[Dshield] New Microsoft Windows RPC vulnerability

John Hardin johnh at aproposretail.com
Wed Sep 10 22:03:40 GMT 2003


On Wed, 2003-09-10 at 13:56, Jon R. Kibler wrote:

> I am sure spammers cannot wait to get an exploit deployed for this
> hole. We are starting to see what I suspect are the ramifications of
> systems infected with SoBig: Today, we broke an all time record for
> the number of new (previously unreported) open proxy servers found in
> a single hour: 144.

Maybe we need to be proactive. Add any IP address from which a SoBig or
135 scan originates to the Potential Open Relay BL (PORBL).

--
John Hardin  KA7OHZ                           
Internal Systems Administrator                    voice: (425) 672-1304
Apropos Retail Management Systems, Inc.             fax: (425) 672-0192
-----------------------------------------------------------------------
  Just say ".Nyet"
-----------------------------------------------------------------------
 11 days until Galileo is deorbited




More information about the list mailing list