Valhalla Legends Archive

http://www.microsoft.com/security/incident/sasser.asp

To quote:

QuoteMicrosoft teams have confirmed that the Sasser worm (W32.Sasser.A and its variants) is currently circulating on the Internet.

Thank God these guys are getting paid a small fortune!

QuoteIf you have a hardware firewall in place for your home or workplace connection, or if you use the firewall included with Windows XP, the Sasser worm is most likely blocked.

Thank God they have confidence in their own software!

<Edit: Spelling>
Thanks for spelling suggestion from Trust:

Quote[19:25:42] Trust: They have a lot of truts in their products, eh?

(the guy who can't spell his own name)

Quote
If you have a hardware firewall in place for your home or workplace connection, or if you use the firewall included with Windows XP, the Sasser worm is most likely blocked.

This is completly un-true we have hardware and software firewalls here at work , and we were infected (quite seriously). We are still feeling the effects from it , as some systems are still infecrted (Extra high network traffic)

Quoteiago: omg
iago: " if you use the firewall included with Windows XP, the Sasser worm is most likely blocked"
iago: WTF?
iago: "most likely"?
me: lol
me: They have a lot of truts in their products, eh?
me: trust even
iago: I'll say!
iago: Trust can't spell trust.  Ouch, the irony!

Quote from: effect on May 05, 2004, 07:30 PM

Quote
If you have a hardware firewall in place for your home or workplace connection, or if you use the firewall included with Windows XP, the Sasser worm is most likely blocked.

This is completly un-true we have hardware and software firewalls here at work , and we were infected (quite seriously). We are still feeling the effects from it , as some systems are still infecrted (Extra high network traffic)

Obviously, if you configure the firewall to not block the necessary ports, it won't do you any good.

Of course, it also won't do you any good if somebody brings an infected machine into the network behind the firewall...

Quote from: Skywing on May 05, 2004, 07:35 PM

Quote from: effect on May 05, 2004, 07:30 PM

Quote
If you have a hardware firewall in place for your home or workplace connection, or if you use the firewall included with Windows XP, the Sasser worm is most likely blocked.

This is completly un-true we have hardware and software firewalls here at work , and we were infected (quite seriously). We are still feeling the effects from it , as some systems are still infecrted (Extra high network traffic)

Obviously, if you configure the firewall to not block the necessary ports, it won't do you any good.

Of course, it also won't do you any good if somebody brings an infected machine into the network behind the firewall...

We have a stiff policy against this (however there is defiently no way to be 100% sure) , the moral of the story is dont listen to anything microsoft says.

edit: And keep your system up to date  

pshh.  I have that Linksys router and we have experienced 0 infections.

I use Sygate Firewall and if it gets past that then I always got The Cleaner and McAfee Virus Scan.

This should be in the Fun Forum

I do not know much about sasser... just what i have seen in headlines really. Does it do a sort of port scan when it looks for ips? If that is the case then if you are behind a hardware firewall on your router and your ports are stealth you would be pretty safe.

It randomly generates an IP.

Quote from: effect on May 05, 2004, 07:38 PM

Quote from: Skywing on May 05, 2004, 07:35 PM

Quote from: effect on May 05, 2004, 07:30 PM

Quote
If you have a hardware firewall in place for your home or workplace connection, or if you use the firewall included with Windows XP, the Sasser worm is most likely blocked.

This is completly un-true we have hardware and software firewalls here at work , and we were infected (quite seriously). We are still feeling the effects from it , as some systems are still infecrted (Extra high network traffic)

Obviously, if you configure the firewall to not block the necessary ports, it won't do you any good.

Of course, it also won't do you any good if somebody brings an infected machine into the network behind the firewall...

We have a stiff policy against this (however there is defiently no way to be 100% sure) , the moral of the story is dont listen to anything microsoft says.

edit: And keep your system up to date  

Yes, there is a way.  Learn how to use your DHCP server.  If you only allocate LAN IPs to trusted machines, those you have built and know the MAC address of, no contractor or manager can hook a laptop up to your network and infect it.  If you make their only connect method via terminal server or VPN, you are controlling your own LAN.

Accept responsibility for your own LAN and own machines.

Quote from: effect on May 05, 2004, 07:38 PM
the moral of the story is dont listen to anything microsoft says.

Why do you insist on thinking that?  I'm so sick of people who just randomly *hate* Microsoft and pretend that everything they say is BS and all of their products are, etc.

My entire school is infected with it. I'm cracking up in their faces because nobody listened to me when it happened.

Quote from: SNiFFeR on May 06, 2004, 09:50 AM
My entire school is infected with it. I'm cracking up in their faces because nobody listened to me when it happened.

My school has Mac's so I don't think you can infect those. !

Quote from: Mephisto on May 06, 2004, 09:24 AM

Quote from: effect on May 05, 2004, 07:38 PM
the moral of the story is dont listen to anything microsoft says.

Why do you insist on thinking that?  I'm so sick of people who just randomly *hate* Microsoft and pretend that everything they say is BS and all of their products are, etc.

Note my quotations - they aren't even sure what they're doing