How do people get attacked by that Blaster/RPC worm?

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
N

NogginBoink

Diamond Member
Feb 17, 2002
5,322
0
0
Originally posted by: slycat
erm..its rpc based so ...i mean..so what if u didn't update your patches?
if rpc isn't opened it won't get through. i cannot imagine ANY company that has rpc opened.

your linksys router is THE firewall and i know for a fact the default config has inbound rpc packets dropped.
this is standard for all them soho routers/firewalls.

so..knowing that...how are people still getting it?...especially companies. i've been a systems and security network
admin for a few yrs and i know rpc is like one of the most basic of services...almost more so than http...so i still
find this pretty weird.
Click to expand...

Perimeter defenses don't do anything to protect you any more. There are many mobile users that will bring infected laptops onto the corporate network. Users will establish VPN's to the outside world. You must patch all boxes on the internal network. Period.
 
N

NogginBoink

Diamond Member
Feb 17, 2002
5,322
0
0
Originally posted by: Rallispec
i think the main thing is just that thier are so many people out there who don't install the security patches-- including network admins for companies... its just a laziness thing i guess--- or they don't know any better.
Click to expand...

They don't know any better.

The ineptitude of IT staffers constantly amazes me. And I work with Fortune 500 companies, some of which have had 12,000 plus machines hit. Despite the fact that we've been telling 'em for weeks to get that patch on there because "the big one" is coming soon.

They get a zero from me on the sympathy meter.

Home users get some sympathy from me.
 
J

Jgtdragon

Diamond Member
May 15, 2000
3,816
19
81
I want to kick the A$$ of who leak this virus. I basically stay at my company for two whole days fighting this virus. Total of like 3 hours of sleep. :disgust:
 
P

Paulson

Elite Member
Feb 27, 2001
10,689
0
0
www.ifixidevices.com
I patched my system when i was supposed to so I don't know if having a linksys router with a nat firewall helps.. but it blocks incoming port requests soo.. it probably would stop people from being infected...
 
S

Sukhoi

Elite Member
Dec 5, 1999
15,350
106
106
Originally posted by: Jgtdragon
I want to kick the A$$ of who leak this virus. I basically stay at my company for two whole days fighting this virus. Total of like 3 hours of sleep. :disgust:
Click to expand...

But just think how bad it would be if that virus actually hurt something. As it is it's more of a nuisance.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom