Librenix
Headlines | Linux | Apps | Coding | BSD | Admin | News
Information for Linux System Administration 

Network Conficker scanning

Up
vote
Down

The Conficker worm has infected several million computers since it first started spreading in late 2008. In this paper German developers presented several potential methods to repel Conficker. The approaches presented take advantage of the way Conficker patches infected systems, which can be used to remotely detect a compromised system. They also provided freely available tools including source code on their website. They also described how to use these findings which allows system administrators to quickly and easily scan their networks for infected hosts and to create rules for use in intrusion detection systems. Developers already started to integrate these findings in their network security scanner and equivalent tools like Nmap and Nessus. This article shows how to use four different methods to scan for Conficker infected machines in your network.
 read more | mail this link | score:7826 | -fn-eagle, April 2, 2009
More Sysadmin articles...

Abstract Art in North Florida

admin headlines

Installing The Galera-Iworx Cluster

Server Monitoring With munin And monit On Debian Wheezy

Monitor Drupal with Opsview

Configure PureFTPd for TLS Sessions on Fedora 18

GlusterFS Tutorial: automatic file replication on 2 servers (Ubuntu 12.10)

Virtual Hosting with vsftpd and MySQL on Ubuntu 12.10

 

Firefox sidebar

Site map

Site info

News feed

Features

Login
(to post)

Search

 
Articles are owned by their authors.   © 2000-2012 Ray Yeargin