that would be driveable by five-year-olds.
The very fact that GNU/Linux naturally weeds out complete retards probably explains why there are not -- and will never be -- as many GNU/Linux exploits as there are Windows exploits.
Re:This is harsh, but it needs to be said (Score:5, Insightful)
I work in IT for a large retailer in the US. Most of our non-IT people are paid well because they sell lots of merchandise to customers and keep them coming back. People who are good at that tend *not* to have the time to learn how to use something like Linux.
I used to have a similar sort of superior attitude about the vast majority of people out there who don't understand computer issues in any sort of detail. Then I started noticing how irritating it was when people who were specialized in other fields - e.g. medicine, car mechanics - did the same thing to me.
I can understand giving someone a bit of trouble if they're clueless *and* work in a tech-related field, but not if they just use computers as a tool for getting something else done.
Do you honestly know how to disassemble and repair your car and home appliances, or perform surgery? My body gets more use than my home or work PCs by default, but I can't perform more than basic repairs on it. Does that make me a moron? No, it just means that I do something else for a living.
Re:This is harsh, but it needs to be said (Score:5, Insightful)
See how petty and insulting it sounds when it's in relation to another line of work? That's how the "dumb user" attitude makes tech workers look to people in other fields.
Re:This is harsh, but it needs to be said (Score:5, Insightful)
That's all the poster asked for - he doesn't ask for people to be able to fix a bug in one of their init scripts. He doesn't even ask for the minimum of skills I would expect for a specifically technical job. He just asks that people not step on the accelerator when an interesting brick wall appears in front of them.
Obviously, the consequences of being clueless with your computer are nowhere near the consequences of being similarly clueless with your car. However, the idea that you can be held responsible for paying attention to those actions you do perform is not unthinkable. Simply being aware of what you're doing should not be too much to ask.
Re:This is harsh, but it needs to be said (Score:3, Insightful)
You have highlighted exactly why Windows is used in the majority of offices - it's easy, familiar, agnostic with regards to security, and cheaper than employing people that could cope with KDE or Gnome.
naturally weeds out complete retards
probably explains why it will never be the desktop of choice - Apple learnt long ago to cater to total retards, and has the media business sewn up as a result.
The only cost should be (Score:2)
I've managed 3 seperate networks, small to medium thus far, over the past several years. Sobig? blaster? MyDoom ( clamav: worm.sco.a/b )? Klez? My networks have never been touched.
Yes, they are win32 based on the client, and linux based on the server. But, due to a strong policy and me doing my job, my networks remain virus free.
If any network gets bitten by this, the IT staff needs a serious looking at. An IT staffer who would let this happen to their network should be given the boot
Re:The only cost should be (Score:2)
Many companies run badly designed virus scanners, that rely on uptodate virus signatures, determine file types by looking at the name, and send "virus warning" messages to the "sender" of the message.
Running this below-par scanning software, which is often considered "enterprise strength" in Windows e-mail environments, is a big part of the problem in every outbreak.
Re:The only cost should be (Score:4, Interesting)
A good scanner can look inside
If I were you, I would consider upgrading to a better scanner.
Re:The only cost should be (Score:2)
slashdot (Score:2)
I guess it all depends on the virus (Score:2)
Of course, at the rate these computer viruses are spreading, a-dollar-a-pop (ie per person per exposure) rapidly becomes a significant amount of cash.
Obviously a whole-lotta-poppin-goin-on.
Companies should give away antivirus software (Score:3, Interesting)
I personally use a great freeware antivirus program from a German company called AntiVir (www.free-av.com), which gives it away for personal use but requires commercial use to have a licence (as a nice aside, it is WAY more efficient that the bloated Norton apps). This makes sense, as it's businesses that keep telling us they're losing millions of dollars when a virus hits them, whereas home users might be inconvenienced for a little while but not seriously affected in most instances.
How about having the government recommend some free antivirus programs, or even require companies to sponsor antivirus companies, since it's in their interests to do so?
Strange numbers (Score:3, Insightful)
If the virus got in, the cost of fixing it would be based on the method of removal, how many computers got infected, and what the downtime costs our business. These are three variables that certainly can't be guessed. Something tells me they just pick out numbers that are big enough to impress the media and small enough to avoid losing whatever credibility they have left.
Comment removed (Score:3, Interesting)
Costs relate to virus removal (Score:3, Insightful)
Detroit area. We get typically $149/hour for operating systems/software support. Given the case of a small company with 20 workstations and a server for their employees to use that has nothing in place for virus protection, and that most, if not all machines have become infected, figure this:
Figures to 21 hours max at $149/hour... $3129 in labor. Norton AV Corporate edition with 25 seat licensing (don't forget, that server is included as a seat, and you can only buy in 5, 10 and 25 seat increments) costs $869.00 per Symantec's website. With the 30% markup my employer would add and state sales tax added, that comes to software costs of $4326.48.
Figure in any additional labor to reinstall any software or operating system components that were damaged by the infection and you've got one whopper of a bill for a small business to drop because a multibillion-dollar corporation cannot spend the proper amount of money and time to thoroughly investigate and secure their operating system products. Then figure in the cost of annual subscription fees to download updates to the virus updates (I don't recall the actual figures for annual subscription fees, but my sister's company has three pc's in a peer-to-peer environment and each machine costs $20 annually for that subscription). Pretty hefty.
Virus attacks keeps SOME folks in a job... (Score:4, Interesting)
Stuff like this, large comapnies needing to outsource virus cleanup, is also a major factor to be considered when looking at those numbers. Figuring that the contract companies got an average of $25/hr for each of us and multiply that by the initial order of just over 100 techs for the first 2 weeks of cleanup (Honeywell has numerous, large facilities around Phoenix), and you see just how much money these things can cost a company.
Total cost of MyDoom virus at my work. (Score:5, Funny)
New mail server, bought last February: $2500
FreeBSD 4.8: $0.
Qmail: $0.
Vpopmail: $0.
qmail-scanner: $0.
Spamassassin: $0.
F-prot antivirus for unix file servers: $400/year/server.
My time*: $3000.
Moving from sendmail to qmail and watching sendmail admins patching: priceless.
Moving from sendmail to qmail and watching server load averages go from 20 to 0.02: priceless.
Adding on spamassassin server wide and watching server load averages go from 0.02 to 3.0: well, it's still better than sendmail was.
Watching the server eat 30,000 viruses a day during the MyDoom attack after months of hard work: totally righteous.
There are some things money can't buy. For everything else, there's my Boss' Mastercard. Accepted in places where Open Source Software impresses geeks like me.
* I'd never before used any of the software listed above. It took a while to learn it all in between tech support calls.
Potential Loss (Score:5, Interesting)
Re:there's another virus i'm more worried about (Score:2)
Seems like the stated cost for clearing a small business of the computer virus is more than a human life costs in most areas of the world.
Plus, I wonder if the computer virus can be listed as a tax write-off?
(only being partially smart-assed...)
--jeff++
Tinfoil hat time. (Score:2)