--lEGEL1/lMxI0MVQ2
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Just had a crazy thought about all this RC mess. How about writing an
anti-worm-worm (or vaccine) that uses the same infection method, but removes
all copies of the RC and RCII worm from the system, notifies the system
admin of each box it's run on and then kills itself after a specified date?
You could then write a script on your apache system that logs the IP of the
infected host, and then schedules an anti-infection-infection to be run later.
Whaddya think? Good, bad, ugly? =op
-- Mondoshawan
--lEGEL1/lMxI0MVQ2
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see
http://www.gnupg.org
iD8DBQE7bqSPYp5mUsPGjjwRApnKAJ9L+1ppbsqBntJqnsSOikGrhORFhACgpJHK
7y3/1via482xjvJ9rJ0CTh8=
=uLDT
-----END PGP SIGNATURE-----
--lEGEL1/lMxI0MVQ2--