One theme that kept surfacing in your e-mails was the "stupidity of end-users," who can't get it through their thick skulls that they need to be a lot more careful about opening attachments, even when they know who the source is. Given that many of these e-mail virus/worm attacks use the address book of an unsuspecting victim, a little paranoia in this respect among users would go a long way. Even my mother knows better than to open an attachment that looks sketchy. Of course, she had to learn the hard way. It's a good thing that the Navidad virus is relatively benign, or else my Christmas vacation would have been even busier.
One reader told me that his company was essentially following my (facetiously offered) advice about gluing drive doors shut. In lieu of using any anti-virus packages, they use "stern warning" stickers that say something like, "If you use SneakerNet in this shop because the network's down, expect to find yourself in hot water." That's just backwards.
A few of you pointed out that I was discussing a problem without offering any solutions. Gee, I thought that's what columnists were supposed to do. Seriously though, discussing solutions in the context of Microsoft's inherently insecure e-mail software is like deciding what kind of paint you're going to put on the barn once the fire's out.
Get Security Watch free via e-mail
Get my column free via e-mail each week. Sign up at www.iwsubscribe.com/newsletters