Comments on: MySQL worm hits Windows systems

Databases protected by weak passwords on Windows-based machines could allow a worm to spread to several thousand systems.

Macintosh unaffected

I enjoy saying that

[simcity1976]

lol

MySQL is a windows database system, I hardly think mac's would ever be affected by this worm by.

But don't worry, they becoming to a mac near you soon.

lol Love saying that.

But on a serious note, do you remember when windows was reported to be the OS that viruses couldn't touch. I find it funny people saying that about Mac's OS now ;P.

[catchall]

I too

Windows, the OS, is unaffected as well. I'm not used to saying that...
The flaw is with MySQL, so it seems that as open source gains popularity, it also gains attention, and has some of the same issues as other, larger companies.
Anyone know if this flaw exists on other platforms? The 'MySQL UDF Dynamic Libray flaw' documentation looks like Linux, but I am unsure.

[System Tyrant]

According to MySQL...

this is not a bug in the software. I like MySQL, but this sounds a lot like a Microsoft answer. Oh, it's not us. Then again, maybe it's really not a flaw in the software. Expecially if doesn't effect any other os version.

Here is the link
http://dev.mysql.com/tech-resources/articles/security_alert.html

[unoengborg]

Well, it sort of isn't a bug,

and sort of it is. MySQL offers ways to make the connections safe. e.g. by use of SSL. If users don't use it, or choose bad passwords there is not much they can do.

However, they could add a delay time after a failed login before you could have new try. And increase that time exponentially for each consequtive failed login attempt.

This would give this kind of attacks much less chance of succeding