Sasser Worm Disruption Growing
thebra writes "Yet another virus is causing problems with Internet Explorer. "Sasser, unlike a virus which travels through e-mails and attachments, spreads directly from the internet."A removal tool can be found here."
Can be found here.
All those moments will be lost in time, like tears in rain.
Yet Another Microsoft Exploit.
You are being MICROattacked, from various angles, in a SOFT manner.
We tried installing MS04-014. It totally secured our network - it shut down out ADSL link until we removed it.
Thanks guys...
'Don't worry' said the trees when they saw the axe coming, 'The handle is one of us.'
> Poor programming by Sasser's creator makes > infected machines shut down. I love it .. dissing the worm's creator IN THE NEWS STORY. I'm sure whoever it is was happy to read that.
It's not a lie. It's the truth with lossy compression.
Down the hall are the MCSE's. I can hear them shouting at each other about why this and that system wasn't patched.
Even the network big wigs are in the room with them.
Ahhhh... the joys of *nix....
Back to my wonderful coffee....
This is a test. This is a test of the emergency sig system. This has been only a test.
It's not fair. I sometimes wish I used windows.
All the windows folks in the place are sat around talking and drinking coffee because everythings broken, but us unlucky users of openbsd servers and linux desktops are having to work hard as usual.
It seems there are hidden benefits to choosing Microsoft products.
...so called "Local Security Authority Subsystem Service"...
Goes to show you that Microsoft + security = oxymoron
It was released two weeks ago, rated "critical". From the 10th line of your link: "Maximum Severity Rating: Critical"
How you didn't see that is beyond me.
Yea, I run software firewalls on all my windows machines as well as using NAT. Never had a problem.
:-)
Although just the other day I had some "windows expert" recommend instead of trying to find and open the ports for a video game I was trying to play, that I just put my computer on the DMZ (even after I told him I needed to get 3 computers working and needed to use port triggering). I told him putting your computer as DMZ was just as good as putting a kickme sign up. He argued with me and told me windows is 100% secure, that I just didn't know how to secure it.
So there, guys, windows is 100% secure. Get off it.
I think you are being rude and inconsiderate with your concept of an educated user base. Get off your high horse. I am a MS "power user" and I would never consider giving up my password for chocolate. Furthermore, I feel that... Mmm, licorice? Administrator/IBL33t
Wow, I'm witness to Slashdot jumping the shark. An article summary bore no resemblence to the actual article. This hasn't happened before.
I've always been a virus-writer-hater, but reading your comments, I'd say you're doing a pretty good job at convincing me that viruses are good...
the enemy [virus writer] of my enemy [spammer], while being useful, is he still my enemy or my friend?
I'm confused.
Typical *nix admin, thinking that posting on Slashdot is 'working hard as usual'.
Actually, this is quite easy to remove...I talked my mother through it over the phone (and she doesn't know the difference between AOL and the internet). Sure, it took her 30 minutes to perform all three steps (boot to safe mode - 8 minutes, delete the exe's - 12 minutes, and remove the registy keys - 10 minutes), but it was actually quite simple. Most of the delay came from me trying to walk her tough the process over the phone wihtout having my machine set up identical to hers:
Me: Okay, press the button on the computer to turn it on and then press f8
Mom: Ess or Eff?
Me: Eff-Eight, the function key
Mom:Press F8 and hold it? Do I press F and hold it while I press the 8?
Me: No, F8 is a key at the top of the keyboard, near the center.
Mom. Oh. Okay, the starting windws screen is up, do I press F8 now?
Me: Yes
Mom: (long pause) It's coming up (pause) Okay, I have my normal picture on the screen.
Me: Oh. Okay, lets turn the computer off and try again.
[rinse, repeat, rinse, repeat, rinse, repeat]
It's sort of like talking your dog through doing open heart surgery over the telephone, with the only commands you can give being "sit", "speak", and "heel", and the only feedback is the dog barking.
At least now she's been forced to install a working antivirus program and the firewall software.
Is it just my observation, or are there way too many stupid people in the world?
Darwan: A large network in which selection determines node connectivity.
I'm in the hole of the broadband donut.
we have 2 people... 2! and maybe 6 machines to test on... we really need about 5 and 20 machines and 2 servers to test on so we can roll this crap out in a timely manner.
I get it now. Microsoft isn't the bad guy after all! They're trying like mad to increase your company's staffing by 150%, not to mention the trickle-down effect of quadrupling your machine count.
Microsoft Windows: It's not a virus portal, it's an employment generator!
I'm glad Microsoft's doing something about the outsourcing issue.
(Caution: the above comment contains satire, an element determined by the State of California to cause cognitive dissonance in affected individuals)
Stressed? Me? Of course not. Stress is what a rubber band feels before it breaks, silly.
Any police chief who supplies his force with inferior, useless tools deserves to be shot... ...with a weapon borrowed from a different precinct.
++
I got a laugh when our security team sent out an update to their vulnerability notice for Sasser (doesn't affect my servers, hehe).
"[We] have learned of issues loading the Windows 2000 patch in MS04-011 when complying with [vulnerability ID].... systems can stop responding, users cannot log on to Windows, or CPU usage for the system process approaches 100 percent after installation of the security update. Additionally, [we] have heard that some systems may require a complete rebuild once the patch causes system to crash."
And the kicker, "Systems Administrators are advised to proceed with caution when patching Windows 2000 systems." Um, how exactly does one do that, with one hand on the power cord, or click the install button very slowly? Does applying the patch warn you "About to hose your system, proceed?"
In interesting quote from that article: "Experts agree that Linux computers are not as susceptible for a number of reasons including clear separation of functions like email and applications so that hostile code cannot be run without significant user intervention;"
It seems to me that non-hostile code cannot be run without significant user intervention either.
If a business critical application is broken, you might as well be r00ted.
Boss: "Why is everyone sitting around?"
Me: "Well, the patch broke an important application, so no work can get done, but at least our documents are safe!"
Boss: "Great! Have some more stock options!"
~~~
Click here, you know you wanna!
Are we talking about the same Windows here? :)
Last time I checked, they almost rebooted by themselves. ;)
Some of us use Mac OS X.
....
....
....you insensitive clod! XD
I've got more mod points and GMail invi
Wheres my new powerbook?
:P
Probably still waiting to come back from getting fixed.
I've got more mod points and GMail invi
Still a bit better than MS admins, who think that posting misinformed bullshit on Slashdot is 'working hard as usual'...
It may actually be working hard if one is being paid to post misinformed bovine feces on slashdot.
The price of freedom is eternal litigation.