[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] AT&T early warning system

To: Hoho <hoho@tacomeat.net>, full-disclosure@lists.netsys.com
Subject: Re: [Full-Disclosure] AT&T early warning system
From: S G Masood <sgmasood@yahoo.com>
Date: Sat, 18 Oct 2003 12:07:14 -0700 (PDT)

--- Hoho <hoho@tacomeat.net> wrote:
> On Fri, 2003-10-17 at 22:44, jkm wrote:
> > Quote 2:
> > "AT&T saw anomalies in its network three to four
> weeks before that worm
> > hit and was able to take certain precautions.
> "When the worm actually
> > happened, AT&T's network did not take a hit,''
> Eslambolchi said."
> 
> 
> Doesn't it seem like they're trying to violate
> causality? If the worm
> doesn't exist yet, then its associated traffic
> doesn't exist yet, hence
> there's nothing to detect.

...unless they had insider information that a worm
that exploits certain "anomalies" would be released in
"three to four weeks" :).
I didn't see the original article but maybe they are
referring to the DCOM worm brigade which was
anticipated and awaited weeks before it hit.

--
S.G.Masood
Hyderabad,
India.

__________________________________
Do you Yahoo!?
The New Yahoo! Shopping - with improved product search
http://shopping.yahoo.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- Re: [Full-Disclosure] AT&T early warning system
  - From: "jkm" <jkmanowar9@fastmail.fm>

References:
- Re: [Full-Disclosure] AT&T early warning system
  - From: Hoho <hoho@tacomeat.net>

Prev by Date: Re: [Full-Disclosure] NASA.GOV SQL Injections
Next by Date: RE: [Full-Disclosure] AT&T early warning system
Previous by thread: Re: [Full-Disclosure] AT&T early warning system
Next by thread: Re: [Full-Disclosure] AT&T early warning system
Index(es):
- Date
- Thread