RE: [IMail Forum] New widespread virus: W32/Nimda-A; arrives wit h readme.exe attachment

Thu, 20 Sep 2001 17:09:16 -0700 

When I said the primary concern, I was referring to what can be damaged,
not the method of spreading. My first concern as a network engineer is
to prevent/stop damage on what can be damaged, then prevent/stop the
spread.

One thing of note, this new virus should act as a warning and
admonishment to everyone that security is a constant never-ending
battle. 

I know we are all busy, I my self am working 12 hour days right now, but
we must keep up with all updates and patches and service packs. 

The patch to fix this problem in IIS 4 and 5 has been out since October
of 2000, and is included in both NT 4.0 post SP6a security rollup pack
and Win 2000 SP2.

Again, we must be diligent with users. Outlook 2000 SR2 and Outlook 2002
by default will not allow you to open any attachment. You have to enable
the separate security feature, which will then allow you to save the
attachment, then will be able to open it. 

John Tolmachoff, Network Engineer

211 E. Imperial Hwy., Suite 106
Fullerton, CA� 92835
714-578-7999, ext. 104
[EMAIL PROTECTED]
www.reliancesoft.com
�


-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]] On Behalf Of R. Scott Perry
Sent: Tuesday, September 18, 2001 5:32 PM
To: [EMAIL PROTECTED]
Subject: RE: [IMail Forum] New widespread virus: W32/Nimda-A; arrives
wit h readme.exe attachment


>This is of concern primarly to IIS 4 & 5. Windows 2000 SP2 covers the
>patch.

... and anyone with E-mail, that might open an attachment (or uses
insecure 
Outlook settings, where it may open automatically), or anyone who uses 
Internet Explorer with insecure settings.

This is a new type of virus with several spreading methods:  It spreads
by 
searching for vulnerable web servers (not just the "CodeRed"
vulnerability; 
it checks for about a dozen different vulnerabilities), via HTML pages
on 
infected servers, and via E-mail.

                                                    -Scott
---
Declude: Anti-virus, Anti-spam and Anti-hijacking solutions for 
IMail.  http://www.declude.com


Please visit http://www.ipswitch.com/support/mailing-lists.html 
to be removed from this list.

An Archive of this list is available at:
http://www.mail-archive.com/imail_forum%40list.ipswitch.com/


Please visit http://www.ipswitch.com/support/mailing-lists.html
to be removed from this list.

An Archive of this list is available at:
http://www.mail-archive.com/imail_forum%40list.ipswitch.com/

Reply via email to