Wreaking Havoc

Ye' old general discussion board. Basically, for everything that isn't covered elsewhere. Come here to shoot the breeze, shoot your mouth off, or whatever suits your fancy.
This forum is not for asking programming related questions.

Moderator: General Moderators

Post Reply
User avatar
Kriek
Forum Contributor
Posts: 238
Joined: Wed May 29, 2002 3:46 am
Location: Florida
Contact:

Wreaking Havoc

Post by Kriek »

American Intelligence reports massive DDOS (Distributed Denial of Service) attacks all over the internet. This has effectively disabled eight of the thirteen root nameservers. Although the internet theoretically can operate with only a single root server, its performance would slow down drastically if more than four root servers failed for any appreciable length of time. netpulse is reporting UUNet and Internap are being hit very hard. This is the cause of major connectivity problems being experienced worldwide. Since about midnight EST almost every host on the internet has been receiving a 376 byte UDP payload on port ms-sql-m (1434) from a random infected server. It is believed this worm leverages a vulnerability published in June 2002. Several core routers have taken to blocking port 1434 outright. If you run Microsoft SQL Server, make sure the public internet can't access it. If you manage a gateway, consider dropping UDP packets sent to port 1434. Linux or Unix servers are completely safe, because they do not use port 1434 for anything.
User avatar
mydimension
Moderator
Posts: 531
Joined: Tue Apr 23, 2002 6:00 pm
Location: Lowell, MA USA
Contact:

Post by mydimension »

damn, that sUx.
/me closes port 1434
User avatar
Kriek
Forum Contributor
Posts: 238
Joined: Wed May 29, 2002 3:46 am
Location: Florida
Contact:

Post by Kriek »

Yet again a security hole in a Microsoft product has been widely exploited. The worm, also called SQL-HELL, originated in South Korea - where internet access was immediately shut down due to it after the worm launched.

» Internet Storm Center
» OSDN |Slashdot
» American Intelligence
» The Internet Health Report
» CNN | Technology
» MSNBC | Tech Science
Post Reply