[60103] in North American Network Operators' Group
RE: WANTED: ISPs with DDoS defense solutions
daemon@ATHENA.MIT.EDU (Stephen J. Wilcox)
Thu Jul 31 18:06:48 2003
Date: Thu, 31 Jul 2003 23:06:18 +0100 (BST)
From: "Stephen J. Wilcox" <steve@telecomplete.co.uk>
To: nanog@merit.edu
Errors-To: owner-nanog-outgoing@merit.edu
> I did a test about 6 months ago. almost a honeypot, but not quite.
> put a standard windows ME system on a RW IP
> put a $60 cable router in front of a similiar system.
> the ME was compromised and made into a Bot in 3 hours.
> The $60 router protected one was not compromised in the
> 2 weeks it was used.
>
> Both had AV and were updated daily via automation.
Ok I've not done this but I wasnt aware vanilla installs that are patched had
such glaring holes? My first thought is surely a default install has no open
ports other than netbios and I assume all file sharing is disabled? No?
Steve
