Oh, goodness.
Our firewall is set to deny all inbound connection requests (SYN packets?).
Am I right in assuming that the worm couldn't get in?
Also, where should I subscribe for updates to the firewalling software that
ships with Linux? As this is the first line of defence, I should like to be
notified in the event that a hole is found in it.
Thanks,
Rob
> -----Original Message-----
> From: Thornton Prime [mailto:[EMAIL PROTECTED]]
> Sent: Wednesday, April 04, 2001 10:07 AM
> To: [EMAIL PROTECTED]
> Subject: RE: New worm to affect RH
>
>
>
> On Wed, 4 Apr 2001, [EMAIL PROTECTED] wrote:
>
> > Sorry to be a pain, I'm coming in on this discussion half
> way through. I
> > was just wondering, this worm has to be executed to infect,
> right? It
> > relies on social engineering?
>
> No. Worms traditionally exploit known vulnerabilities in
> network services
> to propogate themselves.
>
> In this case, the latest round of Linux worms have been
> exploiting known
> vulnerabilities in imap, ftp, and dns services. THere have
> been security
> updates available for all these vulnerable systems for months.
>
> thornton
>
>
>
> _______________________________________________
> Redhat-list mailing list
> [EMAIL PROTECTED]
> https://listman.redhat.com/mailman/listinfo/redhat-list
>
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
