> The trouble with code red was that it went through port 80,
> which is left
> open by firewalls because that is the port used for HTTP pages (WWW).
> Closing that would mean no one could access Web pages. So
> firewalls won't
> help you re. things like that. You can now go through any
> ports that are
> left open, and there is software out there to detect ports
> that were left
> open.
Start up apache on port 80 and you can see the hits from code red in the
log files.
I'm waiting for them to get really advanced code red 6, "The IIS hunter
killer", which scans for ports running IIS, and hits it at other ports.
--
Please see the official ORACLE-L FAQ: http://www.orafaq.com
--
Author: Anderson, Brian
INET: [EMAIL PROTECTED]
Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051
San Diego, California -- Public Internet access / Mailing Lists
--------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from). You may
also send the HELP command for other information (like subscribing).
