Security Incidents mailing list archives
Re: pubdestroyer2001.exe via anonymous FTP?
From: Patrick Andry <pandry () wolverinefreight ca>
Date: Thu, 27 Sep 2001 12:47:22 -0400
Mike Shaw wrote:
I'm working with someone who had unwittingly left an anonymous ftp server available to the 'net with write access.The good news: nice mp3 and Divx collection.The bad news: In the root there was a file named pubdestroyer2001.exe that we had some trouble deleting. There were many spaces at the end of the file name. We were able to nix it by deleting the 8.3 file name.Has anyone seen this before? Anyone interested in a copy of the file? Thanks -Mike----------------------------------------------------------------------------This list is provided by the SecurityFocus ARIS analyzer service.For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Undeletable files are a norm among warez sites. Also hidden and/or undeletable directories are also a trademark. There was a discussion here about it a few months back. Essentially, it's a last ditch effort to prevent the sysadmin from cutting off the warez ftp. Usually keeps the site going for a few minutes extra :)
---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service.For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- pubdestroyer2001.exe via anonymous FTP? Mike Shaw (Sep 27)
- Re: pubdestroyer2001.exe via anonymous FTP? Patrick Andry (Sep 27)
- <Possible follow-ups>
- RE: pubdestroyer2001.exe via anonymous FTP? Slivkoff, Michael M (Sep 27)
- RE: pubdestroyer2001.exe via anonymous FTP? Chip McClure (Sep 27)
- RE: pubdestroyer2001.exe via anonymous FTP? Benninghoff, John (Sep 27)
- Re: pubdestroyer2001.exe via anonymous FTP? Kevin Reardon (Sep 27)