There's a 'good worm' out there?

  • Thread starter Thread starter NunYa
  • Start date Start date
N

NunYa

http://www.snpx.com/cgi-bin/news5.cgi?target=www.newsnow.co.uk/cgi/NGoto/67442709?-2622

Thursday, 19 August 2004, 09:35 GMT
There's a 'good worm' out there. And it belongs to HP. The company
says it's moving its Active Counter Measures distributed scanning tool
into beta and plans to release it in 2005.

"Active Counter Measures is software designed in HP Labs that uses
techniques similar to those of network attackers to scan the network
for machines that might be vulnerable to attack," says an InfoWorld
story here, but instead of loading a virus or malicious software, it
installs a software patch to repair the vulnerability."
 
NunYa said:
http://www.snpx.com/cgi-bin/news5.cgi?target=www.newsnow.co.uk/cgi/NGoto/67442709?-2622

Thursday, 19 August 2004, 09:35 GMT
There's a 'good worm' out there. And it belongs to HP. The company
says it's moving its Active Counter Measures distributed scanning tool
into beta and plans to release it in 2005.

"Active Counter Measures is software designed in HP Labs that uses
techniques similar to those of network attackers to scan the network
for machines that might be vulnerable to attack," says an InfoWorld
story here, but instead of loading a virus or malicious software, it
installs a software patch to repair the vulnerability."
Click to expand...
Just another case of "when all else fails,read the manual" thinking.
People buy a computer,turn it on and when it gets infected, then they
find out what they need to do to be safe.
-max

--
To help you stay safe see: http://www.geocities.com/maxpro4u/madmax.html
This message is virus free as far as I can tell.
Change nomail.afraid.org to neo.rr.com so you can reply by e-mail
(nomail.afraid.org has been set up specifically for
use in Usenet. Feel free to use it yourself.)
 
Conversation's has been done to death for years. Try 'crpyting' the post.

No spell check and I can still miss the 'Y')?

Cool(well ish)...
 
On that special day, NunYa, ([email protected]) said...
Active Counter Measures is software designed in HP Labs that uses
techniques similar to those of network attackers to scan the network
for machines that might be vulnerable to attack,
Click to expand...

That doesn't sound like a worm to me, but rather like the automatic
checkers, like SATAN and its clones, combined with a remote
administration.

http://www.fish.com/satan/


Gabriele Neukam

(e-mail address removed)
 
Gabriele said:
That doesn't sound like a worm to me, but rather like the automatic
checkers, like SATAN and its clones, combined with a remote
administration.

http://www.fish.com/satan/
Click to expand...

Yeah it may only scan, as opposed to exploiting the flaw like Core
Impact or Canvas.

"The service provides an ongoing vulnerability analysis based on the
latest advisories from major security organizations and other sources,
registering the threats with the highest probability and risk. The HP
distributed scanning tool is then used to scan the network for machines
vulnerable to those threats and automatically deploy policy-driven
mitigation techniques."
http://www.hpl.hp.com/news/2004/jan-mar/pato_rsa.html

michael
 
Back
Top