[plug] Fwd: [OT] MS-SQL worm
Leon Brooks
leon at brooks.fdns.net
Sun Feb 2 08:49:57 WST 2003
Interesting snippet...
---------- Forwarded Message ----------
Subject: Re: [Cooker] win32 for 9.1? migration tools
Date: Sat, 1 Feb 2003 20:02:20 +0200 (SAST)
From: Buchan Milne <DESPAMMED>
To: Mandrake Cooker List <DESPAMMED>
[chomped by LB]
And remember a default MSSQL installation runs with "System" (ie root)
priveleges, so the bandwidth suck was not the critical part, but the fact
that it advertises vulnerable systems. A poster on a local LUG list set up
a honeypot box last Saturday morning, and 3.5 hours later caught a Russion
hacker on the box, who reckoned he had "root" on 34 SQL boxes in our
country.
--
|----------------Registered Linux User #182071-----------------|
Buchan Milne Mechanical Engineer, Network Manager
Cellphone * Work +27 82 472 2231 * +27 21 8828820x121
Stellenbosch Automotive Engineering http://www.cae.co.za
GPG Key http://ranger.dnsalias.com/bgmilne.asc
1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7
-------------------------------------------------------
Cheers; Leon
More information about the plug
mailing list