Yes it
can. See the docs.
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of The Central
ScroutinizerSent: Monday, August 23, 2004 16:29To:
[EMAIL PROTECTED]Subject: !SPAM! RE: [Full-Disclosure]
The 'good worm' from HP
It's called
WindowsUpdate? That cannot be used locally
The Central Scroutinizer wrote:
Would it not be better to have a standard secure backdoor provided by
a security package that could downloaded or installed by disk and
works hand in hand with port scanning software, if this is really
necassary. I am supprised Microsoft have not released such a
PM
Please respond to
[EMAIL PROTECTED]
To
[EMAIL PROTECTED]
cc
Subject
Re: [Full-Disclosure] The 'good worm' from HP
Maarten wrote:
Stuff like counter-attacking has been discussed often, whether in large
open
forums such as FD or in more private circles. Mostly, people were too
Microsoft has. It is called SMS.
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of The Central
Scroutinizer
Sent: Sunday, August 22, 2004 7:35 PM
To: Mailing List - Full-Disclosure
Subject: Re: [Full-Disclosure] The 'good worm' from HP
Would
On Mon, 23 Aug 2004 01:34:32 BST, The Central Scroutinizer said:
Would it not be better to have a standard secure backdoor provided by a
security package that could downloaded or installed by disk and works hand
in hand with port scanning software, if this is really necassary. I am
No, it
Of Todd Towles
Sent: Saturday, August 21, 2004 8:58 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] The 'good worm' from HP
SNIP
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
: Sunday, August 22, 2004 8:20 AM
To: Todd Towles; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] The 'good worm' from HP
Allan is right. I didn't notice people calling it a worm.
From the article at InfoWorld...
SNIP
We've been working with (customers) for the last month
a
third party have.
Aaron
- Original Message -
From: Todd Towles [EMAIL PROTECTED]
To: joe [EMAIL PROTECTED]
Cc: Mailing List - Full-Disclosure [EMAIL PROTECTED]
Sent: Sunday, August 22, 2004 7:15 PM
Subject: RE: [Full-Disclosure] The 'good worm' from HP
I hope it is a bad choice of words. He
Todd Towles wrote:
Yeah I remember first hearing about that in the Patch Management
circles. Does sounds like a good idea. Anyone that has been over patch
managemtn can tell you that patches break stuff. Now software will
automatically break software with software patches. =) Interesting.
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I really don't KNOW what HP is doing, but I would assume that it's
just a 'product' and not a worm. Meaning, you can probably setup 1
system on your network that scans a specified range (for example only
your workstations if you're worried about
There are much better alternatives to using exploit code to install
patches.The security folk at TAMU have come up with an in-line
network sniffer automagically blocks infected machines and notifies them
via an internal webserver of their infection. After a set time it
allows them back on.
On Saturday 21 August 2004 16:00, michael williamson wrote:
This is a _lot_ more responsible than running exploit code of any sort,
even for a good purpose. I admin one particular windows server that I
must actually wait for vender approval before applying any hotfixes.
I'd be extremely
Except that the scenario you describe isn't near complete. What will happen
is either it will get attacked by a benign worm (possibly breaking something)
or a malicious worm (definitely breaking something) only a short while later.
Which would you prefer then ?
I'd prefer to not have to
, 2004 4:07 AM
To: [EMAIL PROTECTED]
Subject: RE: [Full-Disclosure] The 'good worm' from HP
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
I really don't KNOW what HP is doing, but I would assume that it's just
a 'product' and not a worm. Meaning, you can probably setup 1 system on
your network
This is cute...
http://p2pnet.net/story/2182
-KF
___
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of KF_lists
Sent: Friday, August 20, 2004 12:39 PM
To: [EMAIL PROTECTED]
Subject: [Full-Disclosure] The 'good worm' from HP
This is cute...
http://p2pnet.net/story/2182
-KF
___
Full
On Friday 20 August 2004 19:38, KF_lists wrote:
This is cute...
http://p2pnet.net/story/2182
Stuff like counter-attacking has been discussed often, whether in large open
forums such as FD or in more private circles. Mostly, people were too
concerned to open themselves up for huge lawsuits
Stuff like counter-attacking has been discussed often,
This isn't necessary counter-attacking. Most operators of large,
decentralized networks who have some say on what's running on the
machines (e.g. operators of educational or corporate networks) follow
some process that detects compromised
Thats pretty funny.. didnt someone else release a worm like that some time ago? The worm previoulsy released downloaded a patch from Microsoft to vulnerable machines, but I think these types of things create their own little DoS attacks when they get transmitted to offices with a less than desired
Thats pretty funny.. didnt someone else release a worm like that some time ago? The worm previoulsy released downloaded a patch from Microsoft to vulnerable machines, but I think these types of things create their own little DoS attacks when they get transmitted to offices with a less than desired
On Fri, 20 Aug 2004 19:55:51 +0200, Maarten said:
Stuff like counter-attacking has been discussed often, whether in large open
forums such as FD or in more private circles. Mostly, people were too
concerned to open themselves up for huge lawsuits and or for prosecution
even, but now that
On Friday 20 August 2004 21:57, [EMAIL PROTECTED] wrote:
On Fri, 20 Aug 2004 19:55:51 +0200, Maarten said:
Stuff like counter-attacking has been discussed often, whether in large
open forums such as FD or in more private circles. Mostly, people were
too concerned to open themselves up for
Maarten wrote:
Stuff like counter-attacking has been discussed often, whether in large open
forums such as FD or in more private circles. Mostly, people were too
concerned to open themselves up for huge lawsuits and or for prosecution
even, but now that an important influential company
23 matches
Mail list logo
