Re: Slammer

From: SQL Server Development Team [MSFT] (sqldev@microsoft.com)
Date: 02/06/03

Next message: Alvaro Pereira: "Slammer"
Previous message: SQL Server Development Team [MSFT]: "Re: SQL server slow"
In reply to: Dileep K: "Re: Slammer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "SQL Server Development Team [MSFT]" <sqldev@microsoft.com>
Date: Thu, 6 Feb 2003 10:14:22 -0800

It is preferable to stay paranoid about viruses/worms/attacks of other
varieties in general.
Keeping your security eye on a single virus or a notorious 'attack of the
month/week/day'
may end up leaving your system open to vulnerabilities that aren't that well
known or haven't
been widely attempted yet.

Applying the latest security patch in SQL server's case is a good thing.
Much better though
that you take your protection up to the next level SP3.

Terrence

--
SQL Server Development Team
This posting is provided "AS IS" with no warranties, and confers no rights.
Use of included script samples are subject to the terms specified at
http://www.microsoft.com/info/cpyright.htm.
"Dileep K" <dileepk@sbcglobal.net> wrote in message
news:00f401c2cdb4$e39538d0$8df82ecf@TK2MSFTNGXA02...
> The best approach will be to apply the patch for the
> vulnerability.
>
> >-----Original Message-----
> >Yes you can, it's just harder for the worm to get to
> you.  The only way to
> >completly ensure that you can't get a worm or virus is to
> remove the nic
> >from the machine, and not let people use the console.
> Not very practacle,
> >but that's the only way to be completly sure.
> >
> >The worm could get in via NAT, or email, or an infeted
> floppy or cd-rom.
> >
> >Basic rule of thumb, if the machine can access another
> machine, and users
> >can access the machine it might be able to get a virus,
> or worm.  So patch,
> >quickly and patch often.
> >
> >--
> >Denny Cherry
> >Database Administrator
> >GameSpy Industries
> >
> >"StratoMan" <StratoMan@cox.net> wrote in message
> >news:084401c2cd5c$575e5340$8df82ecf@TK2MSFTNGXA02...
> >> Could anyone say factually if I can or cannot become
> >> infected with this worm, if my SQL box is privately
> >> addressed (172.16.1.x)?
> >>
> >> Thanks for your help,
> >>
> >> StratoMan
> >
> >
> >.
> >

Next message: Alvaro Pereira: "Slammer"
Previous message: SQL Server Development Team [MSFT]: "Re: SQL server slow"
In reply to: Dileep K: "Re: Slammer"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: system shut down
... You might have the sasser virus or the blaster virus ... To stop shutdown, click Start, click Run and type: ... It doesn’t remove the worm. ... You can then connect to the Internet and download the Microsoft relevant patch. ...
(microsoft.public.windowsupdate)
Re: Installing a MS Patch killed my computer
... Best bet would've been to remove the worm before trying to install the ... patch - you're trying to lock the barn door after the cows have gotten out. ... Windows XP, Windows 2000, Windows Server 2003, Windows NT ... Symptoms of the virus: Some customer may not notice any symptoms at all. ...
(microsoft.public.win2000.security)
Re: Ending the Worm process??
... & gotten rid of the virus & now used the patch. ... >It doesn't remove the worm. ... >You must download and install the patch. ...
(microsoft.public.windowsxp.security_admin)
Re: Fight a virus with a virus?
... | Vulnerability, and patch it. ... So how do we remove the virus ... |>> Nachi infected computer is infected with the patch ...
(microsoft.public.security.virus)
Re: Watch out for this
... The 'swen' worm and its effects, ... there is not much you can do to stop the flood. ... e-mail for virus infection. ... You can use a remote virus scan from one of the antivirus program ...
(microsoft.public.security.virus)