Good worms back on the agenda

Good worms back on the agenda
Robert Lemos, SecurityFocus 2006-01-27

ARLINGTON, Virginia -- A researcher has reopened the subject of beneficial worms, arguing that the capabilities of self-spreading code could perform better penetration testing inside networks, turning vulnerable systems into distributed scanners.

Expand all | Post comment

Good worms back on the agenda 2006-01-27
Anonymous

Good worms back on the agenda 2006-01-28
Anonymous

Good worms back on the agenda 2006-01-29
Alexandre Sieira

"Because the worms would be limited to spreading in a specific company's network, they would be completely legal, said Aitel."

Not true. Don't forget that many systems not owned by a company may be located in its network.

Consultants' laptops, for example, bring a serious problem. They either cannot be whitelisted due to DHCP, so all desktop/laptop subnets must be removed from the testing and really diminishes its effectivess.

Or, if the company has 802.1x or other measures that allow for a clear separation, still a legal framework must be set. Otherwise, these likely sources of infestation will also have to be excluded from the test, once again diminshing its effectiveness.

It's a very impractical idea, no matter how you look at it.

b) Even

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11373/33019#33019

Good worms back on the agenda 2006-01-29
Anonymous

Make it an RFC! 2006-01-30
assurbanipal

Good worms back on the agenda 2006-01-30
Anonymous (1 replies)

Re: Good worms back on the agenda 2006-01-31
Anonymous

Good worms back on the agenda 2006-01-30
Lucas C. Ferreira (1 replies)

Re: Good worms back on the agenda 2006-02-03
Anonymous (1 replies)

Re: Re: Good worms back on the agenda 2006-02-10
Anonymous

Already available 2006-01-30
Anonymous