[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sheflug] FYI : Worm notification



Richard writes:
 > Dear All
 > 
 > Robin Cannings at Arm.com has sent this to me from Cambridge.  He
 > explains that he is not allowed to write directly to this list and so
 > he's asked me to forward his e-mail to you.
 > 
 > The subject of his mail is something that I found out about on the
 > Sydney list last week.  A number of SLUG users have had their Debian,
 > Red Hat and SuSE systems compromised by the Lion worm.....
 > 
 > 
 > Robin.Cannings [at] arm.com wrote:
 > 
 > > -----BEGIN PGP SIGNED MESSAGE-----
 > > Hash: SHA1
 > > 
 > > ALERT!  A DANGEROUS NEW WORM IS SPREADING ON THE INTERNET

 > > DESCRIPTION
 > > 
 > > The Lion worm is similar to the Ramen worm. However, this worm is
 > > significantly more dangerous and should be taken very seriously.  It
 > > infects Linux machines running the BIND DNS server.  It is known to
 > > infect bind version(s) 8.2, 8.2-P1, 8.2.1, 8.2.2-Px, and all
 > > 8.2.3-betas. The specific vulnerability used by the worm to exploit
 > > machines is the TSIG vulnerability that was reported on January 29,
 > > 2001.
 
Yet other reason to use djbdns - http://cr.yp.to/

Baz.

-- 
Barrie J. Bremner

email: baz at barriebremner.com | OpenPGP ID: 5164F553

http://barriebremner.com/
[Contact information available at website]

   "Linux? Is that some kind of MacOS?"
      -- BT technical support

---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word 
 "unsubscribe" in the body of the message. 

  GNU the choice of a complete generation.