Workstations are a different matter...sorry...my statement was really only on the server side. My bust. Brian W. Rogers Operations Engineer Tree of Life Corporation rogersb@xxxxxxxxxxxxxx office: (904)940-2152 mobile: (904)806-7173 -----Original Message----- From: Mark Hippenstiel [mailto:M.Hippenstiel@xxxxxxxxxxxx] Sent: Friday, August 01, 2003 3:05 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: OT URGENT: Possible virus attach in zip attachm ents http://www.ISAserver.org Funny enough, none of my setups was affected by these viruses. And I'd bet the new W32/Mimail@MM won't pass my security measures either. I'm more worried about the RPC issue in general, what with the millions of people using dial-up connections and not sitting behing an ISA box. As a result, in firewalled networks the immediate threat is medium if any. Nevertheless the machines leaving the network on a regular basis (i.e. laptops) need immediate attention. -----Original Message----- From: Rogers, Brian [mailto:RogersB@xxxxxxxxxxxxxx] Sent: Friday, August 01, 2003 8:51 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: OT URGENT: Possible virus attach in zip attachm ents http://www.ISAserver.org And if you didn't learn your lesson after Code Red and Nimda...then you deserve what this new virus does to each and every one of your systems :) -----Original Message----- From: Mark Hippenstiel [mailto:M.Hippenstiel@xxxxxxxxxxxx] Sent: Friday, August 01, 2003 2:48 PM To: [ISAserver.org Discussion List] Subject: [isalist] RE: OT URGENT: Possible virus attach in zip attachments http://www.ISAserver.org Hum, good point :-) But if I remember correctly, Code Red exploited an IIS specific vulnerability which was not addressed by WU, right? > -----Original Message----- > From: John Tolmachoff (Lists) [mailto:johnlist@xxxxxxxxxxxxxxxxxxx] > Sent: Friday, August 01, 2003 8:41 PM > To: [ISAserver.org Discussion List] > Subject: [isalist] RE: OT URGENT: Possible virus attach in > zip attachments > > > http://www.ISAserver.org > > > > However, according to the information symantec supplies, > the specific > > vulnerability has already been detected in March or May and should > > have been patched by WU by now. > > True. The vulnerability was detected some time ago. This > virus came out this morning. > > The vulnerability that Code Red used was found 9 months > before it came out and not only were there patches for it, > but it was also fixed in a service pack. How many servers was > it that was affect by Code Red? > > John Tolmachoff MCSE CSSA > Engineer/Consultant > eServices For You > www.eservicesforyou.com > > > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp > ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > Leading Network Software Directory: > http://www.serverfiles.com No.1 Exchange > Server Resource > Site: http://www.msexchange.org Windows Security Resource > Site: http://www.windowsecurity.com/ Network Security > Library: http://www.secinf.net/ Windows 2000/NT Fax > Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this ISAserver.org Discussion > List as: m.hippenstiel@xxxxxxxxxxxx To unsubscribe send a > blank email to $subst('Email.Unsub') > ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: rogersb@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: m.hippenstiel@xxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub') ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: rogersb@xxxxxxxxxxxxxx To unsubscribe send a blank email to $subst('Email.Unsub')