Code Red flares up now that school is back in session.
OK, I don’t understand quotes like this: The attack comes in over the standard Web port — Port 80 — so you can’t block it, unless you want to completely deactivate use of the Web on your campus.
That’s just not true. Virtually every major ISP has blocked all incoming traffic on port 80, without affecting normal outgoing HTTP requests (i.e. normal web surfing). This prevents customers from running web servers, but if schools really want to allow students to run their own web servers, they can have more sophisticated filters that only block Code Red. Commercial firewalls do this; you could also set up open source firewalls to do the same thing.
§
I am no longer accepting public comments on this post, but you can use this form to contact me privately. (Your message will not be published.)
§
firehose ‧ code ‧ music ‧ planet
© 2001-8 Mark Pilgrim