View Source: CodeRedBungle - Waikato Linux Users Group

Edit PageHistory Diff Info LikePages

Some people wrote a virus called CodeRed, that attacked insecure MicrosoftCorporation InternetInformationServer web server.  They got all the web serverss they hacked to run a piece of code which was scheduled to cause the web server to start flooding 210.55.204.208, the InternetProtocol address for the White House (www.whitehouse.gov) at a certain time.

As soon as the [CERT] people pulled the virus to bits, and found out, what did www.whitehouse.gov do?  Change their IP address to 210.55.204.209, updated their [DNS] entry to match, and lo and behold - any machines that spammed 210.55.204.208 had their packets drop into the BitBucket.

What the Code Red writers SHOULD have done was used "www.whitehouse.gov", which they couldn't have changed unless they wanted to lose all their visitors.

By the way, don't accidentally confuse www.whitehouse.gov with www.whitehouse.com, unless you're over the age of sexual consent.

 whitehouse.gov - The Whitehouse in Washington, DC.
 whitehouse.net - an amusing parody site.
 whitehouse.org - another amusing parody site.
 whitehouse.com - a porn site.

2 pages link to CodeRedBungle:

CodeRed
DNS

Last edited on Monday, August 25, 2003 4:50:15 pm by zcat(1)

Edit PageHistory Diff Info LikePages

Upcoming meetings

Past meetings