Re: Conficker/NMAP

[Bob Bayn <bob.bayn () USU EDU>]

We badger our users with weekly nessus scans to urge them to do their updates, etc.  Our nmap scans yesterday didn't 
find anything either.  We're continuing the scans as additional computers come on line today (and are working on a 
facility that may allow us to scan machines individually as they show up in our arp tables).  Meanwhile, we've been 
dealing with the Ukranian DNS redirections for a while here.


Bob Bayn     (435)797-2396     Security Team coordinator
"IT will NEVER ask for your password via email, honest!"
Office of Information Technology at Utah State University

On Tue, 31 Mar 2009, Consolvo, Corbett D wrote:

> I realize many folks may not want to answer this, but has anyone had
> many positives/infections with the released nmap scan for Conflicker?  So
> far we seem to be coming up clean and many other folks I've talked to or
> emailed with have come up clean as well.  I'm just concerned about the
> possibility of false negatives.  Of course, the problem may not be
> particularly wide-spread except in the eyes of some media outlets.
>
> Thanks,
> Corbett Consolvo
> Texas State University