[104513] in North American Network Operators' Group
Re: [NANOG] IOS rootkits
daemon@ATHENA.MIT.EDU (Paul Ferguson)
Sat May 17 00:01:02 2008
From: "Paul Ferguson" <fergdawg@netzero.net>
Date: Sat, 17 May 2008 04:00:00 GMT
To: dr@kyx.net
Cc: fx@recurity-labs.com, topo@coresecurity.com, ivan.arce@coresecurity.com,
nanog@merit.edu
Errors-To: nanog-bounces@nanog.org
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -- Dragos Ruiu <dr@kyx.net> wrote:
>The question this presentation begs for me... is how many of the folks
>on this list do integrity checking on their routers?
>
>You can no longer say this isn't necessary :-).
>
>I know FX and a few others are working on toolsets for this...
>
>I'll probably have other comments after I see the presentation.
>This development has all sort of implications for binary signing
>requirements, etc...
Yep -- I'd say just wait for the presentation (assuming Cisco
doesn't go after this guy like they did Mike Lynn) and then
determine the level of seriousness.
It would appear to have people very nervous, however. Including
Cisco. It will be interesting to see what develops.
- - ferg
-----BEGIN PGP SIGNATURE-----
Version: PGP Desktop 9.6.3 (Build 3017)
wj8DBQFILlgzq1pz9mNUZTMRAtmoAKC3bQLSqJzFDZklPMfdnkBX7fyccwCeN5mc
K1QQ9JnTqLmSfcNuj5JZ6Z8=
=W5F0
-----END PGP SIGNATURE-----
--
"Fergie", a.k.a. Paul Ferguson
Engineering Architecture for the Internet
fergdawg(at)netzero.net
ferg's tech blog: http://fergdawg.blogspot.com/
_______________________________________________
NANOG mailing list
NANOG@nanog.org
http://mailman.nanog.org/mailman/listinfo/nanog
