General discussion

Locked

Bugbear & the proliferation of worms

By discussion ·
In the Oct. 14 edition of the Internet Security Focus newsletter, Jonathan Yarden explains why he believes the Internet is turning into worm fodder. Do you agree with his observation? Has Bugbear affected your organization? If so, how have you responded?

This conversation is currently closed to new comments.

7 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Worms and Windows

by djugan In reply to Bugbear & the proliferati ...

Malware, worms and the like, are serious issues but for the most part they are manageable.

1. Install basic protection as dictated by "best practice".

2. Eliminate the use of or, better yet, "dis-integrate" the inherent aspects of Micro$oft's operating systems and middleware that make your systems vulnerable:
Internet Explorer
Outlook Express
VBS Host and Scripting
among others.

3. Apply the proper security patches to the now much-reduced number of Micro$oft applications thatremain.

Bite the bullet. Don't accept the Faustian bargain

Collapse -

Bugbear

by sam In reply to Bugbear & the proliferati ...

One thing I do agree on is that the ISP should stop known virus at the ISP server end. This way it won't speard so fast to so many clients.
Is there any reason why the ISP can not do this?

Collapse -

Nobody wants them gone

by blake7_88101 In reply to Bugbear

Because most of them are too lazy to do it or not smart enough to do it.
There also may be a few more reasons one being that i have noticed that ISP's that do attempt to crack down usually receive strange DOS attacks, threats or other maliciosu attacks from sources that are so well hidden that one could never track them back. I personally feel that there are lots of companies that benefit from the Proliferation of Virii and that if the method of distribution was eliminated it would make the thread almost nill putting lots of these companies out of business.

Collapse -

Content Filtering

by Bucky Kaufman (MCSD) In reply to Nobody wants them gone

Asking an ISP to filter content is an expensive idea - like asking your telco provider to screen your calls. Just streaming the raw data through to you is complex and expensive enough - but to guarantee all customers virus-free delivery (or freedomfrom other offensive communications) would mean buying and maintaining a whole nother layer of software, hardware and support staff. As it is, I don't like paying $25-$100/month for service.

If it's really a problem for you, you can replace yourISP with someone (like me) to provide a value-added firewall service. Of course, that means your lag time will skyrocket because me or my software will have to go through every email message. You'll also have to do away with a lot of non-standard programs and programs that require encrypted transmissions. You'll be looking at upwards of $100/month for dial-up and god-only-knows how much for OC3, T1, DSL, etc.

Here, in Texas, a lot of companies providing this kind of service suddenly appeared and then suddently disappeared. They catered to the Church crowd that wanted to filter content. Their users quickly found that they could protect themselves better with email filters and virus protection.


btw: Contrary to the article, my laptop is tight. The problems I see are when I plug into a corporate network that's got some pathagen bouncing around it.

Collapse -

To 7+ Years of using MS Windows

by blake7_88101 In reply to Bugbear & the proliferati ...

This Year marks my 7th+ year of Using MS Windows and as I look back at all of the years I wonder why I have never ever been victimized by a Virus, Trojan or Worm. I think Simply put its called having an ounce of heads up. Have A Firewall, an Anti-Virus that is tweaked to Maximum, stick yourself behind a router and never open file attachments and make sure that your Email Program Operates in the Restricted Zones and visit the Update Website 1 a week.

Thanks You Microsoft For Giving Me The Tools to create Tools to defend myself, thank you for providing the knowledge and information that one needs to secure themselves.

To Those who have been bitten by Viri and worms before I think if you were to take 2 or the 4 tips provided above I think you will be much safer.

As for my Opinion regarding BugBear and all of the virii released over the last 2 years , My company and developrs and friends that I know that follow my simple advice have never been affected by these virii because these simple precautions stop them before they even get anywhere.

Also a tip to any administrator if they would merely put a ban on file attachments that end with .scr and .pif a good portion of the viruses would be stopped and if you really wanted to cut down eliminate .exe and .bat's and inform your clients that if they wish to send these files they need to do so through special email accounts or through FTP/file transfer programs. Cutting down on Bandwidth and making the world a safer place to say. AlthgouH I'm sure if Symantec had anything to say they probably would flip of my Firewall and attempt to "burn" my computer for these tips.

Collapse -

Lock-Down

The above rules-of-thumb are a little broad, but fool-proof. Unfortunately, that's like saying "just don't logon to the web or read from floppies and CD's".

I've always used McAfee and the only time I've caught a bug was when I turned it off, orotherwise logged on without it running. The downside is that ALL anti-virus programs are resource-hogs.

McAfee.com
("http://click.linksynergy.com/fs-bin/click?id=gQgYD7OLw8g&offerid=13772.3&type=1&subid=0")

Collapse -

Your right about the worms

by polar100 In reply to Bugbear & the proliferati ...

Hey there.
I work technical support for Dell computers and I cant tell you how many people that I have to debug and reinstall everything back on there machines everyweek due to virus worms that are coming through the internet. I usually get at least one or two of them a day and that is just me. there are about 200 techs in the call center that I work for alone and this bugbear is the one I am running into alot now, it was the klez and now this one. Who knows whats next.
Richard K

Back to Web Development Forum
7 total posts (Page 1 of 1)  

Related Discussions

Related Forums