Linux worm crawls the web, what to do to protect our systems
James Kosin
jkosin at beta.intcomgrp.com
Mon Nov 7 23:29:48 UTC 2005
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
Antonio Olivares wrote:
<< snip >>
>Thanks for responding. In the vulnerable systems
>Fedora Core 1 - 4 were the ones with the vulnerability
>according to the website. Nonetheless, your advice is
>great and I appreciate it. I am not overreacting. I
>also believe that this is another effort by the
>Antivirus companies to earn more prospects and get
>some business.
>Best Regards,
>Antonio
I saw this worm knocking; but, as of yet my FC1 box hasn't been
infected by this one.
I even double checked by checking /tmp for the /tmp/lupii file and the
open UDP ports of 7111 and 7222...
I'm also not sure where they got their post for vulnerabilities... It
looks like someone was just looking for what version of PHP is
installed and went with that.
Best Regards,
James Kosin
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (MingW32)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iD8DBQFDb+NskNLDmnu1kSkRA45TAJ0e1/DXwYB+rwma2HvOWEufR3a0dwCfV9c9
pA+4BBXripCSwXacWes/wl4=
=fa+t
-----END PGP SIGNATURE-----
--
Scanned by ClamAV - http://www.clamav.net
More information about the fedora-list
mailing list