Re: [SLUG] Apache Worm

From: John Oakes (john@networkproductions.net)
Date: Sat Jun 29 2002 - 23:51:18 EDT

Next message: Bill: "Re: [SLUG] Apache Worm"
Previous message: Matthew Moen: "Re: [SLUG] Whats the name of the daemon"
In reply to: Bill: "[SLUG] Apache Worm"
Next in thread: Bill: "Re: [SLUG] Apache Worm"
Reply: Bill: "Re: [SLUG] Apache Worm"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

----- Original Message -----
From: "Bill" <bill@organic-earth.com>
To: <slug@nks.net>
Sent: Saturday, June 29, 2002 3:14 PM
Subject: [SLUG] Apache Worm

> So what, exactly, does the Apache worm do?
>
> I am running the advanced extranet version of Apache and the tripwire.cfg
> file has gone missing.
>
> I got the OpenSSH upgrade made but it doesn't look like I moved fast
enough
> for the Apache exploit.
>

I thought the current version of the new Apache worm only spread to FreeBSD?
I haven't seen a good analysis of it yet, but apparantly it does set your
system up to be used as a zombie in a DDoS. The source code is here,
http://dammit.lt/apache-worm/apache-worm.c; I haven't had a chance to look
at it yet.

John Oakes

Next message: Bill: "Re: [SLUG] Apache Worm"
Previous message: Matthew Moen: "Re: [SLUG] Whats the name of the daemon"
In reply to: Bill: "[SLUG] Apache Worm"
Next in thread: Bill: "Re: [SLUG] Apache Worm"
Reply: Bill: "Re: [SLUG] Apache Worm"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 13:08:48 EDT