Web Informant Provides Good Advice on Dealing with Code Red
By now you know that if you are running a Windows NT 4 or 2000 server as a Web Server, and you are using the typical components (IIS and Microsoft's content indexing component), you are potentially vulnerable to exploit by the Code Red virus. David Strom has produced an excellent summary of the issues that should concern people managing such installations for his Web Informant newsletter. Among the things he includes that are not often pointed out:
- products that incorporate IIS and are potentially vulnerable,
- versions of Microsoft OSes that are not as vulnerable as NT 4 or 2000,
- tools that can be downloaded for free that identify some key vulnerabilities,
- issues with these tools, primarily the differences in results produced by tools that supposedly do the same things.