A number of security news groups and antivirus vendors are publishing the threat of a new killer virus/worm. Has anyone created any scripts to apply to ISA to counter this new threat. Or is it another Bambi hunt. Microsoft did not have anything on the web site. Users of vulnerable systems should patch them as soon as possible. If patching isn't possible, then there are some ways to minimize exposure. For example, users can block UDP ports 135, 137, 138 and 445, as well as TCP ports 135, 139, 445 and 593 at the firewall. Also, disabling COM Internet Services (CIS) and RPC over HTTP, which listen on ports 80 and 443, would also protect against the flaws being exploited. http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci9 28211,00.html?track=NL-102 Regards Darryl Janetzki