[Gloucs] I-WORM/Opas.A

Mark gloucs at mailman.lug.org.uk
Tue Dec 31 12:02:00 2002


On Tue, 31 Dec 2002 jinxy@firenet.uk.com wrote:

> On Mon, 30 Dec 2002 23:18:47 -0000, bjh <bjh@good-news.fsnet.co.uk> wrote:
>
>
> > A charming little worm... (smile)
> >
>  --big cut -- :)
>
> Not wanting to sound like I know anything but you should be using a
> firewall anyway and NAT aswell if you are letting PCs on the internet.
> Blocking all ports except the ones you need.
>
> Has anyone done a talk on the firewall/NAT distros you can get and how to
> set one up on a normal distro?
>
> _______________________________________________
> gloucs mailing list
> gloucs@mailman.lug.org.uk
> http://mailman.lug.org.uk/mailman/listinfo/gloucs
>


the modern worms have this tendancy of going through several different
open ports as they use more than one method of entry (little wotsits)
beware of more SSL based viruses/bugs in the near future. if you want to
be hosting your own site etc, i would highly recommend using what is
termed as a DMZ, the majority of larger companies do and therefore, even
when their webservers/publically accessible servers are hit, they do not actually suffer any internal
damage (other than bad press, lack of consumer confidence etc)
	Ofcourse, Worldcom didnt use that philosophy..thats another matter
altogether.

Dont think anyone has dont a talk on firewalls and linux distributions
that "are" firewalls....anyone want to volunteer?

if no-one wants to jump at the opportunity I can probably throw something
together. (i'll have to actually look when the meeting is now before the
date, there goes my disorganisation).

ohhh coffee.

Mark