Web Hosting Planet - WebHostingPlanet.com

<<


What is a Ddos attack :
http://www.webopedia.com/TERM/D/DoS_attack.html


News article from CNN : http://www.cnn.com/2003/TECH/intern...k.ap/index.html


Micosoft\'s spin to why they broke the internet:


This is a post that was on MS Sql Server Security NG,


At approximately 2130hrs (PST) or 0530hrs (GMT) an
apparent worm (still being analyzed for payload content)
began distributing itself across the Internet via port
1434/UDP (Microsoft-SQL-Monitor). It apparently is
making effective use of the buffer overrun security issue
as outlined in http://www.intelenet.net/news/mssql-
udp.txt


So far several of the major backbone providers have gone
down due to the nature of how this system propigates.
Since it is using UDP across a blanket of IPs (no
specific target), routers, switches, and other network
devices are being flooded with the UDP port openings.
Most router CPUs were maxing at 100% and began dropping
ASN advertisements causing huge segments of the Internet
to \\\"flap\\\" in place.


All major backbone providers are rapidly installing port
1434/UDP filters at all borders and within colocation
spaces to attempt to isolate this as fast as possible.


Current speculation is that stopping and restarting the
SQL process will clear the worm until another hit is
made. Suggest not only patching your SQL server
(assuming that there is a patch for this) as well as
installing any firewall rules that you can to filter out
BOTH inbound and outbound port 1434/UDP>>>
Is it just paranoia on my part -  - or does this attack on the whole operation of the internet seem suspiciously close to January 27th reporting date for U.N. inspectors in Iraq??