Full Disclosure mailing list archives
Re: Re: Windows Dcom Worm planned DDoS
From: Sebastian Niehaus <killedbythoughts () mindcrime net>
Date: 13 Aug 2003 08:59:48 +0200
martin f krafft <madduck () madduck net> writes:
also sprach Sebastian Niehaus <killedbythoughts () mindcrime net>:
Could be a nice feature of a worm to modify the "hosts" file and prevent infected maschines to do DNS lookups.Unless you use a rooted host for that, it would reveal your identity. And if you use a rooted host, you run the risk of the worm failing if you loose control over the host.
So we need a daemon to fetch the "hosts" file from somwhere (IRC?)<w _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
Current thread:
- RE: Windows Dcom Worm planned DDoS, (continued)
- RE: Windows Dcom Worm planned DDoS Andrew Thomas (Aug 12)
- Re: Windows Dcom Worm planned DDoS Franky Van Liedekerke (Aug 12)
- Re: Windows Dcom Worm planned DDoS Jeremiah Cornelius (Aug 12)
- RE: Windows Dcom Worm planned DDoS Nick FitzGerald (Aug 12)
- RE: Windows Dcom Worm planned DDoS Andrew Thomas (Aug 12)
- Re: Windows Dcom Worm planned DDoS Matthew Murphy (Aug 12)
- Re: Windows Dcom Worm planned DDoS Valdis . Kletnieks (Aug 13)
- Re: Windows Dcom Worm planned DDoS Max Valdez (Aug 15)
- Re: Windows Dcom Worm planned DDoS Valdis . Kletnieks (Aug 16)
- Re: Windows Dcom Worm planned DDoS martin f krafft (Aug 12)
- Re: Re: Windows Dcom Worm planned DDoS Sebastian Niehaus (Aug 13)
- Windows Dcom Worm Killer w g (Aug 13)
- Re: Windows Dcom Worm Killer Joey (Aug 13)
- Re: Windows Dcom Worm Killer Nick FitzGerald (Aug 13)
- Re: Windows Dcom Worm Killer and source code w g (Aug 13)
- RE: Windows Dcom Worm planned DDoS Chris Eagle (Aug 14)
- DDos counter measures Laurent LEVIER (Aug 14)