[35111] in North American Network Operators' Group
Re: Warning: Cisco RW community backdoor.
daemon@ATHENA.MIT.EDU (Eric Germann)
Tue Feb 27 00:43:36 2001
Message-Id: <4.3.2.7.2.20010227001745.0228b680@209.45.128.21>
Date: Tue, 27 Feb 2001 00:24:51 -0500
To: "David Schwartz" <davids@webmaster.com>
From: Eric Germann <ekgermann@cctec.com>
Cc: "John Fraizer" <nanog@Overkill.EnterZone.Net>,
"Sean Donelan" <sean@donelan.com>, <nanog@merit.edu>
In-Reply-To: <00a401c0a077$b269bb80$7c4cf9d1@geeksparadise.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Errors-To: owner-nanog-outgoing@merit.edu
not on a 3640 running 12.0(1)T. (C3640-IS56I-M) Does return info though via a SNMP walk. No ATM interfaces either.
doing the below on a 3662 running 12.1(3a)T1 (C3660-IS-M) with an ATM interface (4 port T1 IMA) shows another one "cable-docsis"
cable-docsis faithfully pukes up all kinds of info try walking ".1.3.6.1" "ILMI" pukes.
Going to be a long night ....
Eric
At 08:42 PM 2/26/01 -0800, David Schwartz wrote:
>> While I agree that "public" and "private" are "wellknowns," in most
>> implementations, they at least show up in the code. Cisco chose to hide
>> this one where it would not show up in the code. That IMHO is a very bad
>> thing and does bad things to my confidence level in Cisco.
>
> Do a "show snmp group" from an enabled console prompt. It does show.
>
> DS
==========================================================================
Eric Germann Inacom Info Systems
egermann@inacomlima.com Lima, OH 45801
Ph: 419 331 9050
ICQ: 41927048 Fax: 603 825 5893
"It is so easy to miss pretty trivial solutions to problems deemed
complicated. The goal of a scientist is to find an interesting problem,
and live off it for a while. The goal of an engineer is to evade
interesting problems :)" -- Vadim Antonov <avg@kotovnik.com> on NANOG
