Firewall Wizards mailing list archives
Re: The Morris worm to Nimda, how little we've learned or gained
From: Michael Brennen <mbrennen () fni com>
Date: Sat, 12 Jan 2002 18:36:14 -0600 (CST)
On Fri, 11 Jan 2002 Rudy_D_Pereda () mail dbf state fl us wrote:
Folks, you can continue beating this dead horse, but the fact of the matter is that people, businesses, government need a catalyst to make them think differently about things. This thing can be hardening security, flawless OS/application designs, etc.... whatever you wanted to be. ... Likewise, I think for everyone to take security seriously in the technological realm of computers, networks, etc... some thing major will first have to happen that impacts everyone(internet users, companies, government) and lingers in their minds for sometime. As we all know, time mends everything and people, on the most part, forget or want to forget unpleasant happenings.
There have been many such catalysts this past year to alert people that their networks and data are at very high risk. If Code Red, Nimda and such don't fit the profile you describe above, what event would you expect to be sufficient to do so? The McAfee office in Dallas was down for at least a day and a half in Dallas when Nimda hit; that was one office. If such a breach isn't sufficient to get the attention of management, what is? If Microsoft's network being penetrated, which was fairly widely known, isn't sufficient signal to companies running the same software that the same could happen to them, what would be? If the FBI's data being randomly mailed around doesn't scare someone that it could happen to their own data, what will it take to sink in? Will it really have to happen that some high profile company's network be totally obliterated by a virus/worm before others decide to make radical changes so it doesn't happen to them? We are fortunate that Nimda didn't propagate itself and then destroy its host, or just that would have happened around the world. For those that are paying attention, there already have been sufficent signals. Many still have not understood, as the viruses have been eventually removable. For those that have not yet understood, for whatever reason, it probably will take a complete meltdown of their own equipment. And I don't want to think about that scenario, because if it happens to one, it will probably happen to many, and the result could be chaos. Nimda shows just how possible this is. -- Michael _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr com http://list.nfr.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: The Morris worm to Nimda, how little we've learned or gained, (continued)
- Re: The Morris worm to Nimda, how little we've learned or gained Adam Shostack (Jan 04)
- RE: The Morris worm to Nimda, how little we've learned or gained robert_david_graham (Jan 04)
- RE: The Morris worm to Nimda, how little we've learned or gained Ryan Russell (Jan 05)
- OT: Re: The Morris worm to Nimda, how little we've learned or gained Roelof JT Jonkman (Jan 05)
- Re: OT: Re: The Morris worm to Nimda, how little we've learned or gained H. Morrow Long (Jan 06)
- Host Based Packet Filters (was: OT: The Morris worm to Nimda, how little we've learned or gained) Robin S. Socha (Jan 06)
- safety of unidirectional NT trusts hermit921 (Jan 15)
- Re: safety of unidirectional NT trusts Jonas Anden (Jan 16)
- Re: safety of unidirectional NT trusts S. Jonah Pressman (Jan 17)
- Re: The Morris worm to Nimda, how little we've learned or gained Rudy_D_Pereda (Jan 12)
- Re: The Morris worm to Nimda, how little we've learned or gained Michael Brennen (Jan 12)
- Re: The Morris worm to Nimda, how little we've learned or gained R. DuFresne (Jan 13)
- Re: The Morris worm to Nimda, how little we've learned or gained Michael Brennen (Jan 14)
- Re: The Morris worm to Nimda, how little we've learned or gained R. DuFresne (Jan 14)
- Re: The Morris worm to Nimda, how little we've learned or gained Michael Brennen (Jan 15)
- Re: The Morris worm to Nimda, how little we've learned or gained Michael Brennen (Jan 12)