[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: Windows Dcom Worm planned DDoS

To: full-disclosure@lists.netsys.com, bugtraq@securityfocus.com
Subject: [Full-Disclosure] Re: Windows Dcom Worm planned DDoS
From: martin f krafft <madduck@madduck.net>
Date: Tue, 12 Aug 2003 23:29:45 +0200

also sprach Sebastian Niehaus <killedbythoughts@mindcrime.net> [2003.08.12.1902 +0200]:
> Could be a nice feature of a worm to modify the "hosts" file and
> prevent infected maschines to do DNS lookups.

Unless you use a rooted host for that, it would reveal your
identity. And if you use a rooted host, you run the risk of the worm
failing if you loose control over the host.

-- 
martin;              (greetings from the heart of the sun.)
  \____ echo mailto: !#^."<*>"|tr "<*> mailto:"; net@madduck
 
invalid/expired pgp subkeys? use subkeys.pgp.net as keyserver!
 
"we all know Linux is great...
 it does infinite loops in 5 seconds."
                                                     -- linus torvalds

PGP signature

Follow-Ups:
- Re: [Full-Disclosure] Re: Windows Dcom Worm planned DDoS
  - From: Sebastian Niehaus <killedbythoughts@mindcrime.net>

References:
- Re: [Full-Disclosure] Windows Dcom Worm planned DDoS
  - From: Nick FitzGerald <nick@virus-l.demon.co.uk>
- Re: [Full-Disclosure] Windows Dcom Worm planned DDoS
  - From: Sebastian Niehaus <killedbythoughts@mindcrime.net>

Prev by Date: Re:::::: [Full-Disclosure] future happenings..
Next by Date: Re: [Full-Disclosure] Blaster: will it spread without tftp?
Prev by thread: Re: [Full-Disclosure] Windows Dcom Worm planned DDoS
Next by thread: Re: [Full-Disclosure] Re: Windows Dcom Worm planned DDoS
Index(es):
- Date
- Thread