Code Red 2 cleanup; reporting..

• Previous message (by thread): Code Red 2 cleanup; reporting..
• Next message (by thread): Was: Code Red 2 cleanup -- SHOULD NSPs PULL THE PLUG? Solutions?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> Spent nearly two days convincing someone who was managing a server that he
> was beating up machines all over the company. It finally took someone at

Tonight, 20 minutes after openning up port 80
on a firewall to a server supposedly only running
the latest CITRIX on Port 80 (why 80? Don't ask me?)
and the high paid out of town consultants swearing they
had applied the appropriate patches and were safe, 
they are now broadcasting out the latest CodeRed style worm.

I got some nice sniffit captures from my Linux firewall
though.. this morning will be interesting. I wonder
how they like their crow served.

• Previous message (by thread): Code Red 2 cleanup; reporting..
• Next message (by thread): Was: Code Red 2 cleanup -- SHOULD NSPs PULL THE PLUG? Solutions?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]