Full Disclosure mailing list archives

Re: Culprit Bio: Perfect Storm Averted or Just Ahead?

From: David <ph1 () cogeco ca>
Date: Thu, 29 Jan 2004 15:48:52 -0500

Peter wrote:

If I can believe the virus researchers www.microsoft.com is not going to be

a target..

MyDoom.B apperntly enters into you hosts file along with a lot of others
www.microsft.com with address 0.0.0.0
I think a DoS sending http GET requests to www.microsfot.com from that
machine is probably not going to reach microsoft.

It was mentioned somewhere (I think f-secure) that it will removecertain entries before it starts the attack.


http://f-secure.com/v-descs/mydoom_b.shtml

"An additional line is added before the the date when attack againstMicrosoft begins:


0.0.0.0 www.microsoft.com

Which will make the site unaccessible. The 3rd of February the entrywill be removed so the attack can be performed, which will probablycause some difficulties reaching it, if the DDoS is successful."

Peter



-----Original Message-----
From: full-disclosure-admin () lists netsys com
[mailto:full-disclosure-admin () lists netsys com] On Behalf Of Jos Osborne
Sent: donderdag 29 januari 2004 17:05
To: full-disclosure () lists netsys com
Subject: RE: [Full-disclosure] Culprit Bio: Perfect Storm Averted or Just
Ahead?

It's just SCO trying to gather publicity from the whole situation.

"Oh, look at us - we're under attack by an evil virus."

What's the bets they try to blame the open source community? Especially with
Microsoft also being the target for MyDoom.B

Jos


-----Original Message-----
From: Feher Tamas [mailto:etomcat () freemail hu]
Sent: 29 January 2004 15:45
To: full-disclosure () lists netsys com
Subject: [Full-disclosure] Culprit Bio: Perfect Storm Averted or Just Ahead?

Anyone with MyDoom author info, a reward is posted.


No honest person would take those 30 silver coins from SCO.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Current thread:

Culprit Bio: Perfect Storm Averted or Just Ahead? Feher Tamas (Jan 29)
- Re: Culprit Bio: Perfect Storm Averted or Just Ahead? christopher neitzert (Jan 29)
- <Possible follow-ups>
- RE: Culprit Bio: Perfect Storm Averted or Just Ahead? Jos Osborne (Jan 29)
  - RE: Culprit Bio: Perfect Storm Averted or Just Ahead? Peter (Jan 29)
    - Re: Culprit Bio: Perfect Storm Averted or Just Ahead? David (Jan 29)