Pierre Abbat wrote: >If it has: >NNNNNNNNNNNN it's Code Red 1. >XXXXXXXXXXXXX it's Code Red 2. >/winnt/ it's Nimda. >AAAAAAAAAAAAA it's some new worm that showed up in my web log a few days ago. >Where do I report this? I tried bugtraq and the moderator ignored it. >
I just wait until it happens enough for someone else (who people will listen to) to notice. If it's part of the /default.ida exploit then you should be safe, it's just some kiddiot playing. Providing of course that you have the appropriate patch in place. I think I used to email to McAfee and Symantec and then forget all about it. Now I just forget it - we run Linux. Maybe you could try www.messagelabs.com, the truth of it is all these places are keyed in on multiple reports from different individuals, if you are the only person to have seen it then it really isn't a threat. Wish these admins would patch their servers. +------------------------------------------------------------------------ | This is the analog-help mailing list. To unsubscribe from this | mailing list, go to | http://lists.isite.net/listgate/analog-help/unsubscribe.html | | List archives are available at | http://www.mail-archive.com/analog-help@lists.isite.net/ | http://lists.isite.net/listgate/analog-help/archives/ | http://www.tallylist.com/archives/index.cfm/mlist.7 +------------------------------------------------------------------------
