Linux Worm Creating "Attack Network"

RomSteady writes "In what could be a case of the free pot calling the expensive kettle black, C|Net is reporting that a new Linux worm is "creating a rogue peer-to-peer network that has been used to attack other computers with a flood of data" and has already infected at least 3,500 servers. Seems it is true...the security of your web server depends on how effective you are at keeping up to date on patches, no matter if you are running Windows or Linux."

Kind of ironic

[danny256]

He got a score of 0, flamebait, but I swear if you replace windows with linux and linux with windows in his post, it would get +5 insightful. I guess that's just what I get for reading slashdot.

Re:This is already standard practice

HE MEANT outgoing udp 2002, not INCOMING. thanks for playing.

Re:Self Destruct

[Kynde]

Another evil plan with a big red Self Destruct button: one of the supported remote instructions for the network is "run a command" (0x24). All you have to do is find an entry point and command it to killall -9 .bugtraq and the command will propagate through the network, killing itself. Doesn't keep it from regenerating on the original https vulnerability vector, but we could perhaps slow down the DDoS attacks.

Propagate? What did I miss here? killall -9 will kill surely kill the process on the target machine, but how could it't propagate, because -9 (SIGKILL) makes sure your process will _not_ execute another single instruction. That will not propagate through the network unless there's another hidden watchdog process that sends out selfdestruct commands to other instances over the network.

Who modded that up?