XML-RPC worm

[Kevin Brown]

>>Affected systems will need to be wiped and have the OS
>>reinstalled, in most cases.
> 
> 
> um, this would be affected systems that didnt know how to set their
> web server permissions correctly i assume?  you think that any decent
> install would do that... ill check the gentoo tonight (which would
> probably have been patched a long time ago anyway), but it doesnt seem
> to make a whole lot of sense to me.
> 
> I mean come on, you dont have to reinstall an os to do this stuff...
> thats crazy talk.  This is unix, man, there isnt a registry to screw
> up...  just reinstall the frigging webserver if you have to.

No, it isn't crazy talk.  Unless you can guarantee that you undid all 
the possible damage, then it is faster and better to reinstall and 
restore the configs and data from a known clean backup.  Else you could 
be leaving a compromised system up on the Net.