On Thu, 21 Jun 2001, Rafael R. Sevilla wrote:
..
> >From what I know the li0n worm doesn't just exploit the BIND 8 TSIG
> vulnerability. It looks for the many common vulnerabilities (such as with
> FTPd's) and exploits those if it can; the TSIG vulnerability was just the
> most notorious (because DNS servers are much more important).
well assuming my netstat is not compromised (Doc Mike that's YOUR fault
=) the weird ports were actually being used by Oracle. Oh well..
--
Orlando Andico <[EMAIL PROTECTED]>
Mosaic Communications, Inc.
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GE d(-) s: a-25 C++++ UBLSI++++$ P+++ L+++>++++ E- W++ N(+)
o K? w O-- M- !V PS(++) PE- Y PGP-- t(+)@ 5(+) X++@ R(+) tv@
b++ DI++ G e++@ h--(*) r% y+
------END GEEK CODE BLOCK------
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
