[Dshield] fighting back against CodeRed

ALEPH0 aleph0 at pacbell.net
Tue Aug 7 01:54:39 GMT 2001

One use for this that is not so unethical is in the case of a large
corporation where is it is within rights and consistent with AUP and any
other legal corners.  Using the exploit as either/both a means to clean up a
mess like this or/and patch the systems may be much more cost effective than
having IT staff feverishly trying to locate the appropriate admins and talk
them through the manual process at various experience levels.  The nature of
this beast hits those companies very hard -- you know; the ones with a big
legacy class A or class B.

More information about the list mailing list