-----BEGIN PGP SIGNED MESSAGE-----

======================================================================
                                                   JPCERT-PR-2002-0001
                                                             JPCERT/CC

JPCERT/CC $B3hF035MW(B [ 2001$BG/(B10$B7n(B1$BF|(B $B!A(B 2001$BG/(B12$B7n(B31$BF|(B ]

$B=i(B  $BHG(B: 2002-01-23 (Ver.01)
$BH/9TF|(B: 2002-05-09 (Ver.02)
======================================================================

$B!x(B1. $B%$%s%7%G%s%HJs9p(B

  2001$BG/(B10$B7n(B1$BF|$+$i(B2001$BG/(B12$B7n(B31$BF|$^$G$N4V$K(B JPCERT/CC $B$,<uNN$7$?%3%s(B
$B%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$K4X$9$kJs9p$N7o?t$O(B 445$B7o$G$7$?!#(B

  $BCm(B: $B$3$3$K$"$2$??t;z$O!"(BJPCERT/CC $B$,<u$1IU$1$?Js9p$N7o?t$G$9!#=>$C$F!"(B
      $B<B:]$N%"%?%C%/$NH/@87o?t$d!"Ho327o?t$rN`?d$G$-$k$h$&$J?tCM$G$O$"(B
      $B$j$^$;$s!#$^$?N`7?$4$H$N<B:]$NH/@8HfN($r<($9$b$N$G$b$"$j$^$;$s!#(B
      $B0lDj0J>e$N4|4V$KEO$k%"%/%;%9$NMWLs%l%]!<%H$b4^$^$l$k$?$a!"%"%/%;(B
      $B%9$N2s?t$HJs9p7o?t$b0lHL$KBP1~$7$^$;$s!#$^$?!"Js9p85$K$O!"9qFb30(B
      $B$N%5%$%H$,4^$^$l$^$9!#(B


[$B%$%s%7%G%s%HJs9p$NAw?.85$K$h$kJ,N`(B]

  JPCERT/CC $B$,<uNN$7$?%$%s%7%G%s%HJs9p$NAw?.85$r%H%C%W%l%Y%k%I%a%$%s(B 
$B$GJ,N`$7$?$b$N$N$&$A!"7o?t$NB?$$$b$N$O0J2<$NDL$j$G$9!#(B

        .au    162$B7o(B
        .jp     75$B7o(B
        .fr     66$B7o(B
        .edu    31$B7o(B
        .org    15$B7o(B
        .com    13$B7o(B


[$B%$%s%7%G%s%HJs9p$h$jGI@8$7$?DLCNO"Mm(B]

  JPCERT/CC $B$,<uNN$7$?%$%s%7%G%s%HJs9p$KBP$7$F!"(BJPCERT/CC $B$+$i9qFb30$N(B
$B4XO"%5%$%H$KDLCNO"Mm$7$?7o?t$O(B 379$B7o$G$9!#(B


[$B%$%s%7%G%s%HJs9p$N%?%$%WJLJ,N`(B]

I. $B%W%m!<%V!"%9%-%c%s!"$=$NB>IT?3$J%"%/%;%9(B

  JPCERT/CC $B$G$O!"KI8f$K@.8y$7$?%"%?%C%/$d!"%3%s%T%e!<%?(B/$B%5!<%S%9(B/$B<eE@(B
$B$NC5::$r0U?^$7$?%"%/%;%9!"$=$NB>$NIT?3$J%"%/%;%9Ey!"%7%9%F%`$N%"%/%;%9(B
$B8"$K$*$$$F1F6A$,@8$8$J$$!"$^$?$O!"L5;k$G$-$k%"%/%;%9$K$D$$$F(B 393$B7o$NJs(B
$B9p$r<uNN$7$F$$$^$9!#(B

  $B$3$N$h$&$JC5::$O!"<+F02=%D!<%k$rMQ$$$F9-HO0O$KEO$kG$0U$N%[%9%H$KBP$7(B
$B$F9T$J$o$l$F$$$^$9!#%;%-%e%j%F%#>e$N<eE@$rJ|CV$7$F$$$k$H!"<eE@$NB8:_$r(B
$B8!=P$5$l!"%[%9%H$X$N?/F~Ey$5$^$6$^$J%"%?%C%/$r<u$1$k2DG=@-$,$"$j$^$9!#(B
$B;29MJ88%(B [1] [2] [3] [4] [5] [6] $B$r$4;2>H$/$@$5$$!#(B

  $B:#2s<uNN$7$?Js9p$K4^$^$l$k%"%/%;%9$N$&$A!"%]!<%H$4$H$NJs9p7o?t$,(B
$BB?$$$b$N$r0J2<$KNs5s$7$^$9!#(B

         111 (sunrpc)      63$B7o(B (*1)
         27374             49$B7o(B (*2)
         12345             42$B7o(B (*3)
         21  (ftp)         40$B7o(B
         80  (http)        39$B7o(B (*4)
         53  (domain)      32$B7o(B
         137 (netbios-ns)  31$B7o(B
         515 (printer)     29$B7o(B
         22  (ssh)         23$B7o(B
         139 (netbios-ssn) 20$B7o(B
         23  (telnet)      14$B7o(B

      (*1) $BDL>o!"$3$N%"%/%;%9$OB>$N(B RPC $B%5!<%S%9$KBP$9$k%"%/%;%9$NA0CJ(B
      $B3,$H$7$F9T$J$o$l$^$9!#$3$N9`L\$KJ,N`$5$l$F$$$k%"%/%;%9$K$D$$$F$O!"(B
      $BB>$N(B RPC $B%5!<%S%9$X$N%"%/%;%9$r0U?^$7$?%"%/%;%9$G$"$k2DG=@-$b$"(B
      $B$j$^$9!#;29MJ88%(B [7] $B$r$4;2>H$/$@$5$$!#(B

      (*2) (*3) $BDL>o!"$3$N%"%/%;%9$O%3%s%T%e!<%?%&%#%k%9$d%o!<%`$K$h$C(B
      $B$F@_CV$5$l$?%P%C%/%I%"$+$i$N?/F~$N;n$_$H9M$($i$l$^$9!#;29MJ88%(B 
      [8] [9] $B$r$4;2>H$/$@$5$$!#(B

      (*4) http://$B%[%9%HL>(B/cgi-bin/... $B$H$$$&(B URL $B$X$N%"%/%;%9$,Js9p$5(B
      $B$l$F$$$^$9!#;29MJ88%(B [10] [11] [12] [13] [14] [15] $B$r$4;2>H$/$@(B
      $B$5$$!#(B

      $B$^$?!"%o!<%`$K$h$k46@w$N;n$_$d%o!<%`$J$I$K$h$C$F@_CV$5$l$?%P%C%/(B
      $B%I%"$+$i$N?/F~$N;n$_$H;W$o$l$k%"%/%;%9$bJs9p$5$l$F$$$^$9!#;29MJ8(B
      $B8%(B [16] [17] $B$r$4;2>H$/$@$5$$!#$^$?0J2<$N(B URL $B$b$4;2>H$/$@$5$$!#(B

        Microsoft IIS $B$N@H<e@-$r;H$C$FEAGE$9$k%o!<%`(B
        http://www.jpcert.or.jp/at/2001/at010018.txt

        Microsoft IIS $B$N@H<e@-$r;H$C$FEAGE$9$k%o!<%`(B "Code Red II"
        http://www.jpcert.or.jp/at/2001/at010020.txt

        80$BHV%]!<%H(B (HTTP) $B$X$N%9%-%c%s$NA}2C$K4X$9$kCm0U4-5/(B
        http://www.jpcert.or.jp/at/2001/at010023.txt


II. $B%5!<%P%W%m%0%i%`$NIT@5Cf7Q(B

  JPCERT/CC $B$G$O!"$J$j$9$^$7$J$I$NL\E*$G!"EE;R%a!<%kG[Aw%W%m%0%i%`$d%W(B
$B%m%-%7%5!<%P$J$I$rIT@5Cf7Q$K;HMQ$7$?%"%/%;%9$K$D$$$F(B 3$B7o$NJs9p$r<uNN$7(B
$B$F$$$^$9!#(B

  $B$3$N967b$r<u$1$?%[%9%H$O!"BgNL$NEE;R%a!<%k$NCf7QCOE@$H$7$F7W;;5!;q8;(B
$B$rMxMQ$5$l$k$3$H$,$"$j$^$9!#EE;R%a!<%k$NCf7Q$K$D$$$F$O!";29MJ88%(B [18] 
$B$r$4;2>H$/$@$5$$!#$^$?!"7G<(HD$X$N=q$-9~$_$d(B Web $B%5!<%P$X$N%"%/%;%9$J(B
$B$I$,!"$"$?$+$b$=$N%[%9%H$+$i9T$J$o$l$?$h$&$K8+$;$+$1$i$l$k$3$H$,$"$j$^(B
$B$9!#(B


III. $BAw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$NG[Aw(B

  JPCERT/CC $B$G$O!"Aw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$NG[Aw$K$D$$$F(B 9$B7o$NJs(B
$B9p$r<uNN$7$F$$$^$9!#(B

  $BEE;R%a!<%k$NAw?.%X%C%@$r:>>N$7$F!"%a!<%k$NCf7Q$K$O4XM?$7$F$$$J$$Bh;0(B
$B$N%5%$%H$X$N%a!<%kG[Aw$,9T$J$o$l$F$$$^$9!#$3$N7k2L!"B?NL$N%(%i!<%a!<%k(B
$B$,:n@.$5$l!"7W;;5!;q8;$d%M%C%H%o!<%/NN0h$,>CHq$5$l$k2DG=@-$,$"$j$^$9!#(B
$B$^$?!"$3$l$i$N%a!<%k$NH/?.85$G$"$k$H$$$&5?$$$r$b$?$l$k2DG=@-$,$"$j$^$9!#(B
$BAw?.%X%C%@$r:>>N$7$?EE;R%a!<%k$NCf7Q$K$D$$$F$O;29MJ88%(B [19] $B$r$4;2>H$/(B
$B$@$5$$!#(B


IV. $B%7%9%F%`$X$N?/F~(B

  JPCERT/CC $B$G$O!"4IM}<T8"8B$NEpMQ$,G'$a$i$l$k>l9g$r4^$`%7%9%F%`$X$N?/(B
$BF~$K$D$$$F(B 11$B7o$NJs9p$r<uNN$7$F$$$^$9!#?/F~$r<u$1$?>l9g$NBP1~$K$D$$$F(B
$B$O!"!V%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$X$NBP1~!W(B $B$N(B V. $B$*$h$S(B VI. 
$B$r;2>H$7$F$/$@$5$$!#(B

        $B%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$X$NBP1~(B
        http://www.jpcert.or.jp/ed/2001/ed010004.txt

  $B:#2s<uNN$7$?Js9p$K$*$$$F!"?/F~$N860x$H$7$F;XE&$5$l$F$$$k<eE@$N$&$A!"(B
$B<g$J$b$N$r0J2<$K>R2p$7$^$9!#(B

      SSH $B%5!<%P%W%m%0%i%`$K4^$^$l$k<eE@(B [20] [21] [22]

      Microsoft IIS $B$K4^$^$l$k<eE@(B [23] [24] [25]

        * Microsoft IIS $B$K4^$^$l$k<eE@$K$D$$$F$O0J2<$N(B URL $B$b$4;2>H$/(B
          $B$@$5$$!#(B

          Microsoft IIS $B%P!<%8%g%s(B5.0 $B$N%;%-%e%j%F%#>e$NLdBj$K$D$$$F(B
          http://www.jpcert.or.jp/at/2001/at010008.txt

          Microsoft IIS Index Server $B$K4^$^$l$k@H<e@-$K4X$9$kCm0U4-5/(B
          http://www.jpcert.or.jp/at/2001/at010010.txt


  $B:#2s<uNN$7$?Js9p$K$*$$$F!"?/F~8e$K9T$J$o$l$?A`:n$H$7$F;XE&$5$l$F$$$k(B
$B9T0Y$N$&$A!"<g$J$b$N$r0J2<$K>R2p$7$^$9!#(B

    (1) $BEv3:%5%$%H$r7PM3$7$?B>%5%$%H$X$N%"%/%;%9(B ($B%o!<%`$r4^$`(B)

    (2) $B%7%9%F%`$N2~$6$s(B ($B%U%!%$%k$NCV$-49$(!"%m%0$N>C5n!"(BWeb$B%Z!<%8$N(B
        $B2~$6$s$J$I(B)

    (3) DDoS ($BJ,;67?%5!<%S%91?MQK832(B) $B%D!<%k$N@_CV(B

    (4) $B%5!<%P%W%m%0%i%`$N%$%s%9%H!<%k(B ($B%P%C%/%I%"$N@_CV$J$I(B)

    (5) $B%M%C%H%o!<%/$NK5<u(B

  $B:#2s<uNN$7$?Js9p$K$*$$$F!"?/F~$KMQ$$$i$l$?$H;W$o$l$k%o!<%`$N$&$A!"<g(B
$B$J$b$N$r0J2<$K>R2p$7$^$9!#(B

      CodeRed $B%o!<%`(B [16]

        * CodeRed $B%o!<%`$K$D$$$F$O0J2<$N(B URL $B$b$4;2>H$/$@$5$$!#(B

          Microsoft IIS $B$N@H<e@-$r;H$C$FEAGE$9$k%o!<%`(B
          http://www.jpcert.or.jp/at/2001/at010018.txt

          Microsoft IIS $B$N@H<e@-$r;H$C$FEAGE$9$k%o!<%`(B "Code Red II"
          http://www.jpcert.or.jp/at/2001/at010020.txt

      W32/Nimda $B%o!<%`(B [17]

        * W32/Nimda $B%o!<%`$K$D$$$F$O0J2<$N(B URL $B$b$4;2>H$/$@$5$$!#(B

          80$BHV%]!<%H(B (HTTP) $B$X$N%9%-%c%s$NA}2C$K4X$9$kCm0U4-5/(B
          http://www.jpcert.or.jp/at/2001/at010023.txt


V. $B%5!<%S%91?MQK832$K$D$J$,$k967b(B

  JPCERT/CC $B$G$O!"%5!<%S%91?MQK832$K$D$J$,$k%"%/%;%9$K$D$$$F(B 9$B7o$NJs9p(B
$B$r<uNN$7$F$$$^$9!#$3$l$O!"BgNL$N%Q%1%C%H$rAw?.$7$F%M%C%H%o!<%/;q8;$rO2(B
$BHq$5$;$?$j!"%5!<%P%W%m%0%i%`$N<eE@$r0-MQ$7$F%5!<%S%9<+BN$rDd;_$5$;!"7k(B
$B2L$H$7$F%5%$%H$N%M%C%H%o!<%/1?MQ$d%[%9%H$N%5!<%S%91?MQ$rK832$9$k$b$N$G(B
$B$9!#;29MJ88%(B [26] [27] [28] [29] [30] [31] [32] [33] [34] [35] $B$r$4;2(B
$B>H$/$@$5$$!#$^$?!";29MJ88%(B [6] $B$b$4;2>H$/$@$5$$!#$3$N%"%/%;%9$X$NBP1~(B
$B$K$D$$$F$O!"0J2<$N(B URL $B$r$4;2>H$/$@$5$$!#(B

        $B%5!<%S%91?MQK832967b$KBP$9$kKI1R(B
        http://www.jpcert.or.jp/ed/2001/ed010005.txt

  $B$^$?!"46@w$rBgNL$K;n$_$k%o!<%`$K$h$j1?MQK832$,9T$J$o$l$?$H$NJs9p$b<u(B
$BNN$7$F$$$^$9!#;29MJ88%(B [16] [17] $B$r$4;2>H$/$@$5$$!#0J2<$N(B URL $B$b$4;2>H(B
$B$/$@$5$$!#(B

        Microsoft IIS $B$N@H<e@-$r;H$C$FEAGE$9$k%o!<%`(B
        http://www.jpcert.or.jp/at/2001/at010018.txt

        Microsoft IIS $B$N@H<e@-$r;H$C$FEAGE$9$k%o!<%`(B "Code Red II"
        http://www.jpcert.or.jp/at/2001/at010020.txt

        80$BHV%]!<%H(B (HTTP) $B$X$N%9%-%c%s$NA}2C$K4X$9$kCm0U4-5/(B
        http://www.jpcert.or.jp/at/2001/at010023.txt


VI. $B$=$NB>(B

  JPCERT/CC $B$G$O!">e5-(B I. $B$+$i(B V. $B$K4^$^$l$J$$%$%s%7%G%s%H(B ($B%3%s%T%e!<(B
$B%?%&%#%k%9$d(B SPAM $B%a!<%k$N<u?.$J$I(B) $B$K$D$$$F(B 45$B7o$NJs9p$r<uNN$7$F$$$^(B
$B$9!#(B



$B!x(B2. $B8x3+J8=q(B

  2001$BG/(B10$B7n(B1$BF|$+$i(B2001$BG/(B12$B7n(B31$BF|$^$G$N4V$K(B JPCERT/CC $B$,H/9T$7$?J8=q$O!"(B
$BCm0U4-5/(B 1$B7o!"(BJPCERT/CC $B%l%]!<%H(B 13$B7o!"5;=Q%a%b(B 6$B7o(B ($B99?7(B)$B!"5Z$SBh(B3$B;M(B
$BH>4|$N3hF035MW$G$9!#>\:Y$O0J2<$NDL$j$G$9!#(B

I. $BCm0U4-5/(B 1$B7o(B

  http://www.jpcert.or.jp/at/

  2001-10-09 CDE ToolTalk $B$K4^$^$l$k@H<e@-$K4X$9$kCm0U4-5/(B


II. JPCERT/CC $B%l%]!<%H(B 13$B7o(B

  http://www.jpcert.or.jp/wr/

JPCERT/CC $B%l%]!<%HFb$G07$C$?%;%-%e%j%F%#4XO">pJs$N9`L\?t$O!"9g7W$7$F(B 
36$B7o$G$9!#(B


III. $B5;=Q%a%b(B 6$B7o(B

  http://www.jpcert.or.jp/ed/

  2001-12-27 $BEE;R%a!<%kG[Aw%W%m%0%i%`$NIT@5MxMQ(B ($BM=4|$7$J$$Cf7Q(B) (Version 5)
  2001-12-27 sendmail $B%P!<%8%g%s%"%C%W%^%K%e%"%k(B (Version 11)
  2001-12-27 $B4X78%5%$%H$H$N>pJs8r49(B (Version 3)
  2001-12-27 $B%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$X$NBP1~(B (Version 3)
  2001-12-27 $B%5!<%S%91?MQK832967b$KBP$9$kKI1R(B (Version 3)
  2001-12-27 Web $B%Z!<%8$N2~cb$KBP$9$kKI1R(B (Version 4)


IV. $B3hF035MW(B

  http://www.jpcert.or.jp/pr/

  2001-10-23 JPCERT/CC $B3hF035MW(B [ 2001$BG/(B7$B7n(B1$BF|(B $B!A(B 2001$BG/(B9$B7n(B30$BF|(B ]
    http://www.jpcert.or.jp/pr/2001/pr010006.txt



$B!x(B3. $B<g:E%$%Y%s%H(B

  2001$BG/(B10$B7n(B1$BF|$+$i(B2001$BG/(B12$B7n(B31$BF|$^$G$N4V$K(B JPCERT/CC $B$,<g:E$7$?%$%Y%s(B
$B%H$O(B Internet Week 2001 ($B%Q%7%U%#%32#IM(B 12/3$B!A(B12/7) $B$K$*$1$k0J2<$N%W%m(B
$B%0%i%`$G$9!#;29MJ88%(B [36] $B$r$4;2>H$/$@$5$$!#(B

  (1) $B%a%$%s%W%m%0%i%`!V(BJPCERT/CC Seminar 2001$B!W(B
      12/4($B2P(B) 14:00$B!A(B17:00 $B>.%[!<%k(B

      $BBh0lIt!V%$%s%?!<%M%C%H%;%-%e%j%F%#$N:G?7;v>p!W(B
      $BBhFsIt!V>o;~@\B3;~Be$N%;%-%e%j%F%#!W(B


  (2) BOF$B!V%V%m!<%I%P%s%I;~Be$N%;%-%e%j%F%#$r9M$($k(B $B!A(BCode Red$B$N6571!A!W(B 
      12/4($B2P(B) 18:00$B!A(B20:30 $B>.%[!<%k(B

__________

Appendix. $B;29MJ88%(B

[1] IN-98.02: New Tools Used For Widespread Scans

    http://www.cert.org/incident_notes/IN-98.02.html

[2] IN-98.04: Advanced Scanning

    http://www.cert.org/incident_notes/IN-98.04.html

[3] IN-98.05: Probes with Spoofed IP Addresses

    http://www.cert.org/incident_notes/IN-98-05.html

[4] IN-98.06: Automated Scanning and Exploitation

    http://www.cert.org/incident_notes/IN-98-06.html

[5] IN-99-01: "sscan" Scanning Tool

    http://www.cert.org/incident_notes/IN-99-01.html

[6] Packet Filtering for Firewall Systems

    http://www.cert.org/tech_tips/packet_filtering.html

[7] IN-99-04: Similar Attacks Using Various RPC Services

    http://www.cert.org/incident_notes/IN-99-04.html

[8] CA-1999-02 Trojan Horses

    http://www.cert.org/advisories/CA-1999-02.html

[9] IN-2001-07: W32/Leaves: Exploitation of previously installed SubSeven Trojan Horses

    http://www.cert.org/incident_notes/IN-2001-07.html

[10] CA-1996-06 Vulnerability in NCSA/Apache CGI example code

    http://www.cert.org/advisories/CA-1996-06.html

  ($BF|K\8lLu(B)
    http://www.jpcert.or.jp/tr/cert_advisories/CA-96.06.txt

[11] CA-1996-11 Interpreters in CGI bin Directories

    http://www.cert.org/advisories/CA-1996-11.html

  ($BF|K\8lLu(B)
    http://www.jpcert.or.jp/tr/cert_advisories/CA-96.11.txt

[12] CA-1997-07 Vulnerability in the httpd nph-test-cgi script

    http://www.cert.org/advisories/CA-1997-07.html

[13] CA-1997-12 Vulnerability in webdist.cgi

    http://www.cert.org/advisories/CA-1997-12.html

[14] CA-1997-24 Buffer Overrun Vulnerability in Count.cgi cgi-bin Program

    http://www.cert.org/advisories/CA-1997-24.html

[15] How To Remove Meta-characters From User-Supplied Data In CGI Scripts

    http://www.cert.org/tech_tips/cgi_metacharacters.html

[16] CA-2001-19 "Code Red" Worm Exploiting Buffer Overflow in IIS Indexing Service DLL

    http://www.cert.org/advisories/CA-2001-19.html

[17] CA-2001-26 Nimda Worm

    http://www.cert.org/advisories/CA-2001-26.html

[18] Email Bombing and Spamming

    http://www.cert.org/tech_tips/email_bombing_spamming.html

[19] Spoofed/Forged Email

    http://www.cert.org/tech_tips/email_spoofing.html

[20] CA-2001-35 Recent Activity Against Secure Shell Daemons

    http://www.cert.org/advisories/CA-2001-35.html

[21] IN-2001-12: Exploitation of vulnerability in SSH1 CRC-32 compensation attack detector

    http://www.cert.org/incident_notes/IN-2001-12.html

[22] CIACTech02-001 Understanding the SSH CRC32 Exploit

    http://www.ciac.org/ciac/techbull/CIACTech02-001.shtml

[23] CA-2001-10 Buffer Overflow Vulnerability in Microsoft IIS 5.0

    http://www.cert.org/advisories/CA-2001-10.html

[24] CA-2001-12 Superfluous Decoding Vulnerability in IIS

    http://www.cert.org/advisories/CA-2001-12.html

[25] CA-2001-13 Buffer Overflow In IIS Indexing Service DLL

    http://www.cert.org/advisories/CA-2001-13.html

[26] Denial of Service Attacks

    http://www.cert.org/tech_tips/denial_of_service.html

[27] CA-1996-01 UDP Port Denial-of-Service Attack

    http://www.cert.org/advisories/CA-1996-01.html

  ($BF|K\8lLu(B)
    http://www.jpcert.or.jp/tr/cert_advisories/CA-96.01.txt

[28] CA-1996-21 TCP SYN Flooding and IP Spoofing Attacks

    http://www.cert.org/advisories/CA-1996-21.html

[29] CA-1996-26 Denial-of-Service Attack via ping

    http://www.cert.org/advisories/CA-1996-26.html

[30] CA-1997-28 IP Denial-of-Service Attacks

    http://www.cert.org/advisories/CA-1997-28.html

[31] CA-1998-01 Smurf IP Denial-of-Service Attacks

    http://www.cert.org/advisories/CA-1998-01.html

[32] CA-1998-13 Vulnerability in Certain TCP/IP Implementations

    http://www.cert.org/advisories/CA-1998-13.html

[33] CA-1999-17 Denial-of-Service Tools

    http://www.cert.org/advisories/CA-1999-17.html

[34] CA-2000-01 Denial-of-Service Developments

    http://www.cert.org/advisories/CA-2000-01.html

[35] IN-99-07: Distributed Denial of Service Tools

    http://www.cert.org/incident_notes/IN-99-07.html

[36] Internet Week 2001

    http://internetweek.jp/

__________

$B!c(BJPCERT/CC $B$+$i$N$*CN$i$;$H$*4j$$!d(B

  $BK\J8=q$G2r@b$7$?%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$b4^$a!"%$%s%?!<(B
$B%M%C%H>e$G0z$-5/$3$5$l$k$5$^$6$^$J%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H(B
$B$K4X$9$k>pJs$,$"$j$^$7$?$i!"(Binfo@jpcert.or.jp $B$^$G$4Ds6!$/$@$5$$$^$9$h(B
$B$&$*4j$$$7$^$9!#Js9pMM<0$K4X$7$F$O0J2<$N(B URL $B$r$4Mw$/$@$5$$(B

    http://www.jpcert.or.jp/form/

$BJs9pMM<0$K$45-:\$N$&$(!"(B

    info@jpcert.or.jp

$B$^$G$*Aw$j$/$@$5$$!#(B

  JPCERT/CC $B$KD:$$$?Js9p$O!"Js9p<T$NN;2r$J$7$K!"$=$N$^$^B>AH?%Ey$K3+<((B
$B$9$k$3$H$O$"$j$^$;$s!#(BJPCERT/CC $B$NAH?%35MW$K$D$-$^$7$F$O!"(B

    http://www.jpcert.or.jp/

$B$r$4;2>H$/$@$5$$!#(B

  JPCERT/CC $B$G$O!"%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$K4X$9$k>pJs$r?W(B
$BB.$K$4Ds6!$9$k$?$a$K!"%a!<%j%s%0%j%9%H$r3+@_$7$F$$$^$9!#EPO?$NJ}K!Ey!"(B
$B>\$7$/$O!"(B

    http://www.jpcert.or.jp/announce.html

$B$r$4;2>H$/$@$5$$!#(B

__________

$BCm(B: JPCERT/CC $B$N3hF0$O!"FCDj$N8D?M$dAH?%$NMx1W$rJ]>c$9$k$3$H$rL\E*$H$7(B
$B$?$b$N$G$O$"$j$^$;$s!#8DJL$NLdBj$K4X$9$k$*Ld$$9g$o$;Ey$KBP$7$FI,$:$*Ez(B
$B$($G$-$k$H$O8B$i$J$$$3$H$r$"$i$+$8$a$4N;>5$/$@$5$$!#$^$?!"K\7o$K4X$9$k(B
$B$b$N$b4^$a!"(BJPCERT/CC $B$X$N$*Ld$$9g$o$;Ey$,A}2C$9$k$3$H$,M=A[$5$l$k$?$a!"(B
$B$*Ez$($G$-$k>l9g$G$b$42sEz$,CY$l$k2DG=@-$,$"$k$3$H$r2?B4$4>5CN$*$-$/$@(B
$B$5$$!#(B

$BCm(B: $B$3$NJ8=q$O!"%3%s%T%e!<%?%;%-%e%j%F%#%$%s%7%G%s%H$K4X$9$k0lHLE*$J>p(B
$BJsDs6!$rL\E*$H$9$k$b$N$G$"$j!"FCDj$N8D?M$dAH?%$KBP$9$k!"8DJL$N%3%s%5%k(B
$B%F%#%s%0$rL\E*$H$7$?$b$N$G$O$"$j$^$;$s!#$^$?(B JPCERT/CC $B$O!"$3$NJ8=q$K(B
$B5-:\$5$l$?>pJs$NFbMF$,@53N$G$"$k$3$H$KEX$a$F$*$j$^$9$,!"@53N@-$r4^$a0l(B
$B@Z$NIJ<A$K$D$$$F$3$l$rJ]>Z$9$k$b$N$G$O$"$j$^$;$s!#$3$NJ8=q$K5-:\$5$l$?(B
$B>pJs$K4p$E$$$F!"5.J}$"$k$$$O5.AH?%$,$H$i$l$k9TF0(B / $B$"$k$$$O$H$i$l$J$+$C(B
$B$?9TF0$K$h$C$F0z$-5/$3$5$l$k7k2L$KBP$7$F!"(BJPCERT/CC $B$O2?$iJ]>c$rM?$($k(B
$B$b$N$G$O$"$j$^$;$s!#(B
__________

2002 (c) JPCERT/CC

  $B$3$NJ8=q$rE>:\$9$k:]$K$O!"A4J8$rE>:\$7$F$/$@$5$$!#$^$?!":G?7>pJs$K$D(B
$B$$$F$O(B JPCERT/CC $B$N(B Web $B%5%$%H(B

        http://www.jpcert.or.jp/

$B$r;2>H$7$F$/$@$5$$!#(B

  JPCERT/CC $B$N(B PGP $B8x3+80$O0J2<$N(B URL $B$+$iF~<j$G$-$^$9!#(B

        http://www.jpcert.or.jp/jpcert.asc
__________

$B2~D{MzNr(B

2002-05-09  $B;29MJ88%$N;2>HHV9f$N=$@5(B
2002-01-23  $B=iHG(B (JPCERT-PR-2002-0001)

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQCVAwUBPNnEvYx1ay4slNTtAQF+HgP+M6TDMlNL3ycEH7dLb3QVmHl9Si6kv1N0
xxUq6ljQGm26Qu46ZZt8+p0k1bN6dmlkWoyVExU2kQVaVOUNZUVehW6LYveqf5AN
Gb0LN5IFbw8PZROnTvOcacxMzMpClumVPaAWA1nkRP25uJ3iO4cu1x3nIq81r8CD
5KegmFOM0z8=
=AKEQ
-----END PGP SIGNATURE-----