Dailydave mailing list archives

Re: news items

From: Juha-Matti Laurio <juha-matti.laurio () netti fi>
Date: Wed, 22 Aug 2007 08:15:22 +0300 (EEST)

This summary-type blog entry written yesterday lists the reasons why the issue had its special "moves".
And what Skype can learn from security community. Link to the newest clarification post of Skype included.

Link:
http://blogs.securiteam.com/?p=983

- Juha-Matti

Dave Korn <dave.korn () artimi com> wrote:

On 21 August 2007 20:56, B.K. DeLong wrote:

Windows Update = Skype DDOS seems too good to be true....

Why did this not happen to Skype with previous Windows Updates. What
changed since the last large update to make this happen?


  Skype's membership continued to grow exponentially.

  You can get phase changes in non-scaling networks when things like that happen.
You can cross thresholds.  Emergent effects can arise.

  Did anyone try adding the missing 'system' call to that neutered PoC to see if
it would work?

    cheers,
      DaveK
-- 
Can't think of a witty .sigline today....


_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

news items dan (Aug 21)
- Re: news items B.K. DeLong (Aug 21)
  - Re: news items Cedric Blancher (Aug 21)
  - Re: news items Dave Korn (Aug 21)
- <Possible follow-ups>
- Re: news items Juha-Matti Laurio (Aug 22)