[163630] in North American Network Operators' Group
Re: huawei
daemon@ATHENA.MIT.EDU (Leo Bicknell)
Thu Jun 13 13:44:05 2013
From: Leo Bicknell <bicknell@ufp.org>
In-Reply-To: <BC3048D9-F11D-4A06-B57A-5829C5696A5D@ianai.net>
Date: Thu, 13 Jun 2013 12:42:38 -0500
To: "Patrick W. Gilmore" <patrick@ianai.net>
Cc: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Jun 13, 2013, at 11:35 AM, Patrick W. Gilmore <patrick@ianai.net> =
wrote:
> Also, I find it difficult to believe Hauwei has the ability to do DPI =
or something inside their box and still route at reasonable speeds is a =
bit silly. Perhaps they only duplicate packets based on source/dest IP =
address or something that is magically messaged from the mother ship, =
but I am dubious.
This could be a latent, not used feature from _any_ vendor.
A hard coded backdoor password and username. A sequence of =
port-knocking that enables ssh on an alternate port with no ACL. Logins =
through that mechanism not in syslog, not in the currently logged in =
user table, perhaps the process(es) hidden from view.
Do we really trust Cisco and Juniper more than Hueawei? :)
--=20
Leo Bicknell - bicknell@ufp.org - CCIE 3440
PGP keys at http://www.ufp.org/~bicknell/
