Slashdot Mirror

← Back to Stories (view on slashdot.org)

Code Red Back For More

Posted by timothy on from the more-bells-more-whistles dept.

Brian Stretch writes: "The Code Red II worm was unleashed early this morning and appears to be very different than the original and far more dangerous. CR2 infected servers only attack servers within their Class A address block and their Class B address block in particular: since 9:11am EST I've logged 148 CR2 attack attempts, 89 of which are from within my Class B subnet, suggesting that only servers within Class A networks that were deliberately seeded are being attacked. The 24.x.x.x range is one of the hardest hit, and as before, it's folks with cable modems and DSL connections that are providing the most victims." Several @home customers have written about slowed service today, but they're definitely not alone.

3 of 866 comments (clear)

  1. Re:a quick fix by sheldon · · Score: 1, Troll

    So after the last 20 root exploits of Linux and Apache, we shouldn't use that either?

    Hmm. I guess that means I'm back to my VIC-20!

  2. Re:RIAA!! by Silver222 · · Score: 0, Troll

    What about Adobe? :)

    --
    "It's not a war on drugs, it's a war on personal freedom. Keep that in mind at all times." Bill Hicks
  3. Re:a quick fix by sheldon · · Score: 1, Troll

    It seems that this is mainly a question of discipline on the part of administrators. These boxes being hit by Code Red seem to come off cable modems and DSL lines. They are installations which were probably not done properly, are not maintained, and don't have the latest patches.

    The same would also be true if these same users were using Linux, for the exact same reasons.

    If you were to follow Linux security advisories you would see it is no more or less secure than anything produced by Microsoft or any other commercial software company.

    Now maybe there are other alternatives out there. But like my VIC-20, many of them lack functionality.