I guess that would depend. Do they have "idiot managers" bringing things into the new kernel? I thought it was on topic myself. But then again, I'm just me.
Earlier I was logged in as Administrator. I just now went back and logged in as a regular user and got infected. I didn't do any analysis outside the fact my Vista box was trying to load up www.freecat.biz which was listed as one of the evil sites listed.
This is kind of funny, actually.
I haven't read this anywhere yet but I did some testing today and found that Windows Vista is vulnerable to the nasty WMF dealio. I am wondering what else Microsoft is importing into Windows Vista? hmmmm
I am with you on this! There are ways to prevent these kinds of worms from attacking your networks. Using multiple layers of security. It seems that a lot of network administrators out there are relaying on patches to be released as their first line of defense. If you can stop attacks to the ports these worms use up front then who cares when the patch is released (not saying don't ever patch). Just patiently wait for it while you are surfing ebay for that kewl new toy you want to buy.
IPSEC for windows networks! Group Policy - Click Click Click Finish - Forget about it!
I set a network up like this before blaster hit and we were manually patching systems with about %50 completed. Not a single infection!
Zero-Day? who cares?:)
Slashdot Mirror
I guess that would depend. Do they have "idiot managers" bringing things into the new kernel? I thought it was on topic myself. But then again, I'm just me.
Earlier I was logged in as Administrator. I just now went back and logged in as a regular user and got infected. I didn't do any analysis outside the fact my Vista box was trying to load up www.freecat.biz which was listed as one of the evil sites listed. This is kind of funny, actually.
I haven't read this anywhere yet but I did some testing today and found that Windows Vista is vulnerable to the nasty WMF dealio. I am wondering what else Microsoft is importing into Windows Vista? hmmmm
I am with you on this! There are ways to prevent these kinds of worms from attacking your networks. Using multiple layers of security. It seems that a lot of network administrators out there are relaying on patches to be released as their first line of defense. If you can stop attacks to the ports these worms use up front then who cares when the patch is released (not saying don't ever patch). Just patiently wait for it while you are surfing ebay for that kewl new toy you want to buy. IPSEC for windows networks! Group Policy - Click Click Click Finish - Forget about it! I set a network up like this before blaster hit and we were manually patching systems with about %50 completed. Not a single infection! Zero-Day? who cares? :)
I am going to guess he was still learning since he was logged into the IRC server from what appears to be his home pc.
From the chat capture
[DiablO(DiablO@rox-107404E3.adsl.iam.net.ma)]