[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Full-Disclosure] MyDoom.b samples taken down

To: full-disclosure@lists.netsys.com
Subject: RE: [Full-Disclosure] MyDoom.b samples taken down
From: Steve Wray <steve.wray@paradise.net.nz>
Date: Mon, 02 Feb 2004 21:11:12 +1300

> From: full-disclosure-admin@lists.netsys.com 
> [mailto:full-disclosure-admin@lists.netsys.com] On Behalf Of 
> Bill Royds
[snip]
> To amateur "virus researchers", unless you have a "Clean 
> room" to test the virus (a completely isolated computer network with
the 
> ability to catch all possible traffic and machine state changes), you
have little 
> likelihood of finding something new before you re-infect the Internet
with 
> the virus.

I second that, and would like to add the phrase 'air gap'
:)

Its an important notion.

The ability of nasties to get from the clean room to machines
on your LAN or the internet should be limited to the capacitance
of thin air. No wires.



_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Follow-Ups:
- RE: [Full-Disclosure] MyDoom.b samples taken down
  - From: Steve Wray <steve.wray@paradise.net.nz>

References:
- RE: [Full-Disclosure] MyDoom.b samples taken down
  - From: "Bill Royds" <full-disclosure@royds.net>

Prev by Date: RE: [Full-Disclosure] MyDoom download info
Next by Date: RE: [Full-Disclosure] MyDoom.b samples taken down
Previous by thread: Re: [Full-Disclosure] MyDoom.b samples taken down
Next by thread: RE: [Full-Disclosure] MyDoom.b samples taken down
Index(es):
- Date
- Thread