funsec mailing list archives
Re: Conficker business productivity loss
From: Alexandre Dulaunoy <a () foo be>
Date: Wed, 1 Apr 2009 12:10:06 +0200
On Wed, Apr 1, 2009 at 4:38 AM, RandallM <randallm () fidmail com> wrote:
any numbers calculated on loss to business over this yet?
Usually the path (a formula can be deduced to calculate the cost ;-) is the following : - security people know about the issue and do some checks like sudo nmap -PN -T4 -p139,445 -n -v --script=smb-check-vulns --script-args=[un]safe=1 mylargenet/16 - discover on the /16 networks that a lot of servers and pcs are still not patched against MS08-067 - go to the people managing stuff running Win32 and asked why a patch released in October is still not applied - add some random discussions about WSUS bloody design - (funniest part) people managing Win32 stuff ask security people to provide a parseable list (goto WSUS bloody design) - people managing Win32 are trying to apply patches in a hurry - some random servers,pcs... do not like the recent patches - cleaning if you are already affected To calculate the cost, you can set a weight/cost on action and iterate some action based on the numbers of system running the vulnerable operating system. After you can make the overall summation and add maybe an obscure "lambda" value used to make the data weighted to something more "realistic". Sorry but it's funsec ;-) adulau -- -- Alexandre Dulaunoy (adulau) -- http://www.foo.be/ -- http://www.foo.be/cgi-bin/wiki.pl/Diary -- "Knowledge can create problems, it is not through ignorance -- that we can solve them" Isaac Asimov _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Re: Conficker business productivity loss Julio Canto (Apr 01)
- Re: Conficker business productivity loss David Harley (Apr 01)
- Re: Conficker business productivity loss Nick FitzGerald (Apr 01)
- Re: Conficker business productivity loss Valdis . Kletnieks (Apr 01)
- Re: Conficker business productivity loss Nick FitzGerald (Apr 02)
- Re: Conficker business productivity loss David Harley (Apr 02)
- Re: Conficker business productivity loss Rob, grandpa of Ryan, Trevor, Devon & Hannah (Apr 02)
- Re: Conficker business productivity loss Nick FitzGerald (Apr 01)
- Re: Conficker business productivity loss David Harley (Apr 01)
- <Possible follow-ups>
- Re: Conficker business productivity loss nameless (Apr 01)
- Re: Conficker business productivity loss Dragos Ruiu (Apr 01)
- Re: Conficker business productivity loss Martin Tomasek (Apr 01)
- Re: Conficker business productivity loss Alexandre Dulaunoy (Apr 01)
- Re: Conficker business productivity loss Nick FitzGerald (Apr 01)
- Re: Conficker business productivity loss Nick FitzGerald (Apr 02)