Snort mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Code Red attacks

From: "Jason Withrow" <jwithrow () mediaone net>
Date: Mon, 17 Sep 2001 18:17:29 -0400
What is the legal issue, it is a purely defensive mechanism.



-----Original Message-----
From: snort-users-admin () lists sourceforge net
[mailto:snort-users-admin () lists sourceforge net] On Behalf Of Gordon
Ewasiuk
Sent: Monday, September 17, 2001 7:55 AM
To: Jason Withrow
Cc: snort-users () lists sourceforge net
Subject: RE: [Snort-users] Code Red attacks

On Today, Jason Withrow wrote:

What bother with the email.

Since CR installs a CMD Shell that is freely accessable,
Write a script that write a text file to that users computer.

- Jason


Yo Jason,

I agree.  Code Red isn't worth the time or the bother.  Just putting out
links and info that others shared on other mailing lists.  =P

As for sending data to the infected CR server, that raises legal
questions.

-Gordon

--------------------------------------------------
Gordon Ewasiuk, Certifed Sun Fanatic,  Winstar VHC
The REAL office number is here----->  703.893.4901
Tired of BSODs, My Computer, and Code Red?
http://www.sun.com/solaris/binaries/
-------------------------------------------------


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users


_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users
Previous By Date Next
Previous By Thread Next

Current thread: