[104550] in North American Network Operators' Group
Re: [NANOG] IOS rootkits
daemon@ATHENA.MIT.EDU (Mark Smith)
Sat May 17 20:01:47 2008
Date: Sun, 18 May 2008 09:34:14 +0930
From: Mark Smith <nanog@85d5b20a518b8f6864949bd940457dc124746ddc.nosense.org>
To: Mark Smith <nanog@85d5b20a518b8f6864949bd940457dc124746ddc.nosense.org>
In-Reply-To: <20080518092947.776e7aa4.nanog@85d5b20a518b8f6864949bd940457dc124746ddc.nosense.org>
Cc: ivan.arce@coresecurity.com, topo@coresecurity.com, nanog@merit.edu,
fx@recurity-labs.com
Errors-To: nanog-bounces@nanog.org
On Sun, 18 May 2008 09:29:47 +0930
Mark Smith <nanog@85d5b20a518b8f6864949bd940457dc124746ddc.nosense.org> wrote:
> On Sat, 17 May 2008 09:34:19 -0500
> travis+ml-nanog@subspacefield.org wrote:
>
> > On Sat, May 17, 2008 at 04:47:02PM +0930, Matthew Moyle-Croft wrote:
> > > I'm sure it'll be good for a number of security providers to hawk their
> > > wares.
> > >
> > > If the way of running this isn't out in the wild and it's actually
> > > dangerous then a pox on anyone who releases it, especially to gain
> > > publicity at the expensive of network operators sleep and well being.
> > > May you never find a reliable route ever again.
> >
> > I personally like Gadi's work, but not as much as I like getting my
> > packets to their destination. I personally don't quite understand why
> > netops keep buying proprietary, closed technology for routers, but I'm
> > not and have never been a netop so I'm sure there's good reasons. To
> > me it seems that if you need reliable router hardware, you can buy
> > that from a vendor, but in theory I don't see why the software for
> > routers couldn't be much more open. When I can, I reflash my WAPs
> > with DD-WRT, because at least then I understand the system (and you
> > can't secure what you don't understand), but I am not saying that's
> > much of a comparison.
> >
>
<snip>
>
> As the cliche goes, "If you want something done properly, you have to
> do it yourself." If you can't do it (all) yourself, because you don't
> have the time and the expertise, then inherently you have to place a
should have been "have the time and/or the expertise"
> level of trust in other people.
>
> Regards,
> Mark.
>
> --
>
> "Sheep are slow and tasty, and therefore must remain constantly
> alert."
> - Bruce Schneier, "Beyond Fear"
>
> _______________________________________________
> NANOG mailing list
> NANOG@nanog.org
> http://mailman.nanog.org/mailman/listinfo/nanog
--
"Sheep are slow and tasty, and therefore must remain constantly
alert."
- Bruce Schneier, "Beyond Fear"
_______________________________________________
NANOG mailing list
NANOG@nanog.org
http://mailman.nanog.org/mailman/listinfo/nanog
