Re: Current network/Internet is so weak...in face of Nimda-like worms

Thu, 20 Sep 2001 14:03:01 -0700 

Wang Hui wrote:
> 
> Hi, folks here,
> 
> Yesterday, our campus network was attacked by the Nimda worms, and the worm invoked 
>tons of rubish network traffic as a result that our campus network got broken.  No 
>one can enjoy the Internet any longer.   ALl the routers were overloaded, and no more 
>bandwith was available at that time.

Tell your users not to use Outlook, but some other
mail client. Stop running WinNT servers - they have
no advantage over to Unix solutions which tend to be
much more secure, and preform better most times.
Really, use better software and educate users on how
to be more secure users. If you must use Windows
try patching the OS and anti-virus software daily.

> 
> >From this accident, we can see the weakness of our current network.  But I wonder 
>if in the next-generation network, we can avoid such kind of worm-attacking?

Your network doesn't seem to really be the problem.
The real problems seem to the the software machines
on your network run.

There's nothing that can be implented into IPng that
can allow a simple blocking of worms, viruses, etc.
Maybe they can introduce a 'I am malicious' flag for
packets. But that would be a complete joke, since no
one who actually wrote worms/etc. would use it. ;)


> 
> Your advice?
> 
> regards,
> Wang Hui
> --------------------------------------------------------------------
> IETF IPng Working Group Mailing List
> IPng Home Page:                      http://playground.sun.com/ipng
> FTP archive:                      ftp://playground.sun.com/pub/ipng
> Direct all administrative requests to [EMAIL PROTECTED]
> --------------------------------------------------------------------

-- 

 ..:: kill -9 `ps -U luser|grep sh|awk '{print $1}'`
 PGP: RSA 2048bit 0xB7673053 (keyserver.pgp.com)
 Web: http://packetjunkie.net  http://bsdbox.org
--------------------------------------------------------------------
IETF IPng Working Group Mailing List
IPng Home Page:                      http://playground.sun.com/ipng
FTP archive:                      ftp://playground.sun.com/pub/ipng
Direct all administrative requests to [EMAIL PROTECTED]
--------------------------------------------------------------------

Reply via email to