[unisog] earlier report of SQL slapper worm

H. Morrow Long morrow.long at yale.edu
Wed Jan 29 21:23:10 GMT 2003

The random IP number generation function was not perfectly random?


Russell Fulton wrote:
> One other thing that is puzzling us is that some machine that were
> vulnerable and exposed escaped, yet given the probing rate and the
> lenght of time before the traffic was blocked the probability of them
> not getting hit is very small (assuming uniform distribution).  We
> therefore conclude (reductio ad adsurdum) that the distribution was non
> uniform and that we got lucky.
> Cheers, Russell.

More information about the unisog mailing list