RE: A code red that could bring down the net?

From: Patrick Smallwood (smalwood@us.ibm.com)
Date: 07/24/01

Previous message: Felix Harris: "Re: A code red that could bring down the net?"
Maybe in reply to: josh abulamhammedramashi: "A code red that could bring down the net?"
Next in thread: Meritt James: "Re: A code red that could bring down the net?"
Next in thread: emerson.c.tan@ca.andersen.com: "RE: Update to "Code Red" Worm. Its a date bomb, not time."
Reply: Meritt James: "Re: A code red that could bring down the net?"
Reply: Pete Sherwood: "Re: A code red that could bring down the net?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Subject: RE: A code red that could bring down the net?
To: "Dom De Vitto" <dom@devitto.com>
Message-ID: <OF1A96EB25.C252E305-ON87256A93.0073258C@boulder.ibm.com>
From: "Patrick Smallwood" <smalwood@us.ibm.com>
Date: Tue, 24 Jul 2001 13:57:48 -0700

I give up...who is William T Morris? My G-Dads name is Morris Williams, but
he doesnt like the Internet, much less interested in a "Big DoS" of it...

Thanks,
Pat

-- Pat Smallwood IBM Global Services Ext (520) 799-5951 T/L 321-5951 Pgr 1-800-946-4646 pin 1132850 Email Pgr 1132850@archwireless.net

"Dom De Vitto" <dom@devitto.c To: <vuln-dev@securityfocus.com>, om> <SECURITY-BASICS@securityfocus.com> cc: 07/23/2001 Subject: RE: A code red that could bring down the net? 02:36 PM

I think a guy called William 'T' Morris may have had this idea first. Allegedly :-)

History. History. History.

Dom

-----Original Message----- From: Jason Lewis [mailto:jlewis@packetnexus.com] Sent: 23 July 2001 06:08 To: 'josh abulamhammedramashi'; vuln-dev@securityfocus.com; SECURITY-BASICS@securityfocus.com Subject: RE: A code red that could bring down the net?

The internet isn't a big hub. If I connect a machine with an IP that is identical to yours, I don't knock you off the net. There is routing and switching involved. If you change your IP to 192.168.1.1 (example IP), the entire net needs to know how to get to your IP. Just changing it doesn't make that happen. Changing IP's isn't a DDoS.

How about this instead? A worm that is not only windows, but also unix based. It carries payload for each OS. It works similar to CodeRed and replicates itself. It also installs a zombie client and creates backdoors. Imagine a worm that wraps all the viruses in the 16 months into one. What if it actively searched out victims while also using Outlook to propagate itself.

BTW, I want the 5 minutes back that it took me to read that paper. I also didn't cc Mark, he probably gets enough junk mail.

Jason Lewis http://www.packetnexus.com It's not secure "Because they told me it was secure". The people at the other end of the link know less about security than you do. And that's scary.

-----Original Message----- From: josh abulamhammedramashi [mailto:whoredware@yahoo.com] Sent: Sunday, July 22, 2001 10:42 PM To: vuln-dev@securityfocus.com; SECURITY-BASICS@securityfocus.com Cc: Marc Maiffret Subject: A code red that could bring down the net?

I just wanted some input on this paper I wrote, It'd be nice for some input and constructive critiscm. I'd like to get this to eventually make the guest writer section on security focus. You can view it at http://www.whoredware.com/codered.html

thanks- enigmabomb enigmabomb@nyc2600.org

p.s. sorry about the cross posts, but this seems pertinent to both.

__________________________________________________ Do You Yahoo!? Make international calls for as low as $.04/minute with Yahoo! Messenger http://phonecard.yahoo.com/

Previous message: Felix Harris: "Re: A code red that could bring down the net?"
Maybe in reply to: josh abulamhammedramashi: "A code red that could bring down the net?"
Next in thread: Meritt James: "Re: A code red that could bring down the net?"
Next in thread: emerson.c.tan@ca.andersen.com: "RE: Update to "Code Red" Worm. Its a date bomb, not time."
Reply: Meritt James: "Re: A code red that could bring down the net?"
Reply: Pete Sherwood: "Re: A code red that could bring down the net?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Oh Poor Brucie! LOL Miserable POS
... being "the worst scandal in the history of the United States?" ... > I have zero involvement with lyme activism...zero. ... So all you do is blather non stop on the internet? ... Gee I just thought it was a paranoid schizophrenic thing! ...
(sci.med.diseases.lyme)
RE: investigating misuse of the internet
... cleaning the history or cache regularly (e.g. setting history retention to 0 ... bit-stream image of the original drive, as will other digital forensics ... investigating misuse of the internet ... Temporary Internet Files ...
(Focus-Microsoft)
RE: Removing search addresses
... Click on General Tab then click on Clear History, also you can set the day ... Empty Temporary Internet Files folder when browser is closed. ... "Reg Garbett" wrote: ...
(microsoft.public.windowsxp.general)
Internet-History.org
... One day the site was for history, ... but then some self-proclaimed experts who when it suits them read the ... 'Redemption Hold Period' of the 5 days which follows the Grace Period ... splendid example of going off topic in an internet group, ...
(comp.dcom.telecom)
Re: websites load slowly without www in the web address
... files and checked the offline box. ... I've noticed that sometimes when I use the Internet Options dialog box to ... Deleting History and Typed URLs in Internet Explorer ... Replies are posted only to the newsgroup for the benefit or other ...
(microsoft.public.windows.inetexplorer.ie6.browser)