Re: [NANOG] IOS rootkits

• From: Gadi Evron
• Date: Sun May 18 10:50:37 2008

• List-archive: <http://mailman.nanog.org/pipermail/nanog>
• List-help: <mailto:[email protected]?subject=help>
• List-id: North American Network Operators Group <nanog.nanog.org>
• List-post: <mailto:[email protected]>
• List-subscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=subscribe>
• List-unsubscribe: <http://mailman.nanog.org/mailman/listinfo/nanog>, <mailto:[email protected]?subject=unsubscribe>

On Sun, 18 May 2008, Suresh Ramasubramanian wrote:
> Let's put it this way.
>
> 1. Yes there's nothing to patch, as such
>
> 2. It can be prevented by what's widely regarded as BCP on router
> security, and has been covered at *nog, in cisco training material,
> etc etc for quite some time now.
>
> I am much less concerned about security conferences discussing this
> than about the (highly uninformed) publicity that accompanies these
> conferences.
>
> Yes, this sounds a lot more like the bugtraq v/s full disclosure
> discussion than I'm comfortable with, but I still think this could
> have been handled a lot better.

It's easy to blame researchers for doing their studies, but the fact is, 
if one whitehat researcher has done work on it, it is already exploited in 
the wild.

 	Gadi.

>
> --srs
>
> On Sun, May 18, 2008 at 7:27 PM, Dragos Ruiu <[email protected]> wrote:
>
>> Bullshit.
>> There is nothing to patch.
>> It needs to be presented at conferences, exactly because people will play
>> ostrich and stick their heads in the sand and pretend it can't happen to
>> them, and do nothing about it until someone shows them, "yes it can happen"
>> and here is how....
>> Which is exactly why we've accepted this talk. We've all known this is a
>> possibility for years, but I haven't seen significant motion forward on this
>> until we announced this talk. So in a fashion, this has already helped make
>> people more realistic about their infrastructure devices. And the
>> discussions, and idea interchange that will happen between the smart folks
>> at the conference will undoubtedly usher forth other related issues and
>> creative solutions.  Problems don't get fixed until you talk about them.
>> cheers,
>> --dr
>
> _______________________________________________
> NANOG mailing list
> [email protected]
> http://mailman.nanog.org/mailman/listinfo/nanog
>

_______________________________________________
NANOG mailing list
[email protected]
http://mailman.nanog.org/mailman/listinfo/nanog

• References:
  • Re: [NANOG] IOS rootkits Paul Ferguson
  • Re: [NANOG] IOS rootkits Paul Wall
  • Re: [NANOG] IOS rootkits Matthew Moyle-Croft
  • Re: [NANOG] IOS rootkits Suresh Ramasubramanian
  • Re: [NANOG] IOS rootkits Dragos Ruiu
  • Re: [NANOG] IOS rootkits Suresh Ramasubramanian

• Prev by Date: Re: [NANOG] IOS rootkits
• Next by Date: Re: [NANOG] IOS rootkits
• Date Index
• Thread Index
• Author Index
• Historical