[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] DDos counter measures

To: Laurent LEVIER <llevier@argosnet.com>
Subject: Re: [Full-Disclosure] DDos counter measures
From: Vladimir Parkhaev <vladimir@arobas.net>
Date: Thu, 14 Aug 2003 20:48:15 -0400

Quoting Laurent LEVIER (llevier@argosnet.com):
> We expect now the worm to flood the box it is hosted on and so preserving 
> our IntraNet.

2-3 weeks advanced notice for security people (patch your m$ boxen, 
the worm is coming...) + 4 days of actualy seeing it hit the FW should be
enough to patch Intranet of any size.  Blackholing domains other than 
windowsupdate.com is just plain silly, IMHO.



-- 
.signature: No such file or directory
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

References:
- RE: [Full-Disclosure] Windows Dcom Worm planned DDoS
  - From: Szappanos Gábor (VBuster) <gszappanos@virusbuster.hu>
- [Full-Disclosure] DDos counter measures
  - From: Laurent LEVIER <llevier@argosnet.com>

Prev by Date: AW: [Full-Disclosure] MS should point windowsupdate.com to 127.0.0.1
Next by Date: Re: [Full-Disclosure] "MS Blast" Win2000 Patch Download
Prev by thread: Re: [Full-Disclosure] DDos counter measures
Next by thread: Re: [Full-Disclosure] DDos counter measures
Index(es):
- Date
- Thread