North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Re: [NANOG] IOS rootkits

  • From: Paul Ferguson
  • Date: Sat May 17 00:00:57 2008

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- -- Dragos Ruiu <[email protected]> wrote:

>The question this presentation begs for me... is how many of the folks  
>on this list do integrity checking on their routers?
>
>You can no longer say this isn't necessary :-).
>
>I know FX and a few others are working on toolsets for this...
>
>I'll probably have other comments after I see the presentation.
>This development has all sort of implications for binary signing  
>requirements, etc...

Yep -- I'd say just wait for the presentation (assuming Cisco
doesn't go after this guy like they did Mike Lynn) and then
determine the level of seriousness.

It would appear to have people very nervous, however. Including
Cisco. It will be interesting to see what develops.

- - ferg

-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)

wj8DBQFILlgzq1pz9mNUZTMRAtmoAKC3bQLSqJzFDZklPMfdnkBX7fyccwCeN5mc
K1QQ9JnTqLmSfcNuj5JZ6Z8=
=W5F0
-----END PGP SIGNATURE-----


--
"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet
 fergdawg(at)netzero.net
 ferg's tech blog: http://fergdawg.blogspot.com/


_______________________________________________
NANOG mailing list
[email protected]
http://mailman.nanog.org/mailman/listinfo/nanog