Re: Slammer

From: SQL Server Development Team [MSFT] (sqldev@microsoft.com)
Date: 02/06/03 

From: "SQL Server Development Team [MSFT]" <sqldev@microsoft.com>
Date: Thu, 6 Feb 2003 10:14:22 -0800

It is preferable to stay paranoid about viruses/worms/attacks of other
varieties in general.
Keeping your security eye on a single virus or a notorious 'attack of the
month/week/day'
may end up leaving your system open to vulnerabilities that aren't that well
known or haven't
been widely attempted yet.

Applying the latest security patch in SQL server's case is a good thing.
Much better though
that you take your protection up to the next level SP3.

Terrence 

--
SQL Server Development Team
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm.
"Dileep K" <dileepk@sbcglobal.net> wrote in message
news:00f401c2cdb4$e39538d0$8df82ecf@TK2MSFTNGXA02...
> The best approach will be to apply the patch for the
> vulnerability.
>
> >-----Original Message-----
> >Yes you can, it's just harder for the worm to get to
> you.  The only way to
> >completly ensure that you can't get a worm or virus is to
> remove the nic
> >from the machine, and not let people use the console.
> Not very practacle,
> >but that's the only way to be completly sure.
> >
> >The worm could get in via NAT, or email, or an infeted
> floppy or cd-rom.
> >
> >Basic rule of thumb, if the machine can access another
> machine, and users
> >can access the machine it might be able to get a virus,
> or worm.  So patch,
> >quickly and patch often.
> >
> >--
> >Denny Cherry
> >Database Administrator
> >GameSpy Industries
> >
> >"StratoMan" <StratoMan@cox.net> wrote in message
> >news:084401c2cd5c$575e5340$8df82ecf@TK2MSFTNGXA02...
> >> Could anyone say factually if I can or cannot become
> >> infected with this worm, if my SQL box is privately
> >> addressed (172.16.1.x)?
> >>
> >> Thanks for your help,
> >>
> >> StratoMan
> >
> >
> >.
> >

Relevant Pages

  • Re: system shut down
    ... You might have the sasser virus or the blaster virus ... To stop shutdown, click Start, click Run and type: ... It doesn’t remove the worm. ... You can then connect to the Internet and download the Microsoft relevant patch. ...
    (microsoft.public.windowsupdate)
  • Re: Installing a MS Patch killed my computer
    ... Best bet would've been to remove the worm before trying to install the ... patch - you're trying to lock the barn door after the cows have gotten out. ... Windows XP, Windows 2000, Windows Server 2003, Windows NT ... Symptoms of the virus: Some customer may not notice any symptoms at all. ...
    (microsoft.public.win2000.security)
  • Re: Ending the Worm process??
    ... & gotten rid of the virus & now used the patch. ... >It doesn't remove the worm. ... >You must download and install the patch. ...
    (microsoft.public.windowsxp.security_admin)
  • Re: Fight a virus with a virus?
    ... | Vulnerability, and patch it. ... So how do we remove the virus ... |>> Nachi infected computer is infected with the patch ...
    (microsoft.public.security.virus)
  • Re: I ran the exe file !!!!
    ... point before the virus infection. ... For the moment you should simply stick with MS windows Updates. ... What You Should Know About the Swen Worm ... you have Windows ME or Windows XP, you could run the System Restore ...
    (microsoft.public.security.virus)