Slapped Silly

Friday, 20 September 2002, 9:49 AM EST

It's our turn again. The latest worm to attack Web servers is aimed squarely at Linux systems running Apache. The Slapper worm affects 21 different builds of Apache that live on top of a number of different Linux distributions, exploiting the SSL bug reported at the end of July. It installs a distributed denial-of-service (DDoS) client on the target system and also attempts to locate and exploit other vulnerable instances of Apache.

If the previous paragraph fails to break any new ground, well, perhaps it's because Slapper breaks so little new ground - except that the time lag between initial public knowledge of the exploit and release of the corresponding worm has shrunk to a mere six weeks.

And this time two of my servers were hit, and I have no one to blame but myself.

[ Read more ]

Related items




Spotlight

Whitepaper: Zero Trust approach to network security

Posted on 20 November 2014.  |  Zero Trust is an alternative security model that addresses the shortcomings of failing perimeter-centric strategies by removing the assumption of trust.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Fri, Nov 21st
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //