Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Sasser author

From: Harlan Carvey <keydet89 () yahoo com>
Date: Thu, 13 May 2004 08:31:34 -0700 (PDT)
Come on, Larry...

The first thing in the MS bulletin about Sasser is
"enable a firewall"...block the port.  Slammer was the
same way.

And yeah, I know about the dial-up and VPN issues, but
there are designs that protect against infections
there, was well.

Perhaps after all these years of publishing "best
practices", maybe the victims would
stop...well...being victimized.


--- Larry Seltzer <larry () larryseltzer com> wrote:

Sasser violates poorly designed/implemented

network infrastructures.

I think we'd better be careful with all this moral
equivocating. Some of it's right up
there with "she was wearing provocative clothing."
It's obvious who the criminal is and
who the victim is.

Larry Seltzer
eWEEK.com Security Center Editor
http://security.eweek.com/
http://blog.ziffdavis.com/seltzer
larryseltzer () ziffdavis com 



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: