l i n u x - u s e r s - g r o u p - o f - d a v i s
Next Meeting:
July 7: Social gathering
Next Installfest:
Latest News:
Jun. 14: June LUGOD meeting cancelled
Page last updated:
2003 Aug 20 16:35

The following is an archive of a post made to our 'vox mailing list' by one of its subscribers.

Report this post as spam:

(Enter your email address)
Re: [vox] [OT] Slammer knocked out nuclear plant safety monitoring system
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [vox] [OT] Slammer knocked out nuclear plant safety monitoring system

On Wed, Aug 20, 2003 at 14:20:03PM -0700, Bill Kendrick wrote:
> On the heels of last week's east coast black-out and MS Blaster worm
> comes an interesting news story about how the Slammer worm took out part
> of an internal network at a nuclear power plant in Ohio, back in January.
>   http://securityfocus.com/news/6767
>     "The Slammer worm penetrated a private computer network at Ohio's
>     Davis-Besse nuclear power plant in January and disabled a safety
>     monitoring system for nearly five hours, despite a belief by plant
>     personnel that the network was protected by a firewall... According to
>     the reports, plant computer engineers hadn't installed the patch for the
>     MS-SQL vulnerability that Slammer exploited. In fact, they didn't know
>     there was a patch, which Microsoft released six months before Slammer
>     struck."
> This was submitted to me for addition to the "Reasons to Avoid Microsoft"
> page.  I also decied it was worthy of submitting to Slashdot.
> (*cough* Karma whore *cough*)

I just read this article this morning...The most interesting part I
though was they assumed they were safe because they had a firewall, but
it came in through a non-firewalled entrance. They had an T1 going from
an outside contrator's site to a point on their network that was behind
their firewall. The lesson to be learned here is, just because you trust
someone else, doesn't mean you can trust their network. :)
vox mailing list

LUGOD Group on LinkedIn
Sign up for LUGOD event announcements
Your email address:
LUGOD Group on Facebook
'Like' LUGOD on Facebook:

Hosting provided by:
Sunset Systems
Sunset Systems offers preconfigured Linux systems, remote system administration and custom software development.

LUGOD: Linux Users' Group of Davis
PO Box 2082, Davis, CA 95617
Contact Us

LUGOD is a 501(c)7 non-profit organization
based in Davis, California
and serving the Sacramento area.
"Linux" is a trademark of Linus Torvalds.

Sponsored in part by:
Appahost Applications
For a significant contribution towards our projector, and a generous donation to allow us to continue meeting at the Davis Library.