The Register published this interesting / scary story. This is not good.
Saw this recently. Looks nasty. Watch out
A very interesting story over at /. Apparently the botnets that use brute force rather than smarts avoid (properly secured) OpenBSD. It's nice to see that the bad guys have so much respect for the Puffy.
I noticed that Apple has withdrawn its Tech Note HT2550 in which it had recommended that Apple Mac OS X users install anti-virus software. This was immediately picked up by the sites that don't bother to check the facts (including big IT portals). The damage control seems to have worked and now hardly anybody is discussing this subject as the world gets ready for the winter holidays season.
Richard Bejtlich got cited in the Economist. Congratulations!
BTW. If you want to learn how to spot and catch the unwelcome guests on your network, make sure you attend Richard's classes.
Please note: The procedure I am describing in this post is not supported by Linksys. If you follow it and render your AM200 ADSL modem unoperable and/or suffer any losses, direct or indirect, due to following the procedure described in this post, neither myself nor Linksys will accept any responsibility for your or other people's, companies', or organizations' losses.
(via
SecurityFocus) Microsoft
has released more information related in the
MS08-067 bulletin. If you haven't patched, your system may become a host to the Conficker.A and IRCbot.BH and possibly -- DOWNAD.A and NETWORM.C. You don't want that. Don't wait, patch up.
I published this in 2003, in the second edition of "Building Firewalls with OpenBSD and PF". It's still relevant.
A very interesting piece of news found over at SecurityFocus.com. SRI International released a free anti-botnet tool called BotHunter. It will monitor networks for botnet activity and notify the network administrator, if it finds anything suspicious. It's a good thing that something is being done to help the administrators.
