Slashdot Mirror
Fight Virus With Virus?
Insanik writes "I am not an expert with internet worms like Code Red. However, I am curious if it would be possible to create a friendly worm/virus/whatever that would fight the original by using the same security holes. For instance, I read that Code Red II opens a back door. Why not have another virus that exploited the back door, closed it, then started sending itself to other servers for a certain period of time? " The submittor raises an interesting question - is this possible? I would guess so, in theory. And while we're working on Code Red, can we send a large man to the home of my latest Sircam senders and politely "ask" them to stop clicking on virii?
In this case, you would be shooting at every gun owning or potential gun owning person you come across. This is generaly frowned upon
So close and yet so far from the world's perfect ID number
I've played with this idea before as well but the one thing that I always thought that this seems like it would be equivalent to breaking into someones house and then fixing the way you came in. It's still breaking in, regardless. Kind of a "white hat" hacker deal but that still is considered a "no no" in the eyes of the law.
You're still infecting them with a virus, it's just a good virus and you could probably be brought up on charges under some computer crime legislation.
Also, it opens the door for a whole new wave of confusion. Suppose I tweak the "good" virus, and add a little bit of insidious behavior? What if I send out a "bad" virus claiming it is a "good" one?
Right now, we're fighting a losing battle to get users to STOP clicking on unknown attachments. Any progress we do make would be COMPLETELY destroyed by encouraging them to install "good" virii. Right now, the optimal virus protection might be a grammar checker. You'd think that the guys who wrote Zero Wing had found a new hobby.
Seen any BadMarketing lately?