RE: [suse-security] does anybody know such a log
Yes I do. This is why it doesn't really bother me. I just can't believe that there's still Nimda/Code Red infected boxes out there. After more than one year.
Unfortunately there are. And often newly installed boxes out there do not incorporate the neccessary fixes to harden them against Nimda/Code Red. Some admins don't apply these patches regulary... -- Thomas
If there is a firewall (SuSE hopefully) between you and the net. You could
perhaps setup a rule that would look for Nimda's tell tale striNNNNNg.
or code Red's .../winnt/system32..... and drop it.
- Paul
----- Original Message -----
From: "Thomas Schweikle"
Yes I do. This is why it doesn't really bother me. I just can't believe that there's still Nimda/Code Red infected boxes out there. After more than one year.
Unfortunately there are. And often newly installed boxes out there do not incorporate the neccessary fixes to harden them against Nimda/Code Red. Some admins don't apply these patches regulary...
-- Thomas
-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here
participants (2)
-
Paul Kozlenko
-
Thomas Schweikle