May I have your attention.

Aug. 20th, 2003 03:54 pm
feren: (nny)
[personal profile] feren
May I have your attention, please.

  • The yellow zone is for the loading and unloading of passengers only.
  • There is no parking in the red zone.
  • People who didn't patch their Windows PCs against the Blaster worm by downloading the frigging patchafter last week's little debacle should be frigging euthanized.

    [lj-rant]
    If you people had done what you were supposed to in the first place we wouldn't have had a problem last week because there wouldn't have been anything for the worm to exploit. If you had taken a lesson friom the beating your PC received at the hands of this worm, and actually done what our memo said to do last week we wouldn't be playing this game this week where I have to run around and write yet more ACLs and unplug PCs from the network because they were flooding the segment to death with ICMP and RPC packets. This especially goes out to the wonderfully incompetent campus staff members who didn't do their job last week and just assumed that the patches would magically apply themselves, as well as the incompetent users here in the corporate office. You people work in a institution of higher learning with a focus on technology, don't you think it reflects badly on you that you can't even master rudimentary security?
    [/lj-rant]

    That is all.

    Thank you.
    • Current Mood: infuriated
    • Add Memory
    • Share This Entry
    Threaded | Top-Level Comments Only

    Date: 2003-08-20 02:14 pm (UTC)
    From: [identity profile] roho.livejournal.com
    Can't the firewall do it?

    Date: 2003-08-20 02:16 pm (UTC)
    From: [identity profile] feren.livejournal.com

    Date: 2003-08-20 02:18 pm (UTC)
    From: [identity profile] feren.livejournal.com
    No.

    Date: 2003-08-20 02:46 pm (UTC)
    From: [identity profile] hakeber.livejournal.com
    Here at work, my email gets sterilized at the server level. So far it's working. And last night, they pushed out the new definitions through SMS.

    What I find most amusing is that some spammer somewhere who has my email is infected. I keep getting the most bizarre stuff, all with deleted attachments... (Like I said, sterilized at the server level.)

    Date: 2003-08-20 02:53 pm (UTC)
    ext_179406: Team Vulpes (Default)
    From: [identity profile] frostyw.livejournal.com
    Plugging these infected systems was our highest priority today. If W32/Nachi.worm had been written with a little less network aggression, we'd be thanking them rather than cursing them. Of course, the folks we needed to patch never seemed to be at the desk or phone when we wanted to see them. I was able to break into a number of systems (using the local Admin account), delete the service and confirm the patch was installed. Several of our remote sites have been patched and cleaned, and we've been able to get MCI to turn their circuits back on.

    When a system gets infected with Nachi, it downloads and applies the patch from the Microsoft download site. On top of that, come 1/1/04, it actually removes itself. That's all great, actually, except that it's way too aggressive about finding other vulnerable hosts.

    Date: 2003-08-20 04:09 pm (UTC)
    From: [identity profile] daf666.livejournal.com
    I pity tha fool who leaves ports 137-139 flappin in the wind like a redwood forest of penises!

    Muhahahaha!!

    Strangely enough, this blaster worm hasn't troubled me one bit... I blame a port-stealthing hardware firewall, backed up with a smidgen of common sense...

    But then again, I don't consider myself a l'user. :)

    Yikes!!

    Date: 2003-08-21 04:20 am (UTC)
    From: [identity profile] shiver101.livejournal.com
    Well, it seems to be something that academics have in common... not only did every network in Rhodes (which has advancing the state of computing in South Africa as part of it's mission statement!) die horribly, but MIT also went down in flames.

    And Yahoo calmly caught every one of the viruses my Rhodes friends sent me, and keep on going throughout the mess. ;)

    Date: 2003-08-21 07:53 am (UTC)
    From: [identity profile] jingle.livejournal.com
    I feel your pain, qat. I've had to field a couple dozen calls myself (not counting my co-workers) the past couple weeks from people contending with Senor MSBlast.exe. I've been helping them remove it from their system (stop the auto-shutdown, kill the process, delete the registry entry, then find and delete any copies of the file) and then turning them over to their ISP if they have problems getting the Windows updates. That coupled with all the dozens of copier resets I've had to do since the Northeast blackout have made my job tedious, trying repetition.
    Krunk smash machines. Smash!!

    Date: 2003-08-21 07:57 am (UTC)
    From: [identity profile] jingle.livejournal.com
    BTW, still using Windows98 sometimes has its unforeseen benefits. ;)

    Heh...

    Date: 2003-08-24 08:45 am (UTC)
    From: [identity profile] hightensile.livejournal.com
    Now that's the bitchy q@ we all have come to know and love =)

    Here, gin.

    Here, hammer.

    Now go play!

    --kit

    Re: Heh...

    Date: 2003-08-29 08:10 pm (UTC)
    From: [identity profile] feren.livejournal.com

    Re: Heh...

    Date: 2003-08-29 08:11 pm (UTC)
    From: [identity profile] feren.livejournal.com
    You please me greatly. Now it's time to booze up and riot!
    • Add Memory
    • Share This Entry
    Threaded | Top-Level Comments Only

    Profile

    feren: I AM THE MAN (Default)
    feren

    April 2020

    S M T W T F S
       1234
    567891011
    1213 1415161718
    19202122232425
    2627282930  

    Most Popular Tags

    Page Summary

    Style Credit

    Expand Cut Tags

    No cut tags
    Page generated Jan. 26th, 2026 06:05 am
    Powered by Dreamwidth Studios