Vulnerability Development mailing list archives

RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.)

From: "Hire, Ejay" <Ejay.Hire () Broadslate net>
Date: Thu, 6 Sep 2001 11:38:11 -0400

I'm going to have to agree.

-----Original Message-----
From: Markus Kern [mailto:markus-kern () gmx net]
Sent: Thursday, September 06, 2001 7:16 AM
To: Alexander Sarras (SEA)
Cc: vuln-dev () securityfocus com
Subject: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.)



"Alexander Sarras (SEA)" wrote:


It might be discussable installing a - easily uninstallable - routine
which send emails and (broadcast) messages to admin account
accessible from the infected box, stating very clearly what to do 1)
to get rid of the worm 2) to get rid of that utility afterwards. But
surely not another virus.

The only correct way IMHO is to shut of the access to the networks
for offenders. Via the direct ISP or the upstreams. This has been
done before, and this works.


Ron DuFresne's <dufresne () winternet com> post indicates that this method
doesn't always work as well as we'd like it to.

Personally I prefer a technical solution to begging and court orders.
http://www.technocracyinc.org/images/cbusses.jpg illustrates my point
quite accurately.

Markus Kern

Current thread:

RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.), (continued)
- RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Silcock, Stephen (Sep 05)
  - coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Meritt James (Sep 06)
    - Re: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) sa7ori (Sep 06)
    - Re: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Meritt James (Sep 07)
    - RE: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) David Schwartz (Sep 07)
    - Re: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Robert A. Seace (Sep 07)
    - RE: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) David Schwartz (Sep 07)
    - Re: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Robert A. Seace (Sep 07)
    - Re: coding (was: Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Chip Carpenter (Sep 07)
    - Re: coding (was: Re: CodeGreen beta release(idq-patcher/antiCodeRed/etc.) Meritt James (Sep 07)
- RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Hire, Ejay (Sep 06)
- Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) .MetsyS. (Sep 06)
- RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Alexander Sarras (SEA) (Sep 06)
  - Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Markus Kern (Sep 06)
    - Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Ron DuFresne (Sep 06)
    - Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Markus Kern (Sep 06)
  - Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) S (Sep 06)
- RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Alexander Sarras (SEA) (Sep 06)
- RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Kayne Ian (Softlab) (Sep 07)
- Re: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Steinhart Alexander (Sep 07)
- RE: CodeGreen beta release (idq-patcher/antiCodeRed/etc.) Everhart, Glenn (FUSA) (Sep 07)

(Thread continues...)