rumith writes: The Inquirer tells us that Microsoft has posted details on a vulnerability (or rather, a feature) in IIS 5.0 that allows an anonymous user to bypass authentication and access documents he shouldn't be able to. The good part: they've already taken down the specifics of the exploit. The bad part: they claim that this behavior is by design, and the only way to fix it is to upgrade to IIS 6.0, which is shipped only with Windows Server 2003, the cheapest edition of which costs only $399. Isn't this called "money extortion"?
DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Also, Slashdot's now on IFTTT. Check it out! Check out the new SourceForge HTML5 Internet speed test! ×