Code Red 2 cleanup; reporting..

Mathias Körber mathias at koerber.org
Thu Aug 9 06:19:19 UTC 2001


>    Is there an effort abound that would allow for lists of verified 'Code
> Red 2' infected hosts to be reported for cleanup/mitigation?    
> By known 'Code
> Red 2' infected hosts, I mean that root.exe has been found to exist on the
> host.
> 
>   Finding the contact information for a lot of these is proving difficult
> being that a fair amount of the infected machines are Joe Blow broadband
> customers.

Publishing such lists is IMHO not a good idea, as these hosts are vulnerable and
publishing their addresses would only serve to let more crackers know where to
go..




More information about the NANOG mailing list