[104547] in North American Network Operators' Group
Re: [NANOG] IOS rootkits
daemon@ATHENA.MIT.EDU (Gadi Evron)
Sat May 17 19:39:42 2008
Date: Sat, 17 May 2008 18:39:01 -0500 (CDT)
From: Gadi Evron <ge@linuxbox.org>
To: "Felix 'FX' Lindner" <fx@recurity-labs.com>
In-Reply-To: <20080517175150.e00b3b69.fx@recurity-labs.com>
Cc: topo@coresecurity.com, nanog@merit.edu, ivan.arce@coresecurity.com
Errors-To: nanog-bounces@nanog.org
On Sat, 17 May 2008, Felix 'FX' Lindner wrote:
>
> But I don't see a reason for panic and Cisco is at least partially
> right with their response
> ( http://www.cisco.com/en/US/products/products_security_response09186a0080997783.html )
> to the whole issue: someone still needs a privilege level 15 VTY on
> your router and no matter what press is currently making of the
> rootkit, this prerequisite step is non-trivial (or should be,
> depending on your configuration).
On this rootkit and IOS security and how it works FX's word is of the most
qualified.
>
> cheers
> FX
>
> --
> Recurity Labs GmbH | Felix 'FX' Lindner
> http://www.recurity-labs.com | fx@recurity-labs.com
> Wrangelstrasse 4 | Fon: +49 30 69539993-0
> 10997 Berlin | PGP: A740 DE51 9891 19DF 0D05
> Germany | 13B3 1759 C388 C92D 6BBB
> HRB 105213 B, Amtsgericht Charlottenburg, GF Felix Lindner
>
_______________________________________________
NANOG mailing list
NANOG@nanog.org
http://mailman.nanog.org/mailman/listinfo/nanog
