So far so good on the WMF vulnerability. I have not yet seen any evidence of any computer on campus being infected via this route. One thing I just noticed this morning after reading the F-Secure Blog and searching our logs for robert@yale.edu, is that our greylisting software is working to combat this particular message. It looks like the worm or virus is spreading via email using its own SMTP code that has not yet tried to send to the same address twice. Therefore our greylisting has kept those messages from being delivered. Lets hope it stays that way.