[ILUG] Bloody script kiddies
gavin at fiachra.ucd.ie
Fri Nov 16 14:26:22 GMT 2001
(As far as I recall)
that's what one of the recent IIS worms did among other things. configured
cmd.exe to be executable remotely.
On Fri, 16 Nov 2001, Niall O Broin wrote:
> Just had a look in the log file to which accesses to one of my web server
> box's IP address goes i.e. requests not to one of the hosted domains. Since
> Sept. there have been 23000+ attempts to get cmd.exe to do something and
> 4000+ attempts to find root.exe, and this is just on one lonely little box.
> I wonder do script kiddies' attempts now use up more bandwidth than porn ?
> And do some poor suckers actually have IIS boxes configured in such a way
> that you can execute arbitray commands just by calling cmd.exe ?
> Irish Linux Users' Group: ilug at linux.ie
> http://www.linux.ie/mailman/listinfo/ilug for (un)subscription information.
> List maintainer: listmaster at linux.ie
More information about the ILUG