On Thu, Apr 05, 2001 at 01:17:48PM -0400, Shawn Garbett wrote: > There's a new virus in town. Here's the news for the mouthpiece of Bill > himself: > > http://www.allnetdevices.com/wired/news/2001/04/05/motorola_set.html > It mentions an adorefind program, has anyone run this under Debian? Are > there any recommended package upgrades to prevent these latest rounds of > worms? as usual this worm is totally uninteresting except to incompetant admins. if you have installed all the security updates for potato you are not vulnerable. this thing uses anchient exploits for lprng, and lpr (debian's lprng was fixed Oct of 2000) wu-ftpd, which you should never ever run under any circumstances, rpc.statd which was also fixed many monthes ago, and of course good ol bind which debian also fixed very promptly. if you follow security.debian.org and are all up to date (update today there is a ntpd root hole fix) you are safe from this boring thing. -- Ethan Benson http://www.alaska.net/~erbenson/
Attachment:
pgpCFhNCRUq0B.pgp
Description: PGP signature