[163618] in North American Network Operators' Group
Re: huawei
daemon@ATHENA.MIT.EDU (Patrick W. Gilmore)
Thu Jun 13 12:43:10 2013
From: "Patrick W. Gilmore" <patrick@ianai.net>
In-Reply-To: <2116700651-1371140872-cardhu_decombobulator_blackberry.rim.net-420291214-@b4.c20.bise6.blackberry>
Date: Thu, 13 Jun 2013 12:35:48 -0400
To: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Jun 13, 2013, at 12:28 , "Avi Freedman" <avi@freedman.net> wrote:
> I disagree.
>=20
> There have already been lab demos of sfps that could inject frames and =
APTs are pretty advanced, sinister, and can be hard to detect now.
>=20
> I'm not suggesting Huawei is or isn't enabling badness globally but I =
think it would be technically feasible.
I am assuming a not-Hauwei-only network.
The idea that a router could send things through other routers without =
someone who is looking for it noticing is ludicrous.
Of course, most people aren't paying attention, a few extra frames =
wouldn't be noticed most likely. But if you are worried about it, you =
should be looking.
Also, I find it difficult to believe Hauwei has the ability to do DPI or =
something inside their box and still route at reasonable speeds is a bit =
silly. Perhaps they only duplicate packets based on source/dest IP =
address or something that is magically messaged from the mother ship, =
but I am dubious.
It should be trivial to prove to yourself the box is, or is not, doing =
something evil if you actually try.
--=20
TTFN,
patrick
> ------Original Message------
> From: Patrick W. Gilmore
> To: NANOG list
> Subject: Re: huawei
> Sent: Jun 13, 2013 12:22 PM
>=20
> On Jun 13, 2013, at 12:18 , Nick Khamis <symack@gmail.com> wrote:
>=20
>> A local clec here in Canada just teamed up with this company to
>> provide cell service to the north:
>>=20
>> =
http://cwta.ca/blog/2012/09/24/ice-wireless-iristel-and-huawei-partner-for=
-3g-wireless-network-in-northern-canada/
>>=20
>> Scary....
>=20
> Why?
>=20
> Do you think Huawei has a magic ability to transmit data without you =
noticing?
>=20
> If you don't want to use Hauwei because they stole code or did other =
nasty things, I'm right there with you. If you believe a router can =
somehow magically duplicate info and transport it back to China =
(ignoring CT/CU's inability to have congestion free links), I think you =
are confused.
>=20
> --=20
> TTFN,
> patrick
>=20
>=20
>=20
