mohaughn- was that an accident or did you just feel it was worth repeating?

I agree that blocking at the firewall is not "sufficient". There were articles earlier this week about how remote users are one of the weakest links to corporate information security for the reasons you cited.

I think that since their IS a patch for this that it may as well be tested and applied.

However, because of MS03-010- for which there is NO patch for NT- you are still vulnerable to other flaws and should block the external ports to minimize your exposure until you can replace or upgrade NT.