From: Holger Dyroff <hd@suse.de> To: <suse-announce-usa@suse.com> Subject: [suse-announce-usa] SuSE Linux Firewall on CD stops the Nimda-Worm! Date: Thu, 20 Sep 2001 00:39:58 -0700 (PDT) Dear SuSE Linux customers and friends, the "Nimda" worm, which is attacking computers today, concerns computer users worldwide. Not only does this virus spread itself from infected E-Mails, but it can also infect computers that are surfing the web and browse to infected web servers. Nimda infects web servers that are running Microsofts Internet Information Server (IIS). It inserts a JavaScript Code with the name "readme.eml". This code takes full advantage of some known security holes in IIS. As soon as the web surfer visits one of the infected sites, the browser downloads the infected file. SuSE Linux Firewall on CD, which was just introduced on the market, is capable of protecting your network from the Nimda worm. The Squid proxy server, one of the open source components of the SuSE Firewall on CD, can be configured to block files such as the one one in the Nimda worm, ie ".eml" and ".nws". Surfers trying to access infected sites will not infect there own IT environments. Additional information about the SuSE Firewall on CD can be found here http://www.suse.com/us/products/bizprod/SuSE_Linux_Firewall/index.html Your SuSE Team! PS: For everybody who is waiting for his SuSE Linux Evaluation Version: We got them on stock this week and we will ship them as soon as possible! +-------------------------------------------------------------------------+ Holger Dyroff, SuSE Inc., 580 Second Street, Oakland, CA 94607 USA E-Mail: hd@suse.de Voice: +1 510 628 3380 ext 5024 FAX: +1 510 628 3381 http://www.suse.com --------------------------------------------------------------------- To unsubscribe, e-mail: suse-announce-usa-unsubscribe@suse.com For additional commands, e-mail: suse-announce-usa-help@suse.com