[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-users] Code Red variations

Subject: Re: [cobalt-users] Code Red variations
From: "Jim Scott" <cobaltlist@xxxxxxxxxxxx>
Date: Thu Aug 9 12:00:11 2001
List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>

Best place to subscribe is to SANS

www.sans.org

This will get you notified for all vulnerabilities. Cobalt, Linux, NT you
name it.

Jim

----- Original Message -----
From: "Jeff Lasman" <jblists@xxxxxxxxxxxxx>
To: <cobalt-users@xxxxxxxxxxxxxxx>
Sent: Thursday, August 09, 2001 4:10 PM
Subject: Re: [cobalt-users] Code Red variations


> Carrie Bartkowiak wrote:
>
> > You should've seen my face when I heard a so-called "security expert"
> > announce over national radio that the one million home-users who had
> > downloaded the patch had "wasted their time". He went on to say that
> > home users did NOT need to apply the patch, as it "only affects
> > servers, such as those that host places like Yahoo or Ebay".
> >
> > Never mind that people DO run NT and W2K on their home boxes, and
> > that RoadRunner and @Home have generated the most offending IPs in
> > this entire mess. (At least, the last time I checked, which was just
> > before he made this stupid announcement.)
>
> Code Red only affects servers, Carrie.  IIS is a server.  If you run it
> at home you need to protect against Code Red.  If you don't, you don't.
> I'd guess that close to all of the home users who've downloaded the
> patch really have wasted their time.  The patch does nothing to stop the
> probes.
>
> > Some expert...
>
> I don't remember right now how the IP#s get selected, so I suppose
> you'll say that to me as well <smile>.
>
> And for what it's worth, I maintained a system that was compromised by
> Code Red (I) and it took only seconds to apply the patch.  I also
> subscribe to Microsoft's security warning list, and I've NEVER yet
> received any information on Code Red on it <frown>.
>
> Jeff
> --
> Jeff Lasman <jblists@xxxxxxxxxxxxx>
> nobaloney.net
> P. O. Box 52672, Riverside, CA  92517
> voice: (909) 787-8589  *  fax: (909) 782-0205
>
> _______________________________________________
> cobalt-users mailing list
> cobalt-users@xxxxxxxxxxxxxxx
> To Subscribe or Unsubscribe, please go to:
> http://list.cobalt.com/mailman/listinfo/cobalt-users
>

References:
- RE: [cobalt-users] Code Red variations
  - From: Dom Latter
- RE: [cobalt-users] Code Red variations
  - From: Carrie Bartkowiak
- Re: [cobalt-users] Code Red variations
  - From: Jeff Lasman

Prev by Date: RE: [cobalt-users] help - making a cron job to auto delete files, earlier than a specific date
Next by Date: [cobalt-users] Cobalt-Users Chat...
Previous by thread: Re: [cobalt-users] Code Red variations
Next by thread: RE: [cobalt-users] Code Red variations

Sun Cobalt Users Message Index

Sun Cobalt Users Thread Index