Date: Tue, 18 Sep 2001 19:52:18 +0200 From: "Karsten W. Rohrbach" <karsten@rohrbach.de> To: freebsd-security@freebsd.org Subject: Nimda-A Worm/Virus threatens networks Message-ID: <20010918195218.P27375@mail.webmonster.de>
next in thread | raw e-mail | index | archive | help
--S6vg04ofUPzW4qJg Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable there's a new breed out there again, check the analysis of it here: [http://www.symantec.com/avcenter/venc/data/w32.nimda.a@mm.html] i am writing this to -security to inform you to be able to react quickly, because -- depending on your upstream bandwidth -- this new worm may clog your upstream pipe. it started hammering on my servers at approx. 18:30 CEST (+0200) and until now (19:50 CEST) i got hit by it several thousand times. the generated bandwisth does not harm me, but if you are hooked up via T1 or DSL it might consume all of your available bandwidth. if it does not cease soon (what i do not expect) it will have transferred about 3 to 4 gigabytes just http request headers in one day on one machine (rough estimate by wallclocktime and calculator). apache installations, of course, are not harmed, but as i said it generates helluva traffic. take care /k --=20 > As a computing professional, I believe it would be unethical for me to > advise, recommend, or support the use (save possibly for personal > amusement) of any product that is or depends on any Microsoft product. > --David H. Wolfskill KR433/KR11-RIPE -- WebMonster Community Founder -- nGENn GmbH Senior Techie http://www.webmonster.de/ -- ftp://ftp.webmonster.de/ -- http://www.ngenn.n= et/ karsten&rohrbach.de -- alpha&ngenn.net -- alpha&scene.org -- catch@spam.de GnuPG 0x2964BF46 2001-03-15 42F9 9FFF 50D4 2F38 DBEE DF22 3340 4F4E 2964 B= F46 Please do not remove my address from To: and Cc: fields in mailing lists. 1= 0x --S6vg04ofUPzW4qJg Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.6 (FreeBSD) Comment: For info see http://www.gnupg.org iD8DBQE7p4nSM0BPTilkv0YRAlS2AJ0bCqBZjVAnnbTVJvv43n0CRnJhdgCfW6Q/ nPIQQ5em+J0Ij28aj9lS4iI= =bbsD -----END PGP SIGNATURE----- --S6vg04ofUPzW4qJg-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010918195218.P27375>