Re: msblast DDos counter measures - a new worm to fix the problem

[Ron DuFresne <dufresne () winternet com>]

You mean *after* you get out of jail <smile>

Thanks,

Ron DuFresne

On Fri, 15 Aug 2003, Paul Schmehl wrote:

> Yeah, that's just what we need.  Then we get to explain to users that
> *some* worms are bad, and other worms are good.
>
> NOT!!!
>
> --On Friday, August 15, 2003 03:20:12 PM +0200 Daniel Rudolph
> <lists () daniel-rudolph de> wrote:
>
> > Hi,
> >
> > i have an (maybe) new idea that worth discussing.
> >
> > What about writing a new worm based on the well know exploit - this worm
> > should do something like:
> >
> > - disinfect the machine from the know variants of msblast
> > - install the patch or at least inform the user that he should to that
> > - spread out like every worm does ;-)
>
> Paul Schmehl (pauls () utdallas edu)
> Adjunct Information Security Officer
> The University of Texas at Dallas
> AVIEN Founding Member
> http://www.utdallas.edu
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
"Cutting the space budget really restores my faith in humanity.  It
eliminates dreams, goals, and ideals and lets us get straight to the
business of hate, debauchery, and self-annihilation." -- Johnny Hart
        ***testing, only testing, and damn good at it too!***

OK, so you're a Ph.D.  Just don't touch anything.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html