Today we have been informed that there is a Troll at large. We have information that indicates he may be impersonating a legitimate/. editor known by the name of Michael Simms.
Diregard all content posted by such an individual and report any possible trollings to the proper authorities. We would like to thank all of you in advance for your help in putting an end to this scourge.
Notice: Please keep an eye out for CmdrTaco and the elusive JonKatz who are also still at large and may be coordinating their efforts with those of "Mr. Simms".
Spy satellites are known as such simply because NOBODY ELSE KNOWS WHERE THEY ARE! How does this come as any great shock to anybody who even has a clue about the way the world works?
Though Michael - in this case your stupidity along with your apparent need to troll is secondary. The European posters below who actually believe that their countries do not employ techniques of subversion and spying are living in a fantasy world of their own.
Hahahahahahaha - do you actually think your countries do not spy? Do you actually think they do not carry out and sponser assasinations when nessacary? We know Russia does. We know Britian does. We know Israel does (not european DUH). We know Yugoslavia (and its pieces) do. We know Germany does. If your country doesnt then perhaps you SHOULD be concerned because its obvious your euro-fucks didnt learn your lesson from World War II (yes that could've been avoided with a simply bullet between Hitlers eyes).
You've got to love the socialist children that wander about and comment on slashdot. Contrary to your allegations the world is NOT a civilized place. Do not believe for a second that the world is more than a more a few weeks from another World War. Perhaps I could reference the assasination that provoked World War I - but Im sure you people couldnt have overlooked that. Not at all.
Either way - the US bashing that goes on around this site is getting old. The sad thing is that most of you Euro-Morons that bash the US are probably part of the EU - which makes you nothing more than a wannabe US anyway. So please - think before you post. Try not to make yourselves look like COMPLETE morons while responding to this.
Guys - there is no new code red variant. None of the security sites I frequent mention another variant. The CNET article Taco links to simply describes exactly what the so called "Code Red II" (the third variant in reality) does.
Why cant slashdot at least pretend that they are a real news site and try to verify this stuff? When the CNET article mentions Code Red 3 they were obviously mistaken. The point of the article is obviously to alert the world that Code Red had started attacking some oriental countries. Who gives a crap? Welcome to the rest of the world people.
As for your problem Taco - disable Apache and stop whining - we are all getting hit with this just as hard or harder. Your whining will accomplish nothing other than agitate a few more people.
I didnt mean to imply such a thing (that all 15 year olds were arrogant) - and no your response didnt fall under the "smart ass" category. I do like your reference to the "pop culture" aspect of things though as it brings to light the reason oh so many people ran out and bought computers for the home.... (In my opinion anyway)
Most of my rant was directed at Katz in general however. He has gotten pulled so far into this cyber lifestyle of his that you cannot help but to wonder when the last time he actually saw the sunlight in person. Or maybe the last time he actually had to sit down and enjoy a meal rather than to consume it.
The problem here is that the reality of the world seems to bear no weight in anything Katz has to say. This would be somewhat better accepted if his writings were a bit more forward looking - but he proposes that the things he is talking about are actually happening in the here and now. Many of us simply do not agree.
The concept is simple: You must understand the past before you can reveal the future. I believe Katz has yet to grasp this concept.
Perhaps I would take your statement more seriously if you had the balls to risk some of that precious karma of yours to actually log in and post that crude remark.
LAME. Comeon Katz - does EVERYONE of your articles have to center around some kind of internet stereotype presented by the mass media? "15 year old CEOs" - that was a buzz phrase they all liked to throw around before the dot bombs came crashing down.
with successes like Netscape, Gnutella, Linux, IM, WinAmp
Ummmm... these are NOT successful buisnesses. Linux buisinesses have yet to prove that they can be a good long term investment. Gnutella - how the FUCK are they making money? Winamp = Sellouts to AOL/Time Warner (your favorite people Jon). Netscape? You are kidding right?
For somebody who likes to bash mass media - you sure love to cater to their stereotypes of the internet today dont you? I mean most 15 year olds on the net are either sitting on AOL (some on/.) and makeing complete jackasses of themselves online (believe me I used to be one - I say that knowing that a string of smartass responses will follow).
Small wonder the kids believe that older people have little or nothing to teach or tell them. It's often seemed true.
The Net does not cause this. Children have always been this way to a certain extent (as our society gets more liberal - the children become more uncontrollable it seems). For you to simply point the finger at the internet and say "thats why" all while assuming that this is the product of some deviant open source, copyright infringing lifestyle - is fickle to say the least. And yes that if anything would be the deviant lifestyle. You seem live under this wonderful assumption that all children today have access to computers and all of the kids are up and coming computer scientists willing to work for free. Bullshit.
Jon - come back to earth. The Net is not life. Life is not the Net. Perhaps you should begin writing fictional stories (some might argue that you do already) instead of editorializing. I believe you might find more acceptance on that platform. The fact is most kids online just sit around and IM their buddies on AOL or yahoo all day long. Some look for MP3s. Some check email. Most of them are not future Fortune 500 CEOs.
Get back in touch man.
Gam
"Flame at Will"
Michael the Troll
on
Secure IRC?
·
· Score: -1, Flamebait
Is michael on a trolling run today? The man has posted the last five articles on/. This makes you wonder what the other "editors" are doing in all their spare time.
No this article isnt really a troll - but for the most part I cannot stand Michael (not to mention his shady history) because hes so much like that one fly that you just CANNOT get rid of.
Newsflash: There hasnt been innovation in the computer industry for YEARS. Hell most of the people reading this are running an OS thats over 30 years old. The OS I'm running is 10 years old.
IE 6.0 and Netscrape 6.1 arent terribly different from the 3.0 versions. Office XP isnt terribly different from Office 95. The hardware in my machine is about the same as five or six years ago except for the fact that its a bit faster. Artifical Intelligence still sucks (dont even try to contradict that statement by pointing to one of those overrated expert systems/. likes to run stories about). Hell even PEZ is still that same as when my parents where kids (and probably their parents as well)
The computer/technology industry has begun to remind me of the automobile industry. Most of the changes that take place from year to year are evolutionary rather than revolutionary. Innovation in that industry essentially died after the first combustion engine was built.
Perhaps instead of whining about this fact - you people should get off your collective asses and attempt to "innovate" something yourselves. Stop sitting around and whining about how your sources of copyright infringement have been cut off - and actually innovate. Otherwise I do not want to hear it.
Final Note: I cannot believe the majority of people here actually believe that Napster was innovative. Thats a good laugh. As far as Dmitry is concerned - if the encryption wasnt innovative - how the hell can you consider the crack innovative? Now theres the pot calling the kettle black.
Hmmm... you still post here though right?/. does the same thing. Do you know how they censor posts that are contrary to their beliefs? Thats right - its called the moderation system.
Just check out the comments on the stories that were posted relating to the OSDN router outage - you'll see what I mean.
I was able to restrain for laughing until I got to that part - thats just too good. If it werent so damn off topic I ask the mods to mod him up - but oh well - I guess you cannot have everything.
I guess its okay for the/. editors to mod a post pointing out their flaws down into the nine realm of hell - but its bad that this LT guy astroturfed?
Im sorry - thats just BS. You people ought to check up on what happened with the string of articles last time/. went down (the OSDN router outage thing)./. editors were modding down anti slashdot posts LEFT AND FUCKING RIGHT to -1 within seconds of their posting.
A good example would be what will happen to this post within around 45 seconds from the time it hits the article. It'll be down to -1 and my karma will keep on sliding down down down.... (Im already at -5, can it get any lower?)
Give me a link to the URL! That would rock. I've been getting hit hard with this virus and my attempts to write the same util in Vbscript/ASP/C++ have been unsuccessful.
Thats EXACTLY what I have been trying to do! You can find a more detailed explanation of my code at http://24.18.6.248/default.asp (latest news update)
I just cannot get the damn thing to work outside the test environment. Email me if you want more info or want to check out the source.
Wrong. You dont write a second worm. You simply a write a daemon that runs on an IIS box. This daemon (part of which I have already written - just cant get it to work right) - would intercept code red attacks - and then attempt to deinfect the attackers box using the security holes code red left behind. It wouldnt actually "spread" itself. It would just clean the infected boxes remotely. If enough smart people install it - code red is history.
My damn code works perfectly in my test environment - but only works halfway on the net......
Yeah I wrote something - its a set of scripts that work with IIS. I have a web app that will parse through IIS logs and dump a report back to you with a nice little graph.
I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop.... and I do not believe it will until somebody writes a worm like code red that patches the servers instead of opening them up.
Note: I posted this one YESTERDAY in the CODE REDUX and you damn moderators wouldnt even give me one damn point. Idiots. I wonder if my karma can slip below -5?
Yeah I wrote something - its a set of scripts that work with IIS. I have a web app that will parse through IIS logs and dump a report back to you with a nice little graph.
I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop.... and I do not believe it will until somebody writes a worm like code red that patches the servers instead of opening them up.
Gam
"Flame at Will"
Re:forgive my ignorance
on
Code Redux
·
· Score: 0
Dont count your chickens pal. Based on the fact that the Melissa guy hasnt served a day of time yet (see theregister) - the code red guy probably wont even make it to the court.
Gam
"Flame At Will"
Re:Why Symantec says that Code Red is medium.
on
Code Redux
·
· Score: 0
I believe sadmind ranks up there pal. That was only a few months ago. Yeah it changed IIS pages through the unicode exploit - BUT IT SPREAD OVER SOLARIS using a buffer overflow exploit nearly two years old. It got around too - believe me.
Look it up if you dont believe me - but you might to check your facts before shooting off your big mouth next time.
Gam
"Flame at Will"
Re:Small util for Windows to listen on port 80?
on
Code Redux
·
· Score: 0
Yeah I wrote something - its a set of scripts that work with IIS. I have a web app that will parse through IIS logs and dump a report back to you with a nice little graph.
I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop....
Gam
"Flame at Will"
My solution to the remote root issue
on
Code Redux
·
· Score: 0
Actually the IIS Anonymous user (by default has guest access only) CAN shut down the machine. I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop....
They are not rootshells. The shell placed in the directory only has the level access that you give the anonymous internet user account (technically the account IIS runs under). If the anonymous internet user account is admin - then anybody exploiting root.exe has admin rights.
Slashdot Mirror
Perhaps if the Europeans had had an intelligence infrastructure worth a damn - they could've prevented such an assasination.
DUH.
Attention! Attention!
/. editor known by the name of Michael Simms.
Today we have been informed that there is a Troll at large. We have information that indicates he may be impersonating a legitimate
Diregard all content posted by such an individual and report any possible trollings to the proper authorities. We would like to thank all of you in advance for your help in putting an end to this scourge.
Notice: Please keep an eye out for CmdrTaco and the elusive JonKatz who are also still at large and may be coordinating their efforts with those of "Mr. Simms".
Gam
"Flame at Will"
Michael,
Spy satellites are known as such simply because NOBODY ELSE KNOWS WHERE THEY ARE! How does this come as any great shock to anybody who even has a clue about the way the world works?
Though Michael - in this case your stupidity along with your apparent need to troll is secondary. The European posters below who actually believe that their countries do not employ techniques of subversion and spying are living in a fantasy world of their own.
Hahahahahahaha - do you actually think your countries do not spy? Do you actually think they do not carry out and sponser assasinations when nessacary? We know Russia does. We know Britian does. We know Israel does (not european DUH). We know Yugoslavia (and its pieces) do. We know Germany does. If your country doesnt then perhaps you SHOULD be concerned because its obvious your euro-fucks didnt learn your lesson from World War II (yes that could've been avoided with a simply bullet between Hitlers eyes).
You've got to love the socialist children that wander about and comment on slashdot. Contrary to your allegations the world is NOT a civilized place. Do not believe for a second that the world is more than a more a few weeks from another World War. Perhaps I could reference the assasination that provoked World War I - but Im sure you people couldnt have overlooked that. Not at all.
Either way - the US bashing that goes on around this site is getting old. The sad thing is that most of you Euro-Morons that bash the US are probably part of the EU - which makes you nothing more than a wannabe US anyway. So please - think before you post. Try not to make yourselves look like COMPLETE morons while responding to this.
Gamorck
"Flame at Will"
Guys - there is no new code red variant. None of the security sites I frequent mention another variant. The CNET article Taco links to simply describes exactly what the so called "Code Red II" (the third variant in reality) does.
Why cant slashdot at least pretend that they are a real news site and try to verify this stuff? When the CNET article mentions Code Red 3 they were obviously mistaken. The point of the article is obviously to alert the world that Code Red had started attacking some oriental countries. Who gives a crap? Welcome to the rest of the world people.
As for your problem Taco - disable Apache and stop whining - we are all getting hit with this just as hard or harder. Your whining will accomplish nothing other than agitate a few more people.
Gam
"Flame at Will"
I didnt mean to imply such a thing (that all 15 year olds were arrogant) - and no your response didnt fall under the "smart ass" category. I do like your reference to the "pop culture" aspect of things though as it brings to light the reason oh so many people ran out and bought computers for the home.... (In my opinion anyway)
Most of my rant was directed at Katz in general however. He has gotten pulled so far into this cyber lifestyle of his that you cannot help but to wonder when the last time he actually saw the sunlight in person. Or maybe the last time he actually had to sit down and enjoy a meal rather than to consume it.
The problem here is that the reality of the world seems to bear no weight in anything Katz has to say. This would be somewhat better accepted if his writings were a bit more forward looking - but he proposes that the things he is talking about are actually happening in the here and now. Many of us simply do not agree.
The concept is simple: You must understand the past before you can reveal the future. I believe Katz has yet to grasp this concept.
Gam
"Flame at Will"
Perhaps I would take your statement more seriously if you had the balls to risk some of that precious karma of yours to actually log in and post that crude remark.
Gam
"Flame at Will"
For somebody who likes to bash mass media - you sure love to cater to their stereotypes of the internet today dont you? I mean most 15 year olds on the net are either sitting on AOL (some on
The Net does not cause this. Children have always been this way to a certain extent (as our society gets more liberal - the children become more uncontrollable it seems). For you to simply point the finger at the internet and say "thats why" all while assuming that this is the product of some deviant open source, copyright infringing lifestyle - is fickle to say the least. And yes that if anything would be the deviant lifestyle. You seem live under this wonderful assumption that all children today have access to computers and all of the kids are up and coming computer scientists willing to work for free. Bullshit.
Jon - come back to earth. The Net is not life. Life is not the Net. Perhaps you should begin writing fictional stories (some might argue that you do already) instead of editorializing. I believe you might find more acceptance on that platform. The fact is most kids online just sit around and IM their buddies on AOL or yahoo all day long. Some look for MP3s. Some check email. Most of them are not future Fortune 500 CEOs.
Get back in touch man.
Gam
"Flame at Will"
Is michael on a trolling run today? The man has posted the last five articles on /. This makes you wonder what the other "editors" are doing in all their spare time.
No this article isnt really a troll - but for the most part I cannot stand Michael (not to mention his shady history) because hes so much like that one fly that you just CANNOT get rid of.
Gam
"Flame at Will"
Newsflash: There hasnt been innovation in the computer industry for YEARS. Hell most of the people reading this are running an OS thats over 30 years old. The OS I'm running is 10 years old.
/. likes to run stories about). Hell even PEZ is still that same as when my parents where kids (and probably their parents as well)
IE 6.0 and Netscrape 6.1 arent terribly different from the 3.0 versions. Office XP isnt terribly different from Office 95. The hardware in my machine is about the same as five or six years ago except for the fact that its a bit faster. Artifical Intelligence still sucks (dont even try to contradict that statement by pointing to one of those overrated expert systems
The computer/technology industry has begun to remind me of the automobile industry. Most of the changes that take place from year to year are evolutionary rather than revolutionary. Innovation in that industry essentially died after the first combustion engine was built.
Perhaps instead of whining about this fact - you people should get off your collective asses and attempt to "innovate" something yourselves. Stop sitting around and whining about how your sources of copyright infringement have been cut off - and actually innovate. Otherwise I do not want to hear it.
Final Note: I cannot believe the majority of people here actually believe that Napster was innovative. Thats a good laugh. As far as Dmitry is concerned - if the encryption wasnt innovative - how the hell can you consider the crack innovative? Now theres the pot calling the kettle black.
Gam
"Flame at Will"
Have you looked at Tacos code lately? That may have actually been a legitimate excuse :-)
Gam
"Karma Hell Here I Come"
Hmmm... you still post here though right? /. does the same thing. Do you know how they censor posts that are contrary to their beliefs? Thats right - its called the moderation system.
Just check out the comments on the stories that were posted relating to the OSDN router outage - you'll see what I mean.
Gam
"Flame at Will"
Gam
"Flame at Will"
Have fun at the cap. That makes me wonder is there a karma uncap? :-) If there is - Im due to smack right into it REAL SOON I suspect.
Gam
"Flame at Will"
I guess its okay for the /. editors to mod a post pointing out their flaws down into the nine realm of hell - but its bad that this LT guy astroturfed?
/. went down (the OSDN router outage thing). /. editors were modding down anti slashdot posts LEFT AND FUCKING RIGHT to -1 within seconds of their posting.
Im sorry - thats just BS. You people ought to check up on what happened with the string of articles last time
A good example would be what will happen to this post within around 45 seconds from the time it hits the article. It'll be down to -1 and my karma will keep on sliding down down down.... (Im already at -5, can it get any lower?)
Gam
"Flame at Will"
Give me a link to the URL! That would rock. I've been getting hit hard with this virus and my attempts to write the same util in Vbscript/ASP/C++ have been unsuccessful.
Moderators: MOD THE PARENT UP!
Gam
"Flame at Will"
Thats EXACTLY what I have been trying to do! You can find a more detailed explanation of my code at http://24.18.6.248/default.asp (latest news update)
I just cannot get the damn thing to work outside the test environment. Email me if you want more info or want to check out the source.
Gam
"Flame at Will"
Wrong. You dont write a second worm. You simply a write a daemon that runs on an IIS box. This daemon (part of which I have already written - just cant get it to work right) - would intercept code red attacks - and then attempt to deinfect the attackers box using the security holes code red left behind. It wouldnt actually "spread" itself. It would just clean the infected boxes remotely. If enough smart people install it - code red is history.
My damn code works perfectly in my test environment - but only works halfway on the net......
Gam
"Flame at Will"
Yeah I wrote something - its a set of scripts that work with IIS. I have a web app that will parse through IIS logs and dump a report back to you with a nice little graph.
I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop.... and I do not believe it will until somebody writes a worm like code red that patches the servers instead of opening them up.
Note: I posted this one YESTERDAY in the CODE REDUX and you damn moderators wouldnt even give me one damn point. Idiots. I wonder if my karma can slip below -5?
Yeah I wrote something - its a set of scripts that work with IIS. I have a web app that will parse through IIS logs and dump a report back to you with a nice little graph.
I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop.... and I do not believe it will until somebody writes a worm like code red that patches the servers instead of opening them up.
Gam
"Flame at Will"
Dont count your chickens pal. Based on the fact that the Melissa guy hasnt served a day of time yet (see theregister) - the code red guy probably wont even make it to the court.
Gam
"Flame At Will"
I believe sadmind ranks up there pal. That was only a few months ago. Yeah it changed IIS pages through the unicode exploit - BUT IT SPREAD OVER SOLARIS using a buffer overflow exploit nearly two years old. It got around too - believe me.
Look it up if you dont believe me - but you might to check your facts before shooting off your big mouth next time.
Gam
"Flame at Will"
Yeah I wrote something - its a set of scripts that work with IIS. I have a web app that will parse through IIS logs and dump a report back to you with a nice little graph.
I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop....
Gam
"Flame at Will"
Actually the IIS Anonymous user (by default has guest access only) CAN shut down the machine. I've developed a script - though its not fully functioning yet outside my test environment - that will detect a code red attack and immediately strike back by using root.exe to upload serveral files using tftp.
These files are used in an attempt to automatically patch the server and remove the security holes left by code red.
Unfortunately it has yet to actually succeed over the web. Most of the attackers seem to experience problems when it comes to shutting down. My defense routines automatically try two different ways of shutting down the remote machines (both of with work in my internal network between different machines) - but I cant quite get them to work on the machines on the web.
It may because of the increased security of NTFS. As my routines are only designed to work with security lax FAT formatted systems - that be part of it.
Anyway - Code Red is only getting worse. I've had over 2100 attack attempts since saturday. Day by day the daily number is increasing (600 today alone). This has got to stop....
Gam
"Flame at Will"
They are not rootshells. The shell placed in the directory only has the level access that you give the anonymous internet user account (technically the account IIS runs under). If the anonymous internet user account is admin - then anybody exploiting root.exe has admin rights.
Gam
"Flame at Will"
Sorry about that - the Sadmind worm used the unicode exploit - not the PRINTER exploit. Either way - get off your ass and patch the damn machine.
Note: Sorry for being so bitchy but my machine has already been attacked 529 times today alone by codered - I've had enough of this shit.
Gam
"Flame at Will"