xsprite@bigfoot.com writes:
I think several large isps have been suffering from the side effects of the various http infecting worms going around at the moment.
There's one Windows worm being particularly active (see CERT) and it has the property that it'll scan its own /24 block 50% of the time, its own /16 25% and random 25%, or something like that. Combine this with the fact that most Windows users are too clueless to even know they've been hit, and significant data loss is required to completely remove this worm (it would seem it's a reinstall job), then you have a nasty problem. At least one ISP is now doing HTTP probes on connection and disconnecting people running unpatched IIS servers. That's only going to spread.
Of course, the trans proxies are going to be caned now. That explains it.
Anyone for a "Windows Users: You're Wrecking the Internet!" diatribe? ;-)
On 20 Sep 2001, MJ Ray wrote:
xsprite@bigfoot.com writes:
I think several large isps have been suffering from the side effects of the various http infecting worms going around at the moment.
Of course, the trans proxies are going to be caned now. That explains it.
Imaging my surprise when I heard that there was another iis worm doing the rounds! I didn't actually pay any attention to the reports of "another iis worm, that is going to destroy the internet" as there is a new one every week. This one after a bit of reading looks as though it is rather nasty and explains quite alot, I have heard of one person reporting that his apache server has been probed nearly 10,000,000 times in less than a day.
Anyone for a "Windows Users: You're Wrecking the Internet!" diatribe? ;-)
Well I think we have a strong case to prove that Windows is criminally broken, I wonder if people with rooted iis boxen will finally see the light when they get the bandwidth bills at the end of the month?
Adam
-
Adam Bower -
MJ Ray