When will we ever learn? - Network World

Skip Links

DNSstuff.com
Get information about your IP
IP Information
50+ On-demand DNS and network tools

Security

Videos

rssRss Feed
Get instant email notification when white papers, webcasts, executive guides are added to our library.  Stay informed and up-to-date with the latest on IT Technologies with Network World's Resource Alerts.
Audio

Hacker writes Cisco rootkit; Microsoft launches online telescope. Listen now!

Network World 360

Wireless dangers at airports. Listen now!

Network World Panorama

Additional Resources

RSS

FEATURED WHITEPAPERS

Auditing and Recovery for Active Directory: What's New in Windows Server 2008 NetPro

Windows Server 2008 is not intended to be a "one size fits all" solution and Microsoft relies on third-party solutions to enhance and extend Windows Server 2008 to accommodate functions like auditing, backup and recovery. Here, we look specifically at audit and recovery capabilities for Active Directory and learn where Windows Server 2008 toolset leaves off, and where the right third-party solution can provide broader coverage and enhanced management capabilities.

RSS

FEATURED REPORTS

Executive Guide: Storage Heats Up HP

Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.

RSS

FEATURED WEBCASTS

Get Real-world Advice on how to Cost Effectively Consolidate your Data Center Novell

Discover the benefits of paravirtualization in this informative webcast today. This server virtualization-themed webcast not only explores how to improve virtualized server performance, but provides real-world user examples, explains how to optimize workloads and discusses the future of server virtualization. Focus on only the themes that interest you or watch all six consecutively for a full picture of how you can lower your costs significantly through consolidation and virtualization. Register below to learn more and be entered to win an Archos 605 Portable Media Player.

IT Buyer's Guides

View All Buyer's Guides

Free Newsletters

Sign up and receive the latest news, reviews and trends on your favorite technology topics

Save The Date!
What They Are Saying

Is Icahn really undertaking this hostile takeover to turn Yahoo over to Microsoft? Or will he demand...- Microsoft Subnet

Join the Discussion

When will we ever learn?

Bottom Line By Joel Snyder , Network World , 09/29/2003
Snyder
  • Social Web 
  • Email 
  • Feedback 
  • Close

Two years ago this month I wrote a column called "Learning lessons from Code Red.". Code Red had hit hard, taking over servers all over the Internet. It's still there - we get dozens of Code Red attempts every day from a worm that's 2 years old.

Two worms that hit this summer, W32/Blaster (also known as W32/Welchia, W32/Nachi and Lovsan) and SoBig (also known as SoBig.F) spread exactly the same way. Microsoft published bulletins, but people ignored them. Patches were issued, but no one applied them. The worms came in through firewalls that shouldn't have let them in. Infected systems continued spreading the worms because we didn't have adequate tools to contain them. Two years after Code Red, there are still fundamental problems in the way we manage and secure systems that make us vulnerable to this kind of attack.

The first problem concerns ISPs. Worms spread like this partially because of the widespread availability of broadband Internet, specifically unfirewalled broadband Internet. People want to learn at home, so they bring up a Windows server. Why bother with a firewall; it's just a test box, right? ISPs traditionally have sold unfiltered bits to their customers.

At the enterprise level, we could count on firewalls. At the residential level, how much damage could a 28.8K bit/sec modem do? During the transition to broadband, ISPs have not changed their model. They insist on selling high-speed connections at rock-bottom prices, which is great for consumers - until the irresponsibility of ISPs in providing adequate security for their customers causes the whole Internet to fall to its knees. ISPs need to re-evaluate their policies on open access to customers, especially residential broadband customers who cannot be expected to firewall their own systems properly.

The second problem involves tools. Although network managers generally keep their houses in order, it's not because they know what's going on; it's because the system is so over-engineered that they don't have to know. Recent research shows an enormous amount of Internet traffic is plain garbage: packets that should never have gotten where they are, or even been allowed to leave their original network.

1 | 2 |  Next >
Comment
Login
Forgot your account info?
Add comment
Anonymous comments subject to moderator approval. Register here for member benefits.
Have a NetworkWorld account? Log in here. Register now for a free account.
First Name
Last Name
E-mail
Zip Code