Security
First off, none of the below is meant to dilute the blame due to those who actually ran these botnets. I think the sentence is a little long (I'd go for a shorter sentence and larger fines), but anyway...
"So your argument is that the victim is at least partly responsible, for failing to lock their door / wearing a short miniskirt / whatever?"
I think the argument using this analogy is a lock manufacturer would be partly responsible if they sell "locks" that do not actually hold a door shut. Analogously, Microsoft's made it FAR too easy for people to install unauthorized software ont Windows systems.
"at how naïve some of The Reg readers are. Secure your computer against these guys? You've got to be kidding. Short of cutting your Internet cable, there is no real defense against these bastards. Windows is so full of holes it may as well be swiss cheese."
Yes, I secured my machines by getting Windows the fuck off of them. Although, when I ran XP, by ditching Internet Explorer & Outlook (using Firefox and Eudora, set to not use IE rendering engine) and shutting off the crap services it runs by default, I did not have any crap show up on it. (I ran Ad-Aware and AVG and they never showed a thing.)
"Of course, it is also easy to jump on the "Microsoft sucks" bandwagon, but I think anyone with an ounce of common sense knows that's not the answer either. Anyone who has worked in law enforcement knows and lives one simple rule. "If someone wants in badly enough, there's nothing you can do to prevent him from getting in." "
Computer security's not like picking some physical locks though. A stock Ubuntu system, there's 0 network services running. It's simply impossible for some botnet to install onto it, there's nothing to connect to. Network apps... well, firefox doesn't haphazzardly run code the way IE will (for instance firefox doesn't have ActiveX at all; flash and Java are sandboxed; and the whole app is protected so buffer overflows etc. will crash the app rather than running bad code.) The whole interface, gnome, KDE, mail apps, etc. make it difficult enough to save a random executable and run it so noone's going to run an app by accident, run an app thinking it's a JPEG, etc. MUCH harder to install an unwanted app onto.