Can I just say that I love IIS?

Today I checked back on a company that I had emailed about holes in their webserver. They fixed them.

This is an international corporation. www.pall.com

They actually listened to lil ol me ! hahahahaha



here is the letter I sent to them.(if you want to read)

Dear Webmaster,
I have been doing some private research on companies in the Ithaca/Cortland
area of New York. I have not been authorized to do this nor has this
informtion been requested by anyone. I am doing it for my own benefit. I
recently left my job and have been searching for a few months. Apparently I am
not qualified for the jobs in the area because no one has hired me. So, I
decided to conduct this experiment to see how "good" my competition is and see
how good the people in the current positions are. Needless to say I have benn
disappointed so far. I have tested some local webservers running Windows
NT/2000 IIS 4.0/5.0 for vulnerabilities and I have been alerting the proper
people if these vulnerabilities are found. THERE IS NO MALICIOUS INTENT! I am
just giving out free information, and help if wanted.
Now on to the information.
Your server is vulnerable, if you do not believe me then try this address in
your Internet explorer window.
< this link was removed for security purposes>
You will notice that this is a screen where passwords can be changed. Your
server can also be shut down from this screen.
I beg you to go to www.securityfocus.com for more information and patches.
There were more security holes than I have given you. I will send you the
complete list as soon as you respond to this message. ( I really hope you do
respond to this) I have left out my personal information because I fear that
you will misinterpret the information I have given you. The email address I
have listed is real, so feel free to contact me at that address. I hope that
this has given you enough help to speed you along your way to a safe,secure
webserver. I hope you do decide to contact me so that I can help you(as I said
it is free, there is no cost)because now I know that you cannot do your job. I
HAVE NO MALICIOUS INTENT by doing this, I am trying to help increase computer
security in the Ithaca/Cortland New York area. Hope to hear from you.