[unisog] New slammer variant?
Ken.Connelly at uni.edu
Mon Dec 1 21:55:35 GMT 2003
I've been seeing scans for 1433 at or near the top of my list of ports
scanned for in our class B for ~3 weeks. I don't have much more
information than that to share, but it's been cranking.
Brendan Murphy wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> Over the last couple of days we've seen some (apparently patched)
> machines get hit with what appears to be Slammer. I've noticed that
> the SANS Incidents site is showing an increase in MSSQL-related
> traffic, but I've yet to hear of anything about a new worm ...
> Anyone else running into this???
> Brendan Murphy
> - -- Network/DSL/Video
> Computing, Information, and Network Services (CINS)
> University of Colorado at Denver
> Tel (303)556-4308 / Helpdesk (303)556-6100
> Fax (303)556-2318
> "Success is a journey, not a destination. The doing
> is usually more important than the outcome."
> - Arthur Ashe
> Public GPG Key at http://carbon.cudenver.edu/~bmurphy/bmurphy.gpg
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.2.3 (GNU/Linux)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> -----END PGP SIGNATURE-----
Ken Connelly (KC152) Systems and Operations Manager, ITS - Network Services
University of Northern Iowa Cedar Falls, IA 50614-0121
email: Ken.Connelly at uni.edu phone: (319) 273-5850 fax: (319) 273-7373
It's much more important to know what you don't know than what you do know!
More information about the unisog