Security Incidents mailing list archives

Re: [Fwd: Re: Ramen worm . More details on it. ( found a password ande-mails crypted inside it)]

From: slim bones <slim () io com>
Date: Wed, 17 Jan 2001 13:38:06 -0600

On Wed, Jan 17, 2001 at 06:14:13PM +0100, Bernhard Rosenkraenzer wrote:

Considering he's also replacing index.html files with nonsense, it's most
likely part of a denial of service attack, intentionally closing anonftp.


Howdy,

Unless Ramen is somebody's proof-of-concept code, I think the index.html
bit is why the worm was written.  It's an automatic web site defacer,
however bland that may be.  Defacing all index.html files on the victim
appears to be the only action the worm takes that isn't related to
propogation.

my $.02,
s.b

Current thread:

Re: [Fwd: Re: Ramen worm . More details on it. ( found a password ande-mails crypted inside it)] Bernhard Rosenkraenzer (Jan 17)
- Re: [Fwd: Re: Ramen worm . More details on it. ( found a password ande-mails crypted inside it)] slim bones (Jan 17)
- Re: [Fwd: Re: Ramen worm . More details on it. ( found a password ande-mails crypted inside it)] Jeffrey F. Lawhorn (Jan 17)
- Re: [Fwd: Re: Ramen worm . More details on it. ( found a password ande-mails crypted inside it)] Russell Fulton (Jan 17)