> -----Original Message----- > From: Randal, Phil [mailto:[EMAIL PROTECTED] > Sent: Friday, September 26, 2003 10:21 AM > To: [EMAIL PROTECTED] > Subject: RE: [Full-Disclosure] RE: Probable new MS DCOM RPC > worm for Windo ws > > Why not? Easy enough to check in a login script if you're > using something like Kixtart (www.kixtart.org). > And how many patches are you going to verify this way? Pretty soon the logon will take 15 minutes while the script is checking hundreds of files. Yes, it's doable, and I would have little trouble writing such a script, but it's impractical. Furthermore, it wouldn't even be comprehensive here, because less than half the machines on campus actually are logging in to the domain.
Paul Schmehl ([EMAIL PROTECTED]) Adjunct Information Security Officer The University of Texas at Dallas AVIEN Founding Member http://www.utdallas.edu/~pauls/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
