On TV.com: 5 SCARIEST Episodes in TV History
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 42 of 120:
Next »
« Previous
missed the point
This was not about defeating anyone, it was about inflicting as much damage as possible as quickly as possible. It was also NOT about taking down desktops (the payload would have been different had it been); the targets you mentioned are the ones they are after, but they are very hard to get to. A DOS attack (or other type of coordinated attack) seems to be the best most can muster against the hardened primary targets.

Follow my points again:
1) Windows has a large installed base ... if you want to launch a DOS attack against someone, you need a large base.
2) Windows is easier to hack ... yes, this was a social-engineering job, but the payload was easier to design for Windows than it would be for another OS.
3) It relied on social engineering to get users to accept it, rather than exploiting a flaw to install itself unaware to the user. Exactly how many servers (*nix or otherwise) and routers are going to fall prey to this kind of social engineering? None.
4) Windows, due to its large base, has a huge percentage of technically inept users. Your average Linux user is not apt to open uninvited attachments, and will recognize an executable for what it is. Not so the average Windows user.

So, you have a gullible population on a large base that is easier to program a payload for. Makes sense.

Oddly, we agreed on all but one point; you stated it was about ease of access and circumvention, which were in my original point; I just took it a step further and said that the reason to exploit that ease of access and circumvention was to obtain a large base to ultimately use.
Posted by: pschroeder@...   Posted on: 01/28/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

I need a windows box  nite_w0lf | 01/28/04
Conflict?  Xunil_Sierutuf | 01/28/04
I need a windows box  foxaroni | 01/29/04
Oh well ....  travisr | 02/02/04
linux loss  izzy70 | 01/29/04
Wow...  Martin Marvinski | 01/31/04
amen  xerxyz | 01/29/04
Why should it not target Microsoft?  B.O.F.H. | 01/28/04
Ah yes, Linux supporters again.  No_Ax_to_Grind | 01/28/04
Who says Linux users are behind it?  MarcB_z | 01/28/04
Any criminal investigation starts...  No_Ax_to_Grind | 01/28/04
And no one's EVER been framed  Bobby Sskcat | 01/28/04
Judging by your other posts  No_Ax_to_Grind | 01/28/04
Wow... intelligent response, Bitty...  Martin Marvinski | 01/31/04
Any criminal investigation starts...  NoB$ | 01/28/04
You're wrong.  Anton Philidor | 01/28/04
Shills are so easily fooled  NoB$ | 01/28/04
The good hard working...  IT_User | 01/31/04
Way too much time watching crime stories  quietLee | 01/29/04
Even so...  John L. Ries | 01/28/04
There is an old saying...  No_Ax_to_Grind | 01/28/04
Wow...  Martin Marvinski | 01/31/04
No Ax To Grind you are an idiot  hipparchus | 01/28/04
Yeah, but....  billywill | 01/28/04
EXE's  pschroeder@... | 01/28/04
I know current versions are better but old MS must be fixed  hipparchus | 01/28/04
the patches are there  pschroeder@... | 01/28/04
if the patches are there, use of them must be enforced  hipparchus | 01/28/04
enforcing patches  pschroeder@... | 01/28/04
good ideas there peter I hope MS is listening  hipparchus | 01/28/04
A little off topic...  Martin Marvinski | 01/31/04
Wow...  Martin Marvinski | 01/31/04
stating the obvious  pschroeder@... | 01/28/04
What happened to the Russian connection?  IT_User | 01/28/04
nothing has happened to it  pschroeder@... | 01/28/04
Um, Hypocrite  Bobby Sskcat | 01/28/04
ASSuming wrong  pschroeder@... | 01/28/04
Correction  pschroeder@... | 01/28/04
Exactlly!  No_Ax_to_Grind | 01/28/04
Well actually you have the right idea but are wrong...  MkIIISupra | 01/28/04
Yes, but...  billywill | 01/28/04
missed the point  pschroeder@... | 01/28/04
I think you almost have it right  Anton Philidor | 01/28/04
hmmm  pschroeder@... | 01/28/04
Likely?  Martin Marvinski | 01/31/04
No Mac attack?  billywill | 01/28/04
Re: Who says Linux users are behind it?  cbradshaw@... | 01/29/04
Where do the winows idiots come from??  nite_w0lf | 01/28/04
Did you not understand?  No_Ax_to_Grind | 01/28/04
You mean they are Windows developers?  B.O.F.H. | 01/28/04
Linux developers  pschroeder@... | 01/28/04
based upon history...  B.O.F.H. | 01/28/04
yes, but...  pschroeder@... | 01/28/04
Bitty, you're not that stupid...  Martin Marvinski | 01/31/04
Re: .. Linux supporters  issthatso | 01/28/04
Has someone stolen your ID again?  tic swayback | 01/28/04
For the record, if I am wrong I will admit it here.  No_Ax_to_Grind | 01/28/04
Get ready to admit it  tic swayback | 01/28/04
Spammers targeted SCO? I doubt that.  No_Ax_to_Grind | 01/28/04
Missing the point again  tic swayback | 01/29/04
Useless  r0ckflite | 01/28/04
even more useless  pschroeder@... | 01/28/04
The virus came from Russia, look it up!  B.O.F.H. | 01/28/04
give credit to GROKLAW  pschroeder@... | 01/28/04
Groklaw does deserve some credit, as does MessageLabs  B.O.F.H. | 01/28/04
MessageLabs  pschroeder@... | 01/28/04
New Mydoom virus variant discovered: W32.Novarg.B@mm  B.O.F.H. | 01/28/04
still, no keylogger mentioned in the new version ,either (NT)  pschroeder@... | 01/28/04
Re: Origin  cbradshaw@... | 01/29/04
Eat crow much?  tic swayback | 01/28/04
Doubt it.  doe_z | 01/28/04
Bit/Don, replace "Linux supporters"...  emartin_z | 01/28/04
A rear Linux supporter indeed.  No_Ax_to_Grind | 01/28/04
Ah yes, Business owners again.  hortons@... | 01/28/04
I doubt it  skeptic tank | 01/29/04
Re: I doubt it  cbradshaw@... | 01/29/04
A bit of possibly useful information.  Yen_z | 01/28/04
It's the same on XP systems too  doctormoriarty | 01/28/04
Einey, meiney, mighney, moe....  Xunil_Sierutuf | 01/28/04
Oops! Another hole!  IT_User | 01/28/04
Yep. Ironic.  Yen_z | 01/28/04
Here's a thought on executable attachments  billywill | 01/28/04
Users  doe_z | 01/28/04
certificates are not enough, deleting exe not great  hipparchus | 01/28/04
certificates are not enough, deleting exe not great  hipparchus | 01/28/04
STOP ALREADY  pschroeder@... | 01/28/04
It installed its own SMTP server  hipparchus | 01/28/04
Raw socket access  pschroeder@... | 01/28/04
but default of off is probably more secure  hipparchus | 01/28/04
Raw Sockets  JohnW_z | 01/29/04
Good idea  pschroeder@... | 01/29/04
YOU dont UNDERSTAND  Valis Keogh | 01/29/04
Tell me, how would Linux boxes be immune?  John Carroll ZDNet Moderator | 01/28/04
But this one does  IT_User | 01/28/04
Hmm, where'd the link go?  IT_User | 01/28/04
Your link can't be followed!  Jose Jimenez | 01/28/04
Old info and missed a step  Xunil_Sierutuf | 01/28/04
Try this  Jose Jimenez | 01/28/04
The problem lies...  doe_z | 01/28/04
Linux boxes are far stronger  hipparchus | 01/28/04
apology in advance for repeating untruth about lindows  hipparchus | 01/28/04
XP Security  jfrankcarr | 01/28/04
heavily locked down system generating support calls  hipparchus | 01/28/04
Macs are boutique machines  jfrankcarr | 01/28/04
it would be rather difficult, and you would mean it!  wrench_ninja | 01/28/04
never underestimate a determined user  pschroeder@... | 01/28/04
nigeria  Valis Keogh | 01/29/04
+Wine doesent run as root (nt)  nite_w0lf | 01/28/04
POTENTIAL NEW SECURITY PRODUCT (GET RICH)  hipparchus | 01/28/04
The virus originated from Russia  B.O.F.H. | 01/28/04
thanks to GROKLAW for your post  pschroeder@... | 01/28/04
The MS faithfuls: doomed to misery.  michael-t | 01/28/04
Microsoft has screwed over so many people  jjon2121 | 01/28/04
SCO uses Gates-ware????  usscharger | 01/29/04
you are AALL annoying as hell  Valis Keogh | 01/29/04
linux losers  izzy70 | 01/29/04
Tune in Sunday morning  IT_User | 01/30/04
Another disadvantage about Linux!!!  izzy70 | 01/30/04
snob  empty_z | 01/30/04
Oh, come on. No sense targeting Linux...  John Zern | 01/31/04

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

SmartPlanet

Click Here