Tuesday, January 28, 2003
Hello tbdev,
sorry, this one gets caught by the antispam netplugin....
Shows automatic zapping spam may have its bugs when mailing list
stuff slips through ...
To be honest, I would not have 'missed' this msg...
Quote
Received: from plantain.ease.lsoft.com (plantain.ease.lsoft.com [209.119.0.163])
by ruby.granis.net (Build 98 8.9.3/NT-8.9.3) with ESMTP id PAA01498
for <[EMAIL PROTECTED]>; Mon, 27 Jan 2003 15:58:08 -0600
Received: from walnut (lists.state.gov) by plantain.ease.lsoft.com (LSMTP for Windows
NT v1.1b) with SMTP id <[EMAIL PROTECTED]>; Mon, 27 Jan 2003 16:39:09
-0500
Received: from LISTSERV.NTBUGTRAQ.COM by LISTSERV.NTBUGTRAQ.COM
(LISTSERV-TCP/IP release 1.8e) with spool id 899074 for
[EMAIL PROTECTED]; Mon, 27 Jan 2003 16:39:08 -0500
Approved-By: [EMAIL PROTECTED]
Received: from 64.32.229.19 by WALNUT.EASE.LSOFT.COM (SMTPL release 1.0i) with
TCP; Mon, 27 Jan 2003 16:15:02 -0500
Received: from whippany7.clearnetwork.com ([128.6.111.100]) by
whippany2.clearnetwork.com with Microsoft SMTPSVC(5.0.2195.5329);
Mon, 27 Jan 2003 16:15:01 -0500
x-sender: [EMAIL PROTECTED]
x-receiver: [EMAIL PROTECTED]
Received: from mailgate.clearnetwork.com ([128.6.111.93]) by
whippany7.clearnetwork.com with Microsoft SMTPSVC(5.0.2195.5329);
Mon, 27 Jan 2003 16:15:01 -0500
Received: by mailgate.clearnetwork.com (Postfix,
from userid 500) id 15BD978030; Mon, 27 Jan 2003 16:15:01 -0500 (EST)
Received: from plantain.ease.lsoft.com (plantain.ease.lsoft.com
[209.119.0.163]) by mailgate.clearnetwork.com (Postfix) with ESMTP id
BB2DE78030 for <[EMAIL PROTECTED]>; Mon, 27 Jan 2003 16:14:57
-0500 (EST)
Received: from walnut (lists.state.gov) by plantain.ease.lsoft.com (LSMTP for
Windows NT v1.1b) with SMTP id <[EMAIL PROTECTED]>;
Mon, 27 Jan 2003 16:14:02 -0500
Received: from LISTSERV.NTBUGTRAQ.COM by LISTSERV.NTBUGTRAQ.COM
(LISTSERV-TCP/IP release 1.8e) with spool id 898373 for
[EMAIL PROTECTED]; Mon, 27 Jan 2003 16:14:01 -0500
Approved-By: [EMAIL PROTECTED]
Received: from 207.176.151.2 by WALNUT.EASE.LSOFT.COM (SMTPL release 1.0i) with
TCP; Mon, 27 Jan 2003 16:13:39 -0500
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
content-class: urn:content-classes:message
X-MimeOLE: Produced By Microsoft Exchange V6.0.6249.0
Thread-Topic: Administrivia: SQL Slammer Webinar today at 5:30pm EST
Thread-Index: AcLGSPYO3xCydaNdSbeDXkkmJ1H+cQ==
Precedence: list
X-Spam-Status: Yes,
hits=7.0
required=4.0tests=APPROVED_BY,CLICK_BELOW,EXCUSE_14,LINES_OF_YELLING,NO_FEE,PGP_SIGNATURE,SPAM_PHRASE_08_13,SUBJECT_NEWSLET1,TRACKER_IDversion=2.43-myrules
X-Spam-Flag: YES
X-Spam-Level: *******
X-Spam-Checker-Version: SpamAssassin 2.43-myrules (1.115.2.20-2002-10-15-exp)
X-Spam-Report: 7.00 hits, 4 required;* -0.9 -- Has an Approved-By moderated
list header* 3.0 -- BODY: Asks you to click below* 2.0 --
BODY: Probably subscribed news letter* 1.3 -- BODY:
Incorporates a tracking ID number* 0.3 -- BODY: No Fees* 0.2
-- BODY: Tells you how to stop further spam* 1.4 -- BODY:
Spam phrases score is 08 to 13 (medium)[score: 8]* 0.2 --
BODY: A WHOLE LINE OF YELLING DETECTED* -0.5 -- BODY: Contains
a PGP-signed message
X-VIRUS-FOUND: NO
X-GHOST-SENDER: [EMAIL PROTECTED]
X-GHOST-RECEIVER: [EMAIL PROTECTED]
X-OriginalArrivalTime: 27 Jan 2003 21:15:01.0643 (UTC)
FILETIME=[277115B0:01C2C649]
Message-ID: <[EMAIL PROTECTED]>
Date: Mon, 27 Jan 2003 16:13:38 -0500
Reply-To: Windows NTBugtraq Mailing List <[EMAIL PROTECTED]>
Sender: Windows NTBugtraq Mailing List <[EMAIL PROTECTED]>
From: Russ <[EMAIL PROTECTED]>
Subject: Administrivia: SQL Slammer Webinar today at 5:30pm EST
[[EMAIL PROTECTED] in Pass-Through List]
To: [EMAIL PROTECTED]
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from quoted-printable to 8bit by ruby.granis.net id PAA01498
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
The TruSecure Risk Index team is hosting a special webinar on the
W32/SQL Slammer Worm today, Monday, January 27th at 5:30pm EST. To
register go to www.trusecure.com/offer/e0148/. You will need to
register, and you'll get a Sales call in the future because of your
registration.
Below is the pitch we're sending out to anyone who'd like to attend.
I wanted to let you know that I will be on this Webinar to give an
update, and Dr. Peter Tippett, my Boss, will be there to put much of
what we've learnt into perspective.
The Webinar is not likely going to give you any new information, I've
made sure NTBugtraq's received everything I know. But there will be a
Q&A session at the end and you may have questions you'd like to ask,
so feel free to join in.
I don't pitch TruSecure that much here, so I hope you won't be too
offended by this rare attempt to get a few more customers...;-]
Cheers,
Russ - Surgeon General of TruSecure Corporation/NTBugtraq Editor
- -----
Latest reports, as of Monday, January 27, 2003 indicate that the
W32/SQLSlammer worm infected, either at edge servers or on devices on
the inside LAN, more than 80% of medium and large organizations since
its release on Saturday. Current estimates indicate between 160,000
and 200,000 sites were infected.
By contrast, the TruSecure Certified client base experienced NO
infection from the worm (and only a very small percentage of
non-certified clients were infected). As with Nimda, Code Red and
other recent virus/worm attacks, this success is once again
attributed largely to the aggressive push toward a perimeter
default-deny stance as part of TruSecure's Essential Practices"
approach to enterprise risk management, to our prediction of such a
worm in May of 2002 and to our subsequent ad-hoc testing and
mitigation activities since May.
This webinar is your opportunity to get the inside info on the worm
and the attack, and most importantly, learn what you can do to
protect your organization against the next generation of this worm,
which is sure to come.
**PLEASE NOTE: This webinar includes a full Q&A session with our
panel of experts, so have your questions ready!
SPACE IS LIMITED - SO REGISTER IMMEDIATELY!
____________________________________________________________
WHO: Dr.Peter S. Tippett, Chief Technologist, TruSecure; Bill Harrod,
Director, Investigative Response, TruSecure; and Russ Cooper, Surgeon
General, TruSecure (and Owner/Moderator of NTBugTraq)
WHERE: Online, from the convenience of your desktop and office!
WHEN: TODAY, January 27th, 5:30pm EST
HOW: Register at: http://www.trusecure.com/offer/e0148/
____________________________________________________________
TruSecure is the leading information security services provider
offering the only fully integrated, enterprise risk management
services
on the market. TruSecure's unique blend of proactive risk reduction
with
real-time security management, monitoring and response assures
continuous security of critical business information assets.
Spend 60 minutes with us and find out how our proven solutions can
help
you secure your business!
***********************************************************
Continuing Professional Education (CPE) Credits = 5
TruSecure webinars offer credits toward two of the leading security
certification programs in the market - the CISSP, from the
International
Information Systems Security Certifications Consortium (ISC)2, and
TruSecure's own TruSecure/ICSA Certified Security Associate (TICSA).
Attendance or online self-study review of any TruSecure webinar
session
will provide 5 CPE credits FREE towards CISSP certification renewal,
as
well as renewal credit for TICSA. Please keep a record of this
document
for audit purposes.
To obtain these credits, please email your CISSP certificate number
to
TruSecure at [EMAIL PROTECTED] We will then submit your
information
to (ISC)2 to confirm your participation. Please also note if you wish
to
have credits applied for your TICSA certificate renewal.
************************************************************
If you have any questions about this Webinar, send them via email to:
mailto:[EMAIL PROTECTED]
We have contacted you with news about TruSecure Corporation because
we thought that the contents of this message would be valuable to
you.
If you do not wish to receive future newsletters from TruSecure,
please click on the link below:
http://trusecure.bellevue.com/u.asp?L=M&[EMAIL PROTECTED]
- ---
-----BEGIN PGP SIGNATURE-----
Version: PGP 8.0
iQA/AwUBPjWg8c+Ua7J6A+woEQJA1QCfe8g83bOR1TB8fFf61cr8/oOmumIAn3cZ
zmpAfOKZurjUhFggqjdIPddD
=kZnG
-----END PGP SIGNATURE-----
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
Delivery co-sponsored by TruSecure Corporation
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
TICSA - Anniversary Special - Limited Time
Become TICSA certified for just $221.25 US when you register before 3/31/03
with PROMO "TS0103" at www.2test.com. NO membership fees, certification
good for 2 years. Price for international delivery just $296.25 US, with
this offer. Offer cannot be combined with any other special and expires
3/31/03. Visit www.trusecure.com/ticsa for full details.
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
Delivery co-sponsored by TruSecure Corporation
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
TICSA - Anniversary Special - Limited Time
Become TICSA certified for just $221.25 US when you register before 3/31/03
with PROMO "TS0103" at www.2test.com. NO membership fees, certification
good for 2 years. Price for international delivery just $296.25 US, with
this offer. Offer cannot be combined with any other special and expires
3/31/03. Visit www.trusecure.com/ticsa for full details.
oooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo
EOQ
--
Best regards,
tracer
Using The Bat! v1.63 Beta/5 on Windows XP 5.1 Build 2600
Service Pack 1
________________________________________________
Current version is 1.62 | "Using TBDEV" information:
http://www.silverstones.com/thebat/TBUDLInfo.html
