Complete.Org: Mailing Lists: Archives: discussion: August 2001:
[aclug-L] Re: Denied connections

[aclug-L] Re: Denied connections

[Top] [All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index] [Thread Index]

To:	discussion@xxxxxxxxx
Subject:	[aclug-L] Re: Denied connections
From:	John Reinke <jmreinke@xxxxxxxxx>
Date:	Tue, 28 Aug 2001 21:01:17 -0500
Reply-to:	discussion@xxxxxxxxx

>There are three major problems with the concept of an anti-worm:
>
[Snip]

>The approach I take is that I have default.ida set up with Apache to be
>executed as a CGI script.  It uses the REMOTE_ADDR environment variable as
>the address of a machine to hack into (using the very easy-to-use backdoor
>installed by Code Red 2).  Once there, it executes the command "start /max
>http://24.163.128.147/CodeRed.html";, which launches the user's default
>browser in a maximized window and points it at my Code Red 2 warning page,
>which has helpful links to Microsoft's own security pages.
>
>--
>Chronos Tachyon

This sounds similar to the Code Red Vigilante someone mentioned on 
Slashdot a little while back. Has anyone used it or looked over the 
code?

http://www.dynwebdev.com/codered/

John

-- This is the discussion@xxxxxxxxx list.  To unsubscribe,
visit http://tmp2.complete.org/cgi-bin/listargate-aclug.cgi

[Prev in Thread]

Current Thread

[Next in Thread]

[aclug-L] Re: Denied connections, (continued)

Prev by Date: [aclug-L] Re: Denied connections
Next by Date: [aclug-L] KDE or Gnome?
Previous by thread: [aclug-L] Re: Denied connections
Next by thread: [aclug-L] Re: Denied connections
Index(es):
- Date
- Thread