[WEB4LIB] RE: Two interesting articles dealing with viruses and
I
Andrew I. Mutch
amutch at waterford.lib.mi.us
Wed Oct 3 14:39:09 EDT 2001
Following up on Peter's message, one of the variants he referenced is the
"Code Blue" worm:
http://www.symantec.com/avcenter/venc/data/w32.bluecode.worm.html
Although it attempts to patch unpatched IIS servers that are vulnerable to
Code Red, it uses the same propogation techniques, flooding networks with
traffic trying to find "victims" to fix. Although no one wants
compromised IIS servers spewing attacks thanks to Code Red, this "cure"
isn't much better behaved.
Andrew Mutch
Library Systems Technician
Waterford Township Public Library
Waterford, MI
On Wed, 3 Oct 2001, Peter Murray wrote:
> Actually (in case anyone is taking your suggestion seriously), that would
> still be considered a "worm" (although a beneficial worm) under current
> law and the author would be subject to prosecution. I read a report of
> someone writing a Code Red variant to patch the IIS holes, but that author
> was being sought as well. Even though it is for "good" such a worm is
> still unauthorized access to systems, use of computational resources, and
> altering systems.
>
>
> Peter
>
> (Not a lawyer, just an interested party.)
>
> --On Wednesday, October 3, 2001 9:16 AM -0700 Bill Teschek
> <bteschek at hampton.lib.nh.us> wrote:
>
> > Maybe Microsoft should hire some of these clever virus-makers and put
> > them to work on a "Patch" virus that would distribute itself around the
> > net looking for unpatched versions of IIS, IE or Outlook and fixing
> > them automatically. ;->
>
>
> --
> Peter Murray, Computer Services Librarian W: 860-570-5233
> University of Connecticut Law School Hartford, Connecticut
>
More information about the Web4lib
mailing list