MASSIVE DDOS ATTACKS ALL OVER U.S.

Page 2 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
Iron Woode

Iron Woode

Elite Member
Super Moderator
Oct 10, 1999
31,294
12,817
136
Originally posted by: aves2k
Originally posted by: N8Magic
Fixed linky.
Click to expand...

I can't get either to work, what's it say.
Click to expand...

"UDP port 1434 - SQL Server Monitor worm - likely using a known buffer
overflow to install itself on the server.

Heads up if your running a MS SQL Server box."



 
RossMAN

RossMAN

Grand Nagus
Feb 24, 2000
79,006
430
136
Those of us paranoid about security (most of us are secure behind a router and/or firewal software) should unplug our computers from the internet, unplug them from power and hide them underneath our beds.

But what about the WiFi networks?
 
C

ChrisIsBored

Diamond Member
Nov 30, 2000
3,400
1
71
Originally posted by: RossMAN
Those of us paranoid about security (most of us are secure behind a router and/or firewal software) should unplug our computers from the internet, unplug them from power and hide them underneath our beds.

But what about the WiFi networks?
Click to expand...

Unless your home PC is running MS SQL I don't think you have a problem... but if there were anyone who needed a reason to turn off the computer and walk away for a while... it might be you... :D
 
Iron Woode

Iron Woode

Elite Member
Super Moderator
Oct 10, 1999
31,294
12,817
136
Originally posted by: KK
Everyone do a reboot, that should fix it.

KK
Click to expand...

Hehehe.

I tried that. I thought my router was buggered. Turns out to be much worse. At least the problem isn't my equipment.

 
RossMAN

RossMAN

Grand Nagus
Feb 24, 2000
79,006
430
136
Originally posted by: ChrisIsBored
Originally posted by: RossMAN
Those of us paranoid about security (most of us are secure behind a router and/or firewal software) should unplug our computers from the internet, unplug them from power and hide them underneath our beds.

But what about the WiFi networks?
Click to expand...

Unless your home PC is running MS SQL I don't think you have a problem... but if there were anyone who needed a reason to turn off the computer and walk away for a while... it might be you... :D
Click to expand...

Actually a lot of the eCommerce websites are hosed so this means no spending $ until all this settles.

:p
 
Ciber

Ciber

Platinum Member
Nov 20, 2000
2,531
30
91
This is great publicity for MS :D:p
rolleye.gif
 
Ciber

Ciber

Platinum Member
Nov 20, 2000
2,531
30
91
I wonder what MS marketing guys will say about this tomorrow........lol......
 
ViRGE

ViRGE

Elite Member, Moderator Emeritus
Oct 9, 1999
31,516
167
106
They'll say:

Originally posted by: Microsoft
What the hell is wrong with you people?! We published this flaw 6 months ago, and you still can't be bothered to update against it!?
Click to expand...
 
Aves

Aves

Lifer
Feb 7, 2001
12,232
30
101
Originally posted by: Ciber
I wonder what MS marketing guys will say about this tomorrow........lol......
Click to expand...
They'll say that the port 1434 buffer overflow that would have likely been crucial in orchestrating this whole thing was a well known issue and server admins should have taken the appropriate steps to protect themselves.

I find it funny that my firewall logs are showing connect attempts from lawsqlsrv2.hotmail.com, certainly they would have fixed this on their own servers.
rolleye.gif
 
Platypus

Platypus

Lifer
Apr 26, 2001
31,046
321
136
Don't blame microsoft too hard, almost every platform has programs with buffer overflow errors. You only see the Microsoft servers get hit because they are the most popular platform, and they are easy to target. Buffer overflow is a VERY common thing, and it just so happens that MS's SQL is the target this time. If you run a MS Server, look out. Personally I am glad both my servers run unix.
 
Ciber

Ciber

Platinum Member
Nov 20, 2000
2,531
30
91
Originally posted by: CorporateRecreation
Don't blame microsoft too hard, almost every platform has programs with buffer overflow errors. You only see the Microsoft servers get hit because they are the most popular platform, and they are easy to target. Buffer overflow is a VERY common thing, and it just so happens that MS's SQL is the target this time. If you run a MS Server, look out. Personally I am glad both my servers run unix.
Click to expand...

MS LOVER!!!!!!!!!!!
















j/k...... hehe :D
 
S

SnapIT

Banned
Jul 8, 2002
4,355
1
0
Originally posted by: CorporateRecreation
Don't blame microsoft too hard, almost every platform has programs with buffer overflow errors. You only see the Microsoft servers get hit because they are the most popular platform, and they are easy to target. Buffer overflow is a VERY common thing, and it just so happens that MS's SQL is the target this time. If you run a MS Server, look out. Personally I am glad both my servers run unix.
Click to expand...

No, MS SQL server is far from the most popular SQL server on or off the internet...
 
L

luv2chill

Diamond Member
Feb 22, 2000
4,611
0
76
Whoa... Yeah a quick look at my sonicwall's log shows at least 100 attempts to connect to UDP 1434 from a ton of different IPs beginning at 23:30 (Central).

Wonder what the aftermath will be...

l2c
 
Aves

Aves

Lifer
Feb 7, 2001
12,232
30
101
Originally posted by: optoman
Whats so special about the 1434 port?
Click to expand...
MS SQL Server Monitor Port, there is a known buffer overflow exploit that can be used on it.
 
Platypus

Platypus

Lifer
Apr 26, 2001
31,046
321
136
Originally posted by: SnapIT
Originally posted by: CorporateRecreation
Don't blame microsoft too hard, almost every platform has programs with buffer overflow errors. You only see the Microsoft servers get hit because they are the most popular platform, and they are easy to target. Buffer overflow is a VERY common thing, and it just so happens that MS's SQL is the target this time. If you run a MS Server, look out. Personally I am glad both my servers run unix.
Click to expand...

No, MS SQL server is far from the most popular SQL server on or off the internet...
Click to expand...

Did I say Microsoft SQL servers?
No.

Read.Comprehend.Post.
 
O

optoman

Diamond Member
Nov 15, 1999
4,181
0
0
Thanks

Alot of sites are down. I wonder how many IT guys are getting paged right now.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom