RE: Recent Attacks

["Stephen Seal" <steve () infoexpress com>]

> -----Original Message-----
> From: owner-firewall-wizards () lists nfr net
> [mailto:owner-firewall-wizards () lists nfr net]On Behalf Of Starkey, Kyle
> Sent: Tuesday, February 15, 2000 12:36 PM
> To: hnd () asu edu; firewall-wizards () nfr net
> Subject: RE: Recent Attacks
>
>
> I don't believe that this was the total objective.  I believe (and this is
> only conjecture) that their point was the actual vulnerability
> itself.  The
> DoS and the newly created DDos attacks are VERY simple to use and widely
> available.  I think the point was "Hey, check out this great piece of code
> that is really easy to use and the MAJOR players on the internet are still
> vulnerable."  I am hopeing it was more of a wake up call than it was
> malicious, but who knows.

I agree.  It should be a wake up call to all sysadmins who have unprotected
machines on the Internet.  The real story is in the large number of
unprotected hosts that are still vulnerable and can be used as Zombies.  I
wouldn't be surprised to see host owners become liable for attacks launched
from their own machines.

STeve



> -Kyle
> Information Security
> MSDW Online
>
> -----Original Message-----
> From: hnd () asu edu [mailto:hnd () asu edu]
> Sent: Saturday, February 12, 2000 3:03 PM
> To: firewall-wizards () nfr net
> Subject: Recent Attacks
>
>
> hi,
>
> I was just wondering that The latest attacks on the popular web sites had
> only
> one objective behind it: to bring the web sites and render it useless for
> the
> period of attack. If these hacker really do want to create massive scale
> problems why not hack the root servers?!!!!!!!  This will bring down the
> whole
> internet.
>
> Hoshil