nanog mailing list archives
RE: Code Red 2 cleanup; reporting..
From: Tim Devries <Tim.Devries () Q9 com>
Date: Fri, 10 Aug 2001 11:23:11 -0400
-----Original Message----- From: Roeland Meyer [mailto:rmeyer () mhsc com] Sent: Friday, August 10, 2001 11:22 AM To: 'up () 3 am'; nanog () merit edu Subject: RE: Code Red 2 cleanup; reporting..
From: up () 3 am [mailto:up () 3 am] Sent: Friday, August 10, 2001 8:09 AM On Fri, 10 Aug 2001, Roeland Meyer wrote:Win2K boxen are ALWAYS running IIS. It doesn't matterwhether you have Proor Server. ALL Win2K systems need to run the patch. MSFTchose to integratemuch of the IIS stuff into DLLs with other system criticalstuff. As aresult, IIS can't be completely removed without killing offother criticalfunctions. Yes, what they proved in court is even more truewith Win2K thanwith Win98 (Duh! MSFT didn't lie, but they didn't tell thewhole trutheither). WinXP is even more in that direction, from all reports.I admit to knowing very little about Win2k, but on the only box I've installed Win2k on, it doesn't *appear* to be running: Port State Protocol Service 135 open tcp loc-srv 139 filtered tcp netbios-ssn 445 open tcp microsoft-ds 1025 open tcp list ...unless it runs on one of those 3 other open ports? This was Win2k Client, not server, BTW...perhaps you mean every Win2k Server?
Win2k proffesional can run IIS. Goto add remove programs -->add/remove windows components ---> IIS. You probably did not select the component on the install. So I guess that means that not every w2k box is vulnerable. Tim
Current thread:
- Re: Code Red 2 cleanup; reporting.., (continued)
- Re: Code Red 2 cleanup; reporting.. Etaoin Shrdlu (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Valdis . Kletnieks (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Etaoin Shrdlu (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Etaoin Shrdlu (Aug 10)
- Re: Code Red 2 cleanup; reporting.. ken harris. (Aug 10)
- Re: Code Red 2 cleanup; reporting.. David Luyer (Aug 10)
- RE: Code Red 2 cleanup; reporting.. Roeland Meyer (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Mike Lewinski (Aug 10)
- RE: Code Red 2 cleanup; reporting.. up (Aug 10)
- RE: Code Red 2 cleanup; reporting.. Roeland Meyer (Aug 10)
- RE: Code Red 2 cleanup; reporting.. up (Aug 10)
- RE: Code Red 2 cleanup; reporting.. Tim Devries (Aug 10)
- RE: Code Red 2 cleanup; reporting.. Roeland Meyer (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Eric A. Hall (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Jon Allen Boone (Aug 11)
- Re: Code Red 2 cleanup; reporting.. Eric A. Hall (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Steven M. Bellovin (Aug 10)
- Re: Code Red 2 cleanup; reporting.. Rafi Sadowsky (Aug 14)
- RE: Code Red 2 cleanup; reporting.. Roeland Meyer (Aug 12)
- RE: Code Red 2 cleanup; reporting.. Mark Radabaugh - Amplex (Aug 12)