Mike Sweetser
Boerewors Level: 46
Posts: 262/379 EXP: 664907 For next: 46872
Since: 2.1.02 From: Seattle, Washington
Since last post: 6528 days Last activity: 6420 days
| #21 Posted on 14.8.03 1035.05 Reposted on: 14.8.10 1037.40 |
Originally posted by Alessandro Okay, beating a dead horse here, but I found this :
The "Blaster" worm, which uses a flaw in the Windows NT 4, 2000 and 2003 server programs and Windows XP personal computer operating system to replicate and spread, does no direct damage and could have been much worse, said Oliver Friedrichs, a senior manager with Symantec Corp. Infected computers may shut down repeatedly or slow down.
So, it only affects personal computers with Windows XP, and computers with Windows NT/ME that are on a network (not the other way around)? I'm confused ...
The news, as usual, can't get facts straight.
To put it bluntly, if your computer/server/PC/laptop/whatever are running any version of Windows NT, Windows XP, Windows 2000 or Windows 2003, and you haven't patched against this vulnerability, YOU ARE OPEN TO BLASTER.
Actually, if you fulfill all these requirements, you've probably already been infected, judging by how amazingly fast Blaster and its offspring (last I checked, there were at least two direct offshoots of Blaster, and a couple of other worms exploiting the same vulnerability).
So there you go. Everybody running Windows, regardless of OS, needs to at least do the following:
a) Get a firewall, software or hardware. I recommend BlackICE, which is a good price ($40-$50), easy to set up, and inobtrusive. b) Get antivirus software. Norton Antivirus is the standard. Also, update it regularly with the new virus definitions. c) GO TO WINDOWS UPDATE REGULARLY! And when Microsoft says something is a Critical Update, or that the thing it patches can be used to hack the server or cause it to stop working, INSTALL THE DAMN PATCH!
I know this sounds like common sense, but if everybody did this, Blaster wouldn't be a problem, since the vulnerability Blaster is exploiting has been patched since July 16th - nearly a full month.
Personally, I'm not worried about Blaster in the slightest.
It would have to get through my firewall, which blocks the ports Blaster transmits on.
It would have to get through my antivirus software, which has definitions installed to stop Blaster in its tracks.
And if it got through both of those lines of defense....it still couldn't do a damn thing, because my computer, and all the servers I maintain (about 100 different servers) have all been patched since the bulletin came out.
Mike | EddieBurkett
Boudin blanc Level: 103
Posts: 590/2490 EXP: 11196566 For next: 274879
Since: 3.1.02 From: GA in person, NJ in heart
Since last post: 63 days Last activity: 1 day
| #22 Posted on 14.8.03 1038.46 Reposted on: 14.8.10 1041.21 |
Originally posted by Alessandro
So, it only affects personal computers with Windows XP, and computers with Windows NT/ME that are on a network (not the other way around)? I'm confused ...
No. It affects all Windows machines running those OS's regardless of whether or not they are networked, provided they are connected to the internet so that they can get affected. What they are trying to say is that NT 4, 2000, and 2003 are the server OS's, and designed for use on a network with a central server, whereas XP is intended for (networks of) individual computers. | NEO
Salami Level: 36
Posts: 189/217 EXP: 287838 For next: 20275
Since: 15.1.02 From: Texas
Since last post: 7283 days Last activity: 7283 days
| #23 Posted on 15.8.03 0651.22 Reposted on: 15.8.10 0652.18 | Alls I know is it they need to find this bastard. I would love to personally open up a "hot can of of whoop-ass" on that fool. This week has been a hell for a hustler.
Mike hit it right on the head though. The update was available weeks ago. Definately a lesson learned. What I wonder is just who the hell comes up with this stuff? More and more I think about it, job security is very important these days....ah nevermind. | Alessandro
Lap cheong Level: 88
Posts: 345/1759 EXP: 6648204 For next: 2486
Since: 2.1.02 From: Worcester MA
Since last post: 467 days Last activity: 72 days
| #24 Posted on 15.8.03 1343.25 Reposted on: 15.8.10 1344.16 | (deleted by Alessandro on 18.8.03 0836) | Keeper
Blutwurst Moderator Level: 38
Posts: 92/249 EXP: 352809 For next: 17641
Since: 1.3.02 From: Worcester, MA
Since last post: 3271 days Last activity: 2043 days
| #25 Posted on 15.8.03 1352.07 Reposted on: 15.8.10 1354.15 |
Originally posted by Alessandro Aren't Windows ME and Windows 2000 the same thing?
They are two different operating systems. Windows ME is based on Windows 98, while Windows 2000 is based on Windows NT. | AWArulz
Scrapple Level: 125
Posts: 459/3909 EXP: 21988812 For next: 465415
Since: 28.1.02 From: Louisville, KY
Since last post: 100 days Last activity: 100 days
| | Y!: | |
|
| #26 Posted on 16.8.03 2047.55 Reposted on: 16.8.10 2052.59 |
Originally posted by Battlezone
Originally posted by emma Are we having fun yet? :-)
Well, *I* am certainly enjoying all of this, but then again, I'm using a Mac. :)
There's not enough fun in affecting the 18 people who actually have Macs, so there aren't that many viruses (Virusi?) for them | PalpatineW
Lap cheong Level: 83
Posts: 812/1528 EXP: 5382462 For next: 49782
Since: 2.1.02 From: Getting Rowdy
Since last post: 6274 days Last activity: 6116 days
| #27 Posted on 17.8.03 2011.27 Reposted on: 17.8.10 2014.40 | Virii?
(edited by PalpatineW on 17.8.03 2112) | cranlsn
Toulouse Level: 76
Posts: 483/1231 EXP: 3874239 For next: 131840
Since: 18.3.02 From: Hartland, WI
Since last post: 1964 days Last activity: 66 days
| #28 Posted on 18.8.03 1330.54 Reposted on: 18.8.10 1332.49 | There is now a supposedly good version of this thing circulating:
http://www.washingtonpost.com/wp-dyn/articles/A9531-2003Aug18.html
According to the article, it tries to "fix" the infection of MSBlaster, and will stay resident until 2004. There's worries that it's going to do more harm than good as it'll still sap some resources in it's hunt for other computers to "infect".
Gotta appreciate the guys intentions, but I think I'll patch my own computer. Thanks. | vsp
Andouille Level: 94
Posts: 1318/2042 EXP: 8314937 For next: 41751
Since: 3.1.02 From: Philly
Since last post: 6477 days Last activity: 2732 days
| #29 Posted on 18.8.03 1433.35 Reposted on: 18.8.10 1441.39 |
Originally posted by cranlsn There is now a supposedly good version of this thing circulating.
To quote from my favorite Slashdot comment on the subject:
I feel very comfortable turning over my network to a well-meaning worm. I trust that it will properly protect my network. I believe that the teeth I put under my pillow magically are turned into quarters. I am confident that Microsoft has resolved this RPC implementation problem. I have faith that Microsoft's security initiatives are on track. I am sure that elves fix my shoes when I fall behind on my work. (-- user burgburgburg) | ALL ORIGINAL POSTS IN THIS THREAD ARE NOW AVAILABLE |
| | | | | | | | |