[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]
Re: ALERT - A DANGEROUS NEW WORM IS SPREADING ON THE INTERNET
Atul Chitnis rearranged electrons thusly:
> Those of you who have been updating your installations whenever a security
> advisory has appeared would be safe from this, since RH released a fix in
> January itself:
That's the Bind 8.2.3 version (released on Jan 26, 2001 - and upgrades for
various distros were released in a few hours / days after the ISC
announcement that 8.2.2p5 and older Binds have a root hole).
So, every copycat 31337 h4x0r d00d gets the idea from the old Morris worm
(which used an ancient sendmail bug) and the new Ramen worm (which uses a
rather wide ranging set of exploits available in default redhat installs).
The lion worm would be a non issue, if people would just upgrade when the
announcement comes out, instead of delaying it for over two months.
-s