Printable View
Hackers normally have to scan the Internet looking for vulnerable systems. However, every Code Red probe I get identifies a system that doesn't have the latest MS patch.
I wonder how many hackers are installing their own Trojans in Code Red infected systems?
------------------
Jerry CTX
Computer (In)Security
Some I spose. You won't be able to track all thos hits you get down - try it https://discussions.virtualdr.com/
Been gone for awhile, but have an observation. Some sources imply/say Code Red is big and bad, while others indicate not a problem. Which is it jerryctx, or is the info on your site?
Or how about a short educational piece of your thoughts on the subject. https://discussions.virtualdr.com/
------------------
Seek knowledge and all else will follow
Please post back results - Press Ctl D to bookmark
Information
Nothing on my site... Too many others tracking viruses and I don't cover server problems (Code Red only infects MS servers). A search of the web for "Code Red" should turn up lots of sites.
It is "bad" in the sense that it has probably infected more servers than any other worm and it is affecting performance on the Net.
------------------
Jerry CTX
Computer (In)Security
I thought Code Red only used IIS machines as "zombies" to lauch Denial Of Services attacks on goverment sites... Am I missing Something?!? I've also read it only affects IIS4 and 5. I've heard different things about IIS6, WinXp Server...
------------------
Don't click this!!!
MiseryQ, that's true of the original Code Red, but the fact that a machine got infected with it reveals an underlying vulnerability - you know for sure that machine hasn't been patched. Code Red 2 includes installing a backdoor as part of its payload, so it would be trivial to launch CR2 at a machine then use that backdoor to mess with it. Or you could create your own custom attack. Basically, instead of servers sitting and silently waiting for a chance attack, you have servers jumping up and down yelling "Attack me! I'm insecure!" to the rest of the world.
Would this be why that only certain segments of the web have had problems? Seems like the problems come and go.
------------------
Seek knowledge and all else will follow
Please post back results - Press Ctl D to bookmark
Information
Yet another reason to run Unix/Linux servers. Fortunately the majority are. I had that figure around here somewhere.... Oh yes, here it is. Approximately 62% of all internet servers run Apache, on Unix/Linux, that leaves 38% running various combos of MS NT, 2000, Novell, Solaris, blah, blah. Really though, is it that hard for the IT person to install a simple patch? Jeez, isn't that what this person is supposed to be doing for a living?
------------------
A)bort,R)etry,I)nfluence with a large hammer.
NeoGeek...
not to be a pain, but could you document your sources....I think that figure is a little out dated...
don't get me wrong, I'd use my linux box over an NT machine for any server stuff...
I just think the figures are a little wrong...
maybe I'm wrong though...
https://discussions.virtualdr.com/
------------------
Mark
------
Please remember to post back about the updated status of your inquiry, we're here to help!
http://www.netcraft.com/survey/
------------------
A)bort,R)etry,I)nfluence with a large hammer.