| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <200308151923.h7FJNnR0004819@turing-police.cc.vt.edu> From: Valdis.Kletnieks at vt.edu (Valdis.Kletnieks@...edu) Subject: Windows Dcom Worm planned DDoS On Fri, 15 Aug 2003 10:39:21 CDT, Max Valdez <maxvalde@....unam.mx> said: > Dont talk for others > > A lot of people realized and comented that, even news did > > Nobody gave a shit when windowsupdate.microsoft.com got nailed with CodeRed. And what actually *CHANGED*? Yeah, a lot of people may have noticed, but for the most part it was "ooh that's nice" and people kept moving along. How many people put 2 and 2 together when the NEXT worm came out a few weeks later, the one that left a wide-open back door, and hassled their local Microsoft representative and didn't let up until they got a good answer to the question "How do I know the patches I download are OK?" Remember in your answer to the above that "because they're signed by us" is *NOT* a good answer - if you can't think of at least 4 different threat scenarios given that both hackers and worms have *known* to have been loose on their corporate net, you're in the wrong business.. ;) Or did you just pull a Canada Bill, who responed to the question "Bill, don't you known this game is crooked?" with "Yeah, but it's the only game in town"? -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 226 bytes Desc: not available Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20030815/c7faf4fb/attachment.bin
Powered by blists - more mailing lists