Re: [LUG] Virus

["Jon Lawrence" <jon@xxxxxxxxxxxxxxx>]

Speaking of viruses, Nimda/code red etc are really beginning to get on my
nerves.
These damn people who run IIS and don't patch it are driving my web logs
crazy. My var partition isn't massive and it's come close to filling up on a
few occaisions - obviously this would have cripple my server.

question:
As these viruses are requesting something from my web server, if my sever
served say a file called nimba.ida would I be right in saying that this
would be perfectly legal.
I have a script (untested at present) which would cause a popup window on
IIS servers saying that they had a virus.
I know that code red leaves a huge backdoor on systems that it's infected
and I'm starting to get to the point where I'll take advantage of it and
start leaving some nasty messages for incompetent administrators.

Regards,
Jon Lawrence

----- Original Message -----
From: "Jason Mepham" <j.mepham@xxxxxxxxxx>
To: <list@xxxxxxxxxxxx>
Sent: Friday, January 11, 2002 9:17 PM
Subject: Re: [LUG] Virus


> So you thought you'd contact the group and let everyone else have it !!
>
> well cheers then!!
>
>
> On Friday 11 January 2002  1:18 pm, you wrote:
> > There's a possibility that I might be infected with a virus that's
sending
> > itself out.
> >
> > It's a Windows virus. W95/Nimda.A@xx
> >
> > Sorry everyone
> >
> > Matt
> >
> >
> >
> > --
> > The Mailing List for the Devon & Cornwall LUG
> > Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the
> > message body to unsubscribe.
>
> --
> The Mailing List for the Devon & Cornwall LUG
> Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the
> message body to unsubscribe.


--
The Mailing List for the Devon & Cornwall LUG
Mail majordomo@xxxxxxxxxxxx with "unsubscribe list" in the
message body to unsubscribe.