Build Date: Sat Feb 15 07:50:22 2025 UTC
Wow! Cool. You're writing from the future. Is there still beer?
-- Miss Conduct
Stupid Security Tool for Stupid SysAdmins
2001-03-13 16:01:46
As a clueful systems administrator, part of my job is to keep the 3v1l hax0rs out of my network. In fact, that's the reason why I got this job in the first place -- everyone knows computer security is dead sexy. The chicks fall all over you.
At present, I'm in an end-to-end Microsoft environment at a Really Big Computer Corporation(tm). So while part of me just laughs at each new Microsoft Security Update (in big, self-righteous HAR HAR HARs), another part (the part that gets paid), shudders in dread with every release. So, the reports of Soviet barbarians at the gates caused some initial distress for me, personally.
Of course, after a cursory read, I learned that these ex-Commies were using old, known, and easily patched exploits. I rested easy, trusting in my current (and recently audited) MS band-aids.
But, just for kicks, I downloaded Patchwork, a "program that would determine instantly whether a Windows NT system is vulnerable to the attack," distributed by the auspiciously-named Center for Internet Security(SM). My partner, "Miggidy" Mike D, ran this much-lauded and highly anticipated utility on a test box.
Thank our lucky stars, Patchwork "confirms that this system contains the patches, updates, and security configurations this 'Patchwork' program was designed to verify." Though the emphasis is mine, the message is in a big, reassuring, green font. Furthermore, if that's not misleading enough, it also proudly states, "IIS is updated and SAFE for Internet use." (Emphasis theirs, this time.)
This machine, by the way, is running W2K Advanced, with only hotfixes Q277873 and Q259728 installed. No Service Pack. No other hotfixes. All the default script mappings. All the services turned on. All the default virtuals. Basically, a machine which could be compromised by a half dozen other known exploits (like this one or this one), if we were dumb enough to put this on the Internet.
I'll concede that SANS, CIS, and Gibson Research pepper their README's with excuses and caveats about how no system is truly secure, the program is designed to audit for a limited set of vulnerabilities, blah blah blah. Yet, in the very title bar, it calls itself the "Windows Anti-Intrusion Patch Check & Scan." Oh, and the author crows it "was hand crafted -- byte by byte -- in 100% pure 32-bit Intel assembly language." A little hyperbole? In a MS "security" application? Perish the thought!
Let's face it: Companies which run NT as their enterprise are easy to fool. After all, they're using Windows. Programs like this -- endorsed by the FBI, by the way -- are not helping ensure America's security against an onslaught Cold War dropouts. Not one bit.
In fact, I envision a plague of panicky meetings with security administrators, wasting thousands of man-hours arguing for or against this dopey application, resulting in huge losses of productivity in an already depressed tech sector.
Talk about an ingenious Denial of Service attack.
T O P S T O R I E S
The Future Ain't What It Used To Be
Ideas have taken horrifying shape and rooted into our modern reality. (More...)
The Once & Future King of Dust
Only The Onion could have acquired Infowarts. (More...)
Another Nobel Prize-Winning Author Describes Drunkenness
This book won a Pulitzer Prize. Here's its famous paragraph on getting drunk... (More...)
Why I'm pretty sure JD Vance had sex with a couch
True or false? The answers await us in that magical land where all truths are revealed -- the internet. (More...)
In 2010 Dr. Cheng-Huai Ruan discovered a way to cause a patient with an abnormal heartbeat to get back into a normal rhythm by sticking a finger up the patient's ass. (More...)
WKRP in Cincinnati aired from 1978 through 1982. Howard Hesseman played Dr. Johnny Fever, a DJ from Los Angeles who was fired from his previous job for saying the word "booger" on the air. In the show Hesseman would do some dialogue, introduce a song, and start the song. You'd hear a few notes, but never the whole song. (More...)
C L A S S I C P I G D O G
Our team of crack journalists went insane, and made the drive from Concord, California to Concord, New Hasmpshire on Interstate 80. Read the insightful observations of our intrepid travelers made on their journey into the heartland. (More...)
"Gee, I wish I was older."
"So do I." (More...)
It’s election night. My wife and I are holed-up in this hotel that my political party has rented out for the evening. Outside, people are being violently beaten for whom they voted for. Is this South Africa? Perhaps we’re in Haiti or some Southern state during the 60’s. Of all the places where this sort of thing happens, it’s mind-boggling that we are in Portland, Maine. (More...)
Three Days and 25 Spocktails: A Cautionary Tale
Johnnie Royale picked me up from the dental surgery. I felt warm, safe, cradled in the anathesia's loving embrace. The pharmacy downstairs gave me a bottle of Vicodin and a few instructions: take it with food, don't mix with alcohol, don't operate heavy machinery. I put it in my pocket and we left. "Do you want to go home, or do you want to go to a bar?" asked Johnnie. (More...)
I just came across this coolio essay by Pigdog Journal Science Editor binky wedged between two staves in the back corner of the submissions barrel. It's on the origin of the cyberbilly and is definitely de rigeur for any serious student of this fascinating sociological movement. (More...)
All this talk about death, wakes and Moloch recently has, frankly, got me a little worried. What if I'm next to go? I could slip on a wet banana peel and slam my head against an enormous brass statue at almost any time. I'm not planning well enough for this sort of thing. Who will talk for me when this terrible day comes? (More...)
