RE: Re(2): Possible new virus?

From: Wilcox, Stephen (StephenWilcox_at_universalcomputersys.com)
Date: 09/11/03

  • Next message: Markus Rossi: "Re: AW: SUS Help" 
    Date: Thu, 11 Sep 2003 13:48:13 -0500
To: "Lee Rich" <lee.rich@wlga.gov.uk>, <security-basics@securityfocus.com>

    Ok, I'm sure everyone has an opinion about Chris's original email. It was his opinion on where he felt this email belonged, nothing more. The administrators of the mail list felt it could fall under this group so here it stays. It seems to me everyone is getting off track. Get back into focus and use this list for what it's intention is for. Help pointing people towards their resolution. I see more and more people wanting to run someone through the mud on their opinion then time spent on the issues of the original post.

    With that said...

    I would take a road trip and verify the machines sounds and entirety is in fact "Good Working Condition".

    Run the test as some have pointed out.

    It much harder to correctly resolve issues when it comes from a third party.

    I wish you good luck in your search for resolution to you problem

    Stephen
    R&D Systems Network Specialist

    -----Original Message-----
    From: Lee Rich [mailto:lee.rich@wlga.gov.uk]
    Sent: Thursday, September 11, 2003 4:08 AM
    To: security-basics@securityfocus.com
    Subject: Re(2): Possible new virus?

    Chris, in a later posting, Matt has stated that 'another' machine has been reported to have the same symptoms; these machines may be just a small handful of machines who have the same problem but have not been reported yet due to the area covered by 'Internet' Technical support.

    Also, the idea that the message and beeping may be a red herring should not be cast aside. For all these systems to suffer the same fault dispite manufacurer or warranty state. Seems a little iffy to me andI wouldn't be surprised if there is actually nothing wrong with the cooling system. Saying it's a hardware problem would assume that each firmware reports an identical message for the problem. Not to mention that some firmware may not even be able to report such an issue.

    -Lee Rich
    security@wlga.gov.uk

    -----Original Message-----
    From: Chris Berry <compjma@hotmail.com>
    To: security-basics@securityfocus.com <security-basics@securityfocus.com>
    Sent: 10/09/2003 23:51
    Subject: Re: Possible new virus?

    >From: "Lee Rich" <lee.rich@wlga.gov.uk>
    > > "I'm not sure how it made it on to the list"
    >
    >And please don't forget, this is 'security-basics'.. which means to me,
    >that it's not all security experts
    >here, it's people breaking into the field aswell. So you should expect
    >questions that may be simple to
    >yourself, but to others, it's part of a learning curve.

    Oh, I wasn't complaining because it was basic, I was complaining because
    it's not a security issue. To the best of my knowledge (which on this
    particular subject is fairly extensive since I'm originally from a hardware
    background), there is no possible way for software to interfere with the CPU
    cooler no matter how malicious it is, there just isn't any interface.
    (though I suppose if you had a motherboard with variable fan speed control
    and you somehow got an infected firmware update for your BIOS, then maybe,
    but thats a real long shot) However, as always I'm willing to fess up if
    I'm wrong, is there anyone here who knows differently? I'd be happy to help
    the original poster, I was just trying to point out that this isn't the
    correct forum for hardware questions.

    Chris Berry
    compjma@hotmail.com
    Systems Administrator
    JM Associates

    "Conciousness: that annoying time between naps."

    _________________________________________________________________
    Get a FREE computer virus scan online from McAfee.
    http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963

    ---------------------------------------------------------------------------
    Captus Networks
    Are you prepared for the next Sobig & Blaster?
     - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
     - Precisely Define and Implement Network Security
     - Automatically Control P2P, IM and Spam Traffic
    FIND OUT NOW - FREE Vulnerability Assessment Toolkit
    http://www.captusnetworks.com/ads/42.htm
    ----------------------------------------------------------------------------
    ***************************************************************
    SAVE PAPER - THINK BEFORE YOU PRINT!
    I ARBED PAPUR - PWYLLWCH CYN PRINTIO!
    ***************************************************************
    ***************************************************************
    SAVE PAPER - THINK BEFORE YOU PRINT!
    I ARBED PAPUR - PWYLLWCH CYN PRINTIO!
    ***************************************************************

    ---------------------------------------------------------------------------
    Captus Networks
    Are you prepared for the next Sobig & Blaster?
     - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
     - Precisely Define and Implement Network Security
     - Automatically Control P2P, IM and Spam Traffic
    FIND OUT NOW - FREE Vulnerability Assessment Toolkit
    http://www.captusnetworks.com/ads/42.htm
    ----------------------------------------------------------------------------

    ----------------------------------------
    The information transmitted in this message is intended only for the person or entity to whom it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of, or taking of any action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you received this in error, please contact the sender and destroy any copies of this document.

    ---------------------------------------------------------------------------
    Captus Networks
    Are you prepared for the next Sobig & Blaster?
     - Instantly Stop DoS/DDoS Attacks, Worms & Port Scans
     - Precisely Define and Implement Network Security
     - Automatically Control P2P, IM and Spam Traffic
    FIND OUT NOW - FREE Vulnerability Assessment Toolkit
    http://www.captusnetworks.com/ads/42.htm
    ----------------------------------------------------------------------------

  • Next message: Markus Rossi: "Re: AW: SUS Help"

    Relevant Pages

    • RE: File Encryption - Laptop
      ... Captus Networks ... - Precisely Define and Implement Network Security ... - Automatically Control P2P, IM and Spam Traffic ... FIND OUT NOW - FREE Vulnerability Assessment Toolkit ...
      (Security-Basics)
    • Re: How to recover deleted files from ext3 filesystems ??
      ... > - Precisely Define and Implement Network Security ... > FIND OUT NOW - FREE Vulnerability Assessment Toolkit ... CompTia Network+ Certified Professional ...
      (Security-Basics)
    • RE: strange data traffic
      ... Iam using MRTG to monitor the internet traffic in my server, ... Precisely Define and Implement Network Security ... Automatically Control P2P, IM and Spam Traffic ...
      (Security-Basics)
    • RE: Is there such a thing as DNS Network Mapper type application
      ... Precisely Define and Implement Network Security ... Automatically Control P2P, IM and Spam Traffic ... FIND OUT NOW - FREE Vulnerability Assessment Toolkit ...
      (Security-Basics)
    • REVIEW: "Network Security Assessment", Chris McNab
      ... Chapter one defines network security assessment somewhere between ... Chapter twelve lists certain UNIX RPC (Remote Procedure ...
      (comp.security.misc)