[unisog] earlier report of SQL slapper worm
H. Morrow Long
morrow.long at yale.edu
Wed Jan 29 21:23:10 GMT 2003
The random IP number generation function was not perfectly random?
Russell Fulton wrote:
> One other thing that is puzzling us is that some machine that were
> vulnerable and exposed escaped, yet given the probing rate and the
> lenght of time before the traffic was blocked the probability of them
> not getting hit is very small (assuming uniform distribution). We
> therefore conclude (reductio ad adsurdum) that the distribution was non
> uniform and that we got lucky.
> Cheers, Russell.
More information about the unisog