[unisog] earlier report of SQL slapper worm

H. Morrow Long morrow.long at yale.edu
Wed Jan 29 21:23:10 GMT 2003


The random IP number generation function was not perfectly random?

Morrow

Russell Fulton wrote:
> One other thing that is puzzling us is that some machine that were
> vulnerable and exposed escaped, yet given the probing rate and the
> lenght of time before the traffic was blocked the probability of them
> not getting hit is very small (assuming uniform distribution).  We
> therefore conclude (reductio ad adsurdum) that the distribution was non
> uniform and that we got lucky.
> 
> Cheers, Russell.
> 




More information about the unisog mailing list