[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: whats this?



>>>>> Nadav Har'El writes:

  Nadav> And how exactly will that help if the "attacking" domain
  Nadav> (itself a victim of the worm) is a Windows machine, 90% of
  Nadav> them probably home users with Windows and illegal copies of
  Nadav> IIS?

Right now, I care less about illegal copies of Windows than overall
Internet security.  And I share your concerns about a huge number of
sites going down in the near future as a result of a massive exploit a
la Code Red.

Windows administrators who didn't patch their machines even after
every major newspaper publicized front-page stores deserve to be
skewered.  But if I can install a friendly, helpful reminder on my
system that tells them (a) that their machine is infected and (b)
where they can get help, then I'll do it.

  Nadav> By the way, I hope in your helpful mail you also remind the
  Nadav> victim to remove the root.exe *and* the trojan explorer.exe:
  Nadav> either one of these gives a backdoor.

I would rather point them to Microsoft's site than start giving
explicit instructions about what to do.

  Nadav> The possibilities for mayhem are endless!

Indeed -- and the scenarios that you're suggesting are only the
beginning, I'm afraid.

On the bright side, it'll now be easier for me to sell clients on the
benefits of a Unix system...

Reuven

=================================================================
To unsubscribe, send mail to linux-il-request@linux.org.il with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail linux-il-request@linux.org.il