Re: 10 minutes to Sasser?

From: Karl Levinson [x y] mvp (levinson_k_at_despammed.com)
Date: 05/04/04

• Next message: Karl Levinson [x y] mvp: "** READ THIS BEFORE POSTING - answers to frequently asked questions 2004.05.03"
• Previous message: Karl Levinson [x y] mvp: "Re: ISASS(VIRUS)"
• In reply to: octavius schmalz: "10 minutes to Sasser?"
• Next in thread: octavius schmalz: "Re: 10 minutes to Sasser?"
• Reply: octavius schmalz: "Re: 10 minutes to Sasser?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Mon, 3 May 2004 20:02:21 -0400

"octavius schmalz" <arabesque@web.web> wrote in message
news:pan.2004.05.03.21.05.39.52000@web.web...
> I just heard on the news that if you connect a new computer to the
> internet, you will be infected with the Sasser worm within 10 minutes.
> By new, I am surmising that it is a MS-based PC and doesn't have the
> latest MS patches or the latest AV data updates.
> If this 10 minute figure is true, how can we expect anyone to not have the
> virus?

Lots of people don't have the virus.

For one thing, Microsoft released a patch that prevented it about 3 weeks
before the virus came out. People that configured their Windows 2000 or XP
"Automatic Updates" service to download patches automatically were safe.
It's free.

Also, people running personal firewall software were generally safe.
www.kerio.com, www.zonealarm.com, www.sygate.com are all free. Neither of
these things are new, we've been recommending them for years here.

It's been known for a long time that you should not put your PC onto the
Internet or local network until it's been patched first. PC manufacturers
eventually sell PCs with most of the patches that are needed. Or, use a
different computer that is up to date to download the patches you need to a
CD first.

---

• Next message: Karl Levinson [x y] mvp: "** READ THIS BEFORE POSTING - answers to frequently asked questions 2004.05.03"
• Previous message: Karl Levinson [x y] mvp: "Re: ISASS(VIRUS)"
• In reply to: octavius schmalz: "10 minutes to Sasser?"
• Next in thread: octavius schmalz: "Re: 10 minutes to Sasser?"
• Reply: octavius schmalz: "Re: 10 minutes to Sasser?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: please help ... it as a virus with a new file appearing as msblast.exe. ... that file and updated all patches. ... internet, clean the system and restore from a known good backup, and update ... > After I have signed onto the internet a screen telling> me the system will be shutting down due to remote> procedure call has terminated ... (microsoft.public.windowsxp.security_admin) Re: AdAware, SpyBot S &D, etc. + leave PC connected to Internet ... >It will be a while I get the router and do that. ... >> labelling on the box to be sure it has firewall features. ... name, like Disconnect from Internet, and click Finish. ... generally talking only about "critical patches" that affect security. ... (comp.security.firewalls) Re: [Full-disclosure] Zone-H.org: 10 reasons websites get hacked ... because the terrorists know the key systems aren't connected to ... security are thinking if we're not connected to the internet then ... no, even permanently offline systems, still need to be patched ... government etc etc have their patches upto ... (Full-Disclosure) Re: Fix 100% CPU Usage for Good ... You have to search all over the Internet. ... multimedia files, ... I kept having the same problem, thinking it was a virus. ... Plain and simple: MS' patches are ... (microsoft.public.windowsxp.general) Re: The current architecture is broken ... * Use a good firewall to block access to your computer from the Internet ... > download and keep up with all they send, but Microsoft has ... >> Internet to download all those security patches. ... (microsoft.public.security.virus)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(13)