Slashdot Mirror

← Back to Stories (view on slashdot.org)

1 Year Anniversary of Nimda Outbreak

Posted by CmdrTaco on from the my-logs-hurt dept.

dots and loops writes "Today marks one year to the date that the nimda worm began making its way across the Internet." Hey, speaking of hilarious worms, I'm still getting 5-10 klez virus's a day! Yay Security!

2 of 289 comments (clear)

  1. Still kicking by JediTrainer · · Score: 5, Informative

    If anybody is interested, I've developed WormScan last year, which is a Java-based program (GPL) which can analyze your Apache log files for pretty much anything you want (just plug in your regular expressions). It detects Nimda and CR1+2 out of the box. It's easy to add your own entries to scan for.

    According to my logs (please be gentle), I've been hit 650 times yesterday.

    Shameless plug, yes. But it does the job and the users of WormScan seem to be pretty happy with it, judging from the emails I've gotten so far.

    --

    You can accomplish anything you set your mind to. The impossible just takes a little longer.
  2. Still getting hit by rossz · · Score: 5, Informative

    No doubt in celebration of the birthday, I got a number of nimda hits this morning.

    mount -t smbfs password= //xx.xx.xx.xx/C$ /mnt/dork
    vi /mnt/dork/boot.ini

    Change the boot delay to some huge number and the boot message to "Run a virus scanner, asshole".

    umount /mnt/dork

    --
    -- Will program for bandwidth