Vulnerability Development mailing list archives
RE: A code red that could bring down the net?
From: "Dom De Vitto" <dom () devitto com>
Date: Mon, 23 Jul 2001 22:36:23 +0100
I think a guy called William 'T' Morris may have had this idea first. Allegedly :-) History. History. History. Dom -----Original Message----- From: Jason Lewis [mailto:jlewis () packetnexus com] Sent: 23 July 2001 06:08 To: 'josh abulamhammedramashi'; vuln-dev () securityfocus com; SECURITY-BASICS () securityfocus com Subject: RE: A code red that could bring down the net? The internet isn't a big hub. If I connect a machine with an IP that is identical to yours, I don't knock you off the net. There is routing and switching involved. If you change your IP to 192.168.1.1 (example IP), the entire net needs to know how to get to your IP. Just changing it doesn't make that happen. Changing IP's isn't a DDoS. How about this instead? A worm that is not only windows, but also unix based. It carries payload for each OS. It works similar to CodeRed and replicates itself. It also installs a zombie client and creates backdoors. Imagine a worm that wraps all the viruses in the 16 months into one. What if it actively searched out victims while also using Outlook to propagate itself. BTW, I want the 5 minutes back that it took me to read that paper. I also didn't cc Mark, he probably gets enough junk mail. Jason Lewis http://www.packetnexus.com It's not secure "Because they told me it was secure". The people at the other end of the link know less about security than you do. And that's scary. -----Original Message----- From: josh abulamhammedramashi [mailto:whoredware () yahoo com] Sent: Sunday, July 22, 2001 10:42 PM To: vuln-dev () securityfocus com; SECURITY-BASICS () securityfocus com Cc: Marc Maiffret Subject: A code red that could bring down the net? I just wanted some input on this paper I wrote, It'd be nice for some input and constructive critiscm. I'd like to get this to eventually make the guest writer section on security focus. You can view it at http://www.whoredware.com/codered.html thanks- enigmabomb enigmabomb () nyc2600 org p.s. sorry about the cross posts, but this seems pertinent to both. __________________________________________________ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/
Current thread:
- Win32.Sircam.Worm Alert....., (continued)
- Win32.Sircam.Worm Alert..... EPiC (Jul 23)
- Re: Win32.Sircam.Worm Alert..... H D Moore (Jul 24)
- Re: Win32.Sircam.Worm Alert..... Martin Lindquist (Jul 24)
- Re: Win32.Sircam.Worm Alert..... horape (Jul 25)
- Re: Win32.Sircam.Worm Alert..... Pete Sherwood (Jul 25)
- Re: Win32.Sircam.Worm Alert..... Miguel Angel Rodriguez Jodar (Jul 25)
- multi-OS infections (was Re: A code red that could bring down the net? Meritt James (Jul 23)
- Re: multi-OS infections (Multi OS shellcode) Riley Hassell (Jul 24)
- Re: multi-OS infections (Multi OS shellcode) Damir Rajnovic (Jul 25)
- Re: multi-OS infections (Multi OS shellcode) corecode (Jul 25)
- RE: A code red that could bring down the net? Dom De Vitto (Jul 23)
- Re: A code red that could bring down the net? Birger Toedtmann (Jul 23)
- Re: A code red that could bring down the net? Michael Tench (Jul 23)
- Re: A code red that could bring down the net? Felix Harris (Jul 24)
- Re: A code red that could bring down the net? David R. Conrad (Jul 25)
- Re: A code red that could bring down the net? Lynn Crumbling (Jul 25)
- Re: A code red that could bring down the net? Sven van ´t Veer (Jul 26)
- Re: A code red that could bring down the net? security curmudgeon (Jul 26)
- Re: A code red that could bring down the net? Ian Stoba (Jul 25)
- Re: A code red that could bring down the net? Michael Tench (Jul 26)
- Re: A code red that could bring down the net? Jose Nazario (Jul 26)