Posted Feb 15, 2009 10:06 UTC (Sun) by JesseW (guest, #41816)
Parent article: Forcing updates
I strongly suspect the only way anyone is ever going to resolve the zombie problem is by releasing botnets/worms themselves. (By "zombie problem" I mean the problem of non-technical users having their networked computers taken over and used without their knowledge or consent.)
Such "whitehat botnets" would simply harden/patch the systems they infected, devote a small portion of their host's resources to spreading the infection, and otherwise leave the user alone. The bots could even be programmed to attempt to avoid infecting computers that appeared to be already secured. Yes, this would be illegal, a blatant violation of the user's ownership of their machines, and a vigilante action, but, realistically, I don't see any other solution.
No, I'm not doing this, or volunteering to do it, or even suggesting someone else should do it. I'm just speculating publicly.