Comments on: The Storm Worm http://blog.srichnet.info/archives/6 My Interests and Hobbies Wed, 30 Nov 2011 22:09:15 +0000 hourly 1 http://wordpress.org/?v=3.1.2 By: S.Richmond http://blog.srichnet.info/archives/6/comment-page-1#comment-220 S.Richmond Sat, 13 Jun 2009 19:00:31 +0000 http://blog.srichnet.info/?p=6#comment-220 Hi Tommy, Thanks for taking the time to have a read and reply. I'm not sure what relevance the address 69.64.155.120 has. I don't believe I have mentioned it in my paper. Am I missing something there? As for your thoughts about making the move to a more traditionally hardened OS - If you don't know your way around Linux/BSD then it is probably wise to take it slow as you won't gain any more security if you configure it wrong and leave open holes lying around. My advise would be to just make 100% sure you have the latest OS security updates applied to your 2k box at all times. My research into the latest worm going around, Conflickr, found that it uses exploits that were patched literially YEARS ago! Storm was and is a similar beast. Hi Tommy,

Thanks for taking the time to have a read and reply.

I’m not sure what relevance the address 69.64.155.120 has. I don’t believe I have mentioned it in my paper. Am I missing something there?
As for your thoughts about making the move to a more traditionally hardened OS – If you don’t know your way around Linux/BSD then it is probably wise to take it slow as you won’t gain any more security if you configure it wrong and leave open holes lying around. My advise would be to just make 100% sure you have the latest OS security updates applied to your 2k box at all times. My research into the latest worm going around, Conflickr, found that it uses exploits that were patched literially YEARS ago! Storm was and is a similar beast.

]]> By: Tommy Gibbons http://blog.srichnet.info/archives/6/comment-page-1#comment-219 Tommy Gibbons Sat, 13 Jun 2009 18:00:52 +0000 http://blog.srichnet.info/?p=6#comment-219 Hi Scott, Excellent paper. Only noticed today (13th June 2009) that the address 69.64.155.120 is on my server (win2k). I noticed it when I ping-ed a host name on my lan and ping reported back this address. So I started to look into the problem. Now I fear that I will go over to a Linux server or BSD (though this is very low level and may take too much time to learn). Thank you for taking the time and effort in putting this paper together. Tommy Hi Scott,
Excellent paper. Only noticed today (13th June 2009) that the address 69.64.155.120 is on my server (win2k). I noticed it when I ping-ed a host name on my lan and ping reported back this address. So I started to look into the problem.

Now I fear that I will go over to a Linux server or BSD (though this is very low level and may take too much time to learn).

Thank you for taking the time and effort in putting this paper together.
Tommy

]]>