lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Sun, 8 Feb 2004 08:01:24 -0500
From: Shawn McMahon <smcmahon@....com>
To: bugtraq@...urityfocus.com
Subject: Re: Hysterical first technical alert from US-CERT

On Fri, Feb 06, 2004 at 05:07:06PM -0500, Valdis.Kletnieks@...edu said:
> 
> In general, yes.  However, in this case it was a copycat that
> got loose *before* the general population got the meme for "this is
> bad, don't click on it".  And remember - they need to get a new

One thing nobody seems to want to recognize as a possibility here is
that MyDoom.B didn't take off as much as MyDoom.A precisely BECAUSE of
the US-CERT email.  A lot of members of the press took that pretty
seriously, and warnings on the evening network news shows that you
shouldn't open these attachments are bound to have prevented at least
some infections.


-- 
Shawn McMahon     | Let every nation know, whether it wishes us well or ill,
EIV Consulting    | that we shall pay any price, bear any burden, meet any
UNIX and Linux	  | hardship, support any friend, oppose any foe, to assure
http://www.eiv.com| the survival and the success of liberty. - JFK

Content of type "application/pgp-signature" skipped

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ