Captain's Log, stardate Wed, 1 Dec 2004 11:08:44 +0000, from the fingers of Jason Corcoran came the words:
> An unprotected Windows XP machine was breached within four minutes,
> and became a zombie in less than ten hours, tests conducted by USA
> Today show. The paper set up six honeypot PCs and monitored the
Bet you two pints I could do it in 3 mins and 59 seconds
>> An XP PC running SP1 was breached by an intruder through a hole
> that the Sasser worm used, only four minutes into the test. Within
> fifteen minutes two intrusions took place, one using the MS Blaster
> hole. Within ten hours hackers had established an irc channel and
> the machine was broadcasting its vulnerabilities to the world at
Sounds like a game of Lin City!
> A Windows Small Business Server was similarly compromised,
> with the intruder uploading a program which gave full control of
> the machine.
There's no point really in testing the vulnerabilities in old service packs... Although i do hate windows, i at least make an effort to update service packs etc as soon as i see them available. The same could be said for a Linux machine (in fact, it's said that Redhat 7.3 had more security holes in it's default install than Windows 2000 at the time). If you don't update your stuff you're more prone to attacks... it doesn't take a scientist to realise that!
>> While the XP SP1 machine averaged 341 attacks per hour, the number
> dropped to just 3.4 per hour for a machine running Service Pack 2.
> SP2 ships with the built-in Windows firewall turned on by default.
> A Linux box averaged 1.9 attacks per hour.
What do they mean by attacks? Anyone can attack a machine... but can they actually get in? (eg denial of service is an attack... it doesn't mean that you compromised a machine)
>> The paper stresses that the results don't account for the most
> common forms of compromise which require user intervention, such as
> malware and spyware programs activated by email and a web browser. ®
Yeah most Windows users are ignorant of stuff like that... "Ignorance is bliss"
>>> I wonder if the Linux box had a firewall (shorewall or what ever)
> enabled by default.
Indeed, or what distro they used too!
Maintained by the ILUG website team. The aim of Linux.ie is to
support and help commercial and private users of Linux in Ireland. You can
display ILUG news in your own webpages, read backend
information to find out how. Networking services kindly provided by HEAnet, server kindly donated by
Dell. Linux is a trademark of Linus Torvalds,
used with permission. No penguins were harmed in the production or maintenance
of this highly praised website. Looking for the
Indian Linux Users' Group? Try here. If you've read all this and aren't a lawyer: you should be!