lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Date: Tue, 27 May 2008 14:11:41 -0600 (MDT)
From: Bruce Ediger <eballen1@...st.net>
To: full-disclosure@...ts.grok.org.uk
Subject: Re: Ford Motors IT Contact

On Tue, 27 May 2008, Anders B Jansson wrote:

> Limiting the continued propagation of sql-slammer is both a worthy and
> commendable deed.
>
> But I'm afraid that it's totally futile.

How so?  Code Red II and Nimda appear to have disappeared, albeit after many
years.

I suspect that somebody let loose the Crclean anti-worm on Code Red II, but
nobody appears to want to confess to it.  I bet that SQL-Slammer would be
vulnerable to the same sort of anti-worm (i.e. responding only to SQL-slammer
scans, rather than doing scanning on its own).

--NSA--CIA--FBI--NRO--TSA--JENKEM--DHS--BUTTHASH--TIARA--GHCQ--ECHELON--
           As for you government types intercepting this,
           thanks for keeping us safe from our freedoms.
       Warrantless wiretapping is un-American and unpatriotic.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ